--- title: "Rising African Cybercrime, Salt Typhoon Strikes, Nucor Files Again | DMARC Report" description: "Rising African Cybercrime, Salt Typhoon Strikes, Nucor Files Again From a product strategy perspective." image: "https://dmarcreport.com/og/blog/rising-african-cybercrime-salt-typhoon-strikes-nucor-files-again.png" canonical: "https://dmarcreport.com/blog/rising-african-cybercrime-salt-typhoon-strikes-nucor-files-again/" --- Quick Answer Rising African Cybercrime, Salt Typhoon Strikes, Nucor Files Again Related: [Free DMARC Checker](/tools/dmarc-checker/) ·[How to Create an SPF Record](/tools/spf-record-generator/) ·[SPF Record Format](/blog/spf-format-checker-dos-and-donts-for-email-authentication/) Share [ ](https://www.linkedin.com/sharing/share-offsite/?url=undefined%2Fblog%2Frising-african-cybercrime-salt-typhoon-strikes-nucor-files-again%2F "Share on LinkedIn") [ ](https://twitter.com/intent/tweet?text=Rising%20African%20Cybercrime%2C%20Salt%20Typhoon%20Strikes%2C%20Nucor%20Files%20Again&url=undefined%2Fblog%2Frising-african-cybercrime-salt-typhoon-strikes-nucor-files-again%2F "Share on X/Twitter") [ ](https://www.facebook.com/sharer/sharer.php?u=undefined%2Fblog%2Frising-african-cybercrime-salt-typhoon-strikes-nucor-files-again%2F "Share on Facebook") [ ](https://reddit.com/submit?url=undefined%2Fblog%2Frising-african-cybercrime-salt-typhoon-strikes-nucor-files-again%2F&title=Rising%20African%20Cybercrime%2C%20Salt%20Typhoon%20Strikes%2C%20Nucor%20Files%20Again "Share on Reddit") [ ](mailto:?subject=Rising%20African%20Cybercrime%2C%20Salt%20Typhoon%20Strikes%2C%20Nucor%20Files%20Again&body=Check out this article: undefined%2Fblog%2Frising-african-cybercrime-salt-typhoon-strikes-nucor-files-again%2F "Share via Email") ![Rising African Cybercrime, Salt Typhoon Strikes, Nucor Files Again](https://media.mailhop.org/dmarcreport/images/2022/04/dmarc-alignment-6379.jpg) **Rising African Cybercrime, Salt Typhoon Strikes, Nucor Files Again** > From a product strategy perspective, DMARC reporting is evolving from a security tool to a business intelligence platform, says Brad Slavin, General Manager of DuoCircle. The data in aggregate reports tells you not just who’s spoofing you, but who’s sending legitimate email on your behalf - and whether they’re doing it correctly. \_According to the [FBI’s 2022 Internet Crime Report (IC3)](https://www.ic3.gov/Media/PDF/AnnualReport/2022IC3Report.pdf), 300,497 US-based victims reported phishing incidents in a single year, and Business Email Compromise (BEC) caused more than $2.7 billion in direct losses. Rising African Cybercrime, Salt Typhoon Strikes, Nucor Files Again Play EpisodePause Episode Mute/Unmute EpisodeRewind 10 Seconds1xFast Forward 30 seconds 00:00/2:14 RSS Feed Share \[ \]( African Cybercrime, Salt Typhoon Strikes, Nucor Files Again)\[ \]( African Cybercrime, Salt Typhoon Strikes, Nucor Files Again)\[ \]() Link Embed /\*! This file is auto-generated \*/ ” class=“input-embed input-embed-29062”/> It’s already the 4th week of June, and there have been some crazy shifts in the [cybersecurity](https://dmarcreport.com/blog/major-cybersecurity-trends-that-will-reign-in-2024/) landscape. 2025 has witnessed Salt Typhoon attacks on multiple companies, including Viasat. There has been some serious upheaval in the cyber situation of Africa\*\*, while they are already struggling with [policy enforcement](https://www.f5.com/glossary/policy-enforcement) issues. Lastly, another major highlight of the week is the cyberattack on steel giant Nucor. Let’s find out more about these cyber mishaps! ![Dmarc office 365](https://media.mailhop.org/dmarcreport/images/2025/06/dmarc-office-365-2278.jpg) ## Africa grappling with a rise in cybercrimes and law enforcement issues! Cyberattacks have increased exponentially across Africa, particularly in **East and West Africa**, where cybercrime accounts for more than [30% ](https://www.darkreading.com/cyber-risk/africa-surge-cybercrime-law-enforcement-struggles)of total reported crimes. To make it worse, Africa is also grappling with economic uncertainty. The easy access to digitization and the simultaneous lack of digital knowledge are adding to the problems. What’s more surprising is that 9 out of 10 African nations do not have the necessary [law enforcement systems](https://en.wikipedia.org/wiki/Law%5Fenforcement%5Fin%5Fthe%5FUnited%5FStates) or implementation infrastructure as of now. ![Gmail dmarc](https://media.mailhop.org/dmarcreport/images/2025/06/gmail-dmarc-2311.jpg) [Neal Jotton](https://www.interpol.int/en/News-and-Events/News/2025/New-INTERPOL-report-warns-of-sharp-rise-in-cybercrime-in-Africa), the director of the **Cybercrime Directorate at Interpol**, believes that adequate investments and cybersecurity training can significantly help towards stabilizing Africa’s cyber future. He feels that boosted connectivity and [digital innovation](https://ezassi.com/what-is-digital-innovation/) also pave the way for increased [cyber threats](https://www.securityweek.com/cyber-insights-2025-cyber-threat-intelligence/). As a result, critical infrastructures, such as public services and financial systems, continue to be targeted repeatedly. _Currently, Africa is also struggling with crucial pain points such as inflation, high unemployment, and political instability_. There are threat groups based in \*\*Nigeria, Senegal, and Ghana \*\*that target global companies with [BEC](https://thehackernews.com/2025/02/us-and-dutch-authorities-dismantle-39.html) or Business Email Compromise. [Ransomware attacks](https://www.cbsnews.com/news/cybersecurity-ransomware-young-western-hackers-work-with-russians-60-minutes-transcript-2025-06-01/) are also on the rise in Africa. To combat such email-based attacks, especially BEC, organizations must implement [SPF](https://autospf.com/blog/spf-guide-understanding-sender-policy-framework/), [DKIM](https://dmarcreport.com/what-is-dkim/), and [DMARC](https://dmarcreport.com/) to authenticate their [email infrastructure](https://www.voilanorbert.com/blog/email-infrastructure/) and prevent spoofing. ![Dmarc record](https://media.mailhop.org/dmarcreport/images/2025/06/dmarc-record-3011.jpg) What poses as a major cause of concern is the inability of law enforcement agencies to collaborate and investigate the threat situation together. The incompetence of authorities is also one of the major roadblocks to building a robust cybersecurity system. \*\*Cyber experts \*\*believe that investing in relevant technology and regular training around cybersecurity can help to a great extent in curbing potential threat attacks. ## Telecom giant Viasat is the latest victim of the Salt Typhoon attack Viasat is one of the latest victims of the [Salt Typhoon cyberattack](https://www.msn.com/en-us/news/us/viasat-joins-the-list-of-salt-typhoon-cyberattack-victims/ar-AA1GXeUh). This California-based telecom giant operates a satellite fleet as well as different ground stations in order to provide a global network . It offers \*\*high-speed broadband services as well as networking systems to commercial consumers and the military. Viasat has reported that threat actors acquired unauthorized access to one of its devices. Currently, it is working with [third-party](https://www.investopedia.com/terms/t/third-party.asp) \*\*cybersecurity experts to mitigate the extent of the damage. The telecom company has informed that so far, there is no evidence of [customer data](https://www.techtarget.com/searchcio/definition/consumer-data) being affected. But it has refused to share any more details, given the sensitive nature of its partnership with government entities . ![What is dmarc](https://media.mailhop.org/dmarcreport/images/2025/06/what-is-dmarc-5618.jpg) Salt Typhoon, a notorious [cyber espionage](https://www.crowdstrike.com/en-us/cybersecurity-101/threat-intelligence/cyber-espionage/) group, has