Cyber Security Headlines Fintech foils bank heist, NotDoor backdoor, Salesloft-Drift impact continues drifting
8 snips
Sep 4, 2025 Discover how a fintech firm thwarted a major bank heist linked to a new malware threat called NotDoor. Explore the aftermath of the Salesloft-Drift breach, revealing ongoing impacts on the industry. Delve into a cyber espionage scheme from Iran and the takedown of a counterfeit operations site. Plus, learn about critical Android updates essential for securing devices against growing vulnerabilities. This discussion highlights the evolving landscape of cyber threats and the innovative responses necessary to combat them.
AI Snips
Chapters
Transcript
Episode notes
FinTech Thwarted $130M PIX Heist
- Cybercriminals tried to steal $130 million from Sinqia via Brazil's PIX system using stolen vendor credentials.
- Sinqia halted PIX, recovered some funds, and regulators revoked its PIX access while investigations continue.
Trigger-Activated Backdoor Lowers Detectability
- APT28's NotDoor backdoor sits dormant until a trigger email activates it, increasing stealth and control for operators.
- Trigger-based activation makes detection and continuous monitoring far more difficult for defenders.
Supply Chain Breach Spreads Through OAuth Tokens
- The Salesloft-Drift supply chain breach exposed OAuth tokens that let attackers access multiple vendors' Salesforce instances.
- Cloudflare confirmed extraction of 104 API tokens and several major security firms were affected as the impact continued to grow.