Friday Wrap Up: 21 February 2024

It’s been a busy week in cybersecurity and time for a Friday Wrap Up. Here are some of the interesting stories from this past week.
π‘οΈ Cybersecurity Threats & Exploits
Cyberattacks are evolving, with new malware, vulnerabilities, and nation-state threats emerging. Stay informed and vigilant!
π Microsoft detects a new XCSSET macOS malware variant targeting sensitive user data, including crypto wallets and Notes app content. (Published on 2/17/2025, BleepingComputer). Read More
π§ New FinalDraft malware abuses Microsoft Outlookβs mail service for espionage, leveraging the Microsoft Graph API. (Published on 2/17/2025, SecurityWeek). Read More
π¬ Hackers exploit Telegramβs API to control a new Golang-based backdoor, using the popular messaging platform for stealthy operations. (Published on 2/17/2025, Hackread). Read More
π¨ Juniper routers vulnerability (CVE-2025-21589) allows attackers to