Key Takeaways:
- RansomHub ransomware group has claimed responsibility for a cyber-attack on Luxshare, an electronics manufacturer of Apple, Nvidia, LG, Tesla, and others.
- A dark-web threat actor has leaked an alleged database belonging to Under Armour, a US sportswear company, affecting 72 million customer records.
- Researchers have discovered an indirect prompt-injection flaw in Gemini’s Google Calendar assistant that bypassed Calendar privacy controls via a malicious invite description.
- Advanced language models such as GPT-5.2 and Opus 4.5 have been observed generating working exploits for a previously unknown zero-day vulnerability in QuickJS, a JavaScript interpreter.
- Three high severity vulnerabilities have been disclosed in mcp-server-git, Anthropic’s Git MCP server, enabling path traversal and argument injection exploitable via prompt injection.
Introduction to Recent Cyber Attacks
The latest Threat Intelligence Bulletin has revealed several significant cyber-attacks and breaches that have occurred in the past week. One of the most notable attacks was carried out by the RansomHub ransomware group, which claimed responsibility for a cyber-attack on Luxshare, an electronics manufacturer of Apple, Nvidia, LG, Tesla, and others. The threat actors claimed to have accessed 3D CAD models, circuit board designs, and engineering documentation, although the company has not yet confirmed the breach. Check Point Threat Emulation and Harmony Endpoint provide protection against this threat, and users are advised to take necessary precautions to prevent such attacks.
Recent Data Breaches
In addition to the RansomHub attack, several other data breaches have been reported in the past week. A dark-web threat actor has leaked an alleged database belonging to Under Armour, a US sportswear company, affecting 72 million customer records. The claimed exposed data includes names, email addresses, genders, dates of birth, and addresses. Furthermore, Raaga, an India-based music streaming platform, has experienced a data breach involving 10.2 million user records, reportedly exfiltrated in December and later advertised on criminal forums. Exposed details include names, emails, demographics, locations, and passwords stored with unsalted MD5 hashes, raising credential stuffing and phishing risks. Germany’s Dresden State Art Collections (SKD) has also confirmed a cyberattack that resulted in widespread disruption to its digital infrastructure and communications.
AI-Related Threats
Artificial intelligence (AI) has been increasingly used by threat actors to carry out sophisticated attacks. Researchers have discovered an indirect prompt-injection flaw in Gemini’s Google Calendar assistant that bypassed Calendar privacy controls via a malicious invite description. Additionally, a web attack technique has been uncovered where hidden prompts in benign pages call LLM API to generate polymorphic malicious JavaScript at runtime, enabling phishing and credential theft while evading signature-based detection and network filtering by leveraging AI service domains. Advanced language models such as GPT-5.2 and Opus 4.5 have been observed generating working exploits for a previously unknown zero-day vulnerability in QuickJS, a JavaScript interpreter, including in hardened environments where automated systems can produce functional attack code with little to no human intervention.
Vulnerabilities and Patches
Several vulnerabilities have been disclosed in the past week, including three high severity vulnerabilities in mcp-server-git, Anthropic’s Git MCP server, enabling path traversal and argument injection exploitable via prompt injection. Zoom has fixed a critical command injection flaw in Zoom Node Multimedia Routers, used in Meeting Connector and Meetings Hybrid deployments, which enables participant remote code execution in versions before 5.2.1716.0. Fortinet has confirmed active exploitation of a FortiCloud SSO auth bypass on fully patched FortiGate firewalls, tied to CVE-2025-59718 and CVE-2025-59719. Attackers are logging in via crafted SAML messages, creating persistent accounts, enabling VPN access, and extracting firewall configurations.
Threat Intelligence Reports
Check Point Research has revealed that VoidLink, a recently exposed cloud-native Linux malware framework, is authored almost entirely by AI, likely under the direction of a single individual. The malware was produced predominantly through AI-driven development, reaching the first functional implant in under a week. Check Point Research has also identified an ongoing phishing campaign associated with KONNI, a North Korean–linked threat actor active since at least 2014, which targets software developers and engineering teams across the Asia-Pacific region. Additionally, a Microsoft Teams phishing campaign has been observed, abusing guest invitations and finance-themed team names to mimic billing notices, targeting US-based organizations across manufacturing, technology, and education. Researchers have also revealed a new ransomware family, Osiris, that blends legitimate Windows tools with custom malware to infiltrate networks and deploy encryption.
