3/31/2025 March 31, 2025March 31, 2025 ~ The Cyber Beat ~ Leave a comment Krebs: How Each Pillar of the 1st Amendment is Under AttackCybersecurity Professor Xiaofeng Wang Mysteriously Disappears as FBI Raids His HomesCanadian Hacker Arrested for Allegedly Stealing Data From Texas Republican PartyBritish Intel Intern Pleads Guilty to Smuggling Top Secret Data Out of Protected FacilityChina Cracks Down on Personal Information Collection. No, SeriouslyAn AI Image Generator’s Exposed Database Reveals What People Really Used It ForMicrosoft Uses AI to Find Flaws in GRUB2, U-Boot, Barebox BootloadersAI-Powered Cybersecurity Firm ReliaQuest Raises More Than $500 MillionU.S. Seizes $8.2m From Romance Baiting ScammersEU Commission to Invest €1.3bn in Cybersecurity and AIFrench Regulator Fines Apple $162 Million for Anticompetitive Use of Privacy ToolFTC Says 23andMe Purchaser Must Uphold Existing Privacy Policy for Data HandlingCIOs and CISOs Need a Common Strategy Around AI CopilotsMoscow Subway App and Website Disrupted in Possible Retaliation for Ukraine Railway HackRussia-Linked Gamaredon Uses Troop-Related Lures to Deploy Remcos RAT in UkraineRussian Hackers Exploit CVE-2025-26633 via MSC EvilTwin to Deploy SilentPrism and DarkWispClickFake Interview Campaign by Lazarus Targets Crypto Job SeekersAPI Testing Firm APIsec Exposed Customer Data During Security LapseOracle Under Fire for Its Handling of Separate Security IncidentsCheck Point Confirms Breach, but Says It Was ‘Old’ Data and Crook Made ‘False’ ClaimsUnited Domestic Workers of America (CA) Sends Out Data Breach Letters Following Apparent CyberattackGeorgia Urology Notifies Patients of Data Breach Following Compromised Employee Email AccountsPhishing Platform ‘Lucid’ Behind Wave of iOS, Android SMS AttacksEvilginx Tool (Still) Bypasses MFAHackers Exploit WordPress mu-Plugins to Inject Spam and Hijack Site ImagesBridging the Gap Between the CISO & the Board of Directors
3/28-30/2025 March 30, 2025March 30, 2025 ~ The Cyber Beat ~ Leave a comment Trump CISA Cuts Threaten U.S. Election Integrity, Experts WarnSolar Power System Vulnerabilities Could Result in BlackoutsNine in Ten Healthcare Organizations Use the Most Vulnerable IoT DevicesOpenAI Now Pays Researchers $100,000 for Critical VulnerabilitiesHijacked Microsoft Web Domain Injects Spam Into SharePoint ServersMadison Square Garden’s Surveillance System Banned This Fan Over His T-Shirt DesignPersonal Info on Federal Judges Is Widely Accessible Online, Leading to Safety RisksOracle Health Breach Compromises Patient Data at U.S. HospitalsRetail Giant Sam’s Club Investigates Clop Ransomware Breach ClaimsPacific Residential Mortgage (OR) Confirms Data Breach Following Recent Ransomware AttackPhishing-As-A-Service Operation Uses DNS-Over-HTTPS for EvasionNew Android Trojan Crocodilus Abuses Accessibility to Steal Banking and Crypto CredentialsRESURGE Malware Exploits Ivanti Flaw with Rootkit and Web Shell FeaturesNew Ubuntu Linux Security Bypasses Require Manual Mitigations
3/27/2025 March 27, 2025March 27, 2025 ~ The Cyber Beat ~ Leave a comment Chinese FamousSparrow Hackers Deploy Upgraded Malware in AttacksAPT36 Spoofs India Post Website to Infect Windows and Android Users with MalwareTwo Serbian Journalists Reportedly Targeted With Pegasus SpywareKrebs: When Getting Phished Puts You in Mortal DangerTroy Hunt: A Sneaky Phish Just Grabbed my Mailchimp Mailing ListNo MFA? Expect Hefty Fines, UK’s ICO WarnsUK Fines Software Provider £3.07 Million for 2022 Ransomware BreachUK NCSC Urges Domain Registrars to Improve SecuritySecurity Shop Pwns BlackLock Ransomware Gang, Passes Insider Info to AuthoritiesVivaldi Integrates Proton VPN Into the Browser to Fight Web TrackingWhatsApp’s Meta AI Is Now Rolling out in Europe, and It Can’t Be Turned OffSignalGate Is Driving the Most U.S. Downloads of Signal EverEuropean Officials Increasingly Certain Baltic Sea Cable Breaks Are Accidental, Not SabotageRussia Arrests Three for Allegedly Creating Mamont Malware, Tied to Over 300 CybercrimesRussian Media, Academia Targeted in Espionage Campaign Using Google Chrome Zero-Day ExploitUkraine’s State Railway Restores Online