4/28/2025 April 29, 2025April 29, 2025 ~ The Cyber Beat ~ Leave a comment Uyghur Diaspora Group Targeted with Remote Surveillance MalwareIran Repelled Large Cyber Attack on SundayDonald Trump: “I Would Frankly Tell These People Not to Use Signal”Car Subscription Features Raise Your Risk of Government Surveillance, Police Records ShowiOS and Android Juice Jacking Defenses Have Been Trivial to Bypass for YearsHalf of Mobile Devices Run Outdated Operating SystemsDeep-Pocketed Investors Make Startups a Target for HackersPalo Alto Networks Acquiring Protect AI to Boost Artificial Intelligence ToolsCybersecurity CEO Accused of Running Malware on Hospital PC Blabs About It on LinkedInGovernment Set to Ban SIM Farms in European FirstCloudflare Mitigates Record Number of DDoS Attacks in 2025Ukrainian State and Banking Services Restored After Data Center OutageHitachi Vantara Takes Servers Offline After Akira Ransomware AttackMarks & Spencer Breach Linked to Scattered Spider Ransomware AttackMedia Firm Urban One Confirms Data Breach After Cybercriminals Claim February AttackVeriSource Now Says February Data Breach Impacts 4 Million PeoplePortugal’s REN Says No Sign Blackout Caused by CyberattackEarth Kurma Targets Southeast Asia With Rootkits and Cloud-Based Data Theft ToolsHackers Exploit Critical Craft CMS Flaws; Hundreds of Servers Likely CompromisedKali Linux Warns of Update Failures After Losing Repo Signing KeyHow to Survive as a CISO aka ‘Chief Scapegoat Officer’
4/25-27/2025 April 27, 2025April 27, 2025 ~ The Cyber Beat ~ Leave a comment FBI Seeks Help to Unmask Salt Typhoon Hackers Behind Telecom BreachesEx-CISA Boss Chris Krebs Says Trump Actions Risk ‘Dangerously Degrading’ U.S. Cyber DefensesEasterly Calls for United Front Against ‘Politicizing’ of the Cyber IndustrySecurity Experts Flag Chrome Extension Using AI Engine to Act Without User InputPopular LLMs Found to Produce Vulnerable Code by DefaultSam Altman: AI Privacy Safeguards Can’t Be Established Before ‘Problems Emerge’Receiving Odd Texts for Someone Else? Rise of ‘Wrong Number’ Messages Is New Payday for ScammersCoinbase Fixes 2FA Log Error Making People Think They Were HackedBrave’s Cookiecrumbler Tool Taps Community to Help Block Cookie NoticesWindows “Inetpub” Security Fix Can Be Abused to Block Future UpdatesEx-Disney Worker Who Hacked Menus Gets 3 Years in PrisonMobile Provider MTN Says Cyberattack Compromised Customer DataMarks & Spencer Pauses Online Orders After CyberattackNearly 500,000 Impacted by 2023 Cyberattack on Long Beach, CaliforniaToyMaker Uses LAGTOY to Sell Access to CACTUS Ransomware Gangs for Double ExtortionDragonForce Expands Ransomware Model With White-Label Branding SchemeStorm-1977 Hits Education Clouds with AzureChecker, Deploys 200+ Crypto Mining ContainersWooCommerce Admins Targeted by Fake Security Patches That Hijack SitesDslogdRAT Malware Deployed via Ivanti ICS Zero-Day CVE-2025-0282 in Japan AttacksHackers Abuse OAuth 2.0 Workflows to Hijack Microsoft 365 AccountsCraft CMS RCE Exploit Chain Used in Zero-Day Attacks to Steal DataSAP Fixes Critical Vulnerability After Evidence of Exploitation
4/24/2025 April 24, 2025April 24, 2025 ~ The Cyber Beat ~ Leave a comment North Korean Cyber Spies Created U.S. Firms, and Blocknovas and Softglide, to Dupe Crypto DevelopersLazarus Hits 6 South Korean Firms via Cross EX, Innorix Flaws and ThreatNeedle MalwareVerizon DBIR: Small Businesses Bearing the Brunt of Ransomware AttacksDarcula Adds GenAI to Phishing Toolkit, Lowering the Barrier for CybercriminalsGmail’s New Encrypted Messages Feature Opens a Door for ScamsSouth Korea Says DeepSeek Transferred User Data to China and the U.S. Without ConsentUK Bans Export of Video Game Controllers to Russia to Hinder Attack Drone PilotsCyberattack Hits Drinking Water Supplier in Spanish Town Near BarcelonaSSNs and More on 5.5M+ Patients Feared Stolen From Yale HealthFrederick Health Data Breach Impacts Nearly 1 Million PatientsInterlock Ransomware Claims DaVita Attack, Leaks Stolen DataELENOR-corp Ransomware Targets Healthcare SectorLinux io_uring PoC Rootkit Bypasses System Call-Based Threat Detection ToolsHighest-Risk Security Flaw Found in Commvault Backup SolutionsNavigating Regulatory Shifts & AI Risks
4/23/2025 April 23, 2025April 23, 2025 ~ The Cyber Beat ~ Leave a comment FTC’s Holyoak Says Agency Will Avoid ‘Excessive Regulation’ of AI DevelopmentCloudflare: Government-Backed Internet Shutdowns Plummet to Zero in First QuarterFBI Reveals “Staggering” $16.6bn Lost to Cybercrime in 2024Ransomware Gangs Innovate With New Affiliate ModelsVerizon’s DBIR Reveals 34% Jump in Vulnerability ExploitationVulnerability Exploitation and Credential Theft Now Top Initial Access VectorsKrebs: DOGE Worker’s Code Supports NLRB WhistleblowerThe Tech That Safeguards the Conclave’s SecrecyWhatsApp Now Lets You Block People From Exporting Your Entire Chat HistoryGoogle Drops Cookie Prompt in Chrome, Adds IP Protection to IncognitoCybersecurity Startup Chainguard Almost Triples Valuation to $3.5 Billion After FundraiseAndroid Spyware Disguised as Alpine Quest App Targets Russian Military DevicesRussian Hackers Exploit Microsoft OAuth to Target Ukraine Allies via Signal and WhatsAppDPRK Hackers Steal $137M from TRON Users in Single-Day Phishing AttackIran-Linked Hackers Target Israel with MURKYTOUR Malware via Fake Job CampaignBlue Shield of California Leaked Health Data of 4.7 Million Members to GoogleThousands of Baltimore Students, Teachers Affected by Data Breach Following February Ransomware AttackActive! Mail RCE Flaw Exploited in Attacks on Japanese OrgsASUS Releases Fix for AMI Bug that Lets Hackers Brick ServersThe Foundations of a Resilient Cyber WorkforceEU Fines Apple €500 Million and Meta €200 Million for Breaking Digital Market Rules
4/22/2025 April 22, 2025April 22, 2025 ~ The Cyber Beat ~ Leave a comment Russia Is Ramping up Hybrid Attacks Against Europe, Dutch Intelligence SaysBillbug Espionage Group Deploys New Tools in Southeast Asia…Lotus Panda Hacks SE Asian Governments With Browser Stealers and Sideloaded MalwareWhistleblower: DOGE Siphoned NLRB Case Data (Krebs)DeepSeek Breach Opens Floodgates to Dark WebMicrosoft Reports 92% Adoption Rate for Phishing-Resistant MFA Among Corporate UsersBeware of Video Call Links That Are Attempts to Steal Microsoft 365 Access, Researchers Tell NGOsRIP, Google Privacy SandboxSK Telecom Warns Customer USIM Data Exposed in Malware AttackMarks & Spencer Confirms Cybersecurity Incident Amid Ongoing DisruptionRipple’s Recommended XRP Library xrpl.js Hacked to Steal WalletsNew Cryptojacking Malware Targets Docker with Novel Mining TechniqueCookie-Bite Attack PoC Uses Chrome Extension to Steal Session TokensGCP Cloud Composer Bug Let Attackers Elevate Access via Malicious PyPI PackagesMicrosoft Secures MSA Signing with Azure Confidential VMs Following Storm-0558 Breach
4/21/2025 April 22, 2025April 22, 2025 ~ The Cyber Beat ~ Leave a comment Kimsuky Exploits BlueKeep RDP Vulnerability to Breach Systems in South Korea and JapanToday’s LLMs Craft Exploits From Patches at Lightning SpeedHackers Abuse Russian Bulletproof Host Proton66 for Global Attacks and Malware DeliveryHow to Protect Yourself From Phone Searches at the U.S. BorderSoutheast Asian Cyber Fraud Industry at ‘Inflection Point’ as It Expands GloballyTwo Top Cyber Officials Resign From CISAAbilene (TX) Takes Systems Offline After Cyberattack‘Fog’ Hackers Troll Victims With DOGE Ransom Notes‘Elusive Comet’ Attackers Use Zoom to Swindle VictimsJapan Warns of Hundreds of Millions of Dollars in Unauthorized Trades From Hacked AccountsWordPress Ad-Fraud Plugins Generated 1.4 Billion Ad Requests per DayMicrosoft Entra Account Lockouts Caused by User Token Logging Mishap
4/18-20/2025 April 20, 2025April 20, 2025 ~ The Cyber Beat ~ Leave a comment U.S. Will Keep Helping Taiwan in Its Self-Defence, Senator Says in TaipeiChinese Smishing Kit Powers Widespread Toll Fraud Campaign Targeting U.S. Users in 8 StatesDems Fret Over Doge Feeding Sensitive Data Into Random AIICE Is Paying Palantir $30 Million to Build ‘Immigrationos’ Surveillance PlatformChase Is Suing More Customers for Stealing Money Last Year Using the Viral TikTok ‘Money Hack’Airport Retailer Paradies Shops Agrees to $6.9 Million Settlement Over Ransomware Data BreachCould Ransomware Survive Without Cryptocurrency?Alleged SmokeLoader Malware Operator Facing Federal Charges in VermontTrump Is Shifting Cybersecurity to the States, but Many Aren’t PreparedIf Boards Don’t Fix Operational Technology (OT) Security, Regulators WillMulti-Stage Malware Attack Uses .JSE and PowerShell to Deploy Agent Tesla and XLoaderExperts Uncover New XorDDoS Controller, Infrastructure as Malware Expands to Docker, Linux, IoTNew Android Malware Steals Your Credit Cards for NFC Relay Attacks…New Payment-Card Scam Involves a Phone Call, Some Malware and a Personal TapPhishers Abuse Google OAuth to Spoof Google in DKIM Replay AttackInterlock Ransomware Gang Pushes Fake IT Tools in ClickFix AttacksCVE-2025-24054 Under Active Attack—Steals NTLM Credentials on File DownloadCritical Erlang/OTP SSH RCE Bug Now Has Public Exploits, Patch NowASUS Confirms Critical Flaw in AiCloud Routers; Users Urged to Update FirmwareWidespread Microsoft Entra Lockouts Tied to New Security Feature Rollout
