CyberWatch Weekly: Top 3 Cybersecurity News from July 5th Week

This week’s cybersecurity landscape has been shaken by a series of sophisticated digital assaults targeting critical infrastructure and popular platforms. From grounded flights in Russia to compromised games on Steam and service outages in France, the scope and scale of these incidents underscore an alarming trend in cyber warfare and digital espionage. Airlines, gamers, and telecom customers alike faced unexpected disruptions and privacy risks. While each breach differs in method and motive, all point to vulnerabilities that demand urgent attention. In this roundup, we break down the top cybersecurity headlines of the week.

Chaos at Aeroflot: Cyberattack Causes Widespread Flight Cancellations Across Russia

A large-scale cyberattack on Aeroflot disrupted operations on Monday, leading to the cancellation of over 100 flights. The attack was claimed by Ukrainian hacker group Silent Crow and Belarusian hacktivists Cyber-Partisans. It targeted Aeroflot’s internal IT systems, which are crucial for flight scheduling, communication, and customer services. The attackers reportedly exploited vulnerabilities to gain long-term access, exfiltrating sensitive customer and internal data over several months. This breach is seen as a strategic retaliation linked to Russia’s ongoing war in Ukraine and Belarus’s alignment with the Kremlin. Aeroflot’s subsidiaries, Rossiya and Pobeda, were also affected, causing widespread delays, particularly at Moscow’s Sheremetyevo Airport. Experts believe recovery could cost tens of millions of dollars.

To prevent future incidents, airlines must patch known vulnerabilities, conduct regular security audits, and improve employee awareness of cyber risks. Governments should also invest in defensive cyber capabilities to protect critical infrastructure from politically motivated attacks

Source: SecurityWeek

Steam Users at Risk: Malware in Games Like “Chemia” Harvests Crypto and Sensitive Data

A new cyber threat has emerged on Steam’s Early Access platform, where the survival game Chemia was found to be infected with malware designed to steal cryptocurrency and personal data. According to cybersecurity firm Prodaft, hackers from EncryptHub (also known as Larva-208) embedded three malware strains, Hijack Loader, Fickle Stealer, and Vidar Stealer, into the game. These tools allow attackers to hijack devices, access crypto wallets, and extract sensitive information from browsers, password managers, and apps. Launched on July 22, Chemia was quickly removed after the malware was discovered. The attackers reportedly managed the campaign via Telegram, enabling real-time control and data theft. This incident follows similar malware infections found in other Steam Early Access games earlier this year, raising concerns over Steam’s vetting process.

To avoid such threats, users should verify the legitimacy of games before downloading, avoid third-party mods, and install robust antivirus software. Platforms like Steam must enhance security protocols to prevent repeated breaches that jeopardize user safety and digital assets.

Source: Decrypt

Major Cyberattack Strikes Orange, France’s Biggest Telecom Provider

Orange, France’s leading telecommunications company, confirmed a cyberattack targeting one of its internal systems, causing service disruptions primarily for French corporate and consumer clients. The breach, detected last Friday, prompted immediate containment efforts by Orange Cyberdefense, the firm’s cybersecurity arm. While the exact nature of the attack remains undisclosed, Orange stated there is no evidence so far of any customer or company data being compromised. The telecom giant, which serves over 290 million users across Europe and Africa, has filed a complaint and notified relevant authorities, though further details remain confidential for security reasons. This incident comes shortly after France’s cybersecurity agency ANSSI warned of increasing state-sponsored cyber threats against the telecom sector. In its latest report, ANSSI noted repeated intrusions aimed at espionage, including the interception of communications through core network compromises and satellite system breaches. Orange’s swift response may have limited further damage, but the breach underscores growing cybersecurity risks to critical infrastructure.

Customers are advised to stay alert, while broader concerns mount over potential geopolitical links and persistent vulnerabilities in telecom networks.

Source: The Record

Conclusion

These incidents highlight the growing sophistication and impact of cyberattacks on everyday life, from travel delays to data theft. As threat actors evolve, both organizations and users must prioritize digital hygiene and resilience. Alertness, proactive defense, and public awareness remain key in countering the rising wave of complex and frequent cyberattacks.

Stay vigilant and informed, tune in next week for more updates in InfosecTrain’s CyberWatch Weekly!