Welcome to today's issue of Secret CISO, your daily dose of the most impactful cybersecurity news. Today, we delve into the world of data breaches, security injunctions, and the ever-evolving landscape of digital security.

First up, we look at the recent preliminary injunction secured by Attorney General Bonta, effectively blocking DOGE's access to private data. This move highlights the increasing importance of data security in our digital age. Next, we turn our attention to the UN's Security Council vote on Ukraine, a move spearheaded by the United States. This marks the third anniversary of Russia's invasion, underscoring the geopolitical implications of cybersecurity.

In the realm of crypto, Bybit's recent security breach and subsequent full restoration of services is a stark reminder of the vulnerabilities inherent in the digital currency space. The breach, which saw over $4 billion in a 'bank run', is now under investigation to understand the exact circumstances. On the topic of data breaches, we delve into the implications of Apple's removal of its highest level data security tool in the UK, a move that has sparked urgent warnings to iPhone users.

In the financial sector, the FCCPC has underscored the importance of consumer data security, warning banks that they will be held liable for consumer data breaches. This move comes in the wake of a data leak scandal at Manurewa Marae that forced the resignation of the chief statistician. Finally, we explore the latest research in cybersecurity, from the analysis of the $1.5B Bybit security breach to the unveiling of the Darcula Phishing Platform's advanced version, making scams easier than ever.

Stay tuned for more updates and insights in tomorrow's issue of Secret CISO. Stay safe and secure!

Data Breaches

1. Attorney General Bonta Blocks DOGE's Access to Private Data: In a significant move, Attorney General Bonta has secured a preliminary injunction preventing DOGE from accessing private data. This action underscores the importance of data security and the potential risks associated with unauthorized access. Source: oag.ca.gov
2. Manurewa Marae Data Breach Scandal: The data breach at Manurewa Marae has led to the resignation of the chief statistician and cast a cloud over the election of a Te Pāti Māori MP. The incident highlights the potential political implications of data breaches. Source: thepost.co.nz
3. Apple Removes Data Security Tool in the UK: Apple has been forced to remove its highest level data security tool, known as Advanced Data Protection (ADP), in the UK. This move has sparked urgent warnings to iPhone users about potential data security risks. Source: dailymail.co.uk
4. Banks to be Held Liable for Consumer Data Breaches: The FCCPC has underscored the importance of consumer data security, warning financial institutions about the consequences of mishandling customer data. This move indicates that banks will be held liable for consumer data breaches. Source: nairametrics.com
5. Beverly Hills Plastic Surgeon Sued for Data Breach: Beverly Hills plastic surgeon Jaime Schwartz M.D. is facing a lawsuit for not timely notifying patients of two data breaches. The lawsuit alleges that nude photos of patients were exposed in the data hacks. Source: latimes.com

Security Research

1. Darcula Phishing Platform Set to Launch Advanced Version: Security researcher Harry Freeborough warns of an advanced version of the Darcula phishing platform. Once generated, these kits are uploaded to another platform where criminals can manage their operations, making scams easier than ever. Source: the420.in
2. Security Flaw in Popular Stalkerware Apps Exposing Phone Data: A security flaw in popular stalkerware apps is allowing researchers to pull sensitive information from their servers, including email addresses. TechCrunch first reported on the findings. Source: MSN
3. Scammers Using Fake ST Pages, Articles Depicting Prominent Figures: Scammers are creating fake ST pages and articles that depict prominent figures, which can be challenging to detect for both security researchers and automated security solutions. Source: Strait Times
4. Story Behind the North Korean Hacker Group Lazarus Group: A deep dive into the operations of the North Korean hacker group, Lazarus Group. Security researcher Marcus Hutchins discovered a hard-coded "kill switch" in a sample of the virus from the group. Source: PA News Lab
5. Comparing Zero Trust Network Segmentation vs. Traditional Network Security: This research paper highlights key differences in security effectiveness, adaptability, and risk mitigation between Zero Trust Network Segmentation (ZTNS) and Traditional Network Security (TNS). Source: ResearchGate

Top CVEs

1. CVE-2025-26776 - Unrestricted Upload of File in NotFound Chaty Pro: This vulnerability allows the upload of a web shell to a web server due to unrestricted file upload of dangerous types. Users of Chaty Pro should update their software to the latest version to mitigate this risk. Source: vulners.com
2. CVE-2025-21704 - Linux Kernel USB Control Transfer Buffer Size Vulnerability: This vulnerability in the Linux kernel can lead to memory corruption if the first fragment is shorter than struct usb_cdc_notification. Users are advised to update their Linux kernel to the latest version. Source: vulners.com
3. CVE-2025-0918 - Stored Cross-Site Scripting in SMTP for SendGrid – YaySMTP Plugin: This vulnerability allows unauthenticated attackers to inject arbitrary web scripts in pages due to insufficient input sanitization and output escaping. Users of this plugin should update to the latest version. Source: vulners.com
4. CVE-2025-27012 - Cross-Site Request Forgery in A1POST.BG Shipping for Woo: This vulnerability allows privilege escalation due to a Cross-Site Request Forgery (CSRF) vulnerability. Users of A1POST.BG Shipping for Woo should update their software to the latest version. Source: vulners.com
5. CVE-2025-26764 - Missing Authorization in Distance Based Shipping Calculator: This vulnerability allows exploiting incorrectly configured access control security levels due to missing authorization. Users of Distance Based Shipping Calculator should update their software to the latest version. Source: vulners.com

Sponsored by Wallarm API Security Solution

Final Words

That's a wrap for today's edition of Secret CISO. We've covered a lot of ground, from the preliminary injunction blocking DOGE's access to private data, to the full restoration of services at Bybit following a security breach, and the ongoing discussions at the U.N. Security Council regarding Ukraine. In the world of online selling, we've learned about the importance of data breach insurance, and the potential consequences for banks failing to protect consumer data.

We've also seen how data breaches can lead to serious scandals, as in the case of the Manurewa Marae data breach. Apple's decision to remove a key security feature in the UK has raised concerns, while the ongoing issues with data breaches at various institutions continue to highlight the importance of robust security measures.

Remember, in the world of cybersecurity, knowledge is power. So, share this newsletter with your friends and colleagues to keep them in the loop.

Let's work together to create a safer digital world. Stay secure!