4/17/2025 April 17, 2025April 17, 2025 ~ The Cyber Beat ~ Leave a comment Mustang Panda Targets Myanmar With StarProxy, EDR Bypass, and TONESHELL UpdatesState-Sponsored Hackers Weaponize ClickFix Tactic in Targeted Malware CampaignsNetwork Edge Devices the Biggest Entry Point for Attacks on SMBsSenators Urge Cyber-Threat Sharing Law Extension Before DeadlineThis ‘College Protester’ Isn’t Real. It’s an AI-Powered Undercover Bot for CopsStormont Asks Cyber Security Police to Investigate Fake Rates WebsiteNew Jersey Sues Discord for Allegedly Failing to Protect ChildrenCybersecurity Startup Exaforce Raises $75 MillionAirport Retailer Agrees to $6.9 Million Settlement Over Ransomware Data BreachEntertainment Services Giant Legends International Discloses Data BreachAhold Delhaize Confirms Data Theft After INC Ransomware Claims AttackMayor of Fall River (MA) Confirms School System Was Hit with a Ransomware AttackNode.js Malware Campaign Targets Crypto Users with Fake Binance and TradingView InstallersNTLM Hash Exploit Targets Poland and Romania Days After PatchChrome Extensions With 6 Million Installs Have Hidden Tracking CodeCISA Flags Actively Exploited Vulnerability in SonicWall SMA DevicesCritical Erlang/OTP SSH Vulnerability (CVSS 10.0) Allows Unauthenticated Code ExecutionCybersecurity by Design: When Humans Meet Technology
4/16/2025 April 17, 2025April 17, 2025 ~ The Cyber Beat ~ Leave a comment Brian Krebs: Funding Expires for Key Cyber Vulnerability Database…Trump Administration Decides to Fund CVE Cybersecurity Tracker After All…Last-Minute Funding Uncertainty for Key Cyber Program Spooks IndustryFormer Trump Official Chris Krebs Targeted With Government Probe Vows to Fight…Ex-CISA Chief Chris Krebs Leaving SentinelOne Following Trump PressureGoogle Blocked 5.1B Harmful Ads and Suspended 39.2M Advertiser Accounts in 202492% of Mobile Apps Found to Use Insecure Cryptographic MethodsChinese Android Phones Shipped with Fake WhatsApp, Telegram Apps Targeting Crypto UsersChinese Firm Tied to Uyghur Rights Abuses Now Training Tibet Police on Hacking TechniquesChina-Backed Hackers Exploit BRICKSTORM Backdoor to Spy on European BusinessesResearchers Uncover Social Media Harassment Campaign Targeting Thai Dissidents Since 2020Jira Down: Atlassian Users Experiencing Degraded PerformanceCISA Warns of Potential Data Breaches Caused by Legacy Oracle Cloud LeakGamma AI Platform Abused in Phishing Chain to Spoof Microsoft SharePoint LoginsNew BPFDoor Controller Enables Stealthy Lateral Movement in Linux Server AttacksOver 16,000 Fortinet Devices Compromised With Symlink BackdoorNew Windows Task Scheduler Bugs Let Attackers Bypass UAC and Tamper with LogsApple Fixes Two Zero-Days Exploited in Targeted iPhone Attacks
4/15/2025 April 16, 2025April 17, 2025 ~ The Cyber Beat ~ Leave a comment China Names Alleged U.S. Snoops Over Asian Winter Games AttacksChinese Hackers Target Linux Systems Using SNOWLIGHT Malware and VShell ToolTrade War Raises Cyber Stakes With ChinaThe CVE Program for Tracking Security Flaws Is About to Lose Federal FundingEU Confirms Issuing ‘Burner Phones’ to Top Officials but Denies Practice Caused by TrumpKrebs: Trump Revenge Tour Targets Cyber Leaders, ElectionsBot Traffic Overtakes Human Activity as Threat Actors Turn to AIChatGPT 4.1 Early Benchmarks Compared Against Google GeminiMajority of Browser Extensions Can Access Sensitive Enterprise Data, New Report FindsAndroid Phones Will Soon Reboot if They’re Locked for a Few DaysLabHost Phishing Mastermind Sentenced to 8.5 Years4Chan’s ‘Cesspool of the Internet’ Is Down After Apparently Being Hacked…Suspected 4Chan Hack Could Expose Longtime, Anonymous AdminsFederal Employee Alleges DOGE Activity Resulted in Data Breach at Labor BoardLandmark Admin Data Breach Impact Now Reaches 1.6 Million PeopleMidnight Blizzard Deploys New Grapeloader Malware in Embassy PhishingNorth Korean Hackers Exploit LinkedIn to Infect Crypto Developers with InfostealersMalicious PyPI Package Targets MEXC Trading API to Steal Credentials and Redirect OrdersGladinet’s Triofox and CentreStack Under Active Exploitation via Critical RCE VulnerabilityMicrosoft Blocks ActiveX by Default in Microsoft 365, Office 2024Are We Prioritizing the Wrong Security Metrics?
4/14/2025 April 14, 2025April 14, 2025 ~ The Cyber Beat ~ Leave a comment Taiwan Charges Chinese Ship Captain With Breaking Subsea CablesChinese Police Ensnaring Tibetans Over Phone and Internet Activity, Human Rights Watch SaysThe Most Dangerous Hackers You’ve Never Heard OfTraderTraitor: The Kings of the Crypto HeistProdaft Offers “No Judgment” Deal to Buy Dark Web Accounts from Cybercrime Forum UsersU.S. Blocks Foreign Governments from Acquiring Citizen DataMeta to Resume AI Training on Content Shared by EuropeansOpenAI’s GPT-4.1, 4.1 nano, and 4.1 mini Models Release ImminentHackers Using AI-Produced Audio to Impersonate Tax Preparers, IRSSilicon Valley Crosswalk Buttons Hacked to Imitate Musk, Zuckerberg’s VoicesDialysis Firm DaVita Hit by Ransomware Attack, Says Patient Care ContinuesHertz Says Customers’ Personal Data and Driver’s Licenses Stolen in Data BreachInsurance Firm Lemonade Says Breach Exposed Driver’s License NumbersGovtech Giant Conduent Confirms Client Data Stolen in January CyberattackPakistan-Linked Hackers Expand Targets in India with CurlBack RAT and Spark RATNew Malware ResolverRAT Targets Healthcare and Pharma SectorsThat Groan You Hear Is Users’ Reaction to Recall Going back Into WindowsNew SSL/TLS Cert to Live No Longer Than 47 Days by 202940 More Student Athletes Sue Against University of Michigan After Matt Weiss Cyber Hack
4/11-13/2025 April 13, 2025April 13, 2025 ~ The Cyber Beat ~ Leave a comment In Secret Meeting, China Acknowledged Role in U.S. Infrastructure HacksPaper Werewolf Deploys PowerModul Implant in Targeted Cyberattacks on Russian SectorsGoogle Cloud: China Achieves “Cyber Superpower” StatusLLMs Can’t Stop Making up Software Dependencies and Sabotaging EverythingLeak Confirms OpenAI’s GPT 4.1 is Coming Before GPT 5.0Google’s AI Video Generator Veo 2 Is Rolling out on AI StudioTycoon2FA Phishing Kit Targets Microsoft 365 with New TricksMicrosoft Defender Will Isolate Undiscovered Endpoints to Block AttacksUnitedHealth Group Sends Demands for Hack Loan RepaymentsWhy Data Privacy Isn’t the Same as Data SecurityTen Things to Know about the European Union’s New Product Liability DirectiveNVD Revamps Operations as Vulnerability Reporting SurgesMorocco Investigates Major Data Breach Allegedly by Algerian HackersLaboratory Services Cooperative Exposed Health Data of 1.6 Million PeopleWestern Sydney University Discloses Security Breaches, Data LeakRansomware Attack Cost IKEA Operator in Eastern Europe $23 MillionResearchers Warn About ‘Goffee’ Spilling Onto Russian Flash DrivesSpyNote, BadBazaar, MOONSHINE Malware Target Android and iOS Users via Fake AppsPalo Alto Networks Warns of Brute-Force Attempts Targeting PAN-OS GlobalProtect GatewaysFortinet Warns Attackers Retain FortiGate Access Post-Patching via SSL-VPN Symlink ExploitCyble Urges Critical Vulnerability Fixes Affecting Industrial SystemsChrome 136 Fixes 20-Year Browser History Privacy RiskMicrosoft: Windows ‘Inetpub’ Folder Created by Security Fix, Don’t Delete
4/10/2025 April 10, 2025April 10, 2025 ~ The Cyber Beat ~ Leave a comment Gamaredon Uses Infected Removable Drives to Breach Western Military Mission in UkraineInfosec Experts Fear China Could Retaliate Against Tariffs With a Typhoon AttackKrebs: China-based SMS Phishing Triad Pivots to BanksCybersecurity Industry Falls Silent as Trump Turns Ire on SentinelOneTrump Administration Planning Major Workforce Cuts at CISASpyware Maker NSO Group Is Paving a Path Back Into Trump’s AmericaOperation Endgame Continues with Smokeloader Customer ArrestsOpenAI Wants ChatGPT to ‘Know You Over Your Life’ With New Memory UpdateChatGPT’s o4-mini, o4-mini-high and o3 Spotted Ahead of ReleaseSweden Arrests Senior Uyghur Representative on Suspicion of Spying for ChinaU.S. Sensor Giant Sensata Admits Ransomware Derailed OpsOregon’s Environmental Agency Shuts Down Network After CyberattackSouth African Telecom Provider Cell C Serving 7.7 Million Confirms Data Leak Following Cyberattack90 Degree Benefits (AL) Provides Notice of Data BreachNew TCESB Malware Found in Active Attacks Exploiting ESET Security ScannerSpyNote Malware Targets Android Users with Fake Google Play PagesMalicious npm Package Targets Atomic Wallet, Exodus Users by Swapping Crypto AddressesHackers Exploit WordPress Plugin Auth Bypass Hours After DisclosureIncomplete Patch in NVIDIA Toolkit Leaves CVE-2024-0132 Open to Container EscapesUsing Post-Quantum Planning to Improve Security Hygiene
