TransUnion has reported a new security breach to law enforcement, stating that hackers gained access through a third-party application used to store customer data for its U.S. consumer support operations.

Mobile security firm Zimperium has issued an alert about a dangerous evolution in mobile malware. Its zLabs research team discovered a new variant of the Hook banking trojan, dubbed Hook Version 3, which goes far beyond stealing banking credentials. The malware now combines features of ransomware, spyware, and traditional bank-hacking tools, giving attackers sweeping control over infected Android devices.

The Canadian Investment Regulatory Organization (Ciro) has confirmed it detected a cybersecurity threat on August 11, prompting the regulator to proactively shut down certain systems as a precaution. Despite the disruption, Ciro emphasized that all critical functions remained operational and real-time equity market surveillance continued without interruption.

In April, Norway’s Police Security Service (PST) reported that pro-Russian hackers seized control of a dam in Bremanger, western Norway, releasing 500 liters of water per second for four hours before being stopped.

Kaspersky has identified a malware campaign involving the Efimer Trojan, a threat first detected in October 2024 and still active into 2025. This Trojan is designed to steal cryptocurrency, compromise WordPress sites, and spread through torrents and targeted phishing emails.

Visa has announced the launch of its new Cybersecurity Advisory Practice, aimed at helping clients better understand the evolving threat landscape and take proactive steps to protect their businesses.

A new study by Heimdal and FutureSafe reveals that the security tools designed to protect managed service providers (MSPs) are increasingly working against them.