The theft of an **iPhone** might be just the beginning of your troubles. New research indicates a rise in phishing attacks targeting contacts found on stolen devices, fueled by readily available tools for unlocking iPhones. **iPhone Contact Phishing on the Rise** Criminals are leveraging stolen iPhones to extract contact information and launch targeted phishing campaigns. This trend highlights the importance of robust security measures and user awareness training regarding phishing tactics. **Foxconn Hit by Ransomware** Electronics manufacturing giant **Foxconn** recently confirmed it suffered a cyberattack. The **Nitrogen** ransomware group claimed responsibility, alleging the theft of 8 TB of data. While the full impact remains unconfirmed, this incident underscores the persistent threat to valuable targets in the manufacturing sector. **Cybercriminal Twins Busted by Microsoft Teams Recording** A cautionary tale for aspiring cybercriminals: remember to end your **Microsoft Teams** meeting *before* plotting digital revenge. Two fired employees, Muneeb and Sohaib Akhter, pleaded guilty to destroying 96 government databases after their termination from federal contractor **Opexus**. Their detailed planning was inadvertently recorded by the very Teams meeting in which they were fired, providing irrefutable evidence for prosecutors. "Still connected? Still on the VPN?" Sohaib was recorded asking his brother, before discussing deleting databases. The transcribed court document, spotted by Ars Technica, sealed their fate. **Instructure Negotiates with Ransomware Group After Canvas Hack** **Instructure**, the company behind the **Canvas** learning management system, reached an agreement with the **ShinyHunters** ransomware group after a disruptive attack that impacted thousands of schools. Instructure claims the stolen data, reportedly including records of 275 million students, has been "returned" and destroyed. The company did not disclose whether a ransom was paid. **Dream Market Admin Arrested in Germany** Owe Martin Andresen, the alleged administrator of the now-defunct **Dream Market**, a major dark web marketplace, was arrested in Germany. Dream Market voluntarily shut down in 2019 after a series of raids. Prosecutors claim Andresen made millions from commissions, laundering some through gold purchases. **OpenAI Discloses Open Source Supply Chain Attack** **OpenAI** revealed that two employees were victims of a supply chain attack targeting the **TanStack** open-source project. Hackers embedded malware designed to steal sensitive data, including Git credentials, GitHub Action tokens, SSH keys, and Claude Code configs. OpenAI is requiring macOS users to update their apps by June 12. **Data Broker Findem Removes Hidden Opt-Out Code** **Findem**, a data broker, removed code that hid its data-deletion page from Google for three years. The company claims a former employee embedded a “no index” code without executive knowledge, preventing users from finding the opt-out controls. This action followed scrutiny from Senator Maggie Hassan and reports highlighting the practice of hiding opt-out pages among data brokers.