4/9/2025 April 9, 2025April 9, 2025 ~ The Cyber Beat ~ Leave a comment Western Intelligence Agencies Warn Spyware Threat Targeting Taiwan, Tibetan Rights AdvocatesU.S. Senator Wyden Announces Hold on Trump Cyber Nominee, Citing Telecom ‘Cover-Up’Precision-Validated Phishing Elevates Credential Theft RisksRansomware Attacks Hit All-Time High as Payoffs DwindleExplosive Growth of Non-Human Identities Creating Massive Security Blind SpotsOpenAI Helps Spammers Plaster 80,000 Sites With Messages That Bypassed FiltersPolice Detains Smokeloader Malware Customers, Seizes ServersData Privacy Regulators Lobby Lawmakers to Not Draft Federal Legislation Preempting State LawsAs Spyware Market Continues to Expand, Diplomatic Pall Mall Process Hits a Pivot PointUkraine’s Railways Restore Half of IT Services Hit by Cyber Attack So FarGermany Links Cyberattack on Research Group to Russian State-Backed APT29 HackersOracle Says “Obsolete Servers” Hacked, Denies Cloud BreachHackers Target SSRF Bugs in EC2-Hosted Sites to Steal AWS CredentialsPipeMagic Trojan Exploits Windows Zero-Day Vulnerability to Deploy RansomwareCISA Warns of CentreStack’s Hard-Coded MachineKey Vulnerability Enabling RCE AttacksAdobe Patches 11 Critical ColdFusion Flaws Amid 30 Total Vulnerabilities DiscoveredKrebs: Patch Tuesday, April 2025 EditionGoogle Takes on Cursor With Firebase Studio, Its AI Builder for Vibe Coding
4/8/2025 April 8, 2025April 9, 2025 ~ The Cyber Beat ~ Leave a comment U.S. Financial Regulator Office of the Comptroller of the Currency (OCC) Says Email Hack Exposed Sensitive Data on Banks…Hackers Lurked in Treasury OCC’s Systems Since June 2023 BreachCanada Says China-Linked Information Campaign Spreading False Narratives About Prime MinisterTo Tackle Espionage, Dutch Government Plans to Screen University Students and ResearchersUAC-0226 Deploys GIFTEDCROOK Stealer via Malicious Excel Files Targeting UkraineScattered Spider Stops the Rickrolls, Starts the RAT RaceDon’t Open that JPEG in WhatsApp for Windows. It Might Be An .EXEWhatsApp Flaw Can Let Attackers Run Malicious Code on Windows PCsMusk’s DOGE Using AI to Snoop on U.S. Federal Workers, Sources SayEncryptHub’s Dual Life: Cybercriminal vs Windows Bug-Bounty ResearcherCzech Prime Minister Says His X Account Was Hacked ‘From Abroad’Cryptocurrency Miner and Clipper Malware Spread via SourceForge Cracked Software ListingsVeristat Files Notice of Data Breach Affecting Consumers’ Social Security NumbersNew Mirai Botnet Behind Surge in TVT DVR ExploitationFortinet Urges FortiSwitch Upgrades to Patch Critical Admin Password Change FlawAmazon EC2 SSM Agent Flaw Patched After Privilege Escalation via Path TraversalAWS Rolls Out ML-KEM to Secure TLS From Quantum ThreatsCISA Adds CrushFTP Vulnerability to KEV Catalog Following Confirmed Active ExploitationMicrosoft: Windows CLFS Zero-Day Exploited by Ransomware GangMicrosoft April 2025 Patch Tuesday Fixes Exploited Zero-Day, 134 FlawsNIST Defers Pre-2018 CVEs to Tackle Growing Vulnerability Backlog
4/7/2025 April 7, 2025April 7, 2025 ~ The Cyber Beat ~ Leave a comment Public Officials Separate Workplace and Personal Online Lives. Hackers Don’t Care.Darknet’s Xanthorox AI Offers Customizable Tools for HackersUK Loses Bid to Keep Apple Appeal Against Demand for iPhone ‘Backdoor’ a SecretAlleged Scattered Spider SIM-Swapper Must Pay back $13.2m to 59 VictimsSix Arrested for AI-Powered Investment Scams That Stole $20 MillionAustralian Regulator Pulls Licenses of 95 Companies in Effort to Crack Down on Investment ScamsRussia Arrests CEO of Tech Company Linked to Doppelgänger Disinformation CampaignHackers Are Pretending to Be Drone Companies and State Agencies to Spy on Ukrainian VictimsSomeone Hacked Ransomware Gang Everest’s Leak SiteFood Giant WK Kellogg Discloses Data Breach Linked to Clop RansomwareFlaw in ESET Security Software Used to Spread Malware From ToddyCat GroupMalicious Microsoft VS Code Extensions Used in Cryptojacking CampaignWindows 11 24H2 Blocked on PCs with Code-Obfuscation Driver BSODsGoogle Fixes Android Zero-Days Exploited in Attacks, 60 Other Flaws
4/4-6/2025 April 6, 2025April 6, 2025 ~ The Cyber Beat ~ Leave a comment North Korean Hackers Deploy BeaverTail Malware via 11 Malicious npm PackagesNSA Director Fired After Trump’s Meeting With Right-Wing Influencer Laura LoomerKrebs: Cyber Forensic Expert in 2,000+ Cases Faces FBI ProbeMaryland Pharmacist Used Keyloggers to Spy on Coworkers for a Decade, Victim AllegesRussia Jails Hacker for Two Years Over Cyberattack on Local Tech CompanyToll Payment Text Scam Returns in Massive Phishing WaveCoinbase to Fix 2FA Account Activity Entry Freaking Out UsersFor Bitcoin Bulls Who Self-Custody Crypto, the Global Risks Are GrowingAlan Turing Institute: UK Can’t Handle a Fight Against AI-Enabled CrimsOpenAI Tests Watermarking for ChatGPT-4O Image Generation ModelHackers Strike Australia’s Largest Pension Funds in Coordinated AttacksEuropcar GitLab Breach Exposes Data of up to 200,000 CustomersPort of Seattle Says Ransomware Breach Impacts 90,000 PeopleLife University Confirms Data Breach Following July 2024 Cybersecurity IncidentLiUNA Announces Data Breach Following Confirmed Ransomware AttackPoisonSeed Phishing Campaign Behind Emails With Wallet Seed PhrasesMalicious Python Packages on PyPI Downloaded 39,000+ Times, Steal Sensitive DataTj-actions Supply Chain Attack Traced Back to Single GitHub Token CompromiseWinRAR Flaw Bypasses Windows Mark of the Web Security AlertsMicrosoft Credits EncryptHub, Hacker Behind 618+ Breaches, for Disclosing Windows Flaws
4/3/2025 April 3, 2025April 3, 2025 ~ The Cyber Beat ~ Leave a comment Hackers Hit Ukrainian State Agencies, Critical Infrastructure With New ‘Wrecksteel’ MalwarePoland’s Prime Minister Says Cyberattack Targeted His Party as Election NearsSuspected Chinese Spies Right Now Hijacking Buggy Ivanti Gear – For Third Time in 3 YearsWhy Is Someone Mass-Scanning Juniper and Palo Alto Networks Products?Lazarus Group Targets Job Seekers With ClickFix Tactic to Deploy GolangGhost MalwareMicrosoft Warns of Tax-Themed Email Attacks Using PDFs and QR Codes to Deliver MalwareAmateur Hacker ‘Coquettte’ Leverages Russian Bulletproof Hosting Server Proton66 to Spread MalwareMicrosoft at 50: Its Incredible Rise, 15 Lost Years, and Stunning Comeback – In 4 ChartsTexas State Bar Warns of Data Breach After INC Ransomware Claims AttackOracle Privately Confirms Cloud Breach to CustomersSensitive Data Breached in Highline Schools Ransomware IncidentHunters International Shifts From Ransomware to Pure Data ExtortionHacker Claims Twilio’s SendGrid Data Breach, Selling 848,000 RecordsU.S., Australia, Canada Warn of ‘Fast Flux’ Scheme Used by Ransomware GangsCISA Warns of Fast Flux DNS Evasion Used by Cybercrime GangsRecent GitHub Supply Chain Attack Traced to Leaked Spotbugs TokenMax Severity RCE Flaw Discovered in Widely Used Apache ParquetGoogle Patches Quick Share Vulnerability Enabling Silent File Transfers Without Consent
4/2/2025 April 3, 2025April 3, 2025 ~ The Cyber Beat ~ Leave a comment Waltz and Staff Used Gmail for Government Communications, Officials SayCybersecurity Professor Xiaofeng Wang Faced China-Funding Inquiry Before Disappearing, Sources Say…Cybersecurity Professor Targeted by FBI Has Not Been Detained, Lawyer SaysCrimelords at Hunters International Tell Lackeys Ransomware Too ‘Risky’GitHub Expands Security Tools After 39 Million Secrets Leaked in 2024Microsoft Adds Hotpatching Support to Windows 11 EnterpriseGray Bots Surge as Generative AI Scraper Activity IncreasesChatGPT Is Down Worldwide With Something Went Wrong ErrorOpenAI Backs Deepfake Cybersecurity Startup Adaptive Security in New Funding RoundGenetic Data Site OpenSNP to Close and Delete Data Over Privacy ConcernsPolice Shuts Down KidFlix Child Sexual Exploitation PlatformRoyal Mail Investigates Data Breach Affecting SupplierVerizon Call Filter API Flaw Exposed Customers’ Incoming Call HistoryNative Tribe in Minnesota Says Cyber Incident Knocked Out Healthcare, Casino SystemsThe Siegel Group Announces Data Breach Following Early 2025 CyberattackFIN7 Deploys Anubis Backdoor to Hijack Windows Systems via Compromised SharePoint SitesOutlaw Group Uses SSH Brute-Force to Deploy Cryptojacking Malware on Linux ServersNew Malware Loaders Use Call Stack Spoofing, GitHub C2, and .NET Reactor for StealthCisco Warns of CSLU Backdoor Admin Account Used in AttacksStripe API Skimming Campaign Unveils New Techniques for TheftCounterfeit Android Devices Found Preloaded With Triada MalwareGoogle Fixed Cloud Run Vulnerability Allowing Unauthorized Image Access via IAM Misuse
4/1/2025 April 1, 2025April 1, 2025 ~ The Cyber Beat ~ Leave a comment North Korean IT Worker Army Expands Operations in EuropeSomeone Is Trying to Recruit Security Researchers in Bizarre Hacking CampaignChina-Linked Earth Alux Uses VARGEIT and COBEACON in Multi-Stage Cyber IntrusionsEuropean Commission Takes Aim at End-To-End Encryption and Proposes Europol Become an EU FBIGoogle to Switch on E2EE for All Gmail UsersOpenAI says Deep Research is Coming to ChatGPT Free “Very Soon”Microsoft to Mark Five Decades of Ctrl-Alt-Deleting the CompetitionNew Windows 11 Trick Lets You Bypass Microsoft Account RequirementUkraine Blames Russia for Railway Hack, Labels It “Act of Terrorism”Over 1,500 PostgreSQL Servers Compromised in Fileless Cryptocurrency Mining CampaignNearly 24,000 IPs Target PAN-OS GlobalProtect in Coordinated Login Scan CampaignNew Phishing Attack Combines Vishing and DLL Sideloading TechniquesCybercriminals Expand Use of Lookalike Domains in Email AttacksWP Ultimate CSV Importer Flaws Expose 20,000 Websites to AttacksCritical Auth Bypass Bug in CrushFTP Now Exploited in AttacksApple Backports Critical Fixes for 3 Recent 0-Days Impacting Older iOS and macOS Devices
