Friday Wrap Up: 21 March 2025
It's been a busy week in cybersecurity and time for a Friday Wrap Up. Here are some of the interesting stories from this past week.
π Major Data Breaches and Privacy Concerns
π¦ Western Alliance Bank confirms data breach linked to the Cleo file transfer tool, impacting 22,000 customers. (Published on 3/18/2025, SecurityWeek). Read More
𧬠California Cryobank warns of a data breach affecting sensitive personal information of clients. (Published on 3/18/2025, BleepingComputer). Read More
π‘οΈ Cyberattack Trends and Vulnerabilities
π§ Hackers exploit severe PHP flaw to deploy Quasar RAT and cryptominers. (Published on 3/19/2025, The Hacker News). Read More
π₯ Nearly 8,000 new WordPress plugin and theme vulnerabilities were reported in 2024. (Published on 3/17/2025, SecurityWeek). Read More
π‘ Cisco Smart Licensing Utility flaws are now being actively exploited. (Published on 3/20/2025, BleepingComputer). Read More
π£ Scareware combined with phishing is now targeting macOS users. (Published on 3/19/2025, SecurityWeek). Read More
π» Infostealers surged in 2024, compromising 2.1 billion credentials. (Published on 3/18/2025, CyberScoop). Read More
π¨ RansomHub uses FakeUpdates to hit US government and private sectors. (Published on 3/17/2025, Dark Reading). Read More
π Malicious use of traffic distribution systems (TDS) is growing and becoming harder to stop. (Published on 3/20/2025, Dark Reading). Read More
π‘ Tech & AI Updates
π€ Microsoftβs March Windows update mistakenly removes Copilot from some systems. (Published on 3/17/2025, BleepingComputer). Read More
π» Microsoft urges Windows 10 users to upgrade by buying new PCs. (Published on 3/21/2025, Slashdot). Read More
π§ New jailbreak technique uses fictional worlds to bypass AI security. (Published on 3/21/2025, SecurityWeek). Read More
π΅οΈ Global Cyber Espionage & Surveillance
π³οΈ Israeli spyware 'Graphite' targeted WhatsApp using a 0-click exploit. (Published on 3/20/2025, Hackread). Read More
π¬ Evolving Phishing and Prevention Tools
π Itβs time to move phishing prevention beyond email, says Push Security. (Published on 3/19/2025, BleepingComputer). Read More
πΈ Crypto & Sanctions Developments
π U.S. lifts sanctions against Tornado Cash, once used by Lazarus hackers. (Published on 3/21/2025, BleepingComputer). Read More
Stay informed and secure in the tech and cybersecurity world. Have a great weekend, and remember to patch and protect your systems!