☝️ TWA

Ransomware gang runs ads for Microsoft Teams to pwn victims

🤷‍♀️ What now?: Check before you click or tap.

Tools: Take 9 seconds before buying into it.

Meanwhile … Tap-and-Steal: The Rise of NFC Relay Malware on Mobile Devices

📰 Headline Highlights

• Massive surge of NFC relay malware steals Europeans’ credit cards

• Media giant Nikkei reports data breach impacting 17,000 people

• 1.2M Individuals’ Data Stolen In University Hacking

• Data breach at major Swedish software supplier impacts 1.5 million

• The Louvre’s video security password was reportedly ‘Louvre’

• Hackers steal data, extort $350,000 from massage parlor clients

• Ernst & Young cloud misconfiguration leaks 4TB SQL Server backup on Microsoft Azure

• Data Theft Hits Behavioral Health Network in 3 States

• Operation Chargeback: 4.3 million cardholders affected, EUR 300 million in damages

• Houston data breach exposes firefighters’ personal info, union says they’re being blamed

In other news, as Trump administration cuts cybersecurity across the federal government, US Congressional Budget Office hit by cybersecurity incident

GOOD READ: Trump budget cuts, agency gutting, leave Americans and economy at greater risk of being hacked, experts warn

The production of HX Weekly is guided by the news, which necessitates the reiteration of our message. While we have previously cautioned readers about malvertising, this week’s message feels particularly timely. As a team, we believe it is crucial to emphasize the importance of vigilance against deceptive advertisements.

Inside Hexagon

As we transition into November 2025, the year 2026 begins to appear more promising. Join Hexagon Center by ensuring your subscription to HX Weekly as we commence the new year with the launch of innovative programs designed to safeguard individuals from cyber threats and enhance technological capabilities. Visit hexagoncenter.org to explore how you can contribute to our mission and support our endeavors. As we expand our program offerings, we will also seek volunteers to join us in these initiatives.

HOUSEKEEPING

Glossary/Legend:

• Malvertising - the practice of incorporating malware in online advertisements.

• pwn - to dominate and defeat (someone or something). Online gamers use "pwn" to describe annihilating an opponent, or owning them. The word came from misspelling "own" by gamers typing quickly and striking the letter P instead of the neighboring letter O.

• Personal Identifier - A unique word or phrase shared exclusively with an individual or a group, serving as a means of identification and affirmation within the established relationship. It is recommended that 2 or more Personal Identifiers be established per person.

• MFA (Multi-factor authentication or 2FA or 2-Factor Authentication) - a multi-step or 2-step account login process that requires users to enter more information than just one.

• Malware (short for malicious software) - refers to any intrusive software developed by cybercriminals (often called hackers) to steal data and damage or destroy computers and computer systems.

• Ransomware - A type of malware that locks or encrypts a victim's files and demands a ransom payment to unlock and decrypt them. Ransomware can infect a variety of devices, including computers, smartphones, printers, and more.

Spread cybersecurity culture

Do you have any suggestions on how we can further share this newsletter? Tell your friends and family about us by sharing with them the Hexagon Center official website:

hexagoncenter.org

View archives at hxweekly.beehiiv.com

You may reply to this newsletter or email us at
[email protected]

Send us any questions or things you want to talk about. Please share some fun facts with us. We welcome feedback and suggestions.

_{Hexagon Center is formed as a nonprofit corporation in California for public benefit,
and is tax-exempt under section 501(c)(3) of the Internal Revenue Code.}

_DISCLAIMER

_{Cybersecurity is an ever-changing field, and threats may evolve. While Hexagon Center strives to provide accurate and timely information, we cannot guarantee absolute security. Users are responsible for implementing their security measures and staying informed about the latest cybersecurity developments. Hexagon Center is not responsible for any cyber or scam attacks by our readers. HX Weekly tips are advice are not official positions of Hexagon Center nor is Hexagon Center responsible for its content.}

Content of this newsletter is not an official representation of Hexagon Center.

_{SEE MORE DISCLAIMER HERE}