3/31/2025 March 31, 2025March 31, 2025 ~ The Cyber Beat ~ Leave a comment Krebs: How Each Pillar of the 1st Amendment is Under AttackCybersecurity Professor Xiaofeng Wang Mysteriously Disappears as FBI Raids His HomesCanadian Hacker Arrested for Allegedly Stealing Data From Texas Republican PartyBritish Intel Intern Pleads Guilty to Smuggling Top Secret Data Out of Protected FacilityChina Cracks Down on Personal Information Collection. No, SeriouslyAn AI Image Generator’s Exposed Database Reveals What People Really Used It ForMicrosoft Uses AI to Find Flaws in GRUB2, U-Boot, Barebox BootloadersAI-Powered Cybersecurity Firm ReliaQuest Raises More Than $500 MillionU.S. Seizes $8.2m From Romance Baiting ScammersEU Commission to Invest €1.3bn in Cybersecurity and AIFrench Regulator Fines Apple $162 Million for Anticompetitive Use of Privacy ToolFTC Says 23andMe Purchaser Must Uphold Existing Privacy Policy for Data HandlingCIOs and CISOs Need a Common Strategy Around AI CopilotsMoscow Subway App and Website Disrupted in Possible Retaliation for Ukraine Railway HackRussia-Linked Gamaredon Uses Troop-Related Lures to Deploy Remcos RAT in UkraineRussian Hackers Exploit CVE-2025-26633 via MSC EvilTwin to Deploy SilentPrism and DarkWispClickFake Interview Campaign by Lazarus Targets Crypto Job SeekersAPI Testing Firm APIsec Exposed Customer Data During Security LapseOracle Under Fire for Its Handling of Separate Security IncidentsCheck Point Confirms Breach, but Says It Was ‘Old’ Data and Crook Made ‘False’ ClaimsUnited Domestic Workers of America (CA) Sends Out Data Breach Letters Following Apparent CyberattackGeorgia Urology Notifies Patients of Data Breach Following Compromised Employee Email AccountsPhishing Platform ‘Lucid’ Behind Wave of iOS, Android SMS AttacksEvilginx Tool (Still) Bypasses MFAHackers Exploit WordPress mu-Plugins to Inject Spam and Hijack Site ImagesBridging the Gap Between the CISO & the Board of Directors
3/28-30/2025 March 30, 2025March 30, 2025 ~ The Cyber Beat ~ Leave a comment Trump CISA Cuts Threaten U.S. Election Integrity, Experts WarnSolar Power System Vulnerabilities Could Result in BlackoutsNine in Ten Healthcare Organizations Use the Most Vulnerable IoT DevicesOpenAI Now Pays Researchers $100,000 for Critical VulnerabilitiesHijacked Microsoft Web Domain Injects Spam Into SharePoint ServersMadison Square Garden’s Surveillance System Banned This Fan Over His T-Shirt DesignPersonal Info on Federal Judges Is Widely Accessible Online, Leading to Safety RisksOracle Health Breach Compromises Patient Data at U.S. HospitalsRetail Giant Sam’s Club Investigates Clop Ransomware Breach ClaimsPacific Residential Mortgage (OR) Confirms Data Breach Following Recent Ransomware AttackPhishing-As-A-Service Operation Uses DNS-Over-HTTPS for EvasionNew Android Trojan Crocodilus Abuses Accessibility to Steal Banking and Crypto CredentialsRESURGE Malware Exploits Ivanti Flaw with Rootkit and Web Shell FeaturesNew Ubuntu Linux Security Bypasses Require Manual Mitigations
3/27/2025 March 27, 2025March 27, 2025 ~ The Cyber Beat ~ Leave a comment Chinese FamousSparrow Hackers Deploy Upgraded Malware in AttacksAPT36 Spoofs India Post Website to Infect Windows and Android Users with MalwareTwo Serbian Journalists Reportedly Targeted With Pegasus SpywareKrebs: When Getting Phished Puts You in Mortal DangerTroy Hunt: A Sneaky Phish Just Grabbed my Mailchimp Mailing ListNo MFA? Expect Hefty Fines, UK’s ICO WarnsUK Fines Software Provider £3.07 Million for 2022 Ransomware BreachUK NCSC Urges Domain Registrars to Improve SecuritySecurity Shop Pwns BlackLock Ransomware Gang, Passes Insider Info to AuthoritiesVivaldi Integrates Proton VPN Into the Browser to Fight Web TrackingWhatsApp’s Meta AI Is Now Rolling out in Europe, and It Can’t Be Turned OffSignalGate Is Driving the Most U.S. Downloads of Signal EverEuropean Officials Increasingly Certain Baltic Sea Cable Breaks Are Accidental, Not SabotageRussia Arrests Three for Allegedly Creating Mamont Malware, Tied to Over 300 CybercrimesRussian Media, Academia Targeted in Espionage Campaign Using Google Chrome Zero-Day ExploitUkraine’s State Railway Restores Online Ticket Sales After Major CyberattackVulnerable Children’s Details at Risk in Data Cardiff Breach150,000 Sites Compromised by JavaScript Injection Promoting Chinese Gambling PlatformsPJobRAT Malware Targets Users in Taiwan via Fake AppsNew Morphing Meerkat Phishing Kit Mimics 114 Brands Using Victims’ DNS Email RecordsInfostealer Campaign Compromises 10 Npm Packages, Targets DevsHackers Repurpose RansomHub’s EDRKillShifter in Medusa, BianLian, and Play AttacksCoffeeLoader Malware Loader Linked to SmokeLoader OperationsDozens of Solar Inverter Flaws Could Be Exploited to Attack Power GridsNetApp SnapCenter Flaw Could Let Users Gain Remote Admin Access on Plug-In SystemsMozilla Warns Windows Users of Critical Firefox Sandbox Escape FlawCISA Warns of Sitecore RCE Flaws; Active Exploits Hit Next.js and DrayTek Devices
3/26/2025 March 26, 2025March 26, 2025 ~ The Cyber Beat ~ Leave a comment Austria Uncovers Alleged Russian Disinformation Campaign Spreading Lies About UkraineRedCurl Shifts from Espionage to Ransomware with First-Ever QWCrypt DeploymentNew SparrowDoor Backdoor Variants Found in Attacks on U.S. and Mexican OrganizationsU.S. Intel Leaders Are Grilled Again About the Leaked Signal Chat as More Details Emerge…Here Are the Attack Plans That Trump’s Advisers Shared on Signal…SignalGate Isn’t About SignalDOGE Staffer ‘Big Balls’ Provided Tech Support to Cybercrime Ring, Records ShowSEC’s Hester Peirce Discusses New Approach to Crypto and Cyber Rule MakingSecure Browser Startup Island Raises $250 MillionOracle Customers Confirm Data Stolen in Alleged Cloud Breach Is ValidStreamElements Discloses Third-Party Data Breach After Hacker Leaks DataSecurityScorecard Observes Surge in Third-Party BreachesUK Warns of Emerging Threat From ‘Sadistic’ Online ‘Com Networks’ of Teenage BoysMalicious npm Packages Deliver Sophisticated Reverse ShellsThreat Actors Abuse Trust in Cloud Collaboration PlatformsZero-Day Alert: Google Releases Chrome Patch for Exploit Used in Russian Espionage AttacksCybersecurity Gaps Leave Doors Wide OpenClaude is Testing ChatGPT-Like Deep Research Feature Compass
3/25/2025 March 26, 2025March 26, 2025 ~ The Cyber Beat ~ Leave a comment Lengthy Disruption of Russian Internet Provider Claimed by Ukrainian Hacker GroupUkraine Railways Say Sunday’s Cyber Attack Hit Its Online Freight ServicesCyber Command Official Is Trump’s Choice for Pentagon Policy JobWhat Is Signal, the Messaging App Trump Team Used to Share War Plans?…NSA Warned of Vulnerabilities in Signal App a Month Before Houthi Strike Chat…Senate Democrats Dissatisfied With Intel Officials’ Responses About Signal Chat…Signal Is App of Choice for Trump Allies and Opponents AlikeHow to Tell if Your Online Accounts Have Been HackedCloudflare R2 Service Outage Caused by Password Rotation ErrorFlurry to Pay $3.5 Million for Harvesting Sexual and Reproductive Health Data From Period App5 Considerations for a Data Loss Prevention RolloutHacker Defaces NYU Website, Exposing Admissions Data on 1 Million StudentsNearly $13 Million Stolen From Abracadabra Finance in Crypto HeistMalaysia PM Says Country Rejected $10 Million Ransom Demand After Airport OutagesNew Android Malware Uses .NET MAUI to Evade DetectionCybercriminals Use Atlantis AIO to Target 140+ PlatformsResearchers Uncover ~200 Unique C2 Domains Linked to Raspberry Robin Access BrokerBrowser-In-The-Browser Attacks Target CS2 Players’ Steam AccountsEncryptHub Linked to MMC Zero-Day Attacks on Windows AystemsNew Windows Zero-Day Leaks NTLM Hashes, Gets Unofficial PatchBroadcom Warns of Authentication Bypass in VMware Windows ToolsCrushFTP Warns Users to Patch Unauthenticated Access Flaw Immediately
3/24/2025 March 24, 2025March 24, 2025 ~ The Cyber Beat ~ Leave a comment Chinese Weaver Ant Hackers Spied on Telco Network for 4 Years…APT ‘Weaver Ant’The Trump Administration Accidentally Texted Me Its War PlansSANS Institute Warns of Novel Cloud-Native Ransomware Attacks23andMe Files for Bankruptcy, Customers Advised to Delete DNA Data…How to Delete Your Data From 23andMeGoogle’s $32 Billion Wiz Deal May Signal a Turning Point for Slow IPO, M&A MarketsAuthorities Seize 1842 Devices in Africa’s Cybercrime CrackdownAlleged Snowflake Hacker Agrees to Be Extradited to the U.S.Ukraine Railway Systems Hit by Targeted Cyber-Attack…Ukraine Sees Russian Effort to Sow ChaosSouth Africa’s Astral Foods Hit by Cybersecurity IncidentHackers Steal Sensitive Data From Union County (PA) During Ransomware AttackDrayTek Routers Worldwide Go into Reboot Loops Over WeekendVanHelsingRaaS Expands Rapidly in Cybercrime MarketCritical Ingress NGINX Controller Vulnerability Allows RCE Without AuthenticationCritical Next.js Vulnerability Allows Attackers to Bypass Middleware Authorization ChecksGoogle Gemini’s Astra (Screen Sharing) Rolls Out on Android for Some Users
