Cyberattacks & Threats

U.S. Media

•

14 days

•

#B54888

Summary

sources

134

Narrative Items

281

Bottom Line Up Front

134 sources in U.S. Media are amplifying 281 narrative items relating to the narrative of escalating cyber threats targeting critical sectors. These narratives connect concerns over cyberattacks on airlines, government institutions, and election systems with warnings from officials and calls for strengthened cybersecurity, highlighting persistent risks from state-aligned and criminal groups.

Reviewing a number of the most relevant narrative items indicates that media sources are portraying these cyber-related events with varying tones and emphases that reflect their audiences’ interests. Forbes frames the Senator Moran questioning the Air Force Chief and the airline cyberattacks in a fairly neutral and factual manner, focusing on details and implications without emotional language, appealing to readers interested in policy and business impacts. In contrast, Salem Radio Network News employs more charged and cautionary language, describing ongoing threats from Tehran-aligned groups with terms like "warn," "seek disruption," and "data theft," indicating a negative portrayal that reflects its audience’s focus on security and geopolitical risks. MyNorthwest offers a more measured and neutral tone, noting the persistence of threats while emphasizing a lack of widespread disruption, which caters to a regional audience looking for balanced updates. Coverage of airline cyberattacks by NBC News and NewzJunky shows a mix of concern and reassurance; both acknowledge the seriousness through terms like "ransomware" and "skilled hacking collective," but also highlight no cancellations, aiming to inform and calm the traveling public. Bleeping Computer presents the attacks with an emphasis on technical sophistication and ongoing risks, often with precise language about investigations and threat actors, appealing to cybersecurity professionals. The Conversation’s piece on election trust employs analytical and educational language, focusing on the social impact of cyber events and the need for proactive measures, which suits an academic or policy-interested audience. Overall, sources vary from neutral, fact-focused reporting to more alarmist or cautionary narratives, with differences largely shaped by each outlet’s target audience priorities, ranging from business and policy, through regional public interest, to technical cybersecurity expertise.

About This Module

The U.S. Media module tracks a broad range of American media sources, including major television, cable, print, and online organizations.

View Less

Geospatial

This map shows narrative amplification activity by sources in this module. Yellow indicates origin, red is destination.

Origin

Destination

The narrative initially emerged from Weehawken, headed for Jerusalem. As it spread, the most frequent origin shifted to Washington, and the most frequent destination shifted to Washington. There are a total of 40 points of origin, and 37 destinations. Hide details...