Ticket Sales After Major CyberattackVulnerable Children’s Details at Risk in Data Cardiff Breach150,000 Sites Compromised by JavaScript Injection Promoting Chinese Gambling PlatformsPJobRAT Malware Targets Users in Taiwan via Fake AppsNew Morphing Meerkat Phishing Kit Mimics 114 Brands Using Victims’ DNS Email RecordsInfostealer Campaign Compromises 10 Npm Packages, Targets DevsHackers Repurpose RansomHub’s EDRKillShifter in Medusa, BianLian, and Play AttacksCoffeeLoader Malware Loader Linked to SmokeLoader OperationsDozens of Solar Inverter Flaws Could Be Exploited to Attack Power GridsNetApp SnapCenter Flaw Could Let Users Gain Remote Admin Access on Plug-In SystemsMozilla Warns Windows Users of Critical Firefox Sandbox Escape FlawCISA Warns of Sitecore RCE Flaws; Active Exploits Hit Next.js and DrayTek Devices
3/26/2025 March 26, 2025March 26, 2025 ~ The Cyber Beat ~ Leave a comment Austria Uncovers Alleged Russian Disinformation Campaign Spreading Lies About UkraineRedCurl Shifts from Espionage to Ransomware with First-Ever QWCrypt DeploymentNew SparrowDoor Backdoor Variants Found in Attacks on U.S. and Mexican OrganizationsU.S. Intel Leaders Are Grilled Again About the Leaked Signal Chat as More Details Emerge…Here Are the Attack Plans That Trump’s Advisers Shared on Signal…SignalGate Isn’t About SignalDOGE Staffer ‘Big Balls’ Provided Tech Support to Cybercrime Ring, Records ShowSEC’s Hester Peirce Discusses New Approach to Crypto and Cyber Rule MakingSecure Browser Startup Island Raises $250 MillionOracle Customers Confirm Data Stolen in Alleged Cloud Breach Is ValidStreamElements Discloses Third-Party Data Breach After Hacker Leaks DataSecurityScorecard Observes Surge in Third-Party BreachesUK Warns of Emerging Threat From ‘Sadistic’ Online ‘Com Networks’ of Teenage BoysMalicious npm Packages Deliver Sophisticated Reverse ShellsThreat Actors Abuse Trust in Cloud Collaboration PlatformsZero-Day Alert: Google Releases Chrome Patch for Exploit Used in Russian Espionage AttacksCybersecurity Gaps Leave Doors Wide OpenClaude is Testing ChatGPT-Like Deep Research Feature Compass
3/25/2025 March 26, 2025March 26, 2025 ~ The Cyber Beat ~ Leave a comment Lengthy Disruption of Russian Internet Provider Claimed by Ukrainian Hacker GroupUkraine Railways Say Sunday’s Cyber Attack Hit Its Online Freight ServicesCyber Command Official Is Trump’s Choice for Pentagon Policy JobWhat Is Signal, the Messaging App Trump Team Used to Share War Plans?…NSA Warned of Vulnerabilities in Signal App a Month Before Houthi Strike Chat…Senate Democrats Dissatisfied With Intel Officials’ Responses About Signal Chat…Signal Is App of Choice for Trump Allies and Opponents AlikeHow to Tell if Your Online Accounts Have Been HackedCloudflare R2 Service Outage Caused by Password Rotation ErrorFlurry to Pay $3.5 Million for Harvesting Sexual and Reproductive Health Data From Period App5 Considerations for a Data Loss Prevention RolloutHacker Defaces NYU Website, Exposing Admissions Data on 1 Million StudentsNearly $13 Million Stolen From Abracadabra Finance in Crypto HeistMalaysia PM Says Country Rejected $10 Million Ransom Demand After Airport OutagesNew Android Malware Uses .NET MAUI to Evade DetectionCybercriminals Use Atlantis AIO to Target 140+ PlatformsResearchers Uncover ~200 Unique C2 Domains Linked to Raspberry Robin Access BrokerBrowser-In-The-Browser Attacks Target CS2 Players’ Steam AccountsEncryptHub Linked to MMC Zero-Day Attacks on Windows AystemsNew Windows Zero-Day Leaks NTLM Hashes, Gets Unofficial PatchBroadcom Warns of Authentication Bypass in VMware Windows ToolsCrushFTP Warns Users to Patch Unauthenticated Access Flaw Immediately