3/21-23/2025 March 23, 2025March 23, 2025 ~ The Cyber Beat ~ Leave a comment Trump Denies Musk to Be Briefed on Top-Secret Plan for Potential War With ChinaTrump Administration Begins Shifting Cyberattack Response to StatesChina-Linked APT Aquatic Panda: 10-Month Campaign, 7 Global Targets, 5 Malware FamiliesU.S. Treasury Lifts Tornado Cash Sanctions Amid North Korea Money Laundering ProbeKrebs: Arrests in Tap-to-Pay Scheme Powered by PhishingFBI Warnings Are True—Fake File Converters Do Push MalwareCloudflare Now Blocks All Unencrypted Traffic to Its API EndpointsMajor Web Services Go Dark in Russia Amid Reported Cloudflare BlockMicrosoft: Exchange Online Bug Mistakenly Quarantines User EmailsWhy Cyber Quality Is the Key to SecurityCoinbase Initially Targeted in GitHub Actions Supply Chain Attack; 218 Repositories’ CI/CD Secrets ExposedOracle Denies Breach After Hacker Claims Theft of 6 Million Data RecordsYouTube Account of Costa Rica’s Presidency Back Online After Cyber AttackSteam Pulls Game Demo Infecting Windows With Info-Stealing MalwareFake Semrush Ads Used to Steal SEO Professionals’ Google AccountsMedusa Ransomware Uses Malicious Driver to Disable Anti-Malware with Stolen CertificatesAlbabat Ransomware Evolves to Target Linux and macOSMicrosoft Trusted Signing Service Abused to Code-Sign MalwareCybercriminals Exploit CheckPoint Antivirus Driver in Malicious CampaignVeeam RCE Bug Lets Domain Users Hack Backup Servers, Patch Now
3/20/2025 March 20, 2025March 20, 2025 ~ The Cyber Beat ~ Leave a comment Taiwan Critical Infrastructure Targeted by Hackers With Possible Ties to Volt TyphoonFishMonger APT Group Linked to I-SOON in Espionage CampaignsNorth Korea Launches New Unit With a Focus on AI Hacking, per ReportLow-Cost Drone Add-Ons From China Let Anyone With a Credit Card Turn Toys Into Weapons of WarU.S. Offers $15M Reward for Team Accused of Smuggling Drone Tech to IranKrebs: DOGE to Fired CISA Staff: Email Us Your Personal DataMore Than 400 Social Security Numbers, Other Private Information Revealed in JFK FilesWiz Deal Buoys Cyber Startup OutlookThe Post-Quantum Cryptography Apocalypse Will Be Televised in 10 Years, Says UK’s NCSCRooted Devices 250 Times More Vulnerable to CompromiseGoogle Sues Alleged Scammers Over 10,000 Fake Maps ListingsEx-Michigan Assistant Charged With Hacking Computer AccountsChina’s Baidu Denies Data Breach After Executive’s Daughter Leaks Personal InfoMajor Web Services Go Dark in Russia Amid Reported Cloudflare BlockMalware Campaign ‘DollyWay’ Breached 20,000 WordPress SitesHellCat Hackers Go on a Worldwide Jira Hacking SpreeGitHub Action Supply Chain Attack Exposed Secrets in 218 ReposESHYFT (NJ) Allegedly Leaves Database Exposed, Leading to Potentially Large-Scale Data BreachParascript (CO) Announces Data Breach Following August 2024 Ransomware AttackRansomHub Ransomware Uses New Betruger ‘Multi-Function’ BackdoorVSCode Extensions Found Downloading Early-Stage RansomwareCISA Adds NAKIVO Vulnerability to KEV Catalog Amid Active ExploitationCritical Cisco Smart Licensing Utility Flaws Now Exploited in AttacksVeeam and IBM Release Patches for High-Risk Flaws in Backup and AIX SystemsWordPress Security Plugin WP Ghost Vulnerable to Remote Code Execution BugKali Linux 2025.1a Released With 1 New Tool, Annual Theme Refresh
3/19/2025 March 19, 2025March 19, 2025 ~ The Cyber Beat ~ Leave a comment U.S. Suspends Some Efforts to Counter Russian Sabotage as Trump Moves Closer to PutinEx-U.S. Cyber Command Chief: Europe and 5 Eyes Can’t Fully Replicate U.S. IntelHong Kong Aims to Safeguard Key Facilities With New Cybersecurity LawLeaked Black Basta Chats Suggest Russian Officials Aided Leader’s Escape from ArmeniaEuropol Warns of “Shadow Alliance” Between States and CriminalsWhatsApp Patched Zero-Click Flaw Exploited in Paragon Spyware Attacks…Researchers Name Six Countries as Likely Customers of Paragon’s SpywareClick Profit Blocked by the FTC Over Alleged E-commerce ScamsTurkey Restricts Social Media Following Arrest of President’s Main RivalUkrainian Military Targeted in New Signal Spear-Phishing AttacksUkraine’s IT Army Keeps up Attacks on Russia Despite Waning Media HypeAttackers Swipe Data of 500K+ People From Pennsylvania Teachers UnionNames, Bank Info, and More Spills From Top Sperm Bank California CryobankSneaky 2FA Joins Tycoon 2FA and EvilProxy in 2025 Phishing SurgeNew Arcane Infostealer Infects YouTube, Discord Users via Game CheatsClearFake Infects 9,300 Sites, Uses Fake reCAPTCHA and Turnstile to Spread Info-StealersHackers Exploit Severe PHP Flaw to Deploy Quasar RAT and XMRig MinersCritical mySCADA myPRO Flaws Could Let Attackers Take Over Industrial Control Systems
3/18/2025 March 18, 2025March 18, 2025 ~ The Cyber Beat ~ Leave a comment China Identifies Taiwanese Hackers Allegedly Behind Cyberattacks and EspionageChina-Linked MirrorFace Deploys ANEL and AsyncRAT in New Cyber Espionage OperationThird of UK Supply Chain Relies on “Chinese Military” CompaniesBlackBasta Ransomware Ties to Russian Authorities UncoveredPoisoned Windows Shortcuts Found to Be a Favorite of Chinese, Russian, N. Korean State HackersSecurity Researcher Proves GenAI Tools Can Develop Google Chrome InfostealersNew ‘Rules File Backdoor’ Attack Lets Hackers Inject Malicious Code via AI Code EditorsNew Report Highlights Common Passwords in RDP AttacksGoogle Strikes $32 Billion Deal for Cybersecurity Startup WizCISA Fires, Rehires & Immediately Benches Security Crew on Full PayThis New Tool Lets You See How Much of Your Data Is Exposed Online – And It’s FreeGitHub Action Hack Likely Led to Another in Cascading Supply Chain AttackMunicipalities in Four States Are Struggling With Cyberattacks Limiting ServicesWestern Alliance Bank Notifies 21,899 Customers of Data BreachBlockchain Gaming Platform WEMIX Hacked to Steal $6.1 MillionHELLCAT: Jaguar Land Rover Breach Highlights Growing Cybersecurity Risks in Automotive SectorGrede Holdings (MI) Sends Out Round of Data Breach Letters Following January 2025 Cybersecurity IncidentNew Ad Fraud Campaign Exploits 331 Apps with 60M+ Downloads for Phishing and Intrusive AdsNew Critical AMI BMC Vulnerability Enables Remote Server Takeover and BrickingApple Has Revealed a Passwords App Vulnerability That Lasted for MonthsUnpatched Windows Zero-Day Flaw Exploited by 11 State-Sponsored Threat Groups Since 2017
3/17/2025 March 17, 2025March 17, 2025 ~ The Cyber Beat ~ Leave a comment Cloudflare Introduces E2E Post-Quantum Cryptography ProtectionsU.S. Legislators Demand Transparency in Apple’s UK Backdoor Court FightStates Vie for Fired Federal Cyber WorkersGoogle in Fresh Talks to Buy Cybersecurity Startup Wiz for $30 BillionHow Economic Headwinds Influence the Ransomware EcosystemOKX Suspends DEX Aggregator after Lazarus Hackers Try to Launder FundsTelegram CEO Pavel Durov Leaves France Temporarily as Criminal Probe Continues‘Mora_001’ Ransomware Gang Exploiting Fortinet Bug Spotlighted by CISA in JanuaryCherokee County School District (SC) Remains Offline After Data BreachMicrosoft: New RAT Malware Used for Crypto Theft, ReconnaissanceResearchers Confirm BlackLock as Eldorado RebrandCybercriminals Exploit CSS to Evade Spam Filters and Track Email Users’ ActionsGitHub Action Compromise Puts CI/CD Secrets at Risk in Over 23,000 RepositoriesApache Tomcat Vulnerability Actively Exploited Just 30 Hours After Public Disclosure
3/14-16/2025 March 17, 2025March 17, 2025 ~ The Cyber Beat ~ Leave a comment North Korea’s ScarCruft Deploys KoSpy Malware, Spying on Android Users via Fake Utility AppsKrebs: ClickFix: How to Infect Your PC in Three Easy StepsApple Will Soon Support Encrypted RCS Messaging With Android UsersGoogle Refuses to Deny It Received Encryption Order From UK GovernmentA New Era of Attacks on Encryption Is Starting to Heat UpNew Akira Ransomware Decryptor Cracks Encryptions Keys Using GPUsTop 10 Takeaways from the New HIPAA Security Rule NPRMInfosys Settles Lawsuits Against U.S. Unit Over Cyber Incident for $17.5 MillionLockBit Ransomware Developer Extradited to U.S.FCC Stands up Council on National Security to Fight China in Ways That CISA Used ToEurope’s Telecoms Sector Under Increased Threat From Cyber Spies, Warns DenmarkRansomware Attack Takes Down Health System Network in MicronesiaFraudsters Impersonate Clop Ransomware to Extort BusinessesCoinbase Phishing Email Tricks Users With Fake Wallet MigrationMalicious PyPI Packages Stole Cloud Tokens—Over 14,100 Downloads Before RemovalMalicious Adobe, DocuSign OAuth Apps Target Microsoft 365 accountsFake “Security Alert” Issues on GitHub use OAuth App to Hijack AccountsOBSCURE#BAT Malware Uses Fake CAPTCHA Pages to Deploy Rootkit r77 and Evade DetectionBlack Basta Ransomware Gang Creates Tool to Automate VPN Brute-Force AttacksCisco IOS XR Vulnerability Lets Attackers Crash BGP on Routers
