It's been a busy week in cybersecurity and time for a Friday Wrap Up. Here are some of the interesting stories from this past week.

Cybersecurity Breaches and Incidents

🔒 Chinese state-sponsored hackers breached the U.S. Treasury Department via a remote support platform. (Published on 12/30/2024, BleepingComputer). Read More

🚘 Volkswagen, Audi, and Skoda EV owners affected by a major data breach tracking over 800,000 vehicles. (Published on 12/30/2024, Hackread). Read More

📷 DEPhoto hacked on Christmas and attacked again, compromising over 555,000 customer records. (Published on 1/1/2025, Malware Analysis). Read More

📊 Richmond University Medical Center reports a ransomware attack, exposing data of 670,000 patients. (Published on 1/3/2025, SecurityWeek). Read More

Legal and Regulatory Updates

⚖️ New HIPAA rules mandate 72-hour data restoration and yearly compliance audits for better patient data security. (Published on 12/30/2024, The Hacker News). Read More

📂 The U.S. DoJ halts bulk data transfers to adversarial nations, prioritizing privacy and security. (Published on 12/31/2024, The Hacker News). Read More

💰 Apple settles $95 million lawsuit over Siri privacy violations, denying wrongdoing. (Published on 1/2/2025, SecurityWeek). Read More

Emerging Threats and Cyber Risks

🔗 Cyberhaven Chrome extension hack linked to supply chain attacks, highlighting widening risks. (Published on 12/31/2024, SecurityWeek). Read More

🤖 AI-generated phishing emails now target executives, using scraped data for hyper-personalized attacks. (Published on 1/2/2025, Ars Technica). Read More

🌐 Cross-domain attacks emerge as a growing threat, exploiting vulnerabilities across systems and cloud environments. (Published on 1/2/2025, The Hacker News). Read More

📊 EC2 Grouper hackers exploit AWS credentials, targeting compromised accounts. (Published on 1/1/2025, Hackread). Read More

🔍 33 malicious Chrome extensions uncovered, stealing credentials from over 2.6 million devices. (Published on 1/3/2025, Ars Technica). Read More

Industry Insights and Future Trends

🤖 Six AI-related security trends for 2025 highlight both productivity gains and new privacy risks. (Published on 12/31/2024, Dark Reading). Read More

🛠️ Supply chain risk mitigation is critical in 2025, requiring rigorous validation and data protection measures. (Published on 1/1/2025, InformationWeek). Read More

📉 New jailbreak bypasses AI guardrails, increasing attack success rates by 60%. (Published on 1/2/2025, Dark Reading). Read More

Stay informed and secure in the tech and cybersecurity world. Have a great weekend, and remember to patch and protect your systems!