3/24/2025 March 24, 2025March 24, 2025 ~ The Cyber Beat ~ Leave a comment Chinese Weaver Ant Hackers Spied on Telco Network for 4 Years…APT ‘Weaver Ant’The Trump Administration Accidentally Texted Me Its War PlansSANS Institute Warns of Novel Cloud-Native Ransomware Attacks23andMe Files for Bankruptcy, Customers Advised to Delete DNA Data…How to Delete Your Data From 23andMeGoogle’s $32 Billion Wiz Deal May Signal a Turning Point for Slow IPO, M&A MarketsAuthorities Seize 1842 Devices in Africa’s Cybercrime CrackdownAlleged Snowflake Hacker Agrees to Be Extradited to the U.S.Ukraine Railway Systems Hit by Targeted Cyber-Attack…Ukraine Sees Russian Effort to Sow ChaosSouth Africa’s Astral Foods Hit by Cybersecurity IncidentHackers Steal Sensitive Data From Union County (PA) During Ransomware AttackDrayTek Routers Worldwide Go into Reboot Loops Over WeekendVanHelsingRaaS Expands Rapidly in Cybercrime MarketCritical Ingress NGINX Controller Vulnerability Allows RCE Without AuthenticationCritical Next.js Vulnerability Allows Attackers to Bypass Middleware Authorization ChecksGoogle Gemini’s Astra (Screen Sharing) Rolls Out on Android for Some Users
3/21-23/2025 March 23, 2025March 23, 2025 ~ The Cyber Beat ~ Leave a comment Trump Denies Musk to Be Briefed on Top-Secret Plan for Potential War With ChinaTrump Administration Begins Shifting Cyberattack Response to StatesChina-Linked APT Aquatic Panda: 10-Month Campaign, 7 Global Targets, 5 Malware FamiliesU.S. Treasury Lifts Tornado Cash Sanctions Amid North Korea Money Laundering ProbeKrebs: Arrests in Tap-to-Pay Scheme Powered by PhishingFBI Warnings Are True—Fake File Converters Do Push MalwareCloudflare Now Blocks All Unencrypted Traffic to Its API EndpointsMajor Web Services Go Dark in Russia Amid Reported Cloudflare BlockMicrosoft: Exchange Online Bug Mistakenly Quarantines User EmailsWhy Cyber Quality Is the Key to SecurityCoinbase Initially Targeted in GitHub Actions Supply Chain Attack; 218 Repositories’ CI/CD Secrets ExposedOracle Denies Breach After Hacker Claims Theft of 6 Million Data RecordsYouTube Account of Costa Rica’s Presidency Back Online After Cyber AttackSteam Pulls Game Demo Infecting Windows With Info-Stealing MalwareFake Semrush Ads Used to Steal SEO Professionals’ Google AccountsMedusa Ransomware Uses Malicious Driver to Disable Anti-Malware with Stolen CertificatesAlbabat Ransomware Evolves to Target Linux and macOSMicrosoft Trusted Signing Service Abused to Code-Sign MalwareCybercriminals Exploit CheckPoint Antivirus Driver in Malicious CampaignVeeam RCE Bug Lets Domain Users Hack Backup Servers, Patch Now
3/20/2025 March 20, 2025March 20, 2025 ~ The Cyber Beat ~ Leave a comment Taiwan Critical Infrastructure Targeted by Hackers With Possible Ties to Volt TyphoonFishMonger APT Group Linked to I-SOON in Espionage CampaignsNorth Korea Launches New Unit With a Focus on AI Hacking, per ReportLow-Cost Drone Add-Ons From China Let Anyone With a Credit Card Turn Toys Into Weapons of WarU.S. Offers $15M Reward for Team Accused of Smuggling Drone Tech to IranKrebs: DOGE to Fired CISA Staff: Email Us Your Personal DataMore Than 400 Social Security Numbers, Other Private Information Revealed in JFK FilesWiz Deal Buoys Cyber Startup OutlookThe Post-Quantum Cryptography Apocalypse Will Be Televised in 10 Years, Says UK’s NCSCRooted Devices 250 Times More Vulnerable to CompromiseGoogle Sues Alleged Scammers Over 10,000 Fake Maps ListingsEx-Michigan Assistant Charged With Hacking Computer AccountsChina’s Baidu Denies Data Breach After Executive’s Daughter Leaks Personal InfoMajor Web Services Go Dark in Russia Amid Reported Cloudflare BlockMalware Campaign ‘DollyWay’ Breached 20,000 WordPress SitesHellCat Hackers Go on a Worldwide Jira Hacking SpreeGitHub Action Supply Chain Attack Exposed Secrets in 218 ReposESHYFT (NJ) Allegedly Leaves Database Exposed, Leading to Potentially Large-Scale Data BreachParascript (CO) Announces Data Breach Following August 2024 Ransomware AttackRansomHub Ransomware Uses New Betruger ‘Multi-Function’ BackdoorVSCode Extensions Found Downloading Early-Stage RansomwareCISA Adds NAKIVO Vulnerability to KEV Catalog Amid Active ExploitationCritical Cisco Smart Licensing Utility Flaws Now Exploited in AttacksVeeam and IBM Release Patches for High-Risk Flaws in Backup and AIX SystemsWordPress Security Plugin WP Ghost Vulnerable to Remote Code Execution BugKali Linux 2025.1a Released With 1 New Tool, Annual Theme Refresh
