Cyber Security Headlines JavaScript injection campaign, solar power vulnerabilities, SIM swap lawsuit
14 snips
Mar 28, 2025 In a shocking turn of events, 150,000 websites have fallen victim to a JavaScript injection attack, leading to fraudulent gambling operations. Meanwhile, critical vulnerabilities have been uncovered in solar power systems, raising concerns about security in renewable energy. T-Mobile faces a hefty $33 million payout over a SIM swap lawsuit, highlighting the ongoing threats in digital identity theft. The discussion also covers alarming flaws in major software, including Microsoft Office and Firefox, urging immediate action from cybersecurity professionals.
AI Snips
Chapters
Transcript
Episode notes
JavaScript Injection Campaign
- 150,000 websites were compromised by JavaScript injection, primarily WordPress sites.
- Threat actors injected malicious JavaScript via iframes and CSS to redirect users to Chinese gambling platforms.
Solar Power System Vulnerabilities
- Vulnerabilities were found in solar power systems from SunGro, GrowWatt, and SM.
- These vulnerabilities could threaten electrical grids, impacting internet connectivity, cloud services, and mobile app control.
T-Mobile SIM Swap Lawsuit
- T-Mobile paid $33 million in a SIM swap lawsuit involving a cryptocurrency theft.
- An investor's phone was hijacked, leading to the theft of $38 million worth of Bitcoin.