Salt Typhoon expands, AI-powered ransomware, Anthropic warns of vibe-hacking - Cybersecurity Headlines

Summary5 min read

Cyber Security Headlines – August 28, 2025 Host: Rich Stroffolino (CISO Series)

Episode Overview

This episode provides a rundown of the latest cybersecurity threats and incidents, with a focus on the expansion of Chinese hacking group Salt Typhoon, new AI-powered ransomware, Anthropic’s warnings about AI “vibe-hacking,” attacks on Swedish municipalities, and other timely news impacting critical infrastructure, government, and businesses. The episode also highlights emergent threats from open-source dependencies, remote code execution vulnerabilities, and sophisticated social engineering campaigns.

Key Discussion Points & Insights

1. Salt Typhoon’s Expanded Hacking Campaign

Time: 00:10 – 01:10
Summary:
- An urgent joint advisory warns of the Chinese-linked Salt Typhoon group significantly expanding its cyber operations.
- Over 200 organizations in 80 countries have been targeted, with a notable focus on critical infrastructure.
- Private companies assisting China’s military and state security enabled this wide attack surface, partly by choosing their own targets.
Quote:

"Part of the reason there was a wide spread of victims is that these companies were allowed to choose their own targets." – Rich Stroffolino [00:34]
Key Concern: Broader indiscriminate targeting and long-term access, particularly in U.S. telecom infrastructure.

2. Rise of AI-Powered Ransomware (PromptLock)

Time: 01:10 – 02:11
Summary:
- ESET researchers discovered “PromptLock,” an in-development ransomware leveraging OpenAI’s GPT OSS 20B model via hardcoded prompts.
- Generates dynamic Lua scripts for file discovery, exfiltration, and encryption.
- Not yet practical for wide attack due to technical limitations but foreshadows future AI-driven ransomware risks.
Quote:

"Still, mark your calendar. AI powered ransomware will only get better after today." – Rich Stroffolino [02:05]
Key Concern: This prototype signals an inevitable evolution in ransomware capabilities.

3. Anthropic Warns of “Vibe-Hacking” by Agentic AIs

Time: 02:12 – 03:10
Summary:
- Anthropic’s threat report outlines malicious use of their Claude AI, including full data extortion operations executed via chatbot workflows.
- Techniques included psychological targeting in extortion demands, North Korean IT workers exploiting Claude for job acquisition, and romance scams on Telegram.
- Despite new controls, Anthropic warns these behaviors are likely present across all advanced AI models.
Quote:

“Anthropic created new controls to prevent similar types of abuse... but warned that these examples likely reflect consistent patterns across all frontier AI models.” – Rich Stroffolino [03:04]
Memorable Term: “Vibe hacking” – the tailoring of social engineering attacks using AI’s context awareness.

4. Ransomware Hits Swedish Municipalities via HR Software

Time: 03:11 – 03:56
Summary:
- Meliodota, an HR software used by ~200 Swedish local governments, is the center of a suspected ransomware extortion.
- Sensitive medical and employee data may be at risk; the full scope is still under investigation.
- The Swedish government is preparing new cybersecurity legislation in response.
Quote:

"Several regional governments confirmed that they used Meliodota to handle medical information and other sensitive employee data." – Rich Stroffolino [03:38]

5. Open Source Risk: US DoD Using Russian-Maintained Software

Time: 04:27 – 05:07
Summary:
- The fastglob tool, widely used in government and business software, is maintained solely by a Russian Yandex employee.
- Despite no evidence of tampering, this raises concerns under new Pentagon supply chain guidance.
Quote:

"Over the summer, the Department of Defense issued a memo directing DoD staff to not procure any hardware or software susceptible to adversarial foreign influence." – Rich Stroffolino [05:03]

6. Citrix Vulnerability Under Active Exploitation

Time: 05:08 – 05:32
Summary:
- Citrix released urgent updates for Netscaler ADC and Gateway devices to close a critical remote code execution (RCE) flaw.
- Over 28,000 vulnerable devices online globally; active exploitation confirmed.
- No mitigations or IoCs provided; U.S. agencies had a strict August 28th deadline to patch.
Quote:

