Cybersecurity News Today - 7/3/2025

• U.S. agencies sound Iran alarm: The FBI/NSA/DHS issued a cyber bulletin warning that Iranian-linked hackers remain active and “may potentially target American companies and critical infrastructure” – especially firms tied to Israeli technology and defense (www.reuters.com). The alert notes that even during a ceasefire, Tehran-affiliated groups could still disrupt U.S. utilities, transportation or other critical systems (apnews.com).

• Fake Trump email leak threat: A group using the alias “Robert” claimed to have 100 GB of stolen emails from former President Trump’s associates (e.g. Suzie Wiles, Roger Stone). U.S. officials have dismissed this as a disinformation ploy, calling it a “targeted smear campaign” and vowing legal action against the perpetrators (www.reuters.com) (www.reuters.com).

• Warnings on critical infrastructure: Alongside the Trump-related claims, U.S. agencies (CISA, FBI, NSA) also released an advisory warning that pro-Tehran hacking outfits could attempt cyberattacks on U.S. infrastructure – including power grids, transit systems and defense contractors (apnews.com) (apnews.com). The message emphasizes that such attacks may be launched independently of any military conflict.

• ICC cyberattack contained: The International Criminal Court (in The Hague) detected and contained a “sophisticated, targeted” cyber intrusion late last week (www.reuters.com). This is the ICC’s second major breach in recent years and came amid international controversy after the court issued arrest warrants for leaders like Netanyahu and Putin. The court says it has shut down internet-connected systems and is investigating the incident.

• Airlines targeted by hackers: Cybersecurity firms (Google, Palo Alto Networks) report that the cybercrime gang known as “Scattered Spider” is now striking the aviation and transport sector (www.reuters.com). The group (also called “Muddled Libra”) hit U.S. casinos in 2023 and now appears to be probing airlines worldwide. For example, Hawaii’s Hawaiian Airlines and Canada’s WestJet recently disclosed IT outages; Hawaiian says flights remained on schedule during the incident (www.reuters.com) (www.reuters.com).

• Safety notices for SaaS and insurers: The U.S. Cybersecurity agency CISA warned of a state-linked breach of Commvault’s cloud backup service, exploiting a zero-day (CVE-2025-3928) that risked Microsoft 365 customer data (www.techradar.com). The flaw is now listed as “known exploited” by federal agencies. In related news, insurer Aflac revealed a June attack on its U.S. network that may have exposed policyholder data (www.reuters.com). Aflac says it stopped the intrusion quickly and is assessing the impact.

  
  

Sources: Recent reports from Reuters, AP and tech news outlets (cited above) provide these updates on evolving cyber threats and incidents (www.reuters.com) (www.reuters.com) (www.reuters.com) (www.reuters.com) (www.techradar.com) (www.reuters.com).