AFP reported yesterday that some major Airbus suppliers were hit by a cyberattack that seems designed to steal trade secrets. Engine manufacturer Rolls-Royce was among those hit, as was Expleo, a French technology consultancy and supplier. At least two other companies in the Airbus supply chain were also attacked, but their identities are so far not publicly known. There is so far no firm attribution, but informed speculation points to Chinese espionage. Either APT10 (which is also known as Stone Panda and Menupass) or JSSD are being mentioned in dispatches. JSSD is associated with the regional security ministry in Jiangsu. Jiangsu is a center of China’s aerospace industry, which is seeking to enter the commercial airline market.
Zscaler reports finding phishing campaigns (which the company assesses as "sophisticated") abusing Appspot.com and Web.app, both legitimate domains associated with Google Cloud. The researchers say the campaign, which deploys well-executed landing pages that spoof the two widely used sites, is similar to a phishing effort they found in July that was engaged in similar deception with respect to Microsoft Azure.
Imperva reports that the vBulletin zero-day is being exploited in the wild.
DoorDash disclosed that it's sustained a major data breach. Data on some 4.9 million customers, "Dashers" (gig workers who deliver for the service), and merchants were exposed to an "unauthorized third party" in May of this year. The company says the incident affected those who joined DoorDash before April 6, 2018. Customers, Dashers, and merchants who joined more recently are unaffected.