3/19/2025 March 19, 2025March 19, 2025 ~ The Cyber Beat ~ Leave a comment U.S. Suspends Some Efforts to Counter Russian Sabotage as Trump Moves Closer to PutinEx-U.S. Cyber Command Chief: Europe and 5 Eyes Can’t Fully Replicate U.S. IntelHong Kong Aims to Safeguard Key Facilities With New Cybersecurity LawLeaked Black Basta Chats Suggest Russian Officials Aided Leader’s Escape from ArmeniaEuropol Warns of “Shadow Alliance” Between States and CriminalsWhatsApp Patched Zero-Click Flaw Exploited in Paragon Spyware Attacks…Researchers Name Six Countries as Likely Customers of Paragon’s SpywareClick Profit Blocked by the FTC Over Alleged E-commerce ScamsTurkey Restricts Social Media Following Arrest of President’s Main RivalUkrainian Military Targeted in New Signal Spear-Phishing AttacksUkraine’s IT Army Keeps up Attacks on Russia Despite Waning Media HypeAttackers Swipe Data of 500K+ People From Pennsylvania Teachers UnionNames, Bank Info, and More Spills From Top Sperm Bank California CryobankSneaky 2FA Joins Tycoon 2FA and EvilProxy in 2025 Phishing SurgeNew Arcane Infostealer Infects YouTube, Discord Users via Game CheatsClearFake Infects 9,300 Sites, Uses Fake reCAPTCHA and Turnstile to Spread Info-StealersHackers Exploit Severe PHP Flaw to Deploy Quasar RAT and XMRig MinersCritical mySCADA myPRO Flaws Could Let Attackers Take Over Industrial Control Systems
3/18/2025 March 18, 2025March 18, 2025 ~ The Cyber Beat ~ Leave a comment China Identifies Taiwanese Hackers Allegedly Behind Cyberattacks and EspionageChina-Linked MirrorFace Deploys ANEL and AsyncRAT in New Cyber Espionage OperationThird of UK Supply Chain Relies on “Chinese Military” CompaniesBlackBasta Ransomware Ties to Russian Authorities UncoveredPoisoned Windows Shortcuts Found to Be a Favorite of Chinese, Russian, N. Korean State HackersSecurity Researcher Proves GenAI Tools Can Develop Google Chrome InfostealersNew ‘Rules File Backdoor’ Attack Lets Hackers Inject Malicious Code via AI Code EditorsNew Report Highlights Common Passwords in RDP AttacksGoogle Strikes $32 Billion Deal for Cybersecurity Startup WizCISA Fires, Rehires & Immediately Benches Security Crew on Full PayThis New Tool Lets You See How Much of Your Data Is Exposed Online – And It’s FreeGitHub Action Hack Likely Led to Another in Cascading Supply Chain AttackMunicipalities in Four States Are Struggling With Cyberattacks Limiting ServicesWestern Alliance Bank Notifies 21,899 Customers of Data BreachBlockchain Gaming Platform WEMIX Hacked to Steal $6.1 MillionHELLCAT: Jaguar Land Rover Breach Highlights Growing Cybersecurity Risks in Automotive SectorGrede Holdings (MI) Sends Out Round of Data Breach Letters Following January 2025 Cybersecurity IncidentNew Ad Fraud Campaign Exploits 331 Apps with 60M+ Downloads for Phishing and Intrusive AdsNew Critical AMI BMC Vulnerability Enables Remote Server Takeover and BrickingApple Has Revealed a Passwords App Vulnerability That Lasted for MonthsUnpatched Windows Zero-Day Flaw Exploited by 11 State-Sponsored Threat Groups Since 2017
3/17/2025 March 17, 2025March 17, 2025 ~ The Cyber Beat ~ Leave a comment Cloudflare Introduces E2E Post-Quantum Cryptography ProtectionsU.S. Legislators Demand Transparency in Apple’s UK Backdoor Court FightStates Vie for Fired Federal Cyber WorkersGoogle in Fresh Talks to Buy Cybersecurity Startup Wiz for $30 BillionHow Economic Headwinds Influence the Ransomware EcosystemOKX Suspends DEX Aggregator after Lazarus Hackers Try to Launder FundsTelegram CEO Pavel Durov Leaves France Temporarily as Criminal Probe Continues‘Mora_001’ Ransomware Gang Exploiting Fortinet Bug Spotlighted by CISA in JanuaryCherokee County School District (SC) Remains Offline After Data BreachMicrosoft: New RAT Malware Used for Crypto Theft, ReconnaissanceResearchers Confirm BlackLock as Eldorado RebrandCybercriminals Exploit CSS to Evade Spam Filters and Track Email Users’ ActionsGitHub Action Compromise Puts CI/CD Secrets at Risk in Over 23,000 RepositoriesApache Tomcat Vulnerability Actively Exploited Just 30 Hours After Public Disclosure
