CyberWatch Weekly: Top 3 Cybersecurity News from June 1st Week

As cyber threats escalate worldwide, businesses and governments alike are facing increasing pressure to fortify their digital defenses. This week, a string of incidents underscores how both state-backed and independent threat actors are exploiting human error, technical flaws, and outdated systems. From targeted attacks in Eastern Europe to voice-based scams in corporate environments and payment system failures in retail, the urgency to act has never been greater. These stories reveal not just technical vulnerabilities, but systemic ones, in awareness, investment, and infrastructure. Let’s take a closer look at this week’s top cybersecurity headlines.

Bulgaria Faces Escalating Cyber Threats Amid Global Tensions

Amid rising global instability, Bulgaria is witnessing a surge in cyberattacks targeting government bodies and critical sectors like energy, finance, and defense. State-sponsored groups, notably Russia’s Fancy Bear, are behind many attacks, aiming to steal data, disrupt services, or spread disinformation. Independent hackers, often using phishing, target financial assets and cryptocurrencies. These threats have intensified with the adoption of AI tools to create fake news and manipulate public perception. The vulnerability largely stems from a lack of cybersecurity resources in both the public and private sectors. SANS, Bulgaria’s national security agency, has responded with real-time monitoring, personnel training, and coordinated recovery efforts. Still, underfunded institutions remain at high risk.

To address the escalating threat, experts urge increased investment in cybersecurity talent, robust system audits, and public awareness. International cooperation and AI-driven defense mechanisms are also critical to protect national infrastructure from increasingly sophisticated cyber threats.

Source: Novinite

Cybercriminals Using Fake IT Support Calls to Extort Companies, Steal Data

A cybercrime group known as UNC6040 has stolen sensitive data from around 20 companies by posing as IT support and tricking employees into installing malicious software. According to Google’s Threat Intelligence Group, attackers impersonated Salesforce personnel and convinced staff over phone calls, known as vishing, to download a tainted version of Salesforce Data Loader. This software, commonly used by developers to manage large data sets, was weaponized to grant attackers deep access to corporate Salesforce environments. After months of undetected data extraction, the group would later demand ransom, suggesting possible coordination between separate theft and extortion units. No vulnerabilities in Salesforce itself were exploited, humans, not systems, were targeted.

The attack highlights the growing threat of voice-based social engineering and underscores the need for robust employee training. Organizations must raise awareness about phishing in all its forms, enforce strict software download policies, and monitor access to critical data environments.

Source: Tech Radar

H&M Payment Systems Down Amid Cyber Risk Spike

H&M stores across the UK experienced significant in-store payment failures, leaving customers unable to make purchases for several hours. While the company cited a technical glitch, the incident comes amid a broader trend of cyberattacks on major retailers, raising concerns about digital infrastructure vulnerabilities. The issue may have stemmed from weak system resilience or third-party dependencies often exploited in retail cyber incidents. This disruption follows recent cyberattacks on retailers like M&S, Co-op, Adidas, and Cartier, where customer data was compromised. Such incidents highlight how cybercriminals increasingly target payment systems and customer databases for disruption or theft.

To prevent future occurrences, experts recommend stronger cybersecurity protocols, regular audits, employee training, and resilient system architecture. Customers are also becoming cautious, with many now preferring brands with robust data protection measures. Retailers must act fast to restore trust and reduce exposure to evolving digital threats.

Source: TheIndustry.fashion 

Conclusion

This week’s incidents reveal a troubling pattern: cyberattacks are growing more deceptive, persistent, and global. Whether through social engineering, technical disruptions, or geopolitical motives, the threats are evolving. Strengthening digital resilience demands not only stronger technology, but also informed people, smarter policies, and international cooperation to protect critical systems and data.

Stay vigilant and informed, tune in next week for more updates in InfosecTrain’s CyberWatch Weekly!