Welcome to today's issue of Secret CISO! We've got a lot to unpack today, starting with the recent findings that reveal multiple security flaws in the DeepSeek R1 iOS app. This comes amidst the U.N. Cybercrime Convention's Promethean moment, where cybercrimes are exploiting AI for identity theft scams. In other news, security validation is becoming the new standard for cyber resilience, simulating threats to assess system responses.

However, concerns over potential security vulnerabilities are on the rise, particularly with Musk's project gaining treasury access. Data breaches continue to affect consumer trust, with research showing that over half of consumers find brands hit with a data breach untrustworthy. This is particularly concerning for law firms, who are seeing an uptick in data breach class action suits.

We also delve into the shocking NHS data protection breach revealed by a Newport man and the cybersecurity breach faced by UK engineering firm IMI. On the brighter side, we explore how AI is enhancing telecom security and how next-gen SIEMs are providing what SOC teams need most. Stay tuned for more updates on the latest security research, expert insights, and the urgent need for enhanced 'metaverse' policing. Don't miss out on our coverage of the largest illegal data breach in U.S. history involving Musk's DOGE access.

Remember, in a data-driven world, staying informed is your best defense. Stay safe and secure!

Data Breaches

1. DeepSeek R1 iOS App Security Flaws: DeepSeek R1, an iOS application, has been found to have multiple security flaws, including the disabling of key security protections and the use of outdated encryption. These vulnerabilities could potentially expose users' data to unauthorized access and misuse. Source: India Today
2. U.N. Cybercrime Convention: The U.N. Cybercrime Convention highlights the increasing threat of cybercrimes, particularly identity theft scams, exploiting AI. These cyber attacks pose significant threats to personal and financial security, emphasizing the need for robust cybersecurity measures. Source: The Regulatory Review
3. Musk's Treasury Access Security Fears: Concerns have been raised over potential security vulnerabilities created by Elon Musk's project, which had access to the treasury. Despite a judge's order to halt the project, the security fears persist. Source: Seattle Times
4. NHS Data Protection Breach: A serious data breach occurred when NHS patient's voicemails were wrongly redirected to a Newport man's phone. This incident highlights the need for stringent data protection measures in healthcare systems. Source: South Wales Argus
5. UK Engineering Firm IMI Cybersecurity Breach: UK engineering firm IMI has faced a cyberattack involving unauthorized access to its systems, raising concerns about data compromise. The incident is currently under investigation. Source: iZOOlogic

Security Research

1. DeepSeek's iOS app security flaws: Researchers have found significant security issues with DeepSeek's iOS app, advising users to delete it immediately. The app reportedly failed every security test, making it a potential threat to user data. Source: The Register and MSN
2. AI in Telecoms Security: The development of an automated security analysis system has been spearheaded, which includes identifying vulnerabilities in telecom security. AI is seen as a significant contributor to enhancing security in this sector. Source: The Fast Mode
3. Massive Cyberattack on Android users in India: Security researchers have uncovered a large-scale cyberattack on Android users in India, involving over 1,000 malicious apps designed to steal sensitive data. Source: iZOOlogic
4. Metaverse Policing Research: New research reveals an urgent need for comprehensive studies and enhanced policing in the metaverse. The study highlights the potential security risks and challenges in this emerging digital frontier. Source: CSU News
5. FBI's Cyber Security Warning: The FBI has issued an urgent cyber security warning, advising individuals to delete certain messages immediately. The warning comes amid concerns of potential cyber threats originating from China. Source: Daily Mail

Top CVEs

1. CVE-2025-21684 - Linux Kernel GPIO Lock Vulnerability: A vulnerability in the Linux kernel's gpio: xilinx has been resolved. The issue was related to the conversion of gpio_lock to raw spinlock as irq_chip functions may be called in raw spinlock context. This fix addresses a lockdep splat that was previously reported. Source: CVE-2025-21684
2. CVE-2025-21685 - Lenovo Yoga Tab2 Pro-1380 Fastcharger Serdev Race: A vulnerability in the Linux kernel's platform/x86: lenovo-yoga-tab2-pro-1380-fastcharger has been fixed. The issue was a race condition in the yt2_1380_fc_serdev_probe() function, which could trigger a NULL pointer dereference. The fix ensures client operations are set before enabling the port. Source: CVE-2025-21685
3. CVE-2024-57949 - Linux Kernel GIC-V3-ITS Interrupt Vulnerability: A vulnerability in the Linux kernel's irqchip/gic-v3-its has been resolved. The issue was related to enabling interrupts in its_irq_set_vcpu_affinity() in a nested interrupt disabled section. The fix involves using guard(raw_spinlock) instead of guard(raw_spinlock_irq). Source: CVE-2024-57949

Sponsored by Wallarm API Security Solution

Final Words

And that's a wrap for today's edition of Secret CISO. From the alarming security flaws in DeepSeek R1's iOS app to the rising concerns over Musk's treasury access, it's clear that the cyber landscape is as dynamic as ever. The importance of security validation and the impact of data breaches on consumer trust are also noteworthy discussions of the day.

Remember, in this digital age, staying informed is your first line of defense. So, don't forget to share this newsletter with your friends and colleagues to help them stay ahead of the curve too.

Stay safe, stay secure, and see you in the next edition of Secret CISO!