3/14-16/2025 March 17, 2025March 17, 2025 ~ The Cyber Beat ~ Leave a comment North Korea’s ScarCruft Deploys KoSpy Malware, Spying on Android Users via Fake Utility AppsKrebs: ClickFix: How to Infect Your PC in Three Easy StepsApple Will Soon Support Encrypted RCS Messaging With Android UsersGoogle Refuses to Deny It Received Encryption Order From UK GovernmentA New Era of Attacks on Encryption Is Starting to Heat UpNew Akira Ransomware Decryptor Cracks Encryptions Keys Using GPUsTop 10 Takeaways from the New HIPAA Security Rule NPRMInfosys Settles Lawsuits Against U.S. Unit Over Cyber Incident for $17.5 MillionLockBit Ransomware Developer Extradited to U.S.FCC Stands up Council on National Security to Fight China in Ways That CISA Used ToEurope’s Telecoms Sector Under Increased Threat From Cyber Spies, Warns DenmarkRansomware Attack Takes Down Health System Network in MicronesiaFraudsters Impersonate Clop Ransomware to Extort BusinessesCoinbase Phishing Email Tricks Users With Fake Wallet MigrationMalicious PyPI Packages Stole Cloud Tokens—Over 14,100 Downloads Before RemovalMalicious Adobe, DocuSign OAuth Apps Target Microsoft 365 accountsFake “Security Alert” Issues on GitHub use OAuth App to Hijack AccountsOBSCURE#BAT Malware Uses Fake CAPTCHA Pages to Deploy Rootkit r77 and Evade DetectionBlack Basta Ransomware Gang Creates Tool to Automate VPN Brute-Force AttacksCisco IOS XR Vulnerability Lets Attackers Crash BGP on Routers
3/13/2025 March 13, 2025March 13, 2025 ~ The Cyber Beat ~ Leave a comment Volt Typhoon Accessed U.S. OT Network for Nearly a YearJuniper Patches Bug That Let Chinese Cyberspies Backdoor Routers‘People Are Scared’: Inside CISA as It Reels From Trump’s Purge…CISA: We Didn’t Fire Red Teams, We Just Unhired a Bunch of Them…White House Instructs Agencies to Avoid Firing Cybersecurity Staff, Email SaysAlbania Starts Turning off TikTok Amid Concern Over Youth ViolenceUK ICO Fires GDPR “Warning Shot” Over Use of Children’s DataCalls Grow for UK to Move Secret Apple Encryption Court Hearing to Public Session‘ClickFix’ Phishing Scam Impersonates Booking.com to Target HospitalityWhy the Toll Road Text Scam Is Out of Control Across the U.S., and Apple, Android Can’t Do Anything to Stop ItNew SuperBlack Ransomware Exploits Fortinet Auth Bypass FlawsBank of America Warns Customers of Data Breach After Document Handling MishapProfessional Law Enforcement Association (MI) Files Notice of Data Breach with State Attorney GeneralGitHub Uncovers New ruby-saml Vulnerabilities Allowing Account Takeover AttacksMicrosoft Apologizes for Removing VSCode Extensions Used by Millions
3/12/2025 March 13, 2025March 13, 2025 ~ The Cyber Beat ~ Leave a comment Chinese Hackers Implant Backdoor Malware on Juniper RoutersThis Is the FBI, Open Up. China’s Volt Typhoon Is on Your NetworkSchools Use AI to Monitor Kids, Hoping to Prevent Violence. Our Investigation Found Security RisksMachine Identities Outnumber Humans Increasing Risk Seven-FoldAustralia Regulator Sues FIIG Securities for Cybersecurity FailuresCyber Reporting Rules Savaged in House HearingTrump Administration Shakes Up CISA with Staff and Funding CutsTrump’s FTC Advances Broad Antitrust Probe of Microsoft, Bloomberg News ReportsThe Violent Rise of ‘No Lives Matter’Signal No Longer Cooperating With Ukraine on Russian Cyberthreats, Official SaysSpyware in Bogus Android Apps Is Attributed to North Korean GroupNew North Korean Android Spyware Slips Onto Google PlayOver 400 IPs Exploiting Multiple SSRF Vulnerabilities in Coordinated Cyber AttackTata Technologies’ Data Leaked by Hunters International Ransomware GangCISA: Medusa Ransomware Hit Over 300 Critical Infrastructure OrgsHOLT Group (TX) Files Notice of Data Breach Leaking Consumer’s Financial InformationFacebook Discloses FreeType 2 Flaw Exploited in AttacksMozilla Warns Users to Update Firefox Before Certificate ExpiresKrebs: Microsoft with 6 Zero-Days in March 2025 Patch Tuesday…Microsoft Patches Windows Kernel Zero-Day Exploited Since 2023
