
Cybersecurity Weekly Newsletter
Date: July 02, 2025 - July 08, 2025
1️⃣Qantas Confirms Cyber Breach at External Contact Centre
Australia’s Qantas Airways has reported a cyber incident involving a third-party service provider, compromising personal data of frequent flyer customers.
- Data Exposed: Names, dates of birth, email addresses, and frequent flyer numbers were accessed.
- No Critical Impact: Flight operations, safety systems, passwords, and financial details remain unaffected.
- Response Measures: Independent cybersecurity experts engaged; Australian authorities notified and investigations underway.
- Third-Party Risks: Incident highlights vulnerabilities in external platforms managing sensitive customer data.
2️⃣CERT-In Issues High-Risk Alert for Multiple Adobe Products
India’s
cybersecurity agency CERT-In has issued a high-severity alert for
critical vulnerabilities in several popular Adobe products, warning of major
security risks.
- Affected Software: Includes Adobe InCopy, InDesign, Acrobat, Reader, Experience Manager, Magento, and Substance 3D tools.
- Potential Threats: Vulnerabilities could allow arbitrary code execution, privilege escalation, data access, and security bypasses.
- Root Causes: Issues include memory corruption, input validation flaws, and insecure data handling.
- Urgent Action: Users and businesses urged to install Adobe’s latest security patches and enforce strong patch management practices.
3️⃣Mamata Banerjee Urges Stricter Cybercrime Laws, Flags Social Media Misuse
West Bengal CM Mamata Banerjee has urged Union Home Minister Amit Shah to strengthen cybercrime laws and regulate the misuse of social media.
- Rising Concern: Warned of fake narratives and doctored visuals spreading unrest and disharmony online.
- Call for Legal Reform: Sought stronger laws to address cyber threats like identity theft, defamation, and digital fraud.
- Public Awareness: Stressed the need for digital literacy, awareness campaigns, and responsible content sharing.
- Proposed Measures: Advocated for sensitisation programmes and community engagement to tackle misinformation and online abuse.
4️⃣Cybercriminals Exploit “Unsubscribe” Buttons for Phishing Attacks
Cybersecurity experts warn that hackers are now using fake “Unsubscribe” buttons in emails to trick users and spread malware.
- New Tactic: Clicking fake unsubscribe links can lead to phishing sites or malware downloads.
- Hidden Risk: Even clicking once may confirm your email is active, making you a future target.
- Expert Advice:
- Avoid clicking unsubscribe on suspicious emails
- Check sender details and URLs before interacting
- Mark such emails as spam instead of engaging
- Key Reminder: Stay alert—even routine actions can be exploited by cybercriminals.
5️⃣ Ransomware Attack Halts Ingram Micro’s Global Operations
Ingram Micro, a major global IT and cloud services provider, suffered a ransomware attack that disrupted systems and operations worldwide.
- Service Outage: Internal platforms and public websites were taken offline, blocking customer orders and employee access.
- Visible Disruption: Main domain redirected to “access restricted” and maintenance pages, indicating widespread impact.
- Company Response: Infrastructure isolated, cybersecurity experts deployed, and law enforcement notified.
- Industry Impact: Highlights growing threats ransomware poses to global tech supply chains and IT ecosystems.
Uttarakhand STF arrested Abhishek Agarwal, the alleged mastermind behind a ₹750-crore cyber fraud linked to fake loan apps.
- Attempted Escape: Agarwal was caught at Delhi Airport while trying to leave the country, based on a Look Out Circular.
- Shell Companies: Operated 35–40 shell firms, some with Chinese co-directors, to launder scam proceeds.
- Fake Loan Apps: Racket ran apps like Insta Loan, KK Cash, RupeeGo, which accessed users' data and used it for harassment and extortion.
- International Links: Had visited China in 2019 to expand operations with foreign partners.
- Massive Impact: Thousands of victims across states; highlights urgent need for stronger fintech regulation and app security.
Stay Safe. Stay Informed. Stay Ahead — with CYBE.