* Cyber Threats Evolving Rapidly, Putting Australian Companies at Risk

* LinkedIn Scam Leaves Job Seeker Defrauded of $4,300

* The Dark Side of Data: How Cybercrime is Thriving in the Digital Age

* Docker Empowers Small Businesses with Hardened Images Catalog

* Qantas Targeted by Infamous Hacker Group in Extortion Attempt

Special Thanks to Justin Butterfield for contributing to this week’s Cyber Bites

* Cyber Security Awareness Month: Building a Cyber-Safe Culture in Australia

* Google Drive Enhances Security with AI-Powered Ransomware Detection

* Industrial Cellular Routers in Australia Abused for Smishing Attacks

* Asahi Group Reels from Crippling Cyberattack

* Malicious MCP Server Exposes Enterprises to Widespread Email Theft

* Cyberattack Disrupts Operations at European Airports

* Cybercriminals Target Python Developers in Widespread PyPI Phishing Attacks

* Gartner Survey Reveals Surge in Generative AI-Powered Cyberattacks

* Open Source Infrastructure Doesn’t Run on Thoughts and Prayers: The Urgent Need to Fund Open Source Infrastructure

* Safeguarding the npm Supply Chain: GitHub’s Plan for Stronger Security

* NSW Government Third-Party Cyber Incidents Quadruple as State Strengthens Digital Defenses

* Self-Propagating 'Shai-Hulud' Malware Infects Over 180 NPM Packages in Sophisticated Supply Chain Attack

* Australia Releases Guidance on Banning Social Media for Kids

* Jaguar Land Rover Extends Shutdown for Another Week After Devastating Cyberattack

* Apple 0-Day Vulnerabilities Exploited in Targeted Spy Attacks

* Massive NPM Supply Chain Attack Compromises 18 Popular Packages with 2 Billion Weekly Downloads

* Massive Chinese 'Salt Typhoon' Cyberattack May Have Compromised Data from Nearly Every American

* GhostAction Supply Chain Attack Compromises 817 GitHub Repositories, Steals 3,325 Developer Secrets

* Apple iCloud Calendar Abused for Phishing Scams

* Cloudflare 1.1.1.1 DNS Certificates Misused, Raising Security Concerns

* International Coalition Including Australia Issues Shared Vision for Software Bill of Materials to Strengthen Cybersecurity

* Zscaler Data Breach Exposes Customer Information Following Salesloft Drift Supply Chain Attack

* Cybercriminals Weaponise AI-Powered HexStrike Tool to Rapidly Exploit Newly Disclosed Vulnerabilities

* Melbourne Developer Exposes Critical Gift Card Security Flaw Allowing PIN Brute-Force Attacks

* Google Releases Massive Android Security Update Addressing 84 Vulnerabilities Including Two Actively Exploited Flaws

* Google Mandates Identity Verification for All Android Developers to Combat Malware Threats

* First AI-Powered Ransomware Using Machine Learning to Generate Malicious Code

* Supply Chain Attack Targets Nx NPM Packages Using AI Tools for Developer Reconnaissance

* Over 28,000 Citrix Devices Exposed to Actively Exploited RCE Flaw

* Anatsa Android Malware Campaign Expands Global Reach and Evasion Tactics

* Security Researchers Demonstrate Devastating Gemini Attacks Through Simple Google Calendar Invites

* New HTTP/2 'MadeYouReset' Attack Bypasses Security Limits to Enable Massive DoS Campaigns

* Cybercriminals Launch Sophisticated 'Ramp and Dump' Schemes Targeting Brokerage Accounts Through Mobile Phishing

* Microsoft Teams Deploys Enhanced Security Features to Block Malicious URLs and Dangerous File Types

* Cybercriminals Exploit Japanese Unicode Character to Create Deceptive Booking.com Phishing Campaigns