Welcome to today's issue of Secret CISO, your daily dose of cybersecurity news and insights. Today, we're diving into a surge in cyberattacks targeting the US, with a staggering 136% increase reported. We'll also discuss the fallout from a massive data breach at SK Telecom, which has led to the suspension of new sign-ups and raised serious concerns over USIM chip security. In the education sector, colleges are grappling with recovery efforts following cyberattacks, with one institution paying a hefty $1.45 million settlement to those impacted. Meanwhile, Texas-based HR firm VeriSource has confirmed one of the most significant data breaches in recent years, with 4 million records hacked. We'll also touch on a stark warning from JPMorganChase about the ticking time bomb that is SaaS for global security, and the rise in ransomware attacks exposing cracks in cloud security. In leadership news, Airservices Australia has consolidated technology functions under the leadership of CISO Anthony Kitzelmann, and President Trump plans to appoint a new national security advisor in the next six months. Finally, we'll explore the latest cybersecurity research, including vulnerabilities found in Apple's AirPlay Protocol, and tools that alert you when your passwords are leaked. Stay tuned for these stories and more in today's Secret CISO. Stay safe, stay informed.

Data Breaches

1. Cyberattacks Targeting US Increased by 136%: The US has seen a significant increase in cyberattacks, with a 136% rise reported. The attacks are becoming more sophisticated and widespread, posing a serious threat to national security. Source: Security Magazine
2. SK Telecom Halts New Sign-ups Amid Nationwide USIM Data Breach: In response to a data breach involving mobile phone USIM chips, SK Telecom has suspended new sign-ups. The breach has raised serious concerns over data security. Source: Daijiworld
3. Colleges Recovering from Cyber Attacks: Several colleges are recovering from cyberattacks that led to significant data breaches. The impact of these breaches has been substantial, with one college paying a $1.45 million settlement to those affected. Source: The Alpena News
4. HR Firm Suffers One of the Worst Data Breaches: 4 Million Records Hacked: Texas-based HR provider VeriSource Services has confirmed a major data breach, with 4 million records hacked. This breach is one of the most significant to hit a human resources provider in recent years. Source: People Matters
5. Ransomware Spike Exposes Cracks in Cloud Security: A report by Rubrik reveals that 90% of IT and security leaders said their organization experienced a cyberattack within the last year, exposing serious vulnerabilities in cloud security. Source: Help Net Security

Security Research

1. New York Post's X Account Allegedly Compromised for Crypto Scams: Scammers have reportedly compromised the New York Post's X account to conduct cryptocurrency scams. Blockchain researcher ZachXBT noted the incident, highlighting the increasing sophistication of cybercriminals. Source: Binance
2. Multiple vulnerabilities found in Apple's AirPlay Protocol: Security researchers have discovered multiple vulnerabilities in Apple's AirPlay protocol that could potentially lead to a complete takeover of Apple devices. The flaws underscore the need for continuous security updates and user vigilance. Source: Cyber Daily
3. CAUTION: Car thieves using cloning technology to copy keys, steal vehicles: A new report warns that car thieves are now using cloning technology to copy keys and steal vehicles. The report underscores the need for car owners to be vigilant and for car manufacturers to improve their security measures. Source: YouTube
4. I set up an SSH honeypot, and the internet is a scary place: A security researcher set up an SSH honeypot to intercept and analyze malicious files and scripts, revealing the frightening extent of cyber threats on the internet. The experiment underscores the importance of robust cybersecurity measures. Source: XDA Developers
5. 19 billion passwords compromised — here's how to protect yourself right now: A security researcher at Cybernews has reported that 19 billion passwords have been compromised. The report highlights the need for internet users to prioritize strong, unique passwords and consider using password managers for added security. Source: Tom's Guide

Top CVEs

1. CVE-2025-4249 in PHPGurukul e-Diary Management System 1.0: A critical vulnerability has been discovered in PHPGurukul e-Diary Management System 1.0. The flaw lies in an unknown functionality of the file /manage-categories.php and can lead to SQL injection. The attack can be launched remotely and the exploit has been publicly disclosed. Source: vulners.com
2. CVE-2025-4248 in SourceCodester Simple To-Do List System 1.0: A critical vulnerability has been found in SourceCodester Simple To-Do List System 1.0. The vulnerability affects an unknown functionality of the file /complete_task.php and can lead to SQL injection. The attack can be launched remotely and the exploit has been publicly disclosed. Source: vulners.com
3. CVE-2025-4250 in code-projects Nero Social Networking Site 1.0: A critical vulnerability has been discovered in code-projects Nero Social Networking Site 1.0. The flaw affects an unknown part of the file /index.php and can lead to SQL injection. The attack can be initiated remotely and the exploit has been publicly disclosed. Source: vulners.com
4. CVE-2025-4253 in PCMan FTP Server 2.0.7: A critical vulnerability has been found in PCMan FTP Server 2.0.7. The vulnerability affects an unknown functionality of the component HASH Command Handler and can lead to buffer overflow. The attack can be launched remotely and the exploit has been publicly disclosed. Source: vulners.com
5. CVE-2025-4252 in PCMan FTP Server 2.0.7: A critical vulnerability has been discovered in PCMan FTP Server 2.0.7. The flaw affects an unknown function of the component APPEND Command Handler and can lead to buffer overflow. The attack can be launched remotely and the exploit has been publicly disclosed. Source: vulners.com

Sponsored by Wallarm API Security Solution

Final Words

As we wrap up today's edition of Secret CISO, we're reminded of the ever-evolving landscape of cybersecurity. From the alarming 136% increase in cyberattacks targeting the US, to the massive data breaches impacting millions of records, it's clear that the need for robust security measures is more critical than ever. We've also seen how even the world's largest bank, JPMorganChase, is sounding the alarm about the potential security risks associated with widely used technologies. And let's not forget the colleges recovering from cyberattacks, highlighting the fact that no sector is immune to these threats. But it's not all doom and gloom. We also have stories of consolidation and strengthening of tech under CISO leadership, and the appointment of new national security advisors. These are reminders that as much as the threats evolve, so too do our defenses. Remember, staying informed is one of the best ways to stay secure. So, if you found today's newsletter helpful, why not share it with your friends and colleagues? Let's spread the knowledge and help each other stay one step ahead of the cyber threats. Stay safe, stay secure, and see you in the next edition of Secret CISO.