targeted multiple telecom companies in 2025\. Windstream, Charter Communications, and Consolidated Communications fell prey to the Salt Typhoon’s attack early in January 2025\. Then, in February, Cisco was also targeted by the threat group. By attacking Cisco, Salt Typhoon was planning to break into the systems of other [telecom service providers](https://www.dpstele.com/network-monitoring/telecom/companies.php) such as **T-Mobile, Verizon, AT&T**, and so on. Experts believe that this threat group may have been trying to gain access to the telephone audio intercepts and phone call data. ## Nucor has filed yet another 8-K form! Nucor Corporation, the Charlotte-based steel manufacturing company, discovered a [data breach](https://www.bleepingcomputer.com/news/security/data-breach-at-us-healthcare-provider-chc-impacts-1-million-patients/) in May 2025\. At that time, it immediately halted production operations and proceeded with an 8-K filing. Initially, Nucor reported that its IT systems had been hacked. However, **this month, on June 20**, it filed a new [8-K form](https://corporatefinanceinstitute.com/resources/accounting/form-8-k/), which mentioned that its data had been compromised and stolen by threat actors in the same data breach incident. ![Dmarc check](https://media.mailhop.org/dmarcreport/images/2025/06/dmarc-check-3047.jpg) The production process has been halted again across various locations. Nucor, the largest **steel-producing company in America**, has been reviewing all the data that was compromised because of the cyberattack. _It is planning to notify all the “potentially affected parties” and regulatory agencies as per the regulations and norms_. Nucor has assured stakeholders that [threat actors](https://securityaffairs.com/179239/cyber-warfare-2/iran-linked-threat-actors-cyber-fattah-leak-visitors-and-athletes-data-from-saudi-games.html) no longer have **access to the company’s systems**. An investigation is underway, but it remains unclear which threat group was responsible for this attack. Nucor produces a quarter of America’s raw steel and expects its earnings to get boosted across all three of its operational segments. However, after the cyber incident, Nucor has not yet disclosed any specific details around the financial impact of the threat attack on the company. The company plans to share its **financial reports on July 28**. This event will be followed by a conference call the next day. Most likely, Nucor will share more details about the cyberattack during the conference call. ## Topics [ dkim ](/tags/dkim/)[ DMARC ](/tags/dmarc/)[ News ](/tags/news/)[ SPF ](/tags/spf/) ![Vasile Diaconu](https://media.mailhop.org/dmarcreport/images/team/vasile-diaconu.jpg) [ Vasile Diaconu ](/authors/vasile-diaconu/) Operations Lead Operations Lead at DuoCircle. Runs project management, developer coordination, and technical support execution for DMARC Report. [LinkedIn Profile →](https://www.linkedin.com/in/vasile-diaconu/) ## Take control of your DMARC reports Turn raw XML into actionable dashboards. Start free - no credit card required. [Start Free Trial](https://app.dmarcreport.com/) [Check Your DMARC Record](/tools/dmarc-checker/) ## Related Articles [ Foundational 4m Adidas Data Breach, Whatsapp Image Threat, Silent Ransom Vishing May 29, 2025 ](/blog/adidas-data-breach-whatsapp-image-threat-silent-ransom-vishing/)[ Foundational 4m Africa Fights Cybercrime, Attention Farmers Customers, Apple Prevents Threats Aug 28, 2025 ](/blog/africa-fights-cybercrime-attention-farmers-customers-apple-prevents-threats/)[ Foundational 4m AI Scam Alert, Federal Cuts Vulnerability, American Tire Cyberattack Sep 9, 2025 ](/blog/ai-scam-alert-federal-cuts-vulnerability-american-tire-cyberattack/)[ Foundational 4m Akira flaunts victims, Idaho targets orthodontist, AI granny protects Nov 22, 2024 ](/blog/akira-flaunts-victims-idaho-targets-orthodontist-ai-granny-protects/) ```json {"@context":"https://schema.org","@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138898167","name":"DMARC Report","url":"https://dmarcreport.com","logo":{"@type":"ImageObject","url":"https://dmarcreport.com/images/dmarcreport-logo.png"},"description":"DMARC reporting and email authentication management. Monitor aggregate and forensic DMARC reports, analyze authentication results, and enforce DMARC policies across all your domains.","parentOrganization":{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138883901","name":"DuoCircle LLC","url":"https://www.duocircle.com","sameAs":["https://www.wikidata.org/wiki/Q138883901","https://www.crunchbase.com/organization/duocircle-llc","https://www.linkedin.com/company/duocircle","https://github.com/duocircle"],"subOrganization":[{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138898167","name":"DMARC Report","url":"https://dmarcreport.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897474","name":"AutoSPF","url":"https://autospf.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897912","name":"Phish Protection","url":"https://www.phishprotection.com"}]},"sameAs":["https://www.wikidata.org/wiki/Q138898167","https://www.linkedin.com/company/duocircle","https://x.com/duocirclellc","https://www.g2.com/products/dmarc-report/reviews","https://github.com/duocircle","https://www.crunchbase.com/organization/duocircle-llc","https://www.trustradius.com/products/duocircle/reviews"],"aggregateRating":{"@type":"AggregateRating","ratingValue":"4.8","reviewCount":"470","bestRating":"5","worstRating":"1","url":"https://www.g2.com/products/dmarc-report/reviews"},"contactPoint":{"@type":"ContactPoint","contactType":"customer support","url":"https://dmarcreport.com/support/"},"knowsAbout":["DMARC","DMARC Reporting","DMARC Aggregate Reports","DMARC Forensic Reports","Sender Policy Framework","DKIM","Email Authentication","Email Security","DNS Management","Email Deliverability"]} ``` ```json {"@context":"https://schema.org","@type":"WebSite","name":"DMARC Report","url":"https://dmarcreport.com","description":"DMARC reporting and email authentication management. Monitor aggregate and forensic DMARC reports, analyze authentication results, and enforce DMARC policies across all your domains.","publisher":{"@type":"Organization","name":"DMARC Report","url":"https://dmarcreport.com","logo":{"@type":"ImageObject","url":"https://dmarcreport.com/images/dmarcreport-logo.png"},"description":"DMARC reporting and email authentication management. Monitor aggregate and forensic DMARC reports, analyze authentication results, and enforce DMARC policies across all your domains.","parentOrganization":{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138883901","name":"DuoCircle LLC","url":"https://www.duocircle.com","sameAs":["https://www.wikidata.org/wiki/Q138883901","https://www.crunchbase.com/organization/duocircle-llc","https://www.linkedin.com/company/duocircle","https://github.com/duocircle"],"subOrganization":[{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138898167","name":"DMARC Report","url":"https://dmarcreport.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897474","name":"AutoSPF","url":"https://autospf.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897912","name":"Phish Protection","url":"https://www.phishprotection.com"}]}}} ``` ```json [{"@context":"https://schema.org","@type":"BlogPosting","headline":"Rising African Cybercrime, Salt Typhoon Strikes, Nucor Files Again","description":"Rising African Cybercrime, Salt Typhoon Strikes, Nucor Files Again From a product strategy perspective.","url":"https://dmarcreport.com/blog/rising-african-cybercrime-salt-typhoon-strikes-nucor-files-again/","datePublished":"2025-06-26T10:48:05.000Z","dateModified":"2026-04-16T15:53:43.000Z","dateCreated":"2025-06-26T10:48:05.000Z","author":{"@type":"Person","@id":"https://dmarcreport.com/authors/vasile-diaconu/#person","name":"Vasile