"CISA and Citrix found evidence that these are already being exploited by malicious actors." – Rich Stroffolino [05:29]

7. Blind Eagle Group Targets Colombian Government

Time: 05:33 – 05:58
Summary:
- Recorded Future reports Blind Eagle (active since 2018) persists in attacks on Colombian government from May 2024–July 2025.
- Relies on cracked RATs, spear-phishing, and staging via legitimate services.
- Motives remain financial, with increasing operational sophistication.
Quote:

"Blind Eagle has been active since 2018, typically targeting victims in South America for financial gain." – Rich Stroffolino [05:56]

8. Sophisticated NDA-Themed Malware Campaign

Time: 05:59 – 06:41
Summary:
- Checkpoint identified threat actors impersonating business partners via “contact us” forms, sending tailored malware disguised as NDAs to tech and industrial firms.
- Adjusts payload delivery based on victim’s IP and browser, sometimes sending clean files.
- Employs fake domains linked to real U.S. businesses for credibility.
Quote:

"This appears to be a highly tailored approach... seemingly depending on the victim's IP address and browser information." – Rich Stroffolino [06:29]

9. Discussion Teasers and Call to Action

Time: 06:42 – 07:21
Summary:
- Promos for upcoming CISO Series episode on regulatory headaches and compliance impacts on sales.
- Invitation for audience feedback and listener engagement.

Notable Quotes & Memorable Moments

“AI powered ransomware will only get better after today.” – Rich Stroffolino [02:05]
“Vibe hacking” – Anthropic’s term for AI-driven psychological manipulation. [03:04]
"Over 28,000 [Citrix] vulnerable devices online, with about 35% located in the U.S." [05:20]
“Blind Eagle has been active since 2018, typically targeting victims in South America for financial gain.” [05:56]

Key Takeaways

Sophistication and scale in cyber threats are escalating, driven by both state actors (e.g., Salt Typhoon, Blind Eagle) and rapidly evolving technologies (AI-generated malware).
Critical infrastructure and sensitive public sector data remain prime targets.
Open-source dependencies, even simple tools, can introduce unanticipated supplier risk.
AI is now a vector not just for technical exploitation but also for optimized social engineering and extortion.
Prompt patching and legislative response are recurring imperatives in the evolving threat landscape.

For further details on any story, visit CISOseries.com.

