Cyber Security Headlines MANGO discloses data breach, Jewelbug infiltrates Russian IT network, nation-state behind F5 attack?
Oct 16, 2025
MANGO discloses a data breach linked to a compromised marketing vendor, exposing customer data while financials remain secure. The threat group Jewelbug stealthily infiltrates a Russian IT provider for five months. F5 faces a major breach by a nation-state actor, prompting emergency directives for federal patching. Additionally, vulnerabilities in Windows Server updates cause Active Directory sync issues, while leaky VS Code extensions risk exposing sensitive credentials. Lastly, Whisper 2FA phishing attempts surge, highlighting evolving security threats.
AI Snips
Chapters
Transcript
Episode notes
Vendor Breach Exposed Customer Contact Data
- Mango's customer data exposure came from an external marketing vendor breach, not its internal systems.
- The company limited impact to contact and location fields and notified Spain's Data Protection Authority.
Long-Term Supply-Chain Style Intrusion
- Jewelbug targeted a Russian IT provider for five months, accessing code repos and build systems.
- The group used stealthy techniques like cloud abuse, renamed debug tools, DLL sideloading, and credential dumping.
Nation-State Breach Steals F5 Source Code
- A nation-state actor had long-term access to F5 systems and stole large IP and undisclosed vulnerability details.
- CISA mandated urgent patching and reporting because the data poses a significant federal network threat.