CyberWatch Weekly: Top 3 Cybersecurity News from May 5th Week

As cybercrime grows increasingly sophisticated, recent incidents highlight the urgent need for stronger digital awareness and security infrastructure. From online rental scams exploiting public trust to state-sponsored hacking campaigns and data breaches at global retailers, individuals and organizations alike face escalating threats. This week’s stories, from a Panchkula man duped in a rental scam, to Russia’s targeted cyber offensives, and Adidas’s third-party data breach, underscore how vulnerabilities, both personal and systemic, are being manipulated. Let’s dive into this week’s top cybersecurity headlines and explore what went wrong and how it can be prevented.

Online Rental Scam Costs Panchkula Man ₹2.2 Lakh

A 62-year-old Panchkula resident was defrauded of ₹2.2 lakh after listing his property for rent online. The scam occurred when a caller, posing as an army official, convinced the victim he’d receive ₹29,000 as advance rent through an “army merchant account.” The victim was tricked into entering a Google Pay code, unknowingly authorizing large transfers from his and his wife’s bank accounts. This scam happened due to a lack of digital payment awareness and trust in false identities. Cybercriminals increasingly exploit online platforms and impersonation tactics to steal money. Panchkula cybercrime police have registered an FIR, and investigations are ongoing. Stronger verification processes and public awareness are key to curbing such scams.

To prevent such fraud, individuals must verify identities, avoid sharing codes or OTPs, and use secure payment methods. Authorities recommend reporting suspicious activity immediately and promoting digital literacy.

Source: Hindustan Times

Russian Military Intelligence Behind ‘Malicious Cyber Campaign,’ NCSC Confirms

Russia’s GRU Unit 26165 has conducted a prolonged cyber campaign targeting Western tech and logistics firms, especially those aiding Ukraine, to gather intelligence and disrupt operations. The campaign, active since 2022, primarily used spear-phishing, a tactic that sends deceptive emails to specific individuals to gain unauthorized access to sensitive systems. Around 10,000 surveillance cameras near Ukrainian borders were also hacked to track aid shipments. This operation reflects Russia’s strategic intent to undermine Ukraine’s support network.

To counter such threats, experts advise enhanced cyber hygiene: regular staff training, two-factor authentication, system patching, and advanced threat detection tools.

Source: Public Technology

Adidas Confirms Cyberattack, Shoppers’ Data Stolen

Adidas recently confirmed a cyberattack that exposed customer contact details through a third-party customer service provider. While payment and password data remain secure, those who interacted with Adidas’s support services may be affected. The breach reflects rising cyber threats against major retailers, with similar recent attacks hitting Marks & Spencer, Co-op, and Harrods. The attack likely occurred due to vulnerabilities in external vendor systems. Adidas took immediate containment steps and is investigating with cybersecurity experts.

To prevent similar incidents, companies must conduct thorough security audits of all vendors, enforce strict access controls, and implement continuous monitoring. Strengthening data encryption and employee training on cybersecurity best practices are also essential to reduce exposure and quickly detect threats in complex supply chains.

Source: Metro

Conclusion

This week’s incidents serve as stark reminders that cyber threats are evolving, from personal scams to global espionage and corporate breaches. Whether through social engineering, state-sponsored hacking, or third-party vulnerabilities, the risks are real and growing. Strengthening digital literacy, improving security protocols, and staying alert are essential steps forward.

Stay vigilant and informed, tune in next week for more updates in InfosecTrain’s CyberWatch Weekly!