Top Tech & Cybersecurity Headlines for August 8, 2025

Today’s headlines are packed with AI news, major data breaches, rising cyberthreats, and new moves from Microsoft and Samsung. Whether you're a developer, business owner, or privacy-conscious user, there's something here that could impact your digital world. Let’s dive in!

OpenAI Addresses GPT-5 Backlash with New Fixes

OpenAI has begun rolling out updates to GPT-5 after users slammed its performance for not living up to the hype. CEO Sam Altman acknowledged shortcomings and promised doubling rate limits for paid users as a make-good. Improving reliability and responsiveness continues to be a cornerstone in the race for better AI models.

Zero-Day in WinRAR Exploited by RomCom Hackers

A critical WinRAR vulnerability (CVE-2025-8088) was actively exploited before it was fixed, with attackers using phishing emails to install RomCom malware. This highlights the importance of keeping even classic tools like WinRAR updated. Phishing remains a top infection vector for malware attacks.

FTC: Seniors Lost $700M to Scams in 2024

The Federal Trade Commission reports a record $700 million in losses among Americans aged 60+ due to online scams. This sharp increase underlines the urgent need for better digital education and stronger online safeguards targeting older adults. Family awareness can be a first line of defense.

U.S. Courts Breached in Sensitive Data Attack

The U.S. judiciary confirmed a breach of its electronic case management systems, affecting sensitive legal records. While specifics remain undisclosed, officials are tightening cybersecurity protocols. This breach reinforces how even government systems remain prime targets.

Microsoft Restricts Legacy FPRPC File Access

Microsoft 365 apps will soon block file access via the outdated FPRPC authentication method, removing a legacy weak spot exploited in past breaches. The change, set for late August, is aimed at improving default security practices. And no worries—modern access protocols will still be supported.

Microsoft Lens PDF Scanner App to Be Discontinued

Microsoft plans to sunset its Lens PDF scanner app on iOS and Android as of September 15, 2025. The company encourages users to transition to Microsoft OneDrive’s document capture features. If you rely on Lens, make sure to export important files before the shutdown.

Columbia University Breach Impacts 870,000 Individuals

An unknown attacker accessed the sensitive health, financial, and personal data of nearly 870,000 students and staff at Columbia University. The breach reportedly occurred in May but was just disclosed. It’s yet another wake-up call for higher ed institutions to tighten digital defenses.

Royal & BlackSuit Ransomware Gang Hits 450+ U.S. Firms

The U.S. Department of Homeland Security says the Royal and BlackSuit ransomware gangs compromised over 450 American companies before their infrastructure was taken down. While authorities disrupted operations, the sheer scale reveals how widespread ransomware still is.

AI Needs Rules, Says Ethics Advocate

Suvianna Grecu of AI for Change warns that unchecked AI development could lead to a "trust crisis" if ethical frameworks aren't prioritized. With governments and companies racing to deploy AI, her call for regulatory oversight feels especially timely. AI isn’t just a tech issue—it’s a societal one.

Galaxy Watch8 Pushes Preventative Health Monitoring

Samsung’s Galaxy Watch8 aims to catch health risks early by improving sensor accuracy and predictive tracking. Smartwatch tech is moving increasingly into the preventative care space. Fitness fans and medical professionals alike are watching this one closely.

Optimizing for AI Search: The Future of SEO

With AI-playing a growing role in search engines, marketers and content creators are learning new strategies to rank results. It’s no longer just about keywords—understanding intent and semantic matching is key. The AI-powered SEO game is officially on.

RubyGems Repository Infected with Malware

Security firm Socket uncovered a years-long malware campaign injecting credential-stealing code into the RubyGems package ecosystem. Developers who rely on open-source tools should review dependencies and watch for suspicious package updates. Supply chain attacks are on the rise.

Shein Fined €1M Over Greenwashing Claims

Fast fashion retailer Shein was fined €1 million by Italian authorities for vague, misleading claims about their sustainability practices. The ruling reflects growing pressure on companies to back up environmental claims with meaningful action. Transparency matters in brand trust.

Bouygues Telecom Data Breach Hits 6.4M Customers

A breach at Bouygues Telecom may have exposed the personal and banking data of 6.4 million customers. While passwords and card details were reportedly safe, the exposed data still raises risks for phishing and fraud. Telecom companies remain a high-value target for threat actors.

Mind Network and BytePlus Launch Privacy-First AI Project

A new partnership between Mind Network and BytePlus is building encrypted, privacy-conscious AI. The project uses cryptographic verification to ensure models operate securely and transparently. It’s part of a wider trend toward "trust-by-design" platforms.

AI-Powered Phishing & Crypto-Stealing Efimer Trojan Hit Brazil

A new scam campaign in Brazil is using AI-generated content to impersonate local agencies, steal user data, and hijack PIX payments. Meanwhile, the Efimer Trojan has compromised over 5,000 devices and looted crypto wallets. This blend of advanced phishing and financial malware shows rapid attacker innovation.

Leaked Credentials Up 160% in 2025

New stats show a 160% rise in leaked login credentials this year, contributing to at least 22% of known data breaches in 2024. The reuse of passwords and lack of detection measures continue to create easy openings for attackers. Multi-factor authentication is more crucial than ever.

PyPI Also Hit in Credential-Stealing Package Campaign

PyPI and RubyGems, two of the most popular developer repositories, have both been hit by malicious packages designed to steal passwords and crypto. The incident is prompting security overhaul plans, including tighter package vetting and alerts. DevSecOps can't afford to be an afterthought anymore.

GreedyBear Malware Steals $1M via Fake Browser Extensions

The GreedyBear campaign used over 150 fake Firefox extensions to raid crypto wallets, stealing $1 million from unsuspecting users. It's a stark reminder that browser extensions can be major attack vectors. Always vet third-party tools—especially those that integrate with sensitive apps.

Want to stay ready for anything? From data recovery to bootable OS installs, our Ultimate USBs have your back. Check out our tools today.