News for Friday, August 29:
- NinjaOne and Blackpoint agreement. NinjaOne and Blackpoint announced a partnership to enhance cybersecurity for MSPs, by combining Blackpoint’s MDR services with NinjaOne’s cloud-native endpoint management platform. Intent is to enable MSPs to offer a more unified approach to cybersecurity. Covers threat detection, response orchestration, and consistent security policy enforcement. NinjaOne
- Chatbot breach at Lenovo. Lena, Lenovo’s customer support chatbot powered by OpenAI GPT-4, was breached by researchers with a prompt injection attack. Lena generated malicious HTML code that enabled the researchers to steal session cookies, because Lena had not been configured properly to sanitize input and its output. Stealing session cookies could be just the beginning – The researchers warned that the same vulnerability could enable attackers to alter support interfaces, deploy keyloggers, launch phishing attacks, and execute system commands that could install backdoors and enable lateral movement across network infrastructure. CSO Online
- Claude for offensive AI. Anthropic’s August 2025 Threat Intelligence report looks at how Claude is being misused by cyberthreat actors. Key findings: Agentic AI has been weaponized to perform sophisticated cyberattacks, AI has lowered the barrier to sophisticated cybercrime, and threat actors are using AI across the lifecycle of their operations. Anthropic says it has taken steps to detect and counter these abuses. Anthropic
- Salt Typhoon breach hit more than 80 countries. The FBI said that the China-linked Salt Typhoon breach of telecom companies unfolded across more than 80 countries, not just the United States. The breach allowed China-linked actors to access U.S. customer call data, private communications for a limited number of individuals, sensitive law-enforcement information and technical network information that could inform future attacks. US carriers implicated included Verizon and AT&T, and T-Mobile US said it detected attempts but rebuffed them. The call records obtained potentially allowed Chinese operatives to track Americans’ movements, including outside of the United States. The Chinese government has denied any involvement in the campaign. The Wall Street Journal