3/13/2025 March 13, 2025March 13, 2025 ~ The Cyber Beat ~ Leave a comment Volt Typhoon Accessed U.S. OT Network for Nearly a YearJuniper Patches Bug That Let Chinese Cyberspies Backdoor Routers‘People Are Scared’: Inside CISA as It Reels From Trump’s Purge…CISA: We Didn’t Fire Red Teams, We Just Unhired a Bunch of Them…White House Instructs Agencies to Avoid Firing Cybersecurity Staff, Email SaysAlbania Starts Turning off TikTok Amid Concern Over Youth ViolenceUK ICO Fires GDPR “Warning Shot” Over Use of Children’s DataCalls Grow for UK to Move Secret Apple Encryption Court Hearing to Public Session‘ClickFix’ Phishing Scam Impersonates Booking.com to Target HospitalityWhy the Toll Road Text Scam Is Out of Control Across the U.S., and Apple, Android Can’t Do Anything to Stop ItNew SuperBlack Ransomware Exploits Fortinet Auth Bypass FlawsBank of America Warns Customers of Data Breach After Document Handling MishapProfessional Law Enforcement Association (MI) Files Notice of Data Breach with State Attorney GeneralGitHub Uncovers New ruby-saml Vulnerabilities Allowing Account Takeover AttacksMicrosoft Apologizes for Removing VSCode Extensions Used by Millions
3/12/2025 March 13, 2025March 13, 2025 ~ The Cyber Beat ~ Leave a comment Chinese Hackers Implant Backdoor Malware on Juniper RoutersThis Is the FBI, Open Up. China’s Volt Typhoon Is on Your NetworkSchools Use AI to Monitor Kids, Hoping to Prevent Violence. Our Investigation Found Security RisksMachine Identities Outnumber Humans Increasing Risk Seven-FoldAustralia Regulator Sues FIIG Securities for Cybersecurity FailuresCyber Reporting Rules Savaged in House HearingTrump Administration Shakes Up CISA with Staff and Funding CutsTrump’s FTC Advances Broad Antitrust Probe of Microsoft, Bloomberg News ReportsThe Violent Rise of ‘No Lives Matter’Signal No Longer Cooperating With Ukraine on Russian Cyberthreats, Official SaysSpyware in Bogus Android Apps Is Attributed to North Korean GroupNew North Korean Android Spyware Slips Onto Google PlayOver 400 IPs Exploiting Multiple SSRF Vulnerabilities in Coordinated Cyber AttackTata Technologies’ Data Leaked by Hunters International Ransomware GangCISA: Medusa Ransomware Hit Over 300 Critical Infrastructure OrgsHOLT Group (TX) Files Notice of Data Breach Leaking Consumer’s Financial InformationFacebook Discloses FreeType 2 Flaw Exploited in AttacksMozilla Warns Users to Update Firefox Before Certificate ExpiresKrebs: Microsoft with 6 Zero-Days in March 2025 Patch Tuesday…Microsoft Patches Windows Kernel Zero-Day Exploited Since 2023
3/11/2025 March 11, 2025March 11, 2025 ~ The Cyber Beat ~ Leave a comment North Korean Lazarus Hackers Infect Hundreds via npm PackagesSideWinder APT Targets Maritime, Nuclear, and IT Sectors Across Asia, Middle East, and AfricaBlind Eagle Hacks Colombian Institutions Using NTLM Flaw, RATs and GitHub-Based AttacksSean Plankey Picked by Trump to Be CISA DirectorUniversity of South Florida Gets $40 Million to Start Cyber and AI College95% of Data Breaches Tied to Human Error in 2024Steganography Explained: How XWorm Hides Inside ImagesKrebs: Alleged Co-Founder of Garantex Arrested in IndiaTrump Administration Ends FTC’s Ransomware Data Breach Case Against MGM ResortsBalancing Cybersecurity Accountability & DeregulationPowerSchool Previously Hacked in August, Months Before Data Breach‘Uber for Nurses’ Exposes 86K+ Medical Records, PII in Open S3 Bucket for MonthsMassJacker Malware Uses 778,000 Wallets to Steal CryptocurrencyBallista Botnet Exploits Unpatched TP-Link Vulnerability, Infects Over 6,000 DevicesCritical PHP RCE Vulnerability Mass Exploited in New AttacksCISA Urges All Organizations to Patch Exploited Critical Ivanti and VeraCore VulnerabilitiesMoxa Issues Fix for Critical Authentication Bypass Vulnerability in PT SwitchesMicrosoft March 2025 Patch Tuesday Fixes 7 Zero-Days, 57 FlawsApple Fixes Webkit Zero-Day Exploited in ‘Extremely Sophisticated’ Attacks…This Is the One Security Fix Added in iOS 18.3.2 and More
3/10/2025 March 11, 2025March 11, 2025 ~ The Cyber Beat ~ Leave a comment Multiple Outages at X Caused by ‘Massive Cyberattack,’ Musk Claims…X Hit by ‘Massive Cyberattack’ Amid Dark Storm’s DDoS ClaimsUK AI Research Under Threat From Nation-State HackersSurge in Malicious Software Packages Exploits System FlawsSwitzerland Mandates Cyber-Attack Reporting for Critical InfrastructureAllstate Insurance Sued for Delivering Personal Info on a Platter, in Plaintext, to Anyone Who Went Looking For ItTrump Administration Ends FTC’s Ransomware Data Breach Case Against MGM ResortsU.S. Gov’t Says Americans Lost Record $12.5 Billion to Fraud in 2024FTC Will Send $25.5 Million to Victims of Tech Support ScamsNorth Korean Lazarus Hackers Cash out Hundreds of Millions From $1.5bn ByBit HackDesert Dexter Targets 900 Victims Using Facebook Ads and Telegram Malware LinksSilentCryptoMiner Infects 2,000 Russian Users via Fake VPN and DPI Bypass ToolsSunflower Medical Group (KS) Says More Than 220,000 Impacted by CyberattackCentral Texas Pediatric Orthopedics Announces Data Breach Affecting at Least 90,000 PeopleWhat PowerSchool Won’t Say About Its Data Breach Affecting Millions of StudentsScam Spoofs Binance Website and Uses Trump Coin as Lure for MalwareSIM Swapping Fraud Surges in the Middle EastResearchers Expose New Polymorphic Attack That Clones Browser Extensions to Steal CredentialsGoogle Paid $12 Million in Bug Bounties Last Year to Security Researchers
3/7-9/2025 March 9, 2025March 9, 2025 ~ The Cyber Beat ~ Leave a comment Two U.S. Army Soldiers Charged With Selling Military Secrets to ChinaWhite House Cyber Director’s Office Set for More Power Under Trump, Experts SayCyber Companies Stress AI as Core Future TechnologyPalantir Delivers First Two AI-Enabled Systems to U.S. ArmyRansomware Groups Favor Repeatable Access Over Mass Vulnerability ExploitsYouTubers Extorted via Copyright Strikes to Spread MalwareEmployee of Unnamed Company Charged With Stealing Unreleased Movies, Sharing Them OnlineU.S. Seizes $23 Million in Crypto Linked to LastPass BreachesKrebs: Feds Link $150M Cyberheist to 2022 LastPass HacksSafe{Wallet} Confirms North Korean TraderTraitor Hackers Stole $1.5 Billion in Bybit HeistU.S. Charges Garantex Admins With Money Laundering, Sanctions ViolationsDeveloper Guilty of Using Kill Switch to Sabotage Employer’s SystemsUndocumented Commands Found in Bluetooth Chip Used by a Billion DevicesMicrosoft: North Korean Hackers Join Qilin Ransomware GangData Breach at Japanese Telecom Giant NTT Hits 18,000 CompaniesHome Appliance Company Presto Says Cyberattack Causing Delivery DelaysChicago Public Schools Data Breach: What to Know, How It Affects YouRansomHub Hackers Leak Sensitive Data From Elite Bronx Private School Riverdale Country School After Ransomware AttackMission (TX) Declares State of Emergency After Cyberattack on Government SystemsAmerman Ginder (PA) Files Official Notice of Data BreachA Brand-New Botnet Is Delivering Record-Size DDoS AttacksU.S. Cities Warn of Wave of Unpaid Parking Phishing TextsFIN7, FIN8, and Others Use Ragnar Loader for Persistent Access and Ransomware OperationsThis Malicious PyPI Package Stole Ethereum Private Keys via Polygon RPC TransactionsUnpatched Edimax IP Camera Flaw Actively Exploited in Botnet AttacksBug Affecting PHP Scripts Demands ‘Immediate Action From Defenders Globally’
3/6/2025 March 7, 2025March 7, 2025 ~ The Cyber Beat ~ Leave a comment Russia Claims Ukraine Hacked State Youth Organizations to Recruit MinorsTrump’s Spy Chief Tulsi Gabbard Urged to Declassify Details of Secret Surveillance ProgramPentagon Cuts Threaten Programs That Secure Loose Nukes and Weapons of Mass DestructionKrebs: Who is the DOGE and X Technician Branden Spikes?The U.S. Army Is Using ‘CamoGPT’ to Purge DEI From Training MaterialsEnterprise AI Through a Data Security Lens: Balancing Productivity With SafetyWhy Security Leaders Are Opting for Consulting GigsCybersecurity Job Satisfaction Plummets, Women Hit HardestIt’s ‘Never Been Easier’ to Become an Online Scammer as Cybercrime Markets Flourish, Security Experts WarnU.S. Seizes Domain of Garantex Crypto Exchange Used by Ransomware GangsCybercrime ‘Crew’ Stole $635,000 in Taylor Swift Concert TicketsMalicious Chrome Extensions Can Spoof Password Managers in New AttackArmis Buys Otorio for $120M to Beef up Cybersecurity in Physical SpacesAttackers Target Japanese Firms with Cobalt StrikeThousands of Public School Workers Impacted by Cyberattack on Retirement Plan AdministratorScott County (IA) Notifies Residents of Data BreachFlexCare Sends Out Data Breach Letters Following Email CompromiseThe Badbox Botnet Is Back, Powered by up to a Million Backdoored AndroidsMicrosoft Says Malvertising Campaign Impacted 1 Million PCsMedusa Ransomware Hits 40+ Victims in 2025, Demands $100K–$15M RansomAkira Ransomware Gang Encrypted Network From a Webcam to Bypass EDREncryptHub Deploys Ransomware and Stealer via Trojanized Apps, PPI Services, and PhishingEthereum Private Key Stealer on PyPi Downloaded Over 1,000 TimesOver 1,000 WordPress Sites Infected with JavaScript Backdoors Enabling Persistent Attacker AccessVulnerability in Chaty Pro Plugin Exposes 18,000 WordPress SitesOver 37,000 VMware ESXi Servers Vulnerable to Ongoing AttacksElastic Releases Urgent Fix for Critical Kibana Vulnerability Enabling Remote Code Execution
