TAAUS Top Ten - August 2025

There is never a dull moment in the managed information technology and cybersecurity space. Here is our TAAUS Top Ten of articles that came across the inbox for August 2025 – as always, be vigilant!

Microsoft (MSFT) Limits China Access after SharePoint Hack

- TipRanks

Microsoft has scaled back Chinese companies’ access to its early warning system for cybersecurity flaws.

2.5 billion Gmail users endangered after Google database hack

- PCWorld

A hacker group gained access to Google databases and is now attempting to scam Gmail and Google Cloud users.

Over 190 million hit in UnitedHealth data breach — confirmed largest in history

- Tom’s Guide

Worst health care data breach in history affects more than a third of all Americans.

The US Federal Court Filing System has been breached - and all the fingers are pointing to Russia

- TechRadar

Reporting from the New York Times, which said it spoke to people familiar with the matter, claims there is evidence Russia is at least partially responsible for the attack, which has been a “yearslong” effort to breach the system.

Connex Credit Union Breach Exposes 172,000 Members’ Data

- InfoSecurity Magazine

The intrusion took place between June 2 and 3 2025, and was detected on June 3. An investigation found that attackers may have accessed or downloaded sensitive files.

Hackers Uses Social Engineering Attack to Gain Remote Access in 300 Seconds

- Cyber Security News

Threat actors successfully compromised corporate systems within just five minutes using a combination of social engineering tactics and rapid PowerShell execution.

TamperedChef infostealer delivered through fraudulent PDF Editor

- Bleeping Computer

Threat actors have been using multiple websites promoted through Google ads to distribute a convincing PDF editing app that delivers an info-stealing malware called TamperedChef.

Fake IT Support Attacks Hit Microsoft Teams

- InfoSecurity Magazine

The campaigns, observed by Permiso, use fake IT support accounts to trick employees into installing remote access software, giving attackers direct control over corporate systems.

CISA, FBI, NSA Warn of Chinese 'Global Espionage System

'- DARK READING

Three federal agencies were parties to a global security advisory this week warning about the extensive threat posed by Chinese nation-state actors targeting network devices.

Microsoft to enforce MFA for Azure resource management in October

- Bleeping Computer

This change is part of the company's Secure Future Initiative (SFI), will be applied gradually across tenants worldwide, and it requires users to enable MFA on Azure CLI, PowerShell, SDKs, and APIs to ensure that their accounts are protected against attacks.

Stay Ahead of the Next Threat

Cybersecurity is constantly evolving, and so are the attackers. Stay informed with expert insights, best practices, and real-world threat updates from TAAUS Secure Technologies.

Sign-up for our newsletter or contact TAAUS Secure Technologies to schedule a consultation and protect your business before the next attack.