Featured Story
Oracle privately notifies Cloud data breach to customers
Oracle confirms a data breach and started informing customers while downplaying the impact of the incident.
A threat actor using the moniker ‘rose87168’ claimed to possess millions of data lines tied to over 140,000 Oracle Cloud tenants, including encrypted credentials.
SOC Analysis: If you are an Oracle Cloud customer, now is the time to get in touch with Oracle and perform a thorough review of your cloud infrastructure. Even if Oracle claims no customer data was affected, this incident is a reminder that no provider is immune to risk. Understanding your exposure and validating the security of your deployment is critical.
Approach Cyber can assist with evaluating your configuration, identifying weak points, and reinforcing your cloud environment to meet today’s security expectations. Don’t wait—assess and secure your infrastructure proactively.
Other Stories
Gmail Is Not a Secure Way to Send Sensitive Comms: A Friendly Reminder
Recent developments, including reports of US National Security advisers using Gmail for official conversations, have raised concerns about Gmail’s adequacy for sensitive enterprise communications.
SOC Analysis: Even in day-to-day operations within an SME, using consumer-grade webmail services like Gmail for sensitive communications can pose serious risks. Despite recent enhancements, such as optional end-to-end encryption, Gmail is not a secure default for handling confidential or proprietary information.
SMEs should consider professional-grade email solutions that offer full encryption control, data sovereignty, and integration with secure gateways and DLP tools. Cybersecurity starts with the right tools—and email remains one of the most critical.
Gamaredon Uses Infected Removable Drives to Breach Western Military Mission in Ukraine
The Russia-linked threat actor Gamaredon has been linked to a cyberattack targeting a foreign military mission in Ukraine using infected USB drives to deliver updated GammaSteel malware.
Google Fixes Android Zero-Days Exploited in Attacks, 60 Other Flaws
Google’s April 2025 security update addresses 62 vulnerabilities, including two Android zero-days reportedly used by Serbian authorities through Cellebrite’s exploit chain.
Fraudulent Email in the Name of the CCB
Phishing emails impersonating the Centre for Cybersecurity Belgium are circulating, warning users of network monitoring and urging them to click a malicious link. It’s a scam—do not engage.
SOC Analysis: A new phishing campaign is abusing the name of the Centre for Cybersecurity Belgium (CCB) to trick recipients. Threat actors increasingly exploit trusted institutions. Always verify unexpected messages through official channels and report suspicious emails to:
- verdacht@safeonweb.be
- suspect@safeonweb.be
- suspicious@safeonweb.be
Our SOC is also available to assist in case of any doubts or suspicious messages.