3/5/2025 March 6, 2025March 6, 2025 ~ The Cyber Beat ~ Leave a comment Silk Typhoon Shifts Tactics to Exploit Common IT SolutionsChinese APT Lotus Panda Targets Governments With New Sagerunex Backdoor Variants12 Chinese Hackers Charged With U.S. Treasury Breach — And Much, Much MoreDOJ to Appeal Court Decision Ruling Broad Cell Phone Tower Searches Are Unconstitutional1 Million Third-Party Android Devices Have a Secret Backdoor for ScammersWould-be Extortionists Send “BianLian” Ransom Notes in the MailMass Federal Layoffs Will Hurt Cybersecurity, Former Top U.S. Security Official SaysRural Hospitals in U.S. Need to Invest at Least $70 Million in Cybersecurity, Microsoft FindsQilin Ransomware Gang Claims Attacks on Cancer Clinic, OB-GYN FacilityToronto Zoo Shares Update on Last Year’s Ransomware Attack…Two Decades of Visitor DataLoyola University Maryland Sends Data Breach Letters Following July 2024 CyberattackSeven Malicious Go Packages Found Deploying Malware on Linux and macOS SystemsMicrosoft Teams Tactics, Malware Connect Black Basta, Cactus RansomwareDark Caracal Uses Poco RAT to Target Spanish-Speaking Enterprises in Latin AmericaOpen-Source Tool ‘Rayhunter’ Helps Users Detect Stingray AttacksPeople Are Using Super Mario to Benchmark AI Now
3/4/2025 March 4, 2025March 4, 2025 ~ The Cyber Beat ~ Leave a comment Russia to Redeploy Resources Freed up by End of War in Ukraine, Warns Finnish IntelligencePolish Space Agency Offline as It Recovers From CyberattackNorth Koreans Finish Initial Laundering Stage After More Than $1 Billion Stolen From BybitNorth Korean Fake IT Workers Leverage GitHub to Build Jobseeker PersonasPrivate 5G Networks Face Security Risks Amid AI AdoptionYouTube Warns Creators an AI-Generated Video of Its CEO Is Being Used for Phishing ScamsGoogle Messages Is Using AI to Detect Scam TextsIt’s Bad Enough We Have to Turn on Cams for Meetings, Now the Person Staring at You May Be an AI DeepfakeApple Reportedly Challenges the UK’s Secretive Encryption CrackdownCatalan Court Orders Former NSO Group Executives Be Indicted for Spyware AbusesTreasury Sanctions Iranian National Behind Defunct Nemesis Darknet MarketplaceIran Linked to More Than 20 Plots to Kill or Kidnap British Citizens and ResidentsPolyglot: New Cyber-Espionage Campaign Targets UAE Aviation and TransportOver 4,000 ISP IPs Targeted in Brute-Force Attacks to Deploy Info Stealers and CryptominersNew Eleven11bot Botnet Infects 86,000 Devices for DDoS AttacksGregory & Appel Insurance (IN) Announces Data Breach Impacting Consumer Social Security NumbersHunters International Ransomware Claims Attack on Tata TechnologiesResearchers Link CACTUS Ransomware Tactics to Former Black Basta AffiliatesDark Caracal Group Might Have Refreshed Its Malware, Researchers SayCisco Warns of Webex for BroadWorks Flaw Exposing CredentialsVMware Warns Customers to Patch Actively Exploited Zero-Day VulnerabilitiesGoogle’s March 2025 Android Security Update Fixes Two Actively Exploited VulnerabilitiesGreyNoise Intelligence Releases New Research on Cybersecurity VulnsHalf of Online Gambling Firms Lose 10% of Revenue to Fraud
3/3/2025 March 4, 2025March 4, 2025 ~ The Cyber Beat ~ Leave a comment CISA Denies Reports of Shift in Cybersecurity Posture Amid Russian ThreatsFinland Releases Russian ‘Spy’ Ship but Continues to Detain Three Crew Members as SuspectsRussian Telecom Beeline Facing Outages After CyberattackVodafone Trials Quantum-Safe Tech to Protect Smartphone BrowsingMicrosoft Unveils Finalized EU Data Boundary as European Doubt Over U.S. GrowsGovernments Can’t Seem to Stop Asking for Secret BackdoorsICO Launches TikTok, Reddit & Imgur Investigation Over Use of Children’s DataCybersecurity Not the Hiring-’Em-Like-Hotcakes Role It Once WasRubrik Rotates Authentication Keys After Log Server BreachPalau Health Ministry on the Mend After Qilin Ransomware AttackLee Enterprises Ransomware Attack Hits Freelance and Contractor PaymentsPenn-Harris-Madison Schools (IN) Combat Ransomware Attack, Systems Shut down as PrecautionClickFix Phishing Campaign Uses Havoc Framework to Control Infected SystemsHackers Exploit AWS Misconfigurations to Launch Phishing Attacks via SES and WorkMailAttackers Leverage Microsoft Teams and Quick Assist for AccessCISA Tags Windows, Cisco Vulnerabilities as Actively Exploited
2/28-3/2/2025 March 2, 2025March 2, 2025 ~ The Cyber Beat ~ Leave a comment Cyberattack Detected at Polish Space Agency, Minister SaysGerman Government Denies Foreign Election Interference Was SuccessfulHegseth Orders Cyber Command to Stand down on Russia PlanningAmnesty Finds Cellebrite’s Zero-Day Used to Unlock Serbian Activist’s Android PhoneKrebs: Notorious Malware, Spam Host “Prospero” Moves to Kaspersky LabThe Biggest Data Breaches of 2025 — So FarThird-Party Attacks Drive Major Financial Losses in 2024U.S. Recovers $31 Million Stolen in 2021 Uranium Finance HackCybersecurity M&A Roundup: SolarWinds Acquired for $4.4bnThe UK Will neither Confirm nor Deny That It’s Killing EncryptionChina Tells Its AI Leaders to Avoid U.S. Travel Over Security ConcernsProlific Data Extortion Actor Arrested in ThailandPolice Arrests Suspects Tied to AI-Generated CSAM Distribution RingCalifornia Shuts Down Data Broker for Failing to RegisterZapier Says Someone Broke Into Its Code Repositories and May Have Accessed Customer DataIndia’s Angel One Says Assessing Impact After Security BreachQilin Ransomware Claims Attack at Lee Enterprises, Leaks Stolen Data12,000+ API Keys and Passwords Found in Public Datasets Used for LLM TrainingMicrosoft Exposes LLMjacking Cybercriminals Behind Azure AI Abuse SchemeSticky Werewolf Uses Undocumented Implant to Deploy Lumma Stealer in Russia and BelarusFake CAPTCHA PDFs Spread Lumma Stealer via Webflow, GoDaddy, and Other DomainsRansomware Gangs Exploit Paragon Partition Manager Bug in BYOVD AttacksOld Vulnerabilities Among the Most Widely ExploitedRansomware Criminals Love CISA’s KEV List – And That’s a Bug, Not a FeatureC++ Creator Calls for Help to Defend Programming Language From ‘Serious Attacks’Mozilla Updates Firefox Terms Again After Backlash Over Broad Data License Language
2/27/2025 February 28, 2025February 28, 2025 ~ The Cyber Beat ~ Leave a comment Belgium Probes if Chinese Hackers Breached Its Intelligence ServiceChinese Cyber Espionage Jumps 150%, CrowdStrike FindsSpace Pirates Targets Russian IT Firms With New LuckyStrike Agent MalwareOpenSSF Publishes Security Framework for Open Source SoftwareDoes Terrible Code Drive You Mad? Wait Until You See What It Does to OpenAI’s GPT-4OA Disney Worker Downloaded an AI Tool. It Led to a Hack That Ruined His Life.…Hackers Stole this Engineer’s 1Password Database. Could It Happen to You?Microsoft Names Developers Behind Illicit AI Tools Used in Celebrity Deepfake SchemeKrebs: U.S. Soldier Charged in AT&T Hack Searched “Can Hacking Be Treason”Suspected Desorden Hacker Arrested for Breaching 90 OrganizationsPrivacy Tech Firms Warn France’s Encryption and VPN Laws Threaten PrivacyMeta Fixes Error That Exposed Instagram Users to Graphic and Violent ContentThousands Rescued From Scam Compounds in Myanmar Now Stuck at Thai BorderPhilippine Army Confirms Attack on Its NetworksDragonForce Ransomware Hits Saudi Firm, 6TB Data StolenFBI Confirms Lazarus Hackers Were Behind $1.5B Bybit Crypto Heist…FBI Urges Crypto Community to Avoid Laundering Funds From Bybit HackWinos 4.0 Malware Targets Taiwan With Email Impersonation…Silver Fox APT Uses Winos 4.0 Malware in Cyber Attacks Against Taiwanese OrganizationsOver 49,000 Misconfigured Building Access Systems Exposed OnlineSouthern Water Says Black Basta Ransomware Attack Cost £4.5m in ExpensesGrassCall Malware Campaign Drains Crypto Wallets via Fake Job InterviewsNew TgToxic Banking Trojan Variant Evolves with Anti-Analysis UpgradesVo1d Malware Botnet Grows to 1.6 Million Android TVs WorldwidePolarEdge Botnet Exploits Cisco and Other Flaws to Hijack ASUS, QNAP, and Synology DevicesNakivo Fixes Critical Flaw in Backup & Replication ToolSoftware Vulnerabilities Take Almost Nine Months to Patch
2/26/2025 February 26, 2025February 26, 2025 ~ The Cyber Beat ~ Leave a comment CERT-UA Warns of UAC-0173 Attacks Deploying DCRat to Compromise Ukrainian NotariesGeopolitical Tension Fuels APT and Hacktivism SurgeNSA Says It Is Investigating Potential Misuse of Chat PlatformRomanian Police Question Pro-Russian Presidential Candidate Following Kremlin InterferenceWhat Apple Pulling Advanced Data Protection Means for You…U.S. Examining Whether UK’s Encryption Demand on Apple Broke Data TreatySignal May Exit Sweden If Government Imposes Encryption BackdoorCellebrite Cuts off Serbia Over Abuse of Phone-Cracking Software Against Civil Society99% of Organizations Report API-Related Security IssuesCybersecurity Budgets Should Reflect Business Risks, Corporate Leaders SayStartup PsiQuantum Says It is Making Millions of Quantum Computing ChipsOpenAI’s GPT 4.5 Spotted in Android Beta, Launch ImminentBybit Declares War on North Korea’s Lazarus Crime-Ring to Regain $1.5B Stolen From Wallet…Lazarus Hacked Bybit via Breached Safe{Wallet} Developer Machine‘Cyber Incident’ Shuts Down Cleveland Municipal Court for Third Straight DayPump.fun X Account Hacked to Promote Scam Governance TokenYes! Communities (CO) Sends Data Breach Letters Related to December 2024 IncidentEncryptHub Breaches 618 Orgs to Deploy Infostealers, RansomwareHackers Exploited Krpano Framework Flaw to Inject Spam Ads on 350+ WebsitesMalicious PyPI Package “automslc” Enables 104K+ Unauthorized Deezer Music DownloadsCISA Adds Microsoft and Zimbra Flaws to KEV Catalog Amid Active ExploitationVSCode Extensions With 9 Million Installs Pulled over Security RisksQualcomm Pledges 8 Years of Security Updates for Android Kit using Its Chips (YMMV)How APT Naming Conventions Make Us Less Safe
