SecurityWeek’s cybersecurity news roundup provides a concise compilation of noteworthy stories that might have slipped under the radar.
We provide a valuable summary of stories that may not warrant an entire article, but are nonetheless important for a comprehensive understanding of the cybersecurity landscape.
Each week, we curate and present a collection of noteworthy developments, ranging from the latest vulnerability discoveries and emerging attack techniques to significant policy changes and industry reports.
Here are this week’s stories:
Hackers selling passports and ID cards stolen from Italian hotels
Italy’s CERT-AGID agency has revealed that a hacker has been offering to sell tens of thousands of passports, ID cards and other identification documents allegedly stolen from hotels in Italy. A hacker using the online moniker ‘mydocs’ has been offering the files on a cybercrime forum for the past week. The passport and ID card scans were allegedly obtained in June and July from three Italian hotels.
Russia behind federal court filing system hack
A sustained effort to infiltrate the United States’ federal court filing system is believed to have involved Russian hackers, the New York Times reported. It’s unclear exactly which threat group may be responsible, but an investigation found that the hackers compromised sealed records, including ones related to cases involving people with Russian and Eastern European names.
Scammers from Ghana extradited to US
Several Ghanaian nationals accused of being involved in romance and business email compromise (BEC) scams have been extradited to the United States. They are believed to have made more than $100 million. Some of the suspects are accused of being leaders in the criminal enterprise.
XZ Utils backdoor in Docker images
A supply chain attack involving backdoored versions of the XZ Utils data compression library made many headlines last year. The backdoor was the result of a long and sophisticated operation, and the attack led to the backdoored version being distributed to major Linux distros. Binarly reported this week that 35 Docker images available on Docker Hub still ship the backdoor. These tainted base images can spread the backdoor into countless downstream builds, Binarly warned.
Pennsylvania attorney general targeted in cyberattack
The Pennsylvania office of the attorney general has been targeted in a cyberattack that caused significant disruptions. The Pennsylvania OAG announced that its website, email accounts and phone lines were offline as a result of the incident. It took several days to restore most of the impacted services.
Zoom patches critical vulnerability
Zoom this week informed customers about patches for two vulnerabilities. One of them is CVE-2025-49457, a critical untrusted search path issue affecting Windows clients. An unauthenticated attacker can exploit the vulnerability to escalate privileges via network access. The second flaw is a medium-severity race condition in Windows clients, allowing unauthenticated attackers to impact integrity through local access.
F5 patches
F5 has published its August 2025 Quarterly Security Notification, informing customers about the latest vulnerabilities patched in its products. Several of the flaws have been assigned a ‘high severity’ rating, including ones affecting Big-IP and F5 Access for Android. Exploitation could lead to traffic interception, privilege escalation, and DoS attacks.
Dragos publishes ransomware and financial risk reports
Industrial cybersecurity firm Dragos has published its 2025 OT Security Financial Risk Report in collaboration with Marsh McLennan. The report shows that the financial risk associated with OT cybersecurity events in a typical year is $31.1 billion. The study also found that $12.7 billion of that is linked directly to business interruption (BI) insurance claims, and the companies warned that global losses could reach up to $329.5 billion, with $172.4 billion from OT-related BI claims in a severe scenario. Dragos has also published its latest quarterly ransomware report.
Canada’s House of Commons targeted by hackers
Canada’s House of Commons has been targeted in a cyberattack that involved exploitation of a recent unspecified Microsoft product vulnerability. The attackers gained access to employee information, CBC News reported. The hackers also accessed a database storing information used for managing computers and mobile devices.
Cyberattack threatened water supply of city in Poland
A Polish official claimed that a recent cyberattack could have resulted in a city losing its water supply, but the attack was thwarted, Reuters reported. It’s unclear who was behind the attack and which city was targeted. The water sector is regularly targeted by threat actors, but attackers or victims exaggerating impact is not unheard of.
Related: In Other News: Nvidia Says No to Backdoors, Satellite Hacking, Energy Sector Assessment
Related: In Other News: Microsoft Probes ToolShell Leak, Port Cybersecurity, Raspberry Pi ATM Hack
Source: securityweek.com