3/11/2025 March 11, 2025March 11, 2025 ~ The Cyber Beat ~ Leave a comment North Korean Lazarus Hackers Infect Hundreds via npm PackagesSideWinder APT Targets Maritime, Nuclear, and IT Sectors Across Asia, Middle East, and AfricaBlind Eagle Hacks Colombian Institutions Using NTLM Flaw, RATs and GitHub-Based AttacksSean Plankey Picked by Trump to Be CISA DirectorUniversity of South Florida Gets $40 Million to Start Cyber and AI College95% of Data Breaches Tied to Human Error in 2024Steganography Explained: How XWorm Hides Inside ImagesKrebs: Alleged Co-Founder of Garantex Arrested in IndiaTrump Administration Ends FTC’s Ransomware Data Breach Case Against MGM ResortsBalancing Cybersecurity Accountability & DeregulationPowerSchool Previously Hacked in August, Months Before Data Breach‘Uber for Nurses’ Exposes 86K+ Medical Records, PII in Open S3 Bucket for MonthsMassJacker Malware Uses 778,000 Wallets to Steal CryptocurrencyBallista Botnet Exploits Unpatched TP-Link Vulnerability, Infects Over 6,000 DevicesCritical PHP RCE Vulnerability Mass Exploited in New AttacksCISA Urges All Organizations to Patch Exploited Critical Ivanti and VeraCore VulnerabilitiesMoxa Issues Fix for Critical Authentication Bypass Vulnerability in PT SwitchesMicrosoft March 2025 Patch Tuesday Fixes 7 Zero-Days, 57 FlawsApple Fixes Webkit Zero-Day Exploited in ‘Extremely Sophisticated’ Attacks…This Is the One Security Fix Added in iOS 18.3.2 and More
3/10/2025 March 11, 2025March 11, 2025 ~ The Cyber Beat ~ Leave a comment Multiple Outages at X Caused by ‘Massive Cyberattack,’ Musk Claims…X Hit by ‘Massive Cyberattack’ Amid Dark Storm’s DDoS ClaimsUK AI Research Under Threat From Nation-State HackersSurge in Malicious Software Packages Exploits System FlawsSwitzerland Mandates Cyber-Attack Reporting for Critical InfrastructureAllstate Insurance Sued for Delivering Personal Info on a Platter, in Plaintext, to Anyone Who Went Looking For ItTrump Administration Ends FTC’s Ransomware Data Breach Case Against MGM ResortsU.S. Gov’t Says Americans Lost Record $12.5 Billion to Fraud in 2024FTC Will Send $25.5 Million to Victims of Tech Support ScamsNorth Korean Lazarus Hackers Cash out Hundreds of Millions From $1.5bn ByBit HackDesert Dexter Targets 900 Victims Using Facebook Ads and Telegram Malware LinksSilentCryptoMiner Infects 2,000 Russian Users via Fake VPN and DPI Bypass ToolsSunflower Medical Group (KS) Says More Than 220,000 Impacted by CyberattackCentral Texas Pediatric Orthopedics Announces Data Breach Affecting at Least 90,000 PeopleWhat PowerSchool Won’t Say About Its Data Breach Affecting Millions of StudentsScam Spoofs Binance Website and Uses Trump Coin as Lure for MalwareSIM Swapping Fraud Surges in the Middle EastResearchers Expose New Polymorphic Attack That Clones Browser Extensions to Steal CredentialsGoogle Paid $12 Million in Bug Bounties Last Year to Security Researchers
3/7-9/2025 March 9, 2025March 9, 2025 ~ The Cyber Beat ~ Leave a comment Two U.S. Army Soldiers Charged With Selling Military Secrets to ChinaWhite House Cyber Director’s Office Set for More Power Under Trump, Experts SayCyber Companies Stress AI as Core Future TechnologyPalantir Delivers First Two AI-Enabled Systems to U.S. ArmyRansomware Groups Favor Repeatable Access Over Mass Vulnerability ExploitsYouTubers Extorted via Copyright Strikes to Spread MalwareEmployee of Unnamed Company Charged With Stealing Unreleased Movies, Sharing Them OnlineU.S. Seizes $23 Million in Crypto Linked to LastPass BreachesKrebs: Feds Link $150M Cyberheist to 2022 LastPass HacksSafe{Wallet} Confirms North Korean TraderTraitor Hackers Stole $1.5 Billion in Bybit HeistU.S. Charges Garantex Admins With Money Laundering, Sanctions ViolationsDeveloper Guilty of Using Kill Switch to Sabotage Employer’s SystemsUndocumented Commands Found in Bluetooth Chip Used by a Billion DevicesMicrosoft: North Korean Hackers Join Qilin Ransomware GangData Breach at Japanese Telecom Giant NTT Hits 18,000 CompaniesHome Appliance Company Presto Says Cyberattack Causing Delivery DelaysChicago Public Schools Data Breach: What to Know, How It Affects YouRansomHub Hackers Leak Sensitive Data From Elite Bronx Private School Riverdale Country School After Ransomware AttackMission (TX) Declares State of Emergency After Cyberattack on Government SystemsAmerman Ginder (PA) Files Official Notice of Data BreachA Brand-New Botnet Is Delivering Record-Size DDoS AttacksU.S. Cities Warn of Wave of Unpaid Parking Phishing TextsFIN7, FIN8, and Others Use Ragnar Loader for Persistent Access and Ransomware OperationsThis Malicious PyPI Package Stole Ethereum Private Keys via Polygon RPC TransactionsUnpatched Edimax IP Camera Flaw Actively Exploited in Botnet AttacksBug Affecting PHP Scripts Demands ‘Immediate Action From Defenders Globally’