Diaconu","url":"https://dmarcreport.com/authors/vasile-diaconu/","jobTitle":"Operations Lead","description":"Vasile Diaconu is the Operations Lead at DuoCircle, the company behind DMARC Report and AutoSPF. He coordinates between engineering, product, and technical support - running project management, interfacing with developers on customer-reported issues, and making sure work that comes in through the support channel actually gets closed out. Vasile sits at the intersection of customer feedback and engineering execution, giving him a direct view of which email authentication problems customers hit most often in production.","image":"https://media.mailhop.org/dmarcreport/images/team/vasile-diaconu.jpg","knowsAbout":["SaaS Operations","Technical Support Coordination","Customer Issue Resolution","Engineering Program Management","Deployment Operations"],"worksFor":{"@type":"Organization","name":"DMARC Report","url":"https://dmarcreport.com"},"sameAs":["https://www.linkedin.com/in/vasile-diaconu/"]},"publisher":{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138898167","name":"DMARC Report","url":"https://dmarcreport.com","logo":{"@type":"ImageObject","url":"https://dmarcreport.com/images/dmarcreport-logo.png"},"description":"DMARC reporting and email authentication management. Monitor aggregate and forensic DMARC reports, analyze authentication results, and enforce DMARC policies across all your domains.","parentOrganization":{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138883901","name":"DuoCircle LLC","url":"https://www.duocircle.com","sameAs":["https://www.wikidata.org/wiki/Q138883901","https://www.crunchbase.com/organization/duocircle-llc","https://www.linkedin.com/company/duocircle","https://github.com/duocircle"],"subOrganization":[{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138898167","name":"DMARC Report","url":"https://dmarcreport.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897474","name":"AutoSPF","url":"https://autospf.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897912","name":"Phish Protection","url":"https://www.phishprotection.com"}]},"sameAs":["https://www.wikidata.org/wiki/Q138898167","https://www.linkedin.com/company/duocircle","https://x.com/duocirclellc","https://www.g2.com/products/dmarc-report/reviews","https://github.com/duocircle","https://www.crunchbase.com/organization/duocircle-llc","https://www.trustradius.com/products/duocircle/reviews"],"aggregateRating":{"@type":"AggregateRating","ratingValue":"4.8","reviewCount":"470","bestRating":"5","worstRating":"1","url":"https://www.g2.com/products/dmarc-report/reviews"},"contactPoint":{"@type":"ContactPoint","contactType":"customer support","url":"https://dmarcreport.com/support/"},"knowsAbout":["DMARC","DMARC Reporting","DMARC Aggregate Reports","DMARC Forensic Reports","Sender Policy Framework","DKIM","Email Authentication","Email Security","DNS Management","Email Deliverability"]},"mainEntityOfPage":{"@type":"WebPage","@id":"https://dmarcreport.com/blog/rising-african-cybercrime-salt-typhoon-strikes-nucor-files-again/"},"articleSection":"foundational","keywords":"dkim, DMARC, News, SPF","wordCount":1023,"image":{"@type":"ImageObject","url":"https://media.mailhop.org/dmarcreport/images/2022/04/dmarc-alignment-6379.jpg","caption":"Rising African Cybercrime, Salt Typhoon Strikes, Nucor Files Again","width":900,"height":600},"speakable":{"@type":"SpeakableSpecification","cssSelector":[".answer-block","h1"]}}] ``` ```json {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https://dmarcreport.com/"},{"@type":"ListItem","position":2,"name":"Blog","item":"https://dmarcreport.com/blog/"},{"@type":"ListItem","position":3,"name":"Foundational","item":"https://dmarcreport.com/foundational/"},{"@type":"ListItem","position":4,"name":"Rising African Cybercrime, Salt Typhoon Strikes, Nucor Files Again","item":"https://dmarcreport.com/blog/rising-african-cybercrime-salt-typhoon-strikes-nucor-files-again/"}]} ```