r/secithubcommunity

▲ 97 r/secithubcommunity+4 crossposts

India investigating Tata data leak that exposed Apple iPhone secrets

India is investigating a data breach at Tata Electronics that exposed documents linked to Apple's unreleased iPhone ‌18 Pro, the country's IT secretary said on Thursday in the government's first public comments on the incident.

Sensitive lists of components and suppliers as well as photos of iPhone 18 Pro models are among files that were ⁠posted on the dark web by a ransomware group that stole data from Tata Electronics, Apple's Indian supplier, Reuters reported.

reuters.com
u/chota-kaka — 2 days ago

Russian hackers reportedly behind the $2.5B Jaguar Land Rover cyberattack

New reporting says Russian hackers were behind the massive Jaguar Land Rover breach that halted production, disrupted one of the UK’s biggest employers, and caused an estimated $2.5 billion hit to the British economy.

The incident was so severe that the UK government stepped in with a £1.5 billion loan to support the company after weeks of operational disruption.

What makes this case especially interesting is the attribution gap: investigators reportedly believe the hackers were Russian, but it remains unclear whether they were directly state-backed, criminal actors, or operating in the grey zone between both.

That grey zone is becoming one of the biggest challenges in cyber attribution. State interests, criminal groups, ransomware economics, and geopolitical pressure are increasingly overlapping.

r/SECITHUBCOMMUNITY Cyber incidents and data breach news explained with context and impact. Share your insights.

u/Silly-Commission-630 — 9 days ago

100 hospitals went offline to stop a national ransomware attack

Romania’s 2024 hospital cyberattack is a powerful example of what real cyber resilience looks like under pressure.

After attackers compromised a widely used medical software platform and began spreading ransomware across hospitals, the national cyber-security centre ordered more than 100 hospitals to disconnect from the internet immediately.

That decision stopped the attack from spreading further but it also forced hospitals to operate without connected systems, email, web access or digital medical records. Doctors and nurses moved back to pen and paper, used offline tools, restored data from backups and kept patient care running while IT teams worked to contain the breach.

Investigators later found 26 hospitals infected with BackMyData ransomware. The attackers demanded €160,000 in Bitcoin, but Romania chose not to pay. Within five days, most hospitals were back online, with no reported deaths or serious patient harm.

r/SECITHUBCOMMUNITY Cyber incidents and data breach news explained with context and impact.

Share your insights.

u/Silly-Commission-630 — 9 days ago

The U.S. government has partially lifted its restrictions on Anthropic's most powerful cybersecurity AI model.

After temporarily blocking access to Claude Mythos 5 over national security concerns, the U.S. Department of Commerce has now authorized a limited release to a small group of trusted cybersecurity organizations and critical infrastructure providers.

The concern was never that the model was "malicious" it was that its ability to rapidly discover and exploit vulnerabilities could significantly accelerate offensive cyber capabilities if widely available.

Interestingly, the less capable Fable 5 model remains restricted for now, while discussions continue between Anthropic and U.S. officials.

This feels like a glimpse into the future of AI governance. Instead of regulating only code or data, governments may begin controlling access to frontier AI models the same way they control advanced weapons or sensitive technologies.

r/SECITHUBCOMMUNITY Cyber incidents and data breach news explained with context and impact. Share your insights.

reddit.com
u/Silly-Commission-630 — 9 days ago