Europol Busts 'SIMCARTEL' CaaS Network; Everest Ransomware Claims Collins Aerospace Attack

Publication Date: October 19, 2025

Summary

This cybersecurity brief for October 19, 2025, covers major international law enforcement actions, high-profile ransomware claims, and critical vulnerability disclosures. Key events include the dismantling of the 'SIMCARTEL' Cybercrime-as-a-Service platform in Europe, the Everest ransomware group claiming responsibility for the disruptive Collins Aerospace attack, and Microsoft's revocation of over 200 malicious certificates used by the Vanilla Tempest group. Additionally, CISA has issued warnings for two actively exploited Windows zero-day vulnerabilities, and a critical RCE flaw has been patched in Microsoft WSUS.

Today New Articles

"SIMCARTEL" CaaS Network Busted in Major European Takedown

A coordinated international law enforcement operation codenamed "SIMCARTEL" has dismantled a massive Cybercrime-as-a-Service (CaaS) platform operating out of Latvia. The operation, involving authorities from Austria, Estonia, and Finland with support from Euro...

Silver Fox APT Expands Reach, Targets Japan and Malaysia with New RAT

The Chinese-nexus cybercrime group known as "Silver Fox" has expanded its targeting beyond China and Taiwan to include organizations in Japan and Malaysia. Researchers report the group is using phishing emails with malicious PDFs to distribute the HoldingHands...

Panera Bread Reaches $2.5M Settlement for 2024 Data Breach

Panera Bread has agreed to a $2.5 million settlement to resolve a class-action lawsuit related to a data breach that occurred in March 2024. The breach exposed the personal information, including names and Social Security numbers, of approximately 147,321 indi...

Volkswagen Probes 8Base Ransomware Attack Claim

The Volkswagen Group is investigating a claim from the 8Base ransomware group that it has breached the automotive giant and stolen sensitive data. 8Base, a data extortion group linked to Phobos ransomware, posted a trove of allegedly stolen files on its dark w...

Article Updates

'Mysterious Elephant' APT Evolves, Deploys Custom Tools in Espionage Campaign

Update:New intelligence from Kaspersky reveals the 'Mysterious Elephant' APT has intensified its cyber espionage in 2025, with Bangladesh emerging as its second most-attacked nation after Pakistan. The group, active since at least 2023, employs a hybrid toolkit, repu...

Microsoft Patches 172 Flaws, Including Three Actively Exploited Zero-Days

Update:New analysis provides in-depth technical details for CVE-2025-59287, the critical WSUS RCE. The vulnerability stems from unsafe deserialization of an AuthorizationCookie object via the GetCookie() endpoint, leveraging a hardcoded AES-128-CBC key. An unauthenti...