Texas Breach Exposes 3M Government IDs; Popa Botnet Tied to Israeli Firm

Security dominated the feed yesterday: a Texas government breach leaked 3 million government-issued IDs, and Krebs unraveled a four-year Android botnet to its corporate owner — a publicly traded Israeli firm.

Security

A data breach at a Texas government entity exposed the driver's licenses and passports of more than 3 million people — one of the larger government ID exposures on record in the U.S. Driver's licenses and passport data together are among the most useful documents to fraudsters: they enable identity theft, synthetic identity creation, and account takeover at scale. No breach vector has been made fully public, and no ransomware group has stepped forward with a claim.

Brian Krebs traced the Popa botnet to a publicly traded Israeli company. Popa has quietly infected Android TV boxes for four years, routing traffic through millions of consumer devices to facilitate advertising fraud, account takeovers, and mass data scraping. The attribution to a public company is the headline: a botnet controlled by an entity with shareholders, filings, and auditors creates legal exposure — securities fraud, wire fraud, and anti-money-laundering risk — that purely criminal operations don't face. Expect this to have a long legal tail.

Nintendo confirmed that threat actors stole survey data from TinyPulse, an internal HR survey tool operated as a WebMD subsidiary. Nintendo's own systems were not compromised. The pattern is familiar: when primary targets are well-defended, attackers route through vendors — and the vendor graph is often stranger than organizations realize. A game company whose HR tooling is owned by a health media conglomerate is exactly the kind of relationship that doesn't surface on a standard vendor risk assessment.

Apple patched a high-severity eavesdropping vulnerability in Beats Studio Buds 12 months after original disclosure. The flaw extends across multiple Bluetooth headphone manufacturers, not just Beats. A year from disclosure to patch is a long cycle for a bug that enables passive audio interception.

AI

OpenAI made two significant hires in the same week: Noam Shazeer, co-inventor of the Transformer architecture, from Google DeepMind; and Dean Ball, a former Trump administration AI policy official. The Shazeer hire is the more remarkable. He's one of the architects of the attention mechanism underlying essentially every modern large language model, and he spent decades at Google before co-founding Character.AI. Pulling him from DeepMind into OpenAI ahead of an IPO is a statement about both the intensity of frontier talent competition and how OpenAI wants its research bench to read on a prospectus.

The inference infrastructure thesis continues to attract capital at a pace that implies investors think Nvidia's grip is breakable. Baseten is reportedly finalizing a $1.5 billion round at a $13 billion valuation — just months after its last mega-round. Separately, Amazon is in talks to sell Trainium chips to third-party data centers, with Andy Jassy positioning this as a $50 billion opportunity against Nvidia's installed base. Whether custom silicon plus software stack can actually displace Nvidia at scale remains unproven, but both signals point to inference capacity as the investment theme of the moment.

ServiceNow's research team published MosaicLeaks, a study examining whether AI research agents can be manipulated into leaking confidential data they've been granted access to. As agentic systems accumulate tool calls, persistent memory, and internal document access, the attack surface expands beyond prompt injection into territory that resembles traditional exfiltration. This is early-stage research, but the question — can your research agent keep a secret? — is one organizations deploying autonomous agents should be working through now rather than after an incident.

Tech

FERC ordered grid operators to create a fast-lane interconnection path for AI data centers. It's a meaningful regulatory commitment, but the order doesn't address the underlying electricity supply shortage. A faster queue is useful only if there's capacity to allocate; the policy tension between AI buildout and grid reality is becoming a concrete near-term operational constraint.

India's block on Telegram is already driving visible migration to VPNs and competing apps. Telegram's argument — that India should target specific illegal content rather than the whole platform — is coherent and essentially irrelevant in a jurisdiction with broad platform-blocking authority. The more interesting question is where India's 1.4 billion users land, and how a sudden involuntary migration reshapes the messaging market.

Ars Technica reports that Chinese investors with documented ties to military contractors quietly acquired SpaceX stakes ahead of a potential public offering. At least one previously undisclosed investor has connections to the Chinese defense industry. For a company operating Starlink and launching classified national security payloads, undisclosed military-adjacent foreign ownership is the kind of disclosure that generates CFIUS referrals and congressional inquiries, not just headlines.

Google confirmed the Android developer verification timeline: a new system service rolls this month, with enforcement changes affecting app store distribution rights starting in September. The move consolidates Google's control over Android's distribution chain at the exact moment the company is fighting app store antitrust cases in multiple jurisdictions — the timing is notable.

The thread connecting more than a few of today's stories is access opacity: who actually has access to the systems, assets, and data that organizations believe they control. The Nintendo vendor breach, the SpaceX investor disclosure, and Android's distribution controls are all, in different ways, answers to that question that turned out to be unwelcome.

Also yesterday

• AMD Quietly Strips Memory Encryption From Consumer Ryzen CPUs in Firmware Update
• F5 Releases Emergency Patches for Critical NGINX RCE Vulnerabilities
• ShapedPlugin Supply Chain Attack Delivers Malware Through Official WordPress Plugin Updates