Friday Wrap Up: 21 March 2025
It's been a busy week in cybersecurity and time for a Friday Wrap Up. Here are some of the interesting stories from this past week.
🔐 Major Data Breaches and Privacy Concerns
🏦 Western Alliance Bank confirms data breach linked to the Cleo file transfer tool, impacting 22,000 customers. (Published on 3/18/2025, SecurityWeek). Read More
🧬 California Cryobank warns of a data breach affecting sensitive personal information of clients. (Published on 3/18/2025, BleepingComputer). Read More
🛡️ Cyberattack Trends and Vulnerabilities
🔧 Hackers exploit severe PHP flaw to deploy Quasar RAT and cryptominers. (Published on 3/19/2025, The Hacker News). Read More
💥 Nearly 8,000 new WordPress plugin and theme vulnerabilities were reported in 2024. (Published on 3/17/2025, SecurityWeek). Read More
📡 Cisco Smart Licensing Utility flaws are now being actively exploited. (Published on 3/20/2025, BleepingComputer). Read More
🎣 Scareware combined with phishing is now targeting macOS users. (Published on 3/19/2025, SecurityWeek). Read More
💻 Infostealers surged in 2024, compromising 2.1 billion credentials. (Published on 3/18/2025, CyberScoop). Read More
🚨 RansomHub uses FakeUpdates to hit US government and private sectors. (Published on 3/17/2025, Dark Reading). Read More
📈 Malicious use of traffic distribution systems (TDS) is growing and becoming harder to stop. (Published on 3/20/2025, Dark Reading). Read More
💡 Tech & AI Updates
🤖 Microsoft’s March Windows update mistakenly removes Copilot from some systems. (Published on 3/17/2025, BleepingComputer). Read More
💻 Microsoft urges Windows 10 users to upgrade by buying new PCs. (Published on 3/21/2025, Slashdot). Read More
🧠 New jailbreak technique uses fictional worlds to bypass AI security. (Published on 3/21/2025, SecurityWeek). Read More
🕵️ Global Cyber Espionage & Surveillance
🕳️ Israeli spyware 'Graphite' targeted WhatsApp using a 0-click exploit. (Published on 3/20/2025, Hackread). Read More
📬 Evolving Phishing and Prevention Tools
🔐 It’s time to move phishing prevention beyond email, says Push Security. (Published on 3/19/2025, BleepingComputer). Read More
💸 Crypto & Sanctions Developments
🌀 U.S. lifts sanctions against Tornado Cash, once used by Lazarus hackers. (Published on 3/21/2025, BleepingComputer). Read More
Stay informed and secure in the tech and cybersecurity world. Have a great weekend, and remember to patch and protect your systems!