26 Jun 2025: Weehawken ▸ Jerusalem

26 Jun 2025: Washington ▸ Doha

26 Jun 2025: New York ▸ New York

26 Jun 2025: San Francisco ▸ Washington

26 Jun 2025: Tokyo ▸ Washington

26 Jun 2025: Knightdale ▸ China

26 Jun 2025: Windsor ▸ Detroit

27 Jun 2025: Hoboken ▸ Honolulu

27 Jun 2025: Hoboken ▸ Providence

27 Jun 2025: Washington ▸ Washington

27 Jun 2025: Melbourne ▸ Washington

27 Jun 2025: Weehawken ▸ New York

27 Jun 2025: Hoboken ▸ Tel Aviv-Yafo

27 Jun 2025: Hoboken ▸ Ottawa

27 Jun 2025: San Francisco ▸ Canada

27 Jun 2025: Weehawken ▸ Las Vegas

27 Jun 2025: Weehawken ▸ Washington

28 Jun 2025: Watertown ▸ Las Vegas

28 Jun 2025: San Antonio ▸ San Antonio

28 Jun 2025: Tokyo ▸ Canada

28 Jun 2025: San Francisco ▸ Canada

28 Jun 2025: Juárez ▸ Las Vegas

28 Jun 2025: Washington ▸ Columbus

29 Jun 2025: Augusta ▸ Washington

29 Jun 2025: Hoboken ▸ Washington

29 Jun 2025: Sacramento ▸ Los Angeles

30 Jun 2025: Washington ▸ Mons

30 Jun 2025: Dallas ▸ Jerusalem

30 Jun 2025: Kansas City ▸ Washington

30 Jun 2025: Juárez ▸ Pittsburgh

30 Jun 2025: St. Louis ▸ Washington

30 Jun 2025: Council Bluffs ▸ Washington

30 Jun 2025: Hoboken ▸ Washington

30 Jun 2025: Knik-Fairview ▸ Washington

30 Jun 2025: Springfield ▸ Washington

30 Jun 2025: San Antonio ▸ The Hague

30 Jun 2025: Dallas ▸ The Hague

30 Jun 2025: Seattle ▸ Washington

30 Jun 2025: Dallas ▸ Washington

30 Jun 2025: Washington ▸ Santa Clara

30 Jun 2025: Dayton Avenue ▸ The Hague

01 Jul 2025: Phoenix ▸ Tehran

01 Jul 2025: Washington ▸ China

01 Jul 2025: Dallas ▸ London

01 Jul 2025: Hoboken ▸ California

01 Jul 2025: Hoboken ▸ Tehran

01 Jul 2025: Hoboken ▸ The Hague

01 Jul 2025: Washington ▸ The Hague

01 Jul 2025: New York ▸ Los Angeles

01 Jul 2025: Washington ▸ Nebraska

01 Jul 2025: New York ▸ Tehran

01 Jul 2025: Miami ▸ Madison

02 Jul 2025: Hoboken ▸ Canberra

02 Jul 2025: Juárez ▸ Canberra

02 Jul 2025: Tokyo ▸ Canberra

02 Jul 2025: Weehawken ▸ New Delhi

02 Jul 2025: Hoboken ▸ Manila

02 Jul 2025: Washington ▸ Sydney

02 Jul 2025: Washington ▸ Beijing

02 Jul 2025: Los Angeles ▸ Manhattan

02 Jul 2025: Orange ▸ Manhattan

02 Jul 2025: Coronado ▸ Manhattan

02 Jul 2025: Upland ▸ Manhattan

02 Jul 2025: Hoboken ▸ Harlem

02 Jul 2025: Greeley ▸ Manhattan

02 Jul 2025: Loveland ▸ Manhattan

02 Jul 2025: Boulder ▸ Manhattan

02 Jul 2025: St. Paul ▸ Manhattan

02 Jul 2025: San Francisco ▸ Washington

02 Jul 2025: Bangor ▸ Manhattan

02 Jul 2025: San Antonio ▸ Manhattan

02 Jul 2025: Washington ▸ Manhattan

02 Jul 2025: Willoughby ▸ Manhattan

02 Jul 2025: Boston ▸ Manhattan

02 Jul 2025: Dallas ▸ Manhattan

02 Jul 2025: Hoboken ▸ New York

03 Jul 2025: New York ▸ Manhattan

03 Jul 2025: Washington ▸ Tallinn

03 Jul 2025: Washington ▸ Florida

03 Jul 2025: Manhattan ▸ Manhattan

03 Jul 2025: Weehawken ▸ Mexico City

03 Jul 2025: Atlanta ▸ Washington

03 Jul 2025: Washington ▸ Washington

04 Jul 2025: Sacramento ▸ Canberra

05 Jul 2025: Sunnyvale ▸ Washington

05 Jul 2025: New York ▸ New York

05 Jul 2025: Wausau ▸ Manhattan

06 Jul 2025: Honolulu ▸ Honolulu

06 Jul 2025: New York ▸ New York

07 Jul 2025: Washington ▸ Beijing

07 Jul 2025: New York ▸ Africa

07 Jul 2025: San Francisco ▸ Washington

08 Jul 2025: Hoboken ▸ Milan

08 Jul 2025: Washington ▸ Beijing

08 Jul 2025: Washington ▸ Kyiv

08 Jul 2025: San Francisco ▸ Beijing

08 Jul 2025: New York ▸ Milan

09 Jul 2025: Washington ▸ Washington

09 Jul 2025: San Francisco ▸ Washington

Sources

Sources by Type

Sources of these types represent most of the amplification activity around this narrative

sources by Volume

These sources are amplifying the most items involved in this narrative. Click to see details of each source's narrative activity.

Top sources

Day-by-day volumetric activity of sources amplifying the most items around this narrative

Bleeping Computer

7% of the items in this brief were amplified by this source.

Fox News

5% of the items in this brief were amplified by this source.

GlobalSecurity.org

4% of the items in this brief were amplified by this source.

