CyberWatch Weekly: Recent Cyber Incidents and Security Updates Around the World

This week’s cyber landscape saw escalating threats targeting institutions that form the backbone of education, governance, and enterprise security. From the University of Pennsylvania’s phishing-led data breach to the U.S. Congressional Budget Office’s suspected foreign-backed intrusion, and the alarming unification of three major hacker groups into the Scattered LAPSUS$ Hunters collective, the incidents reveal how social engineering, credential theft, and organized cybercrime continue to evolve. These events highlight the growing need for collaboration, vigilance, and proactive defense. Here’s a look at this week’s top cybersecurity headlines.

 University of Pennsylvania Confirms Data Breach After Phishing Attack

The University of Pennsylvania confirmed a major data breach last week after hackers infiltrated its systems and sent fraudulent emails from official university accounts to alumni and affiliates. The attack, initially dismissed as a hoax, was later verified when the university admitted that sensitive data had been stolen. According to the statement, the breach occurred through a social engineering attack, where attackers tricked individuals into revealing credentials, possibly via phishing. Reports suggest that while most users had multi-factor authentication (MFA) enabled, some senior officials were exempt, potentially creating weak points that hackers exploited. The hacker, claiming financial motives, reportedly accessed donor records, bank receipts, and personal data. Similar university breaches, such as the one at Columbia earlier this year, point to growing cyber risks in higher education.

To prevent such incidents, experts recommend mandatory MFA for all users, regular phishing simulations, and stronger internal access controls to minimize human error, the weakest link in most cyberattacks.

Source: TechCrunch

Three Infamous Hacker Groups Unite to Form ‘Scattered LAPSUS$ Hunters,’ Raising Global Cybersecurity Concerns

A major shift in the cybercrime landscape has emerged with the formation of Scattered LAPSUS$ Hunters (SLH), an alliance of three notorious hacker groups: Scattered Spider, ShinyHunters, and LAPSUS$. This union marks the first time mature cybercriminal groups have merged, aiming to combine their reputations, technical expertise, and resources for greater impact. The consolidation occurred as these groups sought to enhance their visibility and influence following disruptions and bans on online platforms. Using Telegram as their main base, SLH engages in public announcements, proof-of-hack displays, and AI-assisted vishing campaigns to steal credentials and infiltrate enterprise systems like Oracle E-Business Suite and SAP NetWeaver. Security experts say the rise of SLH reflects the increasing professionalization and collaboration within cybercrime networks. To counter this threat, organizations must strengthen multi-factor authentication, conduct employee awareness training, monitor SaaS vulnerabilities, and share real-time threat intelligence. As cybercriminals become increasingly coordinated, defensive unity among global cybersecurity teams becomes equally vital.

Source: Cyber Security News 

Congressional Budget Office Breach Raises National Security Concerns

A suspected foreign-backed cyberattack has targeted the U.S. Congressional Budget Office (CBO), exposing sensitive fiscal research data crucial to shaping national policies. The breach occurred as hackers exploited potential security gaps in the agency’s monitoring systems, possibly through phishing or credential-based intrusions. Experts suggest that the motive was likely to gain insight into confidential economic analyses and legislative projections, which would be valuable intelligence for foreign adversaries. In response, the CBO swiftly contained the breach and introduced enhanced security controls. 

Cybersecurity analysts recommend advanced network defense training and the implementation of multi-layered monitoring tools to detect and mitigate such sophisticated attacks. Strengthening inter-agency collaboration and adopting zero-trust frameworks can further reduce exposure to state-sponsored cyber threats.

Source: ABC News

Conclusion

The latest breaches underscore how human error, lax access controls, and coordinated cyber alliances are reshaping today’s threat environment. Organizations must invest in stronger authentication, continuous monitoring, and workforce training to minimize risks. As cybercriminals unite, so must defenders, through shared intelligence, awareness, and resilient cybersecurity frameworks worldwide.
Stay vigilant and informed, tune in next week for more updates in InfosecTrain’s CyberWatch Weekly!