Cyber Briefing: 2025.09.08

iCloud used for phishing, Czech warns on China tech, AMOS malware spreads, Azure hit by cable cuts, APT41 email probe, Tenable breach, Streameast shut, TX sues PowerSchool, Maduro touts Huawei.

Sep 08, 2025

👉 What are the latest cybersecurity alerts, incidents, and news?

Welcome to Cyber Briefing, the newsletter that informs you about the latest cybersecurity advisories, alerts, incidents and news every weekday.

First time seeing this? Please Subscribe

Get Help

🚨 Cyber Alerts

1. iCloud Calendar Used For Phishing Emails

Scammers are exploiting iCloud Calendar to send callback phishing emails disguised as purchase notifications directly from Apple's servers, which helps them bypass spam filters. These emails, which appear to be legitimate, contain a fake PayPal charge and a phone number for "support," aiming to trick recipients into calling a scammer.

2. Czech Cyber Agency Warns On Chinese Tech

Organizations in the Czech Republic's critical infrastructure are being advised by the National Cyber and Information Security Agency (NUKIB) to steer clear of Chinese technology and storing user data on servers located in China. The agency has re-evaluated the risk of significant disruptions caused by China, now assessing it at a "High" level, citing malicious activities of Chinese cyber-actors and the Chinese government's access to data stored by private cloud service providers.

3. Atomic Stealer Masquerades As Cracked App

A sophisticated malware campaign is targeting macOS users by distributing the Atomic macOS Stealer (AMOS) disguised as cracked software, exploiting the demand for free applications to compromise systems and steal sensitive data. This campaign, which challenges the notion of macOS as an inherently secure platform, uses a multi-layered distribution and persistence system to evade detection and exfiltrate a wide range of personal and professional information

For more alerts, click here!

Check Jobs

💥 Cyber Incidents

4. Azure Cloud Hit By Red Sea Cable Cuts

Microsoft's Azure cloud platform is experiencing disruptions due to severed undersea fiber optic cables in the Red Sea. Although Microsoft has rerouted traffic to prevent a complete outage, users may still experience increased latency.

5. US Probes Malicious Email On China Talks

U.S. federal authorities are investigating a cyberattack that targeted sensitive trade negotiations with China in July 2025. The attack, attributed to the Chinese-linked hacking group APT41, used fraudulent emails disguised as official communications from Rep. John Moolenaar to harvest intelligence on U.S. trade strategy before crucial talks.

6. Tenable Confirms Breach Of Customer Data

Tenable confirmed a data breach that exposed customer contact details and support case information, which was part of a larger data theft campaign targeting an integration between Salesforce and the Salesloft Drift marketing application. The company has taken immediate action to secure its systems, including revoking credentials and disabling the vulnerable application, and continues to monitor for further activity.

For more incidents, click here!

Click to Report

📢 Cyber News

7. Police Disrupts Streameast Piracy Site

The Alliance for Creativity and Entertainment (ACE) and Egyptian authorities have shut down Streameast, one of the world's largest illegal sports streaming networks, and arrested two individuals. The platform, which had been operating since 2018, illegally streamed major sporting events from numerous leagues and was a significant source of piracy,

8. Texas Sues PowerSchool Over Data Breach

Texas Attorney General Ken Paxton is suing PowerSchool, an education software company, for a December data breach that exposed the personal information of over 880,000 Texans. The lawsuit alleges PowerSchool violated state laws by misleading customers about its security practices and failing to protect sensitive student and teacher data.

9. Maduro Claims Huawei Phone Cannot Be Hacked

Venezuelan President Nicolás Maduro claims a Huawei Mate X6, gifted by China's President Xi Jinping, is "unhackable" by U.S. spies. Security experts disagree, stating no device is truly immune to a nation-state's capabilities

For more news, click here!

Check Events

📈Cyber Stocks

As of early morning Monday, September 8, 2025, cybersecurity stocks showed a cautious but positive tilt as investors weighed softer macro indicators, sector resilience, and strong fundamentals.

Radware (RDWR) closed at $25.01, edging higher as its recent run of daily gains continued and analysts maintained confidence in its forward earnings outlook,
Rapid7 (RPD) ended at $20.32, rising on renewed technical momentum with trading volume signaling fresh buying interest after a period of pullback.
Check Point Software Technologies (CHKP) settled at $193.09, lifted by confidence in its governance following AGM approvals and consistent investor preference for its stable margins.
SentinelOne (S) finished at $18.73, gaining as optimism around its AI-driven security platform and positive analyst outlook reinforced upward momentum.
CrowdStrike (CRWD) closed at $417.63, moving higher as strong ARR growth and its AI-enabled platform offset concerns around its elevated valuation.

💡 Cyber Tip

Stay Safe from Phishing through iCloud Calendar Invites

Scammers are using iCloud Calendar invitations to send phishing emails that appear to be legitimate purchase notifications from Apple, making them harder for spam filters to catch.

✅ What you should do

Be skeptical of unexpected calendar invites
Verify through official channels
Delete the invitation

🔒 Why this matters

This type of scam bypasses typical email security, making it crucial for users to be aware of the signs of a phishing attempt and to rely on their own careful judgment rather than the email's apparent legitimacy. By not engaging with these invites, you can protect yourself from potential financial loss and data theft.