Cybersecurity Summary

Salesforce has reported that a data breach at Gainsight, a customer experience company, has compromised some of its customers' data. This incident raises concerns about the security of third-party vendors, which often hold sensitive client information.

According to reports, DoorDash also confirmed that personal information of its customers and delivery personnel has been stolen in a separate data breach, exposing names, addresses, and phone numbers. The company is in the process of informing those affected, but the exact number of compromised accounts remains unknown.

Meanwhile, cybersecurity researchers have disclosed a new Android banking trojan called Sturnus, designed to enable credential theft and full device takeover for financial fraud. This trojan is noted for its capability to capture encrypted chat messages.

In a wider landscape of cyber threats, the Tsundere botnet has been reported to expand its operations by luring targets with gaming content and utilizing Ethereum-based command and control mechanisms. This botnet has been active since mid-2025 and poses significant risks to Windows users.

Additionally, a security flaw in SonicWall's SonicOS has been identified, allowing attackers to crash vulnerable firewalls, urging customers to apply patches immediately. The ongoing threats are exacerbated by geopolitical tensions, as Iran-linked hackers have been observed mapping ship AIS data in connection with potential missile strike attempts, indicating a trend toward cyber-enabled physical attacks.

Lastly, the FCC has made the controversial decision to rescind the requirement for internet providers to submit annual cybersecurity reports, a move criticized by cybersecurity advocates who warn it may hinder transparency and accountability in the industry.