Top Tech Headlines for September 17, 2025

Data breaches, AI-driven attacks, and expired software support lead today’s cybersecurity roundup. If you're wondering what’s happening across the digital world, we’ve got your back with the latest stories you can’t afford to miss.

ShinyHunters Claims 1.5 Billion Salesforce Records in Drift OAuth Attack

The infamous ShinyHunters group is back, claiming to have stolen over 1.5 billion Salesforce records by exploiting stolen OAuth tokens from Salesloft and Drift integrations. The attack targeted 760 companies, potentially affecting a wide range of customer data. Organizations using these platforms should immediately audit integrated permissions and rotate credentials.

Ransomware Hits Insight Partners, Exposing Thousands

VC giant Insight Partners disclosed a ransomware breach that compromised personal information. Thousands of individuals are now being notified. Another urgent reminder: even investment firms are fair game in today’s evolving threat landscape.

SonicWall Advises MySonicWall Users to Reset Credentials

SonicWall warned customers of a breach exposing firewall configuration backup files linked to MySonicWall accounts. The company urges immediate credential resets. This incident underscores the importance of securing cloud-linked security appliances.

Office 2016 and 2019 Support Ends October 14, 2025

Microsoft issued a final reminder that Office 2016 and Office 2019 will reach end-of-life support next month. After October 14, these versions will no longer receive security updates. Now’s the time to upgrade—especially if security is a concern.

ClickFix Evolves Into MetaStealer with New Tactics

The ClickFix malware campaign has adopted new tactics including fake CAPTCHAs and MSI installer lures to distribute MetaStealer. Security researchers encourage users to stay updated by following briefings like Huntress’ Tradecraft Tuesdays. Adaptation is the name of the game in today’s malware scene.

Microsoft & Cloudflare Disrupt Massive RaccoonO365 Phishing Network

In a major win, Microsoft and Cloudflare shut down 338 domains tied to RaccoonO365, a Phishing-as-a-Service operation. The network stole over 5,000 Microsoft 365 credentials before being neutralized. This coordinated strike demonstrates the power of joint public-private cybersecurity efforts.

France Responds to Rising AI-Powered Cyber Threats with New Regulations

A new report reveals that France is tightening cybersecurity regulations in response to a rise in machine learning-enabled threats. The nation is ramping up its AI defenses as attacks become smarter and faster. Europe’s approach could become a roadmap for AI risk governance globally.

CSI and HuLoop Bring AI Automation to Small Banks

CSI and HuLoop are introducing AI-driven banking automation to enhance efficiency in small and rural banks. Targeting human error and overstretched staff, their partnership promises time and cost savings. It’s a reminder that AI isn’t just for Silicon Valley anymore.

TA558 Deploys AI-Generated Phishing Scripts in Brazil Hotel Hacks

The TA558 group launched attacks on Brazil’s hotel sector using AI-generated phishing to deliver Venom RAT. These attacks harvested travelers’ payment info and evaded traditional defenses. The use of generative AI in malware scripts signals a dangerous new frontier.

Chinese TA415 Hackers Use VS Code Tunnels to Spy on U.S. Trade Experts

A China-linked group known as TA415 targeted U.S. economic policy experts using VS Code remote tunnels to deploy the WhirlCoil backdoor. The attacks, running from July to August, aimed to infiltrate U.S. trade negotiation processes. It adds yet another layer to the geopolitical cyber cold war.

Webinar Offers Expert Strategies on Countering Quantum AI Threats

New expert panel calls for building "unbreakable cyber resilience" to respond to threats emerging from quantum computing and AI misuse. The free webinar dives into defense frameworks that combine proactive tools and policy. A must-watch for infosec leaders planning for the near future.

How to Rethink AI Data Security: New Buyer’s Guide

A new four-stage guide offers a fresh perspective on AI data security, blending real-time controls with auditing and automation. It breaks down how to handle productivity without compromising on protection. Essential reading for CISOs and IT buyers investing in AI platforms.

Scattered Spider Attacks Financial Sector After Alleged "Retirement"

Despite previous claims of disbandment, Scattered Spider has reemerged with focused attacks on U.S. financial institutions. The group leverages Azure AD social engineering and cloud data exfiltration techniques to stay ahead. The lesson? Threat actors rarely stay quiet for long.

BreachForums Founder Resentenced to 3 Years in Cybercrime Case

Conor Fitzpatrick, the founder of BreachForums, has been resentenced to three years in prison. The relaunch of court proceedings nullified an earlier 17-day term after scrutiny over his involvement in cybercrime and CSAM possession. Authorities also seized over 100 domains linked to illicit activity.

Want to stay ready for anything? From data recovery to bootable OS installs, our Ultimate USBs have your back. Check out our tools today.