The Cyber Express Weekly Roundup: Supply Chain Attacks, Mobile Banking Malware, and Expanding Cloud Phishing Campaigns

This weekly roundup highlights several high-impact incidents: researchers attribute an LA transit cyberattack to an Iranian-linked group (‘Ababil of Minab’); a critical flaw in the WP Maps Pro plugin allowed unauthenticated full-site takeovers affecting over 15,000 WordPress sites; the OverlayPhantom Android trojan is spreading via fake updates to target 180+ banking and crypto apps across 10 countries; the ‘Megalodon’ supply-chain campaign injected malicious GitHub Actions into some 5,500 repositories within six hours; and the FBI warns of Kali365 phishing-as-a-service that intercepts Microsoft 365 authentication tokens to bypass MFA — together underscoring an attacker focus on trusted platforms to maximize scale and impact.