Cyber Security News

Hacking Editorial Brief — June 28, 2026

Russian Intelligence Operations Target Messaging Platforms and Corporate Infrastructure

Russian intelligence-linked threat actors are conducting multiple sophisticated campaigns targeting secure communications and high-value corporate targets. Ukrainian authorities report that Russian hackers deployed fake support text messages to steal messaging app credentials, though no specific attribution to a named APT group was provided. In a parallel operation, the FBI warns that Russian intelligence is now actively phishing Signal users for their backup recovery keys, giving attackers complete access to encrypted message histories. The campaign, tracked as UNC5792, exploits user trust in the platform's security model. Separately, investigators have confirmed Russian hackers executed the $2.5 billion ransomware attack on Jaguar Land Rover earlier this year, using basic phishing tactics to shut down UK production for five weeks—demonstrating how elementary techniques continue to yield high-impact results against major manufacturers.

Supply Chain Breaches and Criminal Infrastructure Activity

Tata Electronics, a primary Apple supplier, confirmed that threat actors successfully exfiltrated sensitive company data in what appears to be a supply chain targeting operation affecting the iPhone manufacturer. Meanwhile, CNN reporting reveals alleged Russian criminal efforts to physically infiltrate multibillion-dollar U.S. law firms, with the Silent Ransom Group combining digital intrusion with on-the-ground intelligence gathering before demanding ransom payments or leaking stolen information. In the hospitality sector, Microsoft Threat Intelligence identified an ongoing phishing campaign using fabricated guest complaint emails to compromise hotel and lodging organizations. The campaign demonstrates continued threat actor adaptation to industry-specific social engineering vectors. Ukrainian authorities announced the first-ever cryptocurrency asset seizure from cybercriminals, confiscating 8.3 million USDT from wallets belonging to an international hacking group member and transferring the funds to state control.

Sources: The Hacker News · The Next Web · Yahoo · Bangkok Post · CNN Politics · Security Affairs · Babel