On 30th June 2025, Qantas Airlines suffered a massive data breach affecting over 6 million customers. Personal information like names, emails, phone numbers, and frequent flyer details were exposed in a cyber-attack targeting third-party vendor systems. In this video, we break down exactly what happened, how cybercriminal groups like Scattered Spider are exploiting vulnerabilities, and what this means for you as a customer and for the airline industry.
In this article, we’ll analyze how threat actors exploit TLS to hide their operations and how defenders can use exposed certificate metadata to detect them. We will discuss: Let’s get started! (This article is part of our Threat Hunting with Splunk series. We’ve updated it recently to maximize your value.)
See how CrowdStrike Falcon for XIoT delivers real-time visibility, AI-powered risk prioritization with ExPRT.AI, and safe protection for connected assets across industrial, IoT, and OT environments. This demo shows how Falcon discovers hard-to-reach XIoT assets in minutes, re-scores vulnerabilities with real attacker context, and helps you focus on what matters most, all while maintaining operational continuity.
XWorm, a popular and actively distributed remote access trojan (RAT), has steadily evolved into a versatile tool in the cybercriminal toolkit. Known for its robust feature set, ranging from keylogging and remote desktop access to data exfiltration and command execution, XWorm continues to attract threat actors due to its ease of use, modularity, and frequent updates by its developers.
To compete in today’s retail landscape, IT must support new growth strategies while delivering seamless, secure customer experiences. This means enabling rapid store rollouts, digitizing in-store experiences, and connecting cloud-based systems across every location. Customers expect faster, more connected, and more secure interactions at every touchpoint.
Inheritance scams are deceptive tactics used by fraudsters to lure unsuspecting victims with promises of substantial wealth. These scams typically involve false claims of inheritance from unknown individuals or distant relatives, accompanied by requests for fees or personal data for funds to be released. Many victims succumbed to these schemes due to the emotional appeal of unexpected fortune, urgency created by scammers, and the presentation of seemingly legitimate documents of stories.
Ryan Cox, Senior Security Operations Engineer at Revinate, joined Defender Fridays to discuss how to build detection and response processes that scale while maintaining their effectiveness as threats and infrastructure expand.
You asked, and we answered. This episode of the Adversary Universe podcast takes a deep dive into questions from our listeners. What did you want to know? Well, a lot about adversaries, but also about career paths and the threat intel space.