Salem Radio Network News

3% of the items in this brief were amplified by this source.

Forbes

3% of the items in this brief were amplified by this source.

KSAT 12

3% of the items in this brief were amplified by this source.

Washington Times

2% of the items in this brief were amplified by this source.

New York Post

2% of the items in this brief were amplified by this source.

TechCrunch

2% of the items in this brief were amplified by this source.

United Press International

2% of the items in this brief were amplified by this source.

View Less

Top Items

These narrative items are the most relevant and/or the most amplified. Click to see details and suggested messages.

Amplifiers:

Forbes

youtube.com

Jerry Moran Asks Air Force Chief About Funding Cuts To Cyberthreat Research Team

Senator Jerry Moran questioned Air Force Chief General Allvin about budget cuts to Air Force cyberthreat research programs during a Senate Appropriations Committee hearing.

Amplifiers:

Forbes

twitter.com

These 3 Airlines Were Cyberattacked In...

Three airlines suffered cyberattacks in the last three weeks. The linked article details what is known about these incidents.

Amplifiers:

Salem Radio Network News

srnnews.com

Iranian cyberattacks remain a threat despite ceasefire, US officials warn

Despite a ceasefire between Iran and Israel, US officials warn of continued cyberattacks from Tehran-aligned groups. These groups may target critical infrastructure and US entities linked to Israel, seeking disruption or data theft. The bulletin urges improved cybersecurity measures.

Amplifiers:

MyNorthwest

mynorthwest.com

Iranian cyberattacks remain a threat despite ceasefire, US officials warn

Despite a ceasefire between Iran and Israel, US officials warn of continued cyberattacks from pro-Tehran hacking groups. These groups may target US infrastructure, defense contractors, and companies with Israeli ties. While past attacks haven't caused widespread disruption, the threat persists.

Amplifiers:

NewzJunky

cnbc.com

Westjet and Hawaii Airlines targeted by cyberattacks

WestJet and Hawaiian Airlines suffered cyberattacks in June by the Scattered Spider group, a skilled hacking collective known for targeting various sectors. While details are limited, both airlines reported resolving the issues with no flight cancellations. A similar tech issue impacted American Airlines, though a hacker connection remains unconfirmed. The attacks highlight Scattered Spider's escalating activity in the aviation industry.

Amplifiers:

NBC News

nbcnews.com

North American airlines targeted by cyberattacks

Cybercriminals, particularly the Scattered Spider group, are targeting North American airlines. WestJet and Hawaiian Airlines confirmed recent cyberattacks, while American Airlines experienced a technology issue. The attacks involve gaining access and deploying ransomware, impacting operations though flight cancellations haven't been reported. Security firms urge airlines to strengthen their systems.

Amplifiers:

Bleeping Computer

twitter.com

Qantas discloses cyberattack amid Scattered Spider...

Qantas, the Australian airline, has suffered a cyberattack, part of a wider series of breaches affecting the aviation industry, potentially linked to the "Scattered Spider" threat group.

Amplifiers:

Bleeping Computer

bleepingcomputer.com

Hawaiian Airlines discloses cyberattack, flights not affected

Hawaiian Airlines experienced a cyberattack affecting some IT systems, but flight operations remain unaffected. The airline is investigating with external experts and authorities, assuring customer and employee safety. The nature of the attack is still unclear.

Amplifiers:

The Conversation

theconversation.com

Cyberattacks shake voters’ trust in elections, regardless of party

Cyberattacks, even unsuccessful ones, erode public trust in elections regardless of political affiliation. A study showed that news of cyberattacks, even unrelated to voting systems, decreased voter confidence, particularly among those whose candidate lost. Restoring trust requires proactive public education about election security and processes, treating trust as a national asset to be protected.

Amplifiers:

Bleeping Computer

bleepingcomputer.com

International Criminal Court hit by new 'sophisticated' cyberattack

The International Criminal Court (ICC) suffered a second sophisticated cyberattack in recent years. While details are limited, the ICC confirmed the attack was contained and a full impact assessment is underway. The 2023 attack was similarly sophisticated, suspected to be espionage, though no data compromise was confirmed. The ICC continues to face persistent cyber threats.

