Cybersecurity News Review, — Week 8 (2025)

Keypoints :

• Two critical vulnerabilities in OpenSSH could lead to man-in-the-middle and denial-of-service attacks.
• Atlassian patched 12 vulnerabilities across its products, advising customers to update immediately.
• Hackers are actively exploiting vulnerabilities in Palo Alto Networks firewall appliances.
• A sophisticated phishing attack has been identified using JavaScript obfuscation to hide malicious code.
• New malware, FrigidStealer, is targeting Mac users through fake browser update prompts.
• A variant of Snake Keylogger has targeted over 280 million devices, particularly in specific countries.
• Microsoft released security updates addressing critical vulnerabilities in Power Pages and Bing.
• Google is implementing quantum-resistant signatures in its Cloud Key Management Service.
• Apiiro launched free tools to detect malicious code merges in supply chain attacks.
• Russian threat actors are exploiting Signal Messenger for espionage using QR codes.
• A payment card skimming campaign is leveraging Stripe’s API for card detail exfiltration.
• Darcula PhaaS now includes features for generating customizable phishing kits.
• Infostealers are reported to have compromised over 330 million credentials in 2024.
• A healthcare database exposed sensitive medical survey records affecting 1.6 million individuals.
• NailaoLocker ransomware is targeting EU healthcare organizations via zero-day vulnerabilities.
• HCRG Care Group confirmed a ransomware hack resulting in a significant data theft.
• Australia faces acute threats to critical infrastructure from foreign state actors.