4. Coinbase Insider Attack Exposed User Data

Coinbase confirmed that unknown attackers bribed support agents to steal account data from a small group of users. The stolen information included names, masked bank details, government ID images, and transaction histories. Although no funds or passwords were directly exposed, the attackers attempted to extort $20 million by claiming they had internal company data. Coinbase has fired the compromised agents, reimbursed affected users, added stricter ID checks, and offered a $20 million reward for information that leads to the attackers’ arrest and conviction.

5. Hackers Target Swiss Reserve Power Plant

Hackers successfully accessed the email account of a manager at the Birr reserve power plant in Switzerland. They sent phishing emails to Swiss suppliers and business partners, attempting to trick recipients into clicking malicious links. Swiss authorities, including the Federal Office of Energy, confirmed the attack but stated the plant’s core systems remained secure. This incident highlights vulnerabilities in critical infrastructure, and new Swiss laws now require prompt reporting of such cyberattacks to improve national cybersecurity defenses.

6. Cyberattack Hits J Batista Group

Brazilian pharmaceutical firms Nazária and Drogarias Globo, part of Jorge Batista group, suffered a cyberattack. The attack caused system instabilities prompting them to reinforce security and work on service normalization. While details are limited and the parent group is silent a separate incident hit Brazil’s IPEN. This earlier IPEN attack halted radiopharmaceutical production highlighting wider sector risks in Brazil.

7. Lawmakers Urge Cyber Bill Renewal Soon

Lawmakers on the House Homeland Security Committee’s Cybersecurity Subcommittee are urging swift reauthorization of the Cybersecurity Information Sharing Act (CISA 2015), which is set to expire on September 30. The law has been key in enabling threat intelligence exchanges between government agencies and private industry, helping defend national security against cyber threats. While officials like DHS Secretary Kristi Noem support the renewal, some lawmakers express concern that privacy issues could stall progress, even though no violations have been reported since the law’s passage

8. US Charges 12 More in $230M Crypto Theft

US authorities charged twelve more suspects in a major RICO conspiracy involving over $230M in crypto theft. The group allegedly used spoofed numbers and impersonation to trick victims into revealing access credentials. Facing charges like racketeering and money laundering the defendants laundered funds through various crypto services. This stolen cryptocurrency was then used to finance extravagant lifestyles and luxury purchases by the group.

9. Proofpoint to Acquire Hornetsecurity

Proofpoint announced plans to acquire Hornetsecurity, a major Microsoft 365 security solutions provider. The deal strengthens Proofpoint’s global presence and supports its focus on small and mid-sized businesses. Hornetsecurity offers AI-powered cloud security and compliance services through over 12,000 partners worldwide. The acquisition, valued at $1 billion, is expected to close in the second half of 2025.

Watch Out for Fake Voice Calls Claiming to Be from U.S. Officials

The FBI warns that cybercriminals are using AI-generated voice deepfakes and text messages to impersonate senior U.S. officials. These scams trick people into revealing sensitive info or sending money.

✅ What you should do:

• Be skeptical of unexpected voice calls or texts from officials or executives, especially if they ask for urgent action.
• Don’t click on links or share personal information unless you verify the sender through a trusted contact method.
• If something feels off even if the voice sounds real, hang up and confirm through official channels.
• Stay alert to smishing (fraudulent texts) and vishing (voice phishing) tactics that build trust before launching a scam.

Why this matters: AI deepfakes make scams sound more convincing than ever, and even high-level professionals are being targeted.