Australian police exposed Cambodian scam scripts, Meta alleged renewed NSO-linked targeting, and investigators tracked cloud-theft and payment-skimming campaigns. A supply-chain worm hit npm packages, critical flaws affected Gogs and UniFi systems, and multinational enforcement actions disrupted scam infrastructure. Policy developments included European technology sovereignty initiatives and updated cloud-security guidance influencing evidence preservation and cross-border investigations.

Investigators tracked unauthorized access to a Gaza aid registration platform, examined an npm supply-chain compromise affecting 36 packages, and assessed exploitation of a Magento cache flaw. Authorities disrupted scam infrastructure tied to Southeast Asian compounds, researchers exposed Gemini notification-based manipulation, while policymakers reviewed AI security risks and critical infrastructure resilience. Additional inquiries covered healthcare data exposure, forged identity networks, globally.

Investigations this period examined alleged access to Nigel Farage’s phone, targeting of U.S. military personnel through location data, and scrutiny of TikTok governance. Carnival disclosed a breach affecting millions, while Charter Communications faced leaked-record claims. Researchers highlighted container-security weaknesses, and Europol and INTERPOL operations demonstrated how digital evidence supports complex cross-border investigations and prosecutions today across multiple jurisdictions and sectors.

Investigators tracked a FIFA-themed fraud network, examined a law firm’s Microsoft 365 breach, and followed prosecutions tied to stolen government access. Major disclosures affected telecom and travel customers, while researchers documented FortiClient exploitation and The Gentlemen ransomware. Singapore warned about AI agent risks, ENISA assessed NIS2 sector maturity, and Dutch police arrested a suspect linked to the Ajax data breach.

Investigators tracked a China-linked breach at Wiley Rein, Dutch police arrested a suspect tied to AFC Ajax intrusions, and CISA warned of an exploited LiteSpeed plugin zero-day. Reporting also linked Iranian actors to Los Angeles transit network disruption while CERT-In disclosed multiple Trend Micro Apex One vulnerabilities. The roundup examines evidential preservation, attribution confidence, and cross-platform investigative correlation challenges globally.