Loading summary

Transcript3 lines

[00:00]
A
From the CISO series, it's Cybersecurity Headlines.
[00:07]
B
These are the cybersecurity headlines for Thursday, August 28, 2025. I'm Rich Stroffelino FBI warns of expanded Chinese hacking campaign A joint advisory from five Eyes allied security agencies as well as the Czech Republic, Finland, the Netherlands and Poland warned that efforts by Salt Typhoon have expanded, now hitting at least 200 organizations across 80 countries. These attacks were allegedly aided by three private companies that provided services to China's People's Liberation army and the Ministry of State Security. Part of the reason there was a wide spread of victims is that these companies were allowed to choose their own targets. While Salt Typhoon notably gained long term access to US Telecoms. This advisory warned that the expanded attacks show a broad indiscriminate targeting of critical infrastructure AI powered ransomware is a thing now in it was only a matter of time news Researchers at ESET discovered a work in progress ransomware dubbed Promptlock. This is written in Golang and uses the Openweight GPT OSS 20B model from OpenAI. Prompt Lock uses hard coded prompts to generate LUA scripts dynamically. These scripts are then used for operations like file enumeration, inspection exfiltration and ultimately encryption. The researchers caution that promptlocked in its current form isn't exactly practical, requiring a local install of Ollama with significant hardware resources to actually run, and it also requires poor network segmentation to allow for communication to an external server. Still, mark your calendar. AI powered ransomware will only get better after today Anthropic warns about Vibe hacking the AI company released a new threat intelligence report, which warns that agentic AI systems are being weaponized. The report profiled a threat actor using CLAUDE code to run a data extortion operation end to end that hit at least 17 organizations across a variety of verticals in about a month. Anthropic's Claude chatbot was used for everything from technical consultation to crafting psychologically targeted extortion demands. The report also detailed the use of CLAUDE by North Korean IT workers to get jobs at Fortune 500 US companies and saw ads for romance scams using its chatbot on Telegram, while Anthropic created new controls to prevent similar types of abuse that it profiled in the report. It warned that these examples it found likely reflect consistent patterns of behavior across all frontier AI models. Swedish municipalities impacted by suspected ransomware Miliodota is an HR software provider used by about 200 Swedish municipal governments. Its CEO Eric Hallen confirmed that threat actors are attempting to extort the company saying. Seemingly as part of a ransomware attack, several regional governments confirmed that they used meliodota to handle medical information and other sensitive employee data. Swedish Minister for Civil Defense Carl Oskar Bohlen stressed that the scope of the incident is still under investigation, but said the government plans to present a new cybersecurity bill to Parliament in the near future. And now, thanks to today's episode sponsor Profit Security SOC Analyst Burnout is real. Repetitive tasks, poor tooling and constant alert noise are driving them out. Profit Security fixes this. Their agentic AI analyst handles alert triage and investigation work that 69% of cybersecurity leaders say is the best use for AI in the SoC. Say goodbye to burnout and hello to efficiency. Check out ProfitSecurity AI that's P R O P H E T Security AI US DoD using software maintained by Russians A new report from Hunted Labs found that the open source tool fastglob is solely maintained by a Russian based Yandex employee. This useful tool allows developers to perform actions on a group of files without extra code. It's such a useful tool that the US Department of Defense uses it in at least 30 pre built software packages as well as about 5,000 other projects globally, seeing about 70 million downloads per week. Hunted Lab's researchers found no malicious code in Fast Glob and contacted the DOD's Office of the Chief Information Officer three weeks prior to publishing findings. Over the summer, the Department of Defense issued a memo directing DoD staff to not procure any hardware or software susceptible to adversarial foreign influence. Citric's RCE flaw Under active exploitation, Citrix released updates for netscaler, ADC and gateway devices to address a vulnerability that allows for remote code execution. The Shadow Server foundation reports that There are over 28,000 vulnerable devices online, with about 35% located in the U.S. citrix did not provide any other mitigations, workarounds or indicators of compromise. CISA and Citrix found evidence that these are already being exploited by malicious actors and and the flaw has been added to the known exploited vulnerabilities catalog. Federal agencies have until August 28th to patch blind Eagle sinks its talents into Colombia. Researchers at Recorded Future published details about a campaign by the group Blind Eagle, which primarily targets the Colombian government from May 2024 to July 2025. These attacks were carried out by five distinct clusters using different infrastructure and operations, but showing some overall common tactics based around using cracked remote access Trojans, dynamic domain providers and legitimate Internet services for staging, as well as using Spear Phishing lures posing as government agencies. Blind Eagle has been active since 2018, typically targeting victims in South America for financial gain. When NDA stands for New Download Attack, researchers at Checkpoint detailed a new campaign where threat actors delivered malware to American industrial and tech firms to create disguised as non disclosure agreements. These threat actors initially approach victims through their contact US forms, posing as potential business partners and keeping up communication for several weeks. Eventually, they ask the firm to sign an NDA sent as a zip archive but containing a custom malware called mixshell. This appears to be a highly tailored approach. In some instances, the threat actors sent completely innocuous zip files, seemingly depending on the victim's IP address and browser information. The threat actors also set up fake websites using domains tied to real US Businesses for added veracity. Staying on top of regulations is a headache for every ciso. But this isn't just about compliance. What happens when regulations disrupt the sales process? That's what we'll be digging into on this week's episode of Defense In Depth. Look for the episode how to deal with last minute compliance requirements. Wherever you get your podcasts, and if you have some thoughts about the news from today or about the show in general, be sure to reach out to us@feedbacksoseries.com we would love to hear from you. Reporting for the CISO series, I'm Rich Stravalino reminding you to have a super sparkly day.
[07:23]
A
Cybersecurity headlines are available every weekday. Head to cisoseries.com for the full stories behind the headlines. Don't.