Amplifiers:

Foreign Affairs

foreignaffairs.com

How Russia Could Exploit a Vacuum in Europe

A potential rapid U.S. troop withdrawal from Europe risks leaving NATO vulnerable to Russian aggression. While Europe is increasing defense spending, it lacks the capabilities the U.S. currently provides. A coordinated drawdown, with advance planning and allocation of lost capabilities to European allies, is crucial to prevent Russia from exploiting the resulting power vacuum.

Amplifiers:

Courthouse News Service

courthousenews.com

ICC punts on shoring up ‘crime of aggression’ prosecution

The ICC's Assembly of States Parties failed to reach consensus on strengthening its jurisdiction over the crime of aggression, postponing a decision until 2027 and 2029. This comes amidst US hostility towards the ICC and ongoing global conflicts, highlighting the political complexities surrounding prosecuting such a crime. While some see the continued discussion as progress, others view the delay as a setback.

Amplifiers:

WXIA Atlanta

11 Alive

11alive.com

Fulton County residents voice concerns over potential tax hike

Fulton County, facing a $75 million deficit, proposes a 12.49% property tax hike. Residents express concerns about rising costs and inadequate services, arguing the county should prioritize responsible spending before raising taxes further. A final vote is pending.

Amplifiers:

Free Republic

freerepublic.com

Iranian ransomware crew reemerges, promises big bucks for attacks on US or Israel

A re-emerged Iranian ransomware group, Pay2Key.I2P, linked to Pioneer Kitten, offers affiliates 80% of profits from attacks on US and Israeli organizations. Using an updated version of Pay2Key ransomware incorporating Mimic capabilities, the group exploits the anonymity of the I2P network, claiming over $4 million in four months. This convergence of state-sponsored cyber warfare and cybercrime poses a significant threat.

Amplifiers:

Washington Times

washingtontimes.com

Chinese hacker linked to massive Microsoft network break-in arrested

Italian authorities arrested Chinese hacker Xu Zewei, linked to the "HAFNIUM" Microsoft Exchange Server intrusion and theft of US COVID-19 research. The FBI sought his extradition. Xu, working for a Chinese Ministry of State Security contractor, allegedly stole research with an associate, who remains at large. The actions are viewed as a significant cyberattack against the US.

Amplifiers:

The Verge

theverge.com

The Columbia hack is a much bigger deal than Mamdani’s college application

A politically motivated hacker stole vast amounts of data from Columbia, NYU, and the University of Minnesota, targeting admissions records and focusing on racial demographics. The New York Times used leaked data to attack a mayoral candidate, while other major news outlets offered minimal coverage, raising concerns about journalistic ethics and the underreporting of a significant event.

Amplifiers:

Bleeping Computer

bleepingcomputer.com

Qantas confirms data breach impacts 5.7 million customers

A data breach at Qantas impacted 5.7 million customers. Threat actors stole varying amounts of data, including names, email addresses, Frequent Flyer details, and in some cases, addresses, dates of birth, and phone numbers. No passwords or financial information were compromised. Qantas is contacting affected customers and enhancing security measures.

Amplifiers:

ZDnet

zdnet.com

Someone used AI to impersonate a secretary of state - how to make sure you're not next

AI-powered impersonation scams are targeting high-profile individuals, including a US Secretary of State. An identity protection expert advises limiting online information, verifying suspicious calls using a family password, and investing in identity protection services to combat this emerging threat, which utilizes voice cloning technology. Passkeys are suggested as a potential solution to broader phishing and email compromise issues.

Amplifiers:

Minneapolis Star Tribune

startribune.com

Cyberattack on Minneapolis nonprofit drains its savings

A cyberattack stole all operating funds from Minneapolis nonprofit Housing in Action, halting its affordable housing projects. The theft, under police investigation, jeopardizes ongoing work and threatens to displace renters. The organization is seeking funds to recover and continue its mission.

Amplifiers:

Bleeping Computer

bleepingcomputer.com

Treasury sanctions North Korean over IT worker malware scheme

The U.S. Treasury sanctioned Song Kum Hyok, a member of North Korea's Andariel hacking group, for facilitating IT worker schemes. Song used stolen identities to place North Korean workers in U.S. companies, who then generated revenue for the regime and sometimes deployed malware. Five associated entities were also sanctioned, freezing assets and prohibiting transactions.

