A hacker group calling itself “Scattered LAPSUS$ Hunters” claims to have stolen nearly 1 billion records from Salesforce customers, though Salesforce confirms its own systems were not breached.
Renault and Dacia warn UK customers after a third-party data breach exposed personal details. Amazon loses top devices exec Rob Williams just days after its hardware showcase. And OpenAI’s Sora 2 app rockets to No. 1 on the U.S. App Store.
Meanwhile, the UK tech sector raises $12 billion in 2025, second only globally. Britain invests £500,000 in satellite sensors to counter laser attacks from space. Themis acquires Pasabi to supercharge AI fraud detection.
All that and more. Let’s dive in…
DRIVING THE CONVERSATION TODAY
Hackers claim billion-record Salesforce breach via “vishing”
A cybercriminal group calling itself “Scattered LAPSUS$ Hunters” says it stole nearly 1 billion records from companies using Salesforce software, but Salesforce confirms its platform was not compromised. Instead, the attackers used “vishing” (voice-based social engineering) to impersonate employees and trick customers into granting access.
The group, also linked to recent attacks on Marks & Spencer, Co-op, and Jaguar Land Rover, posted a list of 40 alleged victims on a dark web leak site. Google’s Threat Intelligence Group previously identified the gang as UNC6040, noting its use of a modified Salesforce Data Loader in phishing campaigns. UK authorities arrested four suspects under 21 in July over related retail cyberattacks.
Renault, Dacia warn of third-party data breach
Renault and Dacia have alerted UK customers after a cyberattack on a third-party data provider exposed names, addresses, dates of birth, phone numbers, vehicle IDs, and registration details. The automakers stressed that no financial data or passwords were compromised and that their own systems remain secure.
Affected individuals may include those who entered data via competitions or brand interactions. Renault is contacting customers directly and urging vigilance against unsolicited requests. The incident adds to a wave of UK breaches hitting JLR, Asahi, M&S, and Kido Schools, underscoring the need for robust third-party risk management.
Amazon devices chief Rob Williams to retire
Rob Williams, Amazon’s Vice President of Device Software and Services and a member of CEO Andy Jassy’s elite S-team, is retiring and will fully depart by end of 2025. Williams, who spent 12 years at Amazon, shaped the software behind Echo, Fire TV, and Kindle.
His exit follows Amazon’s recent New York hardware event and comes amid a devices unit restructuring led by Panos Panay. Teams are mergingsuch as folding Alexa Smart Vehicle into main Alexa, and Tapas Roy will succeed Williams.
The division has faced financial pressure, layoffs, and slow progress on Alexa+, its generative AI upgrade. Williams recently championed Vega OS, Amazon’s Android replacement for Fire TV.
OpenAI’s Sora hits No. 1 on App Store
OpenAI’s Sora app has surged to No. 1 overall on Apple’s U.S. App Store just days after launch. The invite-only AI video tool saw 164,000 downloads in two days, outpacing early traction for Google Gemini and rivaling xAI’s Grok.
Available in the U.S. and Canada, Sora lets users generate and share short AI videos. Its rapid rise highlights strong consumer appetite for social, AI-powered video creation, even as internal debates continue over balancing safety and creativity.
Sora 2, already in testing, produces longer, more realistic clips but has sparked concerns over deepfakes and bypassed safeguards.
FUNDING FLASH
UK tech raises $12B in 2025, second globally
The UK tech sector raised $12 billion (£8.9 billion) in the first nine months of 2025, ranking second worldwide behind only the U.S., according to Tracxn. While early-stage funding dipped 15 percent to $4.8 billion, late-stage rounds surged 36 percent to $5.7 billion—signaling a maturing ecosystem.
Major deals included Nscale’s $1.8 billion Series B and Isomorphic Labs’ $600 million Series D. Investors like Latitude Venture Partners, Durable Capital, and BeyondNetZero led late-stage activity, while Y Combinator and Fuel Ventures dominated seed rounds. The shift reflects growing confidence in UK scale-ups.
