If you’ve ever needed examples of what could happen with cyber attacks in “traditional” non-techy companies, this week has two examples. Actually they are good cautionary tales in any industry.
The UK goverment, needed to underwrite a £1.5 B loan to help Jaguar restore it’s supply chain because it was not properly insured against cyber attacks and the japanese beer giant Asahi needed to close down 30 factories and postpone the launch of new products.
Scattered Spider launched a dark-web leak site listing dozens of major organizations, including Salesforce itself, claiming to hold over 1 billion stolen records and demanding a ransom by October 10. "At this time, there is no indication that the Salesforce platform has been compromised, nor is this activity related to any known vulnerability in our technology,” the spokesperson said.
Key Details
Read more at The Record
Microsoft Threat Intelligence detected and blocked an August 18 credential-phishing campaign that used AI-crafted code hidden inside .svg files disguised as business dashboards to steal log-in credentials. By embedding payloads with common business terms and leveraging Large Language Models for obfuscation, attackers bypassed traditional filters—only to be caught by Defender for Office 365’s AI behavioral analysis.
Key Details
Next Steps
Read more at HackRead.com
Starting mid-October 2025, Outlook for Web and the new Outlook for Windows will no longer render inline SVG images, showing blank spaces instead, to mitigate cross-site scripting and phishing attacks that abuse SVG’s scriptable nature. Classic SVG attachments remain viewable, and the change impacts fewer than 0.1% of all images, fitting into Microsoft’s broader effort to tighten attachment security.
Key Details
Read more at BleepingComputer
A compromised customer-support vendor allowed attackers to steal names, emails, support chats, IP addresses, partial billing details and a small number of scanned government-issued IDs from users who contacted Discord.
Discord’s core systems and full payment data remain secure.
Key Details
Next Steps
Read more at Cybersecurity News, BleepingComputer
Red Hat confirmed a security incident after a threat actor accessed its self-managed GitLab instance used for consulting engagements, allegedly compromising 28,000 private repositories, including customer engagement reports. The company says core services and software supply chain remain intact, but the breach carries significant supply chain and credential risks for consulting clients.
Key Details
Read more at Dark Reading, Centre for Cybersecurity Belgium
The UK is underwriting up to £1.5 billion of a commercial loan to Jaguar Land Rover under its Export Development Guarantee program, to restore its supply chain after a catastrophic cyberattack forced the automaker to halt production. This allows the company to secure a significantly larger loan, typically at better terms, than it could obtain on its own after a significant event like JLR is currently dealing with.
Key Details
Next Steps
Read more at Bleeping Computer
A cyberattack has crippled Asahi’s Japanese operations since Monday, forcing shutdowns of order processing, shipping and call centers and leaving most of its 30 domestic factories idle. The incident has also pushed back the mid-October launch of a dozen new beverages and consumer goods, raising risks of supply shortages and revenue loss for Japan’s leading brewer.
Key Details
Next Steps
Read more at The Record, Financial Times, TBS News, Asahi Statement, Nikkei
LayerX researchers have revealed “CometJacking,” a prompt-injection attack that hijacks Perplexity’s Comet AI browser via a single malicious URL click, instructing the agent to pull Gmail, Calendar, and other connected data and exfiltrate it using Base64 encoding. This exploit bypasses Comet’s memory-separation safeguards without stealing credentials.
Key Details
Next Steps
Read more at The Hacker News, LayerX Security
Subscribe to receive weekly cybersecurity news summary to your inbox every Monday.