It’s been a busy week in cybersecurity — the kind that makes your firewall sweat and your SOC team rethink their life choices.

From phishing-as-a-service platforms like Lucid going global with their spammy ambitions, to malware dressing up in stealth mode and pretending it’s just “advanced persistence,” attackers are working overtime.

Meanwhile, vulnerabilities in everything from solar tech to AI platforms remind us that no codebase is safe from bugs (especially the kind that moonlight as backdoors).

On the brighter side, Google is beefing up Gmail encryption, even as Microsoft Teams gets hijacked for malware vishing calls — proving once again that your “quick stand-up meeting” might actually be a sit-down with a hacker.

These stories, and a few more, are waiting for you in this week's Friday Wrap Up. Stay patched, stay skeptical, and maybe unplug something just to be safe.

🔐 Cyber Threats and Attacks Continue to Escalate Globally

A wave of advanced attacks highlights growing challenges in cybersecurity across industries and platforms.

• 🎣 Phishing-as-a-service platform 'Lucid' targets 169 entities globally via iMessage and RCS. (Published on 3/31/2025, BleepingComputer). Read More

• 🕵️‍♂️ CoffeeLoader malware uses stealth techniques to evade modern security tools. (Published on 3/31/2025, Dark Reading). Read More

• 💥 Hacker leaks 270,000 Samsung Germany customer tickets stolen via compromised credentials. (Published on 3/31/2025, SecurityWeek). Read More

• 🌐 China-linked Earth Alux conducts multi-stage intrusions in APAC and LATAM sectors. (Published on 4/1/2025, The Hacker News). Read More

• 📞 Microsoft Teams vishing scam delivers malware via TeamViewer. (Published on 4/1/2025, Hackread). Read More

• 🧑‍💻 Lazarus Group lures crypto job seekers to deploy GolangGhost malware. (Published on 4/3/2025, The Hacker News). Read More

• ⚙️ Medusa ransomware group thrives after pivot to Ransomware-as-a-Service. (Published on 4/4/2025, Dark Reading). Read More

🛠️ Vulnerabilities in Critical Infrastructure and Tools

Multiple reports uncover serious flaws in core systems and developer tools, with widespread implications.

• 🧨 Cisco warns of attacks using a built-in CSLU backdoor admin account. (Published on 4/2/2025, BleepingComputer). Read More

• 🔓 Jan AI vulnerability allows remote, unauthenticated manipulation of systems. (Published on 4/2/2025, SecurityWeek). Read More

• 🪛 Ivanti patches Connect Secure zero-day exploited by China-linked actors. (Published on 4/3/2025, BleepingComputer). Read More

• ☀️ Nearly 50 vulnerabilities found in solar and energy tech platforms. (Published on 4/4/2025, Dark Reading). Read More

• 🔑 GitHub supply chain attack traced to SpotBugs access token theft. (Published on 4/4/2025, The Hacker News). Read More

☁️ Cloud and Communication Security Developments

Security upgrades and flaws in cloud platforms and digital communication tools take center stage.

• ☁️ Google Cloud Run flaw allowed privilege escalation before patch. (Published on 4/1/2025, Dark Reading). Read More

• 🔐 Google announces end-to-end encryption for Gmail enterprise users. (Published on 4/1/2025, Dark Reading). Read More

🧠 Public Perception of AI Faces Growing Skepticism

Survey reveals significant divide between AI experts and the general public on the future of AI.

• 🧩 Most Americans believe AI won’t improve their lives, survey finds. (Published on 4/3/2025, Ars Technica). Read More

Stay informed and secure in the tech and cybersecurity world. Have a great weekend, and remember to patch and protect your systems!