Amplifiers:

Law Enforcement Today

Police Tribune

lawenforcementtoday.com

U.S. Warns of Iranian Cyber Retaliation After Nuclear Strike

US intelligence agencies warn of potential Iranian cyberattacks against US and Israeli interests following recent US airstrikes on Iranian nuclear facilities. The warning highlights increased risks for defense companies and anticipates DDoS attacks and ransomware. While a coordinated campaign isn't confirmed, agencies urge enhanced cybersecurity measures.

Amplifiers:

WXIA Atlanta

11 Alive

11alive.com

Fulton County residents voice concerns over potential tax hike

Fulton County, facing a $75 million deficit, proposes a 12.49% property tax hike. Residents express concerns about rising costs and inadequate services, arguing the county should prioritize responsible spending before raising taxes further. A final vote is pending.

Amplifiers:

The Hayride

Gregg Jarrett Blog

thegreggjarrett.com

New Farm Security Plan Targets Foreign Threats to U.S. Food Chain

The Trump administration launched the National Farm Security Action Plan to protect the U.S. food system from foreign threats. This initiative addresses foreign land ownership, supply chain vulnerabilities, agroterrorism, and intellectual property theft, prioritizing American farmers and national security. The plan emphasizes collaboration between federal, state, and local agencies to safeguard agricultural assets.

Amplifiers:

Forbes

youtube.com

Jerry Moran Asks Air Force Chief About Funding Cuts To Cyberthreat Research Team

Senator Jerry Moran questioned Air Force Chief General Allvin about budget cuts to Air Force cyberthreat research programs during a Senate Appropriations Committee hearing.

Amplifiers:

Forbes

twitter.com

These 3 Airlines Were Cyberattacked In...

Three airlines suffered cyberattacks in the last three weeks. The linked article details what is known about these incidents.

Amplifiers:

Salem Radio Network News

srnnews.com

Iranian cyberattacks remain a threat despite ceasefire, US officials warn

Despite a ceasefire between Iran and Israel, US officials warn of continued cyberattacks from Tehran-aligned groups. These groups may target critical infrastructure and US entities linked to Israel, seeking disruption or data theft. The bulletin urges improved cybersecurity measures.

Amplifiers:

MyNorthwest

mynorthwest.com

Iranian cyberattacks remain a threat despite ceasefire, US officials warn

Despite a ceasefire between Iran and Israel, US officials warn of continued cyberattacks from pro-Tehran hacking groups. These groups may target US infrastructure, defense contractors, and companies with Israeli ties. While past attacks haven't caused widespread disruption, the threat persists.

Amplifiers:

NewzJunky

cnbc.com

Westjet and Hawaii Airlines targeted by cyberattacks

WestJet and Hawaiian Airlines suffered cyberattacks in June by the Scattered Spider group, a skilled hacking collective known for targeting various sectors. While details are limited, both airlines reported resolving the issues with no flight cancellations. A similar tech issue impacted American Airlines, though a hacker connection remains unconfirmed. The attacks highlight Scattered Spider's escalating activity in the aviation industry.

Amplifiers:

NBC News

nbcnews.com

North American airlines targeted by cyberattacks

Cybercriminals, particularly the Scattered Spider group, are targeting North American airlines. WestJet and Hawaiian Airlines confirmed recent cyberattacks, while American Airlines experienced a technology issue. The attacks involve gaining access and deploying ransomware, impacting operations though flight cancellations haven't been reported. Security firms urge airlines to strengthen their systems.

Amplifiers:

Bleeping Computer

twitter.com

Qantas discloses cyberattack amid Scattered Spider...

Qantas, the Australian airline, has suffered a cyberattack, part of a wider series of breaches affecting the aviation industry, potentially linked to the "Scattered Spider" threat group.

Entities

Tap or click for details

These entities are mentioned most frequently in the narratives highlighted in this brief. Click to see details of narrative activity related to each one.

Companies

WestJet

North American airline targeted by Scattered Spider cyberattack.

Hawaiian Airlines

North American airline affected by cyberattack impacting IT systems.

American Airlines

Experienced a technology issue possibly linked to cyberattack.

Qantas

Australian airline affected by cyberattack linked to aviation industry breaches.

