Cyber Security Headlines NFC fraud reappears, Canada government breach, Zoom’s critical flaw
8 snips
Aug 15, 2025 A surge in NFC relay fraud linked to the Phantom Card trojan is targeting Brazilian banks. Meanwhile, Canada's House of Commons faces a cyberattack due to a Microsoft vulnerability. Zoom addresses a critical flaw in its Windows client enabling privilege escalation, prompting an advisory. On another front, the Italian government warns about identity document theft, and New York files a lawsuit against Zelle for inadequate security measures. The podcast also delves into new phishing strategies affecting companies like Booking.com.
AI Snips
Chapters
Transcript
Episode notes
NFC Relay Malware As A Service
- NFC relay malware is reappearing as a commercialized service that targets banking customers via Android trojans called Phantom Card.
- Attackers distribute fake Play pages and use deceptive reviews to trick victims into installing relay-capable apps.
House Of Commons Data Breach From MS Flaw
- Canada's House of Commons suffered an information breach after a Microsoft vulnerability was exploited to access a device-management database.
- The breach exposed employee names, titles, locations, and emails while the actor remains unidentified.
Patch Zoom Windows Clients Now
- Patch affected Zoom Windows clients immediately to mitigate a CVE with a 9.6 CVSS that allows privilege escalation via network access.
- Treat untrusted search path issues seriously and update clients per Zoom's advisory listed in the show notes.