ThreatsDay: SMS blast networks, OpenEMR, npm/PyPI and >600K Roblox breaches

Colleagues, a brief cybersecurity digest highlighting current threats.
- SMS blast networks: three arrested in Canada for fake cell towers and phishing.
- Supply‑chain: malicious npm and PyPI packages (impersonating tanstack and elementary-data) exfiltrate environment variables and keys — rotate secrets and validate dependencies.
- OpenEMR: 38 vulnerabilities, including critical flaws risking mass medical-data leaks — apply patches.
- Large‑scale compromises: over 610K Roblox accounts breached — reassess risks of centralized gaming platforms.
Why it matters: attackers combine legacy bugs with new tactics — basic hygiene and vendor oversight are critical.
What will you change in your security next week?
#cybersecurity #supplychain #infosec #threats


Latest comments
No comments yet.