Risky Bulletin Risky Bulletin: Router APIs abused to send SMS spam
Oct 1, 2025
A cybercrime group exploits a router vulnerability to send SMS spam, raising alarms across the tech community. CISA introduces a new support model for local governments to enhance cybersecurity. South Korea elevates its cyber threat level after a data center fire, causing concerns about data outages. Researchers expose how Tile tracking devices leak location data, while the FTC sues Sendit over deceptive messaging practices. Additionally, a malware campaign infects thousands of devices in Italy and Spain, attributed to a Turkish-speaking group.
AI Snips
Chapters
Transcript
Episode notes
Data Centre Fire Raises Cyber Alert
- South Korea raised its national cyber alert to Caution after a data centre fire caused by a lithium backup-battery.
- Officials fear threat actors may exploit the outage while the government migrates to a new data centre.
Be Wary Of Anonymous Messaging Apps
- Monitor apps that monetise anonymity and watch for deceptive paid features identifying senders.
- Note that the FTC alleges Sendit charged users to reveal anonymous senders and generated many messages itself.
Brewery Hit By Disruptive Cyber Attack
- A cyber attack disrupted services at Asahi Group, affecting call centres and shipments but not its broader business.
- No ransomware group has claimed responsibility as domestic operations remained impacted only.