Here is the most recent Cybersecurity news for the past week:
🇪🇺 European Commission Confirms Data Breach After Europa.eu Hack
The European Commission has confirmed a significant data breach affecting its Europa.eu web platform following a cyberattack claimed by the ShinyHunters extortion gang. The attackers reportedly compromised an AWS account, stealing over 350 GB of data—including databases, contracts, and confidential documents—though the Commission stated its internal systems remained unaffected.
🚨 F5 BIG-IP Vulnerability Reclassified as RCE and Actively Exploited
F5 has reclassified a previously disclosed DoS vulnerability (CVE-2025-53521) in its BIG-IP application security line as a critical Remote Code Execution (RCE) flaw with a maximum 9.8 CVSS score. CISA has added the bug to its Known Exploited Vulnerabilities catalog after observing active, in-the-wild exploitation attempts targeting BIG-IP REST API endpoints to deploy malicious payloads.
🤖 AI-Powered ‘DeepLoad’ Malware Steals Credentials and Evades Detection
A new malware strain dubbed “DeepLoad” is utilizing AI-generated junk code and ClickFix social engineering tactics to bypass endpoint detection and response tools. The malware drops a standalone stealer that instantly captures stored browser passwords and live keystrokes, making it highly difficult to contain even if the primary attack chain is successfully blocked.
🔓 Critical Vulnerability in OpenAI Codex Exposed GitHub Tokens
Security researchers from BeyondTrust disclosed a critical vulnerability in OpenAI Codex that could have allowed attackers to extract and abuse sensitive GitHub authentication tokens. By exploiting improper input sanitization in how Codex processed GitHub branch names, attackers could inject arbitrary commands and retrieve tokens, though OpenAI rapidly patched the issue following responsible disclosure.
https://www.securityweek.com/critical-vulnerability-in-openai-codex-allowed-github-token-compromise
🏥 Healthcare Software Firm CareCloud Probes Potential Patient Data Leak
CareCloud, a major healthcare software provider, has notified the SEC of a network disruption indicating that a hacker temporarily gained access to one of its electronic health record environments. While the system was taken offline and restored within eight hours, the company determined the incident to be material due to the sensitivity of the patient data potentially exposed during the breach.
