Weekly News Roundup

Weekly News Roundup
June 6, 2025 | Cybersecurity
By 63SATS Cybertech News Desk

This week’s global cyber pulse spans critical infrastructure, finance, healthcare, and e-commerce. Uttar Pradesh is boosting cooperative bank security via CBS cloud systems, while Karnataka deploys AI to tackle misinformation. Ransomware attacks crippled Kettering Health and Covenant Health, exposing vulnerabilities in medical systems. LexisNexis and The North Face disclosed major breaches, while phishing scams hit Booking.com users.

NFT airdrop scams and insider-driven Coinbase leaks show evolving crypto threats. Australia mandates ransomware reporting, and global agencies shut down malware-testing sites. As cyber risks deepen across sectors, AI-driven defenses and regulatory measures are becoming urgent tools in safeguarding digital ecosystems.

UP Co-op Banks Get Cybersecurity Upgrade

Uttar Pradesh is giving its rural banking ecosystem a digital facelift. In a major move, 51 cooperative banks, including UP Cooperative Bank, are being onboarded onto a cloud-based Core Banking System (CBS). Tech giants TCS and Wipro will implement key cybersecurity and data protection frameworks. NABARD will provide technical and financial support. The initiative aims to create a secure, transparent, and resilient infrastructure for millions of rural customers.

Kettering Health Ransomware Attack Exceeds 940 GB

Ohio’s Kettering Health network is still reeling from a devastating ransomware attack. The Interlock group has claimed responsibility, stating it exfiltrated over 940 GB of sensitive patient data. Operations across multiple hospitals and clinics were disrupted, raising serious concerns about the vulnerability of U.S. healthcare infrastructure to cyber threats.

Ecopetrol Investigates Insider Data Leaks
ecopetrol 63 Sats Cybersecurity India

Colombian oil major Ecopetrol uncovered 29 internal breaches during a cybersecurity review in May. The leaks, believed to involve insiders, violated corporate ethics and governance protocols. CEO Ricardo Roa, who has received homophobic death threats, publicly addressed the incident, highlighting insider threats in critical national infrastructure.

Booking.com Phishing Campaign Spreads Malware
Booking 63 Sats Cybersecurity India

A phishing campaign posing as Booking.com has targeted hotel staff across the globe. Using fake CAPTCHA pages powered by a tool called “ClickFix,” attackers trick victims into executing malicious scripts. Malware strains such as XWorm RAT, DanaBot, and Pure Logs Stealer have been widely deployed, marking a new evolution in hospitality-focused social engineering.

FBI Warns of NFT Airdrop Scams

The FBI has sounded the alarm on scams exploiting NFT airdrops on the Hedera Hashgraph network. Fraudsters use fake giveaways to trick users into compromising their crypto wallets. Originally a marketing tool, airdrops have now become a sophisticated method for cyber theft and fraud.

Karnataka Deploys AI to Tackle Cybercrime

Karnataka is rolling out an AI-powered platform called the Information Disorder Tackling Platform to combat cyber fraud and misinformation. Developed by the Department of Electronics and IT, the system uses agentic AI to monitor and respond to digital threats in real time, placing Karnataka among the first Indian states to operationalize AI for digital policing.

CCTV Makers Push Back Against India’s Security Rules

Global surveillance equipment manufacturers are resisting new Indian regulations requiring them to submit hardware, software, and source code for government testing. Companies warn the rules could disrupt global supply chains and strain relations with the Modi administration, raising fears of regulatory overreach.

The North Face Confirms Credential-Stuffing Attack

Outdoor apparel brand The North Face confirmed a credential-stuffing attack that compromised customer data in April. Hackers used previously leaked credentials to access user accounts. The company is urging immediate password resets and enhanced security measures for online shoppers.

LexisNexis Data Breach Hits Over 364,000 People
63 Sats Cybersecurity India

LexisNexis Risk Solutions reported a data breach impacting more than 364,000 individuals. Exposed data includes names, Social Security numbers, driver’s license details, and contact information. The breach originated through unauthorized access to a third-party development tool and dates back to December 2024.

Global Crackdown Dismantles Malware Testing Sites

In a coordinated international operation dubbed “Operation Endgame,” authorities dismantled four malware-testing websites—AVCheck.net, Crypt.guru, Cryptor.live, and Cryptor.biz. These platforms allowed cybercriminals to test malware against antivirus systems. The takedown marks a major step in global cybercrime disruption efforts.

Cyberattack Disrupts Hospitals Across Northeastern U.S.

A cyberattack on Covenant Health forced data system shutdowns at hospitals in Maine and New Hampshire. The breach impacted patient services and care delivery. Covenant Health is working to restore systems and prevent further damage across its six-state healthcare network.

Australia Mandates Ransomware Payment Reporting
australia ransomware 63 Sats Cybersecurity India

Under its new Cyber Security Act, Australia now requires companies with turnovers above AUS $3 million to report ransomware payments within 72 hours. The regulation seeks to enhance transparency, track cyber threats, and curb criminal profit chains in ransomware attacks.

ConnectWise Confirms Nation-State Attack

IT software provider ConnectWise has confirmed a state-sponsored cyberattack on a small number of its ScreenConnect customers. Working with forensic experts at Mandiant, the firm has notified affected clients and is bolstering defenses against future targeted intrusions.

Coinbase Hit by Insider Breach Involving Support Vendor
Coinbase breach 63 Sats Cybersecurity India

Coinbase disclosed a data breach affecting 69,000 users after support staff at Indian outsourcing firm TaskUs were bribed to leak client information. The breach could cost the exchange up to $400 million and has triggered major layoffs at TaskUs