Events

Senate Appropriations Committee hearing

Hearing where Senator Moran questioned General Allvin about cyberthreat research funding.

Cyberattacks on airlines in June 2023

Series of cyberattacks targeting North American airlines including WestJet and Hawaiian Airlines.

Cyberattack on International Criminal Court 2023

Sophisticated cyberattack on ICC suspected to be espionage.

Organizations

International Criminal Court (ICC)

Faced multiple sophisticated cyberattacks suspected to be espionage.

Scattered Spider

Cybercriminal group targeting airlines and other sectors.

People

Senator Jerry Moran

US Senator who questioned Air Force Chief General Allvin about budget cuts to cyberthreat research.

General Allvin

Air Force Chief questioned about cyberthreat research budget cuts.

Technologies

Ransomware

Malware deployed by Scattered Spider group in airline cyberattacks.

Companies

WestJet

North American airline targeted by Scattered Spider cyberattack.

Hawaiian Airlines

North American airline affected by cyberattack impacting IT systems.

American Airlines

Experienced a technology issue possibly linked to cyberattack.

Qantas

Australian airline affected by cyberattack linked to aviation industry breaches.

Events

Senate Appropriations Committee hearing

Hearing where Senator Moran questioned General Allvin about cyberthreat research funding.

Cyberattacks on airlines in June 2023

Series of cyberattacks targeting North American airlines including WestJet and Hawaiian Airlines.

Cyberattack on International Criminal Court 2023

Sophisticated cyberattack on ICC suspected to be espionage.

Organizations

International Criminal Court (ICC)

Faced multiple sophisticated cyberattacks suspected to be espionage.

Scattered Spider

Cybercriminal group targeting airlines and other sectors.

People

Senator Jerry Moran

US Senator who questioned Air Force Chief General Allvin about budget cuts to cyberthreat research.

General Allvin

Air Force Chief questioned about cyberthreat research budget cuts.

Technologies

Ransomware

Malware deployed by Scattered Spider group in airline cyberattacks.

Context

The recent cyberattacks on multiple airlines, including WestJet, Hawaiian Airlines, American Airlines, and Qantas, underscore growing vulnerabilities in critical transportation infrastructure. These incidents, attributed to the Scattered Spider hacking group, highlight the increasing sophistication and persistence of cybercriminals targeting sectors vital to national and economic security. Although flight operations have largely remained unaffected, the breaches disrupt IT systems and raise concerns about potential ransomware deployment and data theft.

From a demographic and social perspective, the aviation sector is crucial for connectivity, commerce, and tourism, affecting millions of passengers and employees. Disruptions can erode public confidence not only in airline safety but also in broader digital infrastructure. The erosion of trust extends to democratic processes, as studies show that news of cyberattacks—even unrelated to elections—can diminish voter confidence, particularly among those dissatisfied with election outcomes. This underscores the importance of public education and transparency to maintain social cohesion and democratic legitimacy.

Economically, cyberattacks on airlines threaten a sector integral to global trade and national economies. The costs of remediation, potential data breaches, and reputational damage can be substantial. Politically, the ongoing cyber threat from Tehran-aligned groups despite a ceasefire between Iran and Israel reflects persistent geopolitical tensions. These groups target US infrastructure, defense contractors, and companies linked to Israel, aiming to disrupt or steal sensitive information. This necessitates sustained investment in cybersecurity and intelligence capabilities.

Geographically, the US and allied nations face threats from transnational cyber actors exploiting global networks. The International Criminal Court’s repeated cyberattacks illustrate that international institutions are also targets, emphasizing the global scope of cyber threats.

National security considerations demand robust cyber defense strategies, including increased funding for research and development, as highlighted by Senator Moran’s inquiry. Protecting critical infrastructure, maintaining public trust, and countering state-sponsored cyber threats are essential to safeguarding national interests in an increasingly digital world.

View Less

World Events

Tap or roll over dots to see representative headlines

Cyberattacks & Threats

Summary

Bottom Line Up Front

About This Module

Geospatial

Sources

Sources by Type

sources by Volume

Top sources

Top Items

Entities

Companies

Events

Organizations

People

Technologies

Companies

Events

Organizations

People

Technologies

Context

World Events

Stock & Crypto Dynamics