3/6/2025 March 7, 2025March 7, 2025 ~ The Cyber Beat ~ Leave a comment Russia Claims Ukraine Hacked State Youth Organizations to Recruit MinorsTrump’s Spy Chief Tulsi Gabbard Urged to Declassify Details of Secret Surveillance ProgramPentagon Cuts Threaten Programs That Secure Loose Nukes and Weapons of Mass DestructionKrebs: Who is the DOGE and X Technician Branden Spikes?The U.S. Army Is Using ‘CamoGPT’ to Purge DEI From Training MaterialsEnterprise AI Through a Data Security Lens: Balancing Productivity With SafetyWhy Security Leaders Are Opting for Consulting GigsCybersecurity Job Satisfaction Plummets, Women Hit HardestIt’s ‘Never Been Easier’ to Become an Online Scammer as Cybercrime Markets Flourish, Security Experts WarnU.S. Seizes Domain of Garantex Crypto Exchange Used by Ransomware GangsCybercrime ‘Crew’ Stole $635,000 in Taylor Swift Concert TicketsMalicious Chrome Extensions Can Spoof Password Managers in New AttackArmis Buys Otorio for $120M to Beef up Cybersecurity in Physical SpacesAttackers Target Japanese Firms with Cobalt StrikeThousands of Public School Workers Impacted by Cyberattack on Retirement Plan AdministratorScott County (IA) Notifies Residents of Data BreachFlexCare Sends Out Data Breach Letters Following Email CompromiseThe Badbox Botnet Is Back, Powered by up to a Million Backdoored AndroidsMicrosoft Says Malvertising Campaign Impacted 1 Million PCsMedusa Ransomware Hits 40+ Victims in 2025, Demands $100K–$15M RansomAkira Ransomware Gang Encrypted Network From a Webcam to Bypass EDREncryptHub Deploys Ransomware and Stealer via Trojanized Apps, PPI Services, and PhishingEthereum Private Key Stealer on PyPi Downloaded Over 1,000 TimesOver 1,000 WordPress Sites Infected with JavaScript Backdoors Enabling Persistent Attacker AccessVulnerability in Chaty Pro Plugin Exposes 18,000 WordPress SitesOver 37,000 VMware ESXi Servers Vulnerable to Ongoing AttacksElastic Releases Urgent Fix for Critical Kibana Vulnerability Enabling Remote Code Execution
3/5/2025 March 6, 2025March 6, 2025 ~ The Cyber Beat ~ Leave a comment Silk Typhoon Shifts Tactics to Exploit Common IT SolutionsChinese APT Lotus Panda Targets Governments With New Sagerunex Backdoor Variants12 Chinese Hackers Charged With U.S. Treasury Breach — And Much, Much MoreDOJ to Appeal Court Decision Ruling Broad Cell Phone Tower Searches Are Unconstitutional1 Million Third-Party Android Devices Have a Secret Backdoor for ScammersWould-be Extortionists Send “BianLian” Ransom Notes in the MailMass Federal Layoffs Will Hurt Cybersecurity, Former Top U.S. Security Official SaysRural Hospitals in U.S. Need to Invest at Least $70 Million in Cybersecurity, Microsoft FindsQilin Ransomware Gang Claims Attacks on Cancer Clinic, OB-GYN FacilityToronto Zoo Shares Update on Last Year’s Ransomware Attack…Two Decades of Visitor DataLoyola University Maryland Sends Data Breach Letters Following July 2024 CyberattackSeven Malicious Go Packages Found Deploying Malware on Linux and macOS SystemsMicrosoft Teams Tactics, Malware Connect Black Basta, Cactus RansomwareDark Caracal Uses Poco RAT to Target Spanish-Speaking Enterprises in Latin AmericaOpen-Source Tool ‘Rayhunter’ Helps Users Detect Stingray AttacksPeople Are Using Super Mario to Benchmark AI Now
3/4/2025 March 4, 2025March 4, 2025 ~ The Cyber Beat ~ Leave a comment Russia to Redeploy Resources Freed up by End of War in Ukraine, Warns Finnish IntelligencePolish Space Agency Offline as It Recovers From CyberattackNorth Koreans Finish Initial Laundering Stage After More Than $1 Billion Stolen From BybitNorth Korean Fake IT Workers Leverage GitHub to Build Jobseeker PersonasPrivate 5G Networks Face Security Risks Amid AI AdoptionYouTube Warns Creators an AI-Generated Video of Its CEO Is Being Used for Phishing ScamsGoogle Messages Is Using AI to Detect Scam TextsIt’s Bad Enough We Have to Turn on Cams for Meetings, Now the Person Staring at You May Be an AI DeepfakeApple Reportedly Challenges the UK’s Secretive Encryption CrackdownCatalan Court Orders Former NSO Group Executives Be Indicted for Spyware AbusesTreasury Sanctions Iranian National Behind Defunct Nemesis Darknet MarketplaceIran Linked to More Than 20 Plots to Kill or Kidnap British Citizens and ResidentsPolyglot: New Cyber-Espionage Campaign Targets UAE Aviation and TransportOver 4,000 ISP IPs Targeted in Brute-Force Attacks to Deploy Info Stealers and CryptominersNew Eleven11bot Botnet Infects 86,000 Devices for DDoS AttacksGregory & Appel Insurance (IN) Announces Data Breach Impacting Consumer Social Security NumbersHunters International Ransomware Claims Attack on Tata TechnologiesResearchers Link CACTUS Ransomware Tactics to Former Black Basta AffiliatesDark Caracal Group Might Have Refreshed Its Malware, Researchers SayCisco Warns of Webex for BroadWorks Flaw Exposing CredentialsVMware Warns Customers to Patch Actively Exploited Zero-Day VulnerabilitiesGoogle’s March 2025 Android Security Update Fixes Two Actively Exploited VulnerabilitiesGreyNoise Intelligence Releases New Research on Cybersecurity VulnsHalf of Online Gambling Firms Lose 10% of Revenue to Fraud
3/3/2025 March 4, 2025March 4, 2025 ~ The Cyber Beat ~ Leave a comment CISA Denies Reports of Shift in Cybersecurity Posture Amid Russian ThreatsFinland Releases Russian ‘Spy’ Ship but Continues to Detain Three Crew Members as SuspectsRussian Telecom Beeline Facing Outages After CyberattackVodafone Trials Quantum-Safe Tech to Protect Smartphone BrowsingMicrosoft Unveils Finalized EU Data Boundary as European Doubt Over U.S. GrowsGovernments Can’t Seem to Stop Asking for Secret BackdoorsICO Launches TikTok, Reddit & Imgur Investigation Over Use of Children’s DataCybersecurity Not the Hiring-’Em-Like-Hotcakes Role It Once WasRubrik Rotates Authentication Keys After Log Server BreachPalau Health Ministry on the Mend After Qilin Ransomware AttackLee Enterprises Ransomware Attack Hits Freelance and Contractor PaymentsPenn-Harris-Madison Schools (IN) Combat Ransomware Attack, Systems Shut down as PrecautionClickFix Phishing Campaign Uses Havoc Framework to Control Infected SystemsHackers Exploit AWS Misconfigurations to Launch Phishing Attacks via SES and WorkMailAttackers Leverage Microsoft Teams and Quick Assist for AccessCISA Tags Windows, Cisco Vulnerabilities as Actively Exploited
2/28-3/2/2025 March 2, 2025March 2, 2025 ~ The Cyber Beat ~ Leave a comment Cyberattack Detected at Polish Space Agency, Minister SaysGerman Government Denies Foreign Election Interference Was SuccessfulHegseth Orders Cyber Command to Stand down on Russia PlanningAmnesty Finds Cellebrite’s Zero-Day Used to Unlock Serbian Activist’s Android PhoneKrebs: Notorious Malware, Spam Host “Prospero” Moves to Kaspersky LabThe Biggest Data Breaches of 2025 — So FarThird-Party Attacks Drive Major Financial Losses in 2024U.S. Recovers $31 Million Stolen in 2021 Uranium Finance HackCybersecurity M&A Roundup: SolarWinds Acquired for $4.4bnThe UK Will neither Confirm nor Deny That It’s Killing EncryptionChina Tells Its AI Leaders to Avoid U.S. Travel Over Security ConcernsProlific Data Extortion Actor Arrested in ThailandPolice Arrests Suspects Tied to AI-Generated CSAM Distribution RingCalifornia Shuts Down Data Broker for Failing to RegisterZapier Says Someone Broke Into Its Code Repositories and May Have Accessed Customer DataIndia’s Angel One Says Assessing Impact After Security BreachQilin Ransomware Claims Attack at Lee Enterprises, Leaks Stolen Data12,000+ API Keys and Passwords Found in Public Datasets Used for LLM TrainingMicrosoft Exposes LLMjacking Cybercriminals Behind Azure AI Abuse SchemeSticky Werewolf Uses Undocumented Implant to Deploy Lumma Stealer in Russia and BelarusFake CAPTCHA PDFs Spread Lumma Stealer via Webflow, GoDaddy, and Other DomainsRansomware Gangs Exploit Paragon Partition Manager Bug in BYOVD AttacksOld Vulnerabilities Among the Most Widely ExploitedRansomware Criminals Love CISA’s KEV List – And That’s a Bug, Not a FeatureC++ Creator Calls for Help to Defend Programming Language From ‘Serious Attacks’Mozilla Updates Firefox Terms Again After Backlash Over Broad Data License Language