UK invests £500,000 to shield satellites from laser attacks
The UK is deploying new sensors to protect critical satellites from laser-based threats that could blind or disrupt them. Funded with £500,000 through the UK Space Agency’s Unlocking Space for Government programme, the project involves UK Space Command and responds to warnings in the Strategic Defence Review.
Satellites underpin finance, navigation, emergency services, and military ops, nearly 20 percent of the UK economy relies on them. General Paul Tedman, head of UK Space Command, said secure space systems are essential to “understand, move, communicate, and fight.” The investment supports a sector that contributed £42 billion to the economy last year and employs 443,000 people.
EQUALLY IMPORTANT
Themis acquires Pasabi to fight AI-powered fraud
London fintech Themis has acquired Edinburgh’s Pasabi, a fraud detection firm, in a deal approved under the National Security and Investment Act. Pasabi’s agentic AI deploys autonomous agents to spot suspicious behavior in real time.
The integration expands Themis beyond anti-money laundering into fraud monitoring, social media scanning, and transactional risk detection.
With fraud accounting for 41 percent of household crime in England and Wales and global losses hitting $5.4 trillion, the move comes as regulators crack down on bank compliance failures, recently fining Barclays and Monzo.
Apple, Google remove ICE-tracking apps
Apple removed ICEBlock, a “Waze for ICE sightings” app with 1.1 million users, after pressure from U.S. Attorney General Pam Bondi, who called it an “obstruction of justice.” Developer Joshua Aaron called the move politically motivated.
Google followed by pulling similar apps like Red Dot, citing policy violations over sharing locations of vulnerable groups and poor content moderation. Both actions came after a 24 September shooting at a Dallas ICE facility, where the shooter reportedly used such apps. Critics note Apple’s swift compliance with U.S. demands contrasts with its resistance to EU regulation.
EU to launch single startup regime in 2026
The European Union will introduce a single set of rules for startups in 2026, creating a “28th regime” to replace the current patchwork of 27 national systems. Announced by Commission President Ursula von der Leyen, the move aims to make cross-border scaling as easy in Europe as it is in the U.S.
The initiative is part of a broader “AI first” strategy and includes a multi-billion euro Scaleup Europe Fund to boost competitiveness and retain talent amid global tech rivalry.
WORTH NOTING
OpenAI DevDay 2025: AI’s biggest stage
OpenAI’s DevDay returns on 6 October 2025 in San Francisco, with 1,500+ attendees expected. CEO Sam Altman will deliver a keynote at 10 a.m. PT, livestreamed on YouTube, featuring announcements, demos, and a vision for AI’s future.
Highlights include Sora Cinema (AI-generated films), a talking Alan Turing portrait, and a fireside chat between Altman and designer Jony Ive on “building in the age of AI.” Only the opening session will be live-streamed; others will post to YouTube later.
Cl0p ransomware targets Oracle E-Business Suite
The Cl0p ransomware gang is exploiting unpatched flaws in Oracle’s E-Business Suite to extort organizations that skipped July’s security updates. Oracle confirmed it’s investigating after customers received ransom emails, with one demand reportedly reaching $50 million.
The attackers targeted firms using Oracle software for finance and supply chains. Security firm Halcyon said hackers threaten to leak or lock data unless paid. Oracle’s CSO Rob Duhart urged immediate patching. Cl0p, previously labeled a top global malware distributor by U.S. authorities, has a history of mass exploitation campaigns.
Google UK cuts 400 jobs despite revenue growth
Google UK reduced headcount by nearly 400 roles between December 2023 and 2024, dropping from 7,422 to 7,029 employees, even as turnover rose £82 million to £2.89 billion.
The cuts coincide with the opening of a new Hertfordshire data centre, part of a £5 billion UK investment expected to support 8,000 local jobs annually and contribute £400 billion to the UK economy by 2030. Google’s cloud arm is also assisting government agencies in upgrading digital skills and infrastructure.
