🎉 This Week in Cyber: From AI Phishing to ATM Hacking – We’ve Seen It All

If you thought cybercriminals might slow down in April… plot twist! 😅

This week’s headlines brought:

- AI-powered phishing toolkits that scale scams faster than startups scale servers 🤖💸

- Ransomware attacks hitting hospitals, cities, and schools — because clearly nothing is sacred anymore 🏥🏛️

- Spoofed emails that even Google thought were legit 🫣

- Malware turning your Android into an ATM hacker’s dream 💳

- And of course, another Nintendo leak — because someone really wants to speed-run lawsuits 🎮

Enjoy this week’s Friday Wrap Up for all the need-to-know stories, summarized, categorized, and emoji-fied for your convenience:

🛡️ Cyber Threats & Malware Developments
Latest updates on the evolving tactics of cybercriminals exploiting malware, phishing kits, and exploits.

• 📲 SuperCard X Android malware enables NFC relay attacks to steal card data from Italian banking customers. (Published on 4/21/2025, The Hacker News). Read More

• 🧠 Darcula phishing toolkit now uses generative AI to create hyper-realistic scams in multiple languages. (Published on 4/25/2025, CSO Online). Read More

• 🧪 Phishing detection is failing, with attacks bypassing MFA and proxies like zero-days. (Published on 4/23/2025, BleepingComputer). Read More

• 🪪 New SessionShark phishing kit bypasses MFA to steal Office 365 credentials. (Published on 4/24/2025, Hackread). Read More

• 💡 Phishers spoof Google using OAuth in DKIM replay attack, fooling email verifications. (Published on 4/21/2025, BleepingComputer). Read More

• 🧠 Ethical zero-day marketplace Desired Effect debuts to help defenders get ahead. (Published on 4/23/2025, SecurityWeek). Read More

🏥 Ransomware, Data Breaches & Sector-Specific Attacks
Reports of ransomware attacks and breaches in healthcare, government, and education.

• 🚑 Ransomware attacks hit two healthcare orgs, leaking data of 100,000+ individuals. (Published on 4/22/2025, SecurityWeek). Read More

• 🏛️ City of Abilene, Texas, goes offline after a cyberattack disrupts systems. (Published on 4/22/2025, Dark Reading). Read More

• 🏥 Interlock ransomware gang leaks data stolen from DaVita healthcare provider. (Published on 4/24/2025, BleepingComputer). Read More

• 🧑‍🏫 Schools remain vulnerable as attackers exploit simple mistakes and social engineering. (Published on 4/24/2025, Dark Reading). Read More

🌐 Cybersecurity Trends & Policy
Insights into industry challenges, CVE developments, and the global cybersecurity landscape.

• 🌍 Global AI security race demands collaboration between developers and defenders. (Published on 4/21/2025, Dark Reading). Read More

• 🔁 CVE Program receives funding extension, but uncertainty still lingers. (Published on 4/22/2025, Mimecast). Read More

• ⚠️ 159 CVEs exploited in Q1 2025 — 28.3% within 24 hours of disclosure. (Published on 4/25/2025, The Hacker News). Read More

💸 Financially-Motivated Nation-State Attacks
State-sponsored actors continue to target the crypto space with sophisticated phishing campaigns.

• 🎯 DPRK hackers steal $137M in one-day phishing attack on TRON users. (Published on 4/23/2025, The Hacker News). Read More

🎮 Corporate Leak Response
How corporations respond to digital content leaks and protect their IP.

• 🕵️ Nintendo seeks to unmask Discord user after latest content leak incident. (Published on 4/24/2025, Techdirt). Read More

Stay informed and secure in the tech and cybersecurity world. Have a great weekend, and remember to patch and protect your systems!