+ Alleged Scattered Spider hacker surrenders to US police; FileFix attack tricks users into running image-borne malware; and more
Can't view this message? Click here to view it online.
iTnews

WEEKLY SECURITY WRAP

Tuesday September 23, 2025

Editor's Note

Join us on October 9 at Sofitel Brisbane for the 2025 Digital As Usual: Cyber Security roadshow. This exclusive breakfast event brings together CIOs, CISOs and digital leaders for a morning of insights, networking and discussion. Find out more and register your attendance here. 
 
  Security  

Actor auth tokens gave Global Admin access across Azure Entra ID tenants

Legacy authentication bypassed modern security controls and logging.

By Juha Saarinen
 

Latest Security News
Alleged Scattered Spider hacker surrenders to US police
  Security  

Alleged Scattered Spider hacker surrenders to US police

Following arrests of other alleged group members in the UK.

By Juha Saarinen
 
FileFix attack tricks users into running image-borne malware
  Security  

FileFix attack tricks users into running image-borne malware

New phishing menace exploiting users being helpful.

By Juha Saarinen
 
First npm worm "Shai-Hulud" released in supply chain attack
  Security  

First npm worm "Shai-Hulud" released in supply chain attack

Related to recent s1ngularity compromise.

By Juha Saarinen
 
Microsoft outs Nigerian as RaccoonO365 PhaaS boss
  Security  

Microsoft outs Nigerian as RaccoonO365 PhaaS boss

OpSec flub unmasked criminals.

By Juha Saarinen
 
 
 

Partner Content

From records to real-time: why systems of engagement matter

Are you ready for AI & data without the risk? The answer awaits you at the Melbourne Synology Solution Day

Identity Is the New Boardroom Priority

Cyber contracts not meeting boards' needs: Kaine Mathrick Tech CEO

Cyber accountability common "pain point", says Slipstream Cyber security director
 
European airports snarled by cyberattack
  Security  

European airports snarled by cyberattack

Disruption stretches into Sunday.

By Sabine Siebold, Christoph Steitz and Muvija M
 
Optus firewall upgrade behind 13-hour Triple Zero outage
  Networking  

Optus firewall upgrade behind 13-hour Triple Zero outage

Telco faces multiple investigations.

By Ry Crozier
 
NSW gov third party-linked cyber incidents quadruple in two years
  Security  

NSW gov third party-linked cyber incidents quadruple in two years

Figures revealed under GIPA Act.

By Eleanor Dickinson
 
ACMA proposes digital ID for prepaid mobile SIM verification
  Telco/ISP  

ACMA proposes digital ID for prepaid mobile SIM verification

Could broaden acceptance and use of credential.

By Eleanor Dickinson
 
Google's revised AI safety framework adds manipulation protection
  Security  

Google's revised AI safety framework adds manipulation protection

Version 3.0 of Frontier Safety Framework released.

By Juha Saarinen
 
Effective resilience requires more than just security tools
  Partner Content  

Effective resilience requires more than just security tools

Do you have your security architecture in order?

 
 
 
 

Featured whitepaper

State of the SOC: Building Resilience in a Shifting Threat Landscape

Download now
 
 

MOST POPULAR
Optus firewall upgrade behind 13-hour Triple Zero outage
  Networking  

Optus firewall upgrade behind 13-hour Triple Zero outage

By Ry Crozier
Actor auth tokens gave Global Admin access across Azure Entra ID tenants
  Security  

Actor auth tokens gave Global Admin access across Azure Entra ID tenants

By Juha Saarinen
First npm worm "Shai-Hulud" released in supply chain attack
  Security  

First npm worm "Shai-Hulud" released in supply chain attack

By Juha Saarinen
University of Sydney hunts for permanent CISO
  Training & Development  

University of Sydney hunts for permanent CISO

By Zachariah Kelly
NSW gov third party-linked cyber incidents quadruple in two years
  Security  

NSW gov third party-linked cyber incidents quadruple in two years

By Eleanor Dickinson
 
 
The email address for this subscription is [email].

If you no longer wish to receive newsletters like this one, please unsubscribe.

We respect your privacy; should you no longer wish to receive mailings from iTnews, click on the link above.
Please do not reply to this email. To view our Privacy Policy, go to the nextmedia Privacy Policy. Your comments and suggestions about this email and other nextmedia products or services can be emailed to support@itnews.com.au

This email was sent by: nextmedia Pty Ltd
Level 12, 111 Pacific Highway, North Sydney NSW 2060, Australia

nextmedia

Copyright © nextmedia Pty Ltd. All rights reserved.
unsubscribe