BMC Daily Cyber News

This is today’s cyber news for 2025-09-29. A busy slate led by Asahi’s nationwide logistics pause after a cyberattack, a Harrods third-party breach affecting hundreds of thousands of shoppers, and the UK’s rare £1.5B loan guarantee to steady Jaguar Land Rover after a crippling incident. We cover edge-device pressure with Akira ransomware exploiting a SonicWall flaw, plus a rogue npm package (“postmark-mcp”) that abused Model Context Protocol plumbing to quietly copy emails. Mid-brief, we track LLM-crafted SVG phishing, Ukraine police impersonation lures, insider recruitment by a ransomware crew, teen espionage arrests in the Netherlands, and the DarkCloud infostealer’s comeback.

You’ll also hear government warnings to retire end-of-life Cisco ASA gear, the record “Bitcoin Queen” conviction, WestJet’s breach notifications to U.S. residents, the slow march of U.S. IoT labeling amid rising attacks, and an “EvilAI” malware theme hiding behind fake productivity tools. We close with election-period targeting in Moldova, real-world AI adoption inside SOCs, mixed results on AI-written vulnerability checks, privacy concerns with Tile trackers, and OpenAI’s safety-model routing. Designed for leaders, defenders, and builders—available at DailyCyber.News