Cyber Threats: Airport Ransomware, Entra ID Flaw, Satellite Hacking & More

Major Cyber Incidents and Disruptions

• ✈️ A significant ransomware attack has disrupted airport operations across Europe, targeting check-in and boarding software, forcing manual workarounds and flight cancellations.
• 🔑 A critical design flaw in legacy Microsoft components nearly allowed total compromise of every Entra ID tenant, enabling impersonation of global administrators.
• 🚗 Automaker Stellantis confirmed a data breach originating from a third-party vendor, exposing customer names and email addresses.
• 💻 Fortra has patched a critical flaw in its GoAnywhere MFT software that could enable remote code execution.

Legislative and Industry Concerns

• ⏳ Congress is on the verge of letting the 2015 Cyber Security Information Sharing Act expire, potentially chilling the sharing of critical threat data.
• 🚫 Three major cybersecurity players—Microsoft, SentinelOne, and Palo Alto Networks—have opted out of MITRE's 2025 ATT&CK Evaluations, raising questions about the program's future relevance.

Satellite Hacking Research

• 🛰️ Researchers from VisionSpace presented findings on vulnerabilities in open-source mission control systems and onboard software frameworks like NASA's Core Flight System and F-Prime.
• ⚠️ They discovered nearly 40 CVEs, including zero-days, ranging in severity, with potential impacts from information disclosure to remote code execution on spacecraft platforms.
• 🔒 The research highlighted a prevalent issue of security by obscurity and a lack of robust hardening in space industry software, despite its critical nature.

Criminal Activity and Exploitation

• child sexual exploitation, identifying 51 children and launching proceedings against 60 suspects.
• 🎮 A compromised Steam game, Block Blasters, silently drained a cancer patient's cryptocurrency wallet of $32,000 in donations after being updated with a crypto drainer.
• 🕸️ The story of Noah Urban, a teenager who became a rising star in the Scattered Spider cyber gang, is detailed, highlighting his social engineering tactics and eventual 10-year prison sentence.

Business and Investment Landscape

• 💰 The week saw significant investment, with Vega raising $65 million and Irregular securing $80 million to focus on securing frontier AI models.
• 🤝 Acquisitions included CrowdStrike's purchase of Pangia to enhance AI detection and response, and Accenture's acquisition of AM Concepts to bolster identity services.