2/25/2025 February 25, 2025February 25, 2025 ~ The Cyber Beat ~ Leave a comment New Auto-Color Linux Backdoor Targets North American Gov’ts, UniversitiesGhostwriter Cyber-Attack Targets Ukrainian, Belarusian OppositionChinese-Backed Silver Fox Plants Backdoors in Healthcare NetworksA Team of Female Founders Is Launching Cloud Security Tech That Could Overhaul AI ProtectionMicrosoft Invests in Cloud Data Firm Veeam Software to Build AI ProductsOnly a Fifth of Ransomware Attacks Now Encrypt Data61% of Hackers Use New Exploit Code Within 48 Hours of AttackQuarter of Brits Report Deepfake Phone ScamsThis Russian Tech Bro Helped Steal $93 Million and Landed in Us Prison. Then Putin Called.Swedish Authorities Seek Backdoor to Encrypted Messaging AppsUK Home Office’s New Vulnerability Reporting Mechanism Leaves Researchers Open to ProsecutionFirefox Continues Manifest V2 Support as Chrome Disables MV2 Ad-BlockersAnthropic’s Claude 3.7 Sonnet Is Here and Results Are InsaneU.S. Drug Testing Firm DISA Says Data Breach Impacts 3.3 Million PeopleOrange Group Confirms Breach After Hacker Leaks Company DocumentsSiberia’s Largest Dairy Plant Reportedly Disrupted With LockBit VariantGitVenom Malware Steals $456K in Bitcoin Using Fake GitHub Projects to Hijack WalletsHave I Been Pwned Adds 284M Accounts Stolen by Infostealer Malware‘OpenAI’ Job Scam Targeted International Workers Through TelegramFatalRAT Phishing Attacks Target APAC Industries Using Chinese Cloud ServicesLightSpy Expands to 100+ Commands, Increasing Control Over Windows, macOS, Linux, and Mobile2,500+ Truesight.sys Driver Variants Exploited to Bypass EDR and Deploy HiddenGh0st RATTwo Actively Exploited Security Flaws in Adobe and Oracle Products Flagged by CISAMITRE Caldera Security Suite Scores Perfect 10 for InsecurityUnmanaged Devices: The Overlooked Threat CISOs Must Confront
2/24/2025 February 24, 2025February 24, 2025 ~ The Cyber Beat ~ Leave a comment Krebs: Trump 2.0 Brings Cuts to Cyber, Consumer Protections…Screens at HUD Display AI Video of Donald Trump Sucking Elon Musk’s ToesAustralia Bans Kaspersky Software Over National Security and Espionage ConcernsRussia Warns Financial Sector of Major IT Service Provider HackGoogle Is Replacing Gmail’s SMS Authentication With QR CodesInside the Telegram Groups Doxing Women for Their Facebook PostsMichigan Man Indicted for Dark Web Credential FraudOpenAI Bans ChatGPT Accounts Used by North Korean HackersBybit Offers $140m Bounty to Recover Funds After Mega Crypto-Heist…North Korean Hackers Linked to $1.5 Billion Bybit Crypto HeistNuna Baby Essentials (PA) Sends Data Breach Following Recent Cybersecurity IncidentNew Malware Campaign Uses Cracked Software to Spread Lumma and ACR StealerBotnet Targets Basic Auth in Microsoft 365 Password Spray AttacksExploits for Unpatched Parallels Desktop Flaw Give Root on MacsEssential Addons for Elementor XSS Vulnerability Discovered
2/21-23/2025 February 23, 2025February 23, 2025 ~ The Cyber Beat ~ Leave a comment Ukrainian Hackers Claim Breach of Russian Loan Company Linked to Putin’s Ex-WifeChinese Medical Devices Are in Health Systems Across U.S., and the Government and Hospitals Are WorriedData Leak Exposes TopSec’s Role in China’s Censorship-as-a-Service OperationsOpenAI Bans Accounts Misusing ChatGPT for Surveillance and Influence CampaignsIndia’s Haryana State Pollution Control Board Website ‘Hacked’, Plaint LodgedApple Pulls Encryption Feature From UK Over Government Spying DemandsGoogle Cloud Introduces Quantum-Safe Digital Signatures in KMSThe Cybersecurity Talent Shortage: WSJ Readers Dissect the ProblemPentagon Fast-Tracks ‘Cyber Command 2.0’ Review, Requests Authorities Wish ListNations Open ‘Data Embassies’ to Protect Critical InfoTop Polish Anti-Corruption Official Resigns Amid Spyware ProbeBybit Exchange Hacked, Over $1.4 Billion in ETH-Related Tokens DrainedBeware: PayPal “New Address” Feature Abused to Send Phishing EmailsFake CS2 Tournament Streams Used to Steal Crypto, Steam AccountsPhoenix Rehabilitation and Nursing Center Announces Third-Party Data Breach at Unnamed VendorVectraRx Mail Pharmacy (AZ) Confirms 2024 Data Breach Leaked Sensitive Information Belonging to 109,383 PeopleStar Solution Services (BC) Provides Notice of Data Breach Affecting Over 27k IndividualsAnne Arundel County (MD) Investigates Cyber Incident Affecting Payment Systems, Origin UnknownWilliamsburg-James City Schools (VA) Recovered From Cyber AttackSpyLend Android Malware Downloaded 100,000 Times From Google PlayCISA Flags Craft CMS Vulnerability CVE-2025-23209 Amid Active Attacks
2/20/2025 February 20, 2025February 20, 2025 ~ The Cyber Beat ~ Leave a comment Chinese Hackers Use Custom Malware to Spy on U.S. Telecom NetworksChina-Linked Attackers Exploit Check Point Flaw to Deploy ShadowPad and RansomwareFriedrich Merz Targeted by Pro-Russian Disinformation Before German Vote, Researchers SayGoogle Ad-Tech Users Can Target National Security ‘Decision Makers’ and People With Chronic DiseasesOver 330 Million Credentials Compromised by InfostealersBlack Basta Ransomware Gang’s Internal Chat Logs Leak OnlineHacked, Leaked, Exposed: Why You Should Never Use Stalkerware AppsThe Cryptocurrency Scam That Turned a Small Town Against ItselfWest Coast Cybersecurity Salaries Outshine Rest of CountryHealth Net Federal Services Pays $11M Settlement Over Alleged Cybersecurity LapsesSEC Replaces Cryptocurrency Fraud Unit With Team Aimed More Broadly at Emerging TechWhen Brand Loyalty Trumps Data SecurityMalicious Ads Target Freelance Developers via GitHubDarcula PhaaS Can Now Auto-Generate Phishing Kits for Any BrandOttawa Family Physicians (KS) Notifies Patients of December 2024 Data BreachUK Healthcare Giant Hcrg Confirms Hack After Ransomware Gang Claims Theft of Sensitive DataNew NailaoLocker Ransomware Used Against EU Healthcare OrgsCybercriminals Use Eclipse Jarsigner to Deploy XLoader Malware via ZIP ArchivesHackers Exploit Signal’s Linked Devices Feature to Hijack Accounts via Malicious QR CodesCritical Flaws in Mongoose Library Expose MongoDB to Data Thieves, Code ExecutionCitrix Releases Security Fix for NetScaler Console Privilege Escalation VulnerabilityMicrosoft Patches Actively Exploited Power Pages Privilege Escalation VulnerabilityApiiro Unveils Free Scanner to Detect Malicious Code Merges
2/19/2025 February 19, 2025February 19, 2025 ~ The Cyber Beat ~ Leave a comment Signals of Trouble: Multiple Russia-Aligned Threat Actors Actively Targeting Signal MessengerSpies Eye AUKUS Nuclear Submarine Secrets, Australia’s Intelligence Chief Warns…Multiple Foreign Intelligence Agencies Plotting to Murder Dissidents in AustraliaHundreds of U.S. Military and Defense Credentials CompromisedThree Ways to Batten Down Executives’ Personal Digital LivesMicrosoft Creates Chip It Says Shows Quantum Computers Are ‘Years, Not Decades’ AwaySanctioned Entities Fueled $16 Billion in Cryptocurrency Activity Last Year, Report SaysPegasus Spyware Infections Found on Several Private Sector PhonesCISA and FBI: Ghost Ransomware Breached Orgs in 70 CountriesAustralian IVF Clinic Genea Suffers Data Breach Following Cyber IncidentPhishing Attack Hides JavaScript Using Invisible Unicode TrickWordPress Plugin Vulnerability Exposes 90,000 Sites to AttackCISA Adds Palo Alto Networks and SonicWall Flaws to Exploited Vulnerabilities ListNew WinRAR Version Strips Windows Metadata to Increase Privacy
2/18/2025 February 18, 2025February 18, 2025 ~ The Cyber Beat ~ Leave a comment Mustang Panda Leverages Microsoft Tools to Bypass Anti-Virus SolutionsWinnti APT41 Targets Japanese Firms in RevivalStone Cyber Espionage CampaignSen. Ron Wyden Remains Hopeful for Bipartisan Action on Tech, Cyber IssuesSANS Institute Launches AI Cybersecurity HackathonIt’s Early, But BlackLock is On Track to Be 2025’s Most Prolific Ransomware GroupKrebs: How Phished Data Turns into Apple & Google WalletsU.S. Newspaper Publisher Uses Linguistic Gymnastics to Avoid Saying Its Outage Was Due to RansomwareManaged Healthcare Defense Contractor to Pay $11 Million Over Alleged Cyber FailingsVenture Capital Giant Insight Partners Hit by CyberattackEvolving Snake Keylogger Variant Targets Windows UsersCracked Garry’s Mod, BeamNG.Drive Games Infect Gamers with MinersProofpoint Uncovers FrigidStealer, A New MacOS InfostealerCybercriminals Exploit Onerror Event in Image Tags to Deploy Payment SkimmersOpenSSH Flaws Expose Systems to Critical AttacksJuniper Session Smart Routers Vulnerability Could Let Attackers Bypass AuthenticationNew Xerox Printer Flaws Could Let Attackers Capture Windows Active Directory CredentialsTrend Micro Predicts Increase in Ai-Driven Cyber Threats in 2025