IT Security Weekend Catch Up – April 13, 2025

Comments
close searching

13.04.2025 | 14:08

IT Security Weekend Catch Up – April 13, 2025
avatar

badcyber

comments

IT Security Weekend Catch Up – April 13, 2025

Afraid of missing important security news during the week? We're here to help! Every week we put together a curated list of all important security news in one place, for your reading pleasure. Enjoy!

For the less technical

  1. Propaganda for export
  2. Trump signs memorandum revoking security clearance of former CISA director Chris Krebs
  3. Towards an accurate description of cyber operations
  4. How security teams fail
  5. Tuta launches post quantum cryptography for email
  6. Gmail unveils end-to-end encrypted messages. Only thing is: It’s not true E2EE
  7. Apple just won a bid to stop its UK privacy case from being held completely in secret
  8. Fintech founder charged with fraud after ‘AI’ shopping app found to be powered by humans in the Philippines
  9. Unmasking EncryptHub: Help from ChatGPT & OPSEC blunders
  10. Operation Endgame follow-up leads to five detentions and interrogations as well as server takedowns
  11. Dog-like robot jams home networks and disables devices during police raids — DHS develops NEO robot for walking denial of service attacks

For the more technical

  1. Vulnerability in FortiSwitch allows unauthenticated attackers to change admin passwords
  2. Microsoft April 2025 Patch Tuesday
  3. Windows Remote Desktop Protocol: Remote to rogue
  4. Google fixes Android zero-days exploited in attacks, 60 other flaws
  5. Malicious PyPI package targets WooCommerce stores with automated carding attacks
  6. RolandSkimmer: Silent credit card thief uncovered
  7. Smishing Triad is now targeting toll payment services in a massive fraud campaign expansion
  8. Hacking the call records of millions of Americans
  9. Analysis of Konni RAT: Stealth, persistence, and anti-analysis techniques
  10. Grandoreiro trojan distributed via Contabo-hosted servers in phishing campaigns
  11. New evasive campaign delivers LegionLoader via fake CAPTCHA & CloudFlare Turnstile
  12. ViperSoftX malware distributed by Arabic-speaking threat actor
  13. Vidar stealer: Revealing a new deception strategy
  14. ClearFake’s new wdespread variant: Increased Web3 exploitation for malware delivery
  15. Researcher uncovers network of risky Chrome extensions with over 4 million installs
  16. AkiraBot: AI-powered bot bypasses CAPTCHAs, spams websites at scale
  17. BadBazaar and Moonshine: Spyware targeting Uyghur, Taiwanese and Tibetan groups and civil society actors
  18. State-sponsored tactics: How Gamaredon and ShadowPad operate and rotate their infrastructure
  19. Goodbye HTA, hello MSI: New TTPs and clusters of an APT driven by multi-platform attacks
  20. The ever-evolving threat of the Russian-speaking cybercriminal underground

Did you enjoy this list? You can subscribe to one of our feeds on Twitter, Facebook or RSS.


Afraid of missing important security news during the week? We’re here to help! Every week we put together a curated list of all important security news in one place, for your reading pleasure. Enjoy! For the less technical Propaganda for export Trump signs memorandum revoking security clearance of former CISA director 2025-04-13T14:08:05+02:00

Comments