Hackers have exploited a vulnerability in the Salesloft Drift application to steal OAuth tokens and access Salesforce data, leading to the exposure of sensitive customer information across several major companies.

TransUnion has reported a new security breach to law enforcement, stating that hackers gained access through a third-party application used to store customer data for its U.S. consumer support operations.

A new report from AI startup Anthropic warns that cybercriminals are weaponizing AI assistants in increasingly sophisticated ways. In one case, attackers used Anthropic’s own coding tool, Claude Code, to carry out nearly every stage of a large-scale data extortion campaign targeting at least 17 organizations across multiple industries.

Mobile security firm Zimperium has issued an alert about a dangerous evolution in mobile malware. Its zLabs research team discovered a new variant of the Hook banking trojan, dubbed Hook Version 3, which goes far beyond stealing banking credentials. The malware now combines features of ransomware, spyware, and traditional bank-hacking tools, giving attackers sweeping control over infected Android devices.

In July, the Basel Committee on Banking Supervision (BCBS) released its final disclosure framework for the prudential treatment of cryptoassets, ahead of the new standard (SCO60) taking effect in January 2026. While the framework aims to provide regulatory clarity, it has been met with resistance from leading industry bodies that argue the rules do not align with the realities of crypto-related risks.

The Canadian Investment Regulatory Organization (Ciro) has confirmed it detected a cybersecurity threat on August 11, prompting the regulator to proactively shut down certain systems as a precaution. Despite the disruption, Ciro emphasized that all critical functions remained operational and real-time equity market surveillance continued without interruption.

Worldpay, a global leader in payment technology, today announced they are partnering with Trulioo, the leading global digital identity platform, to introduce new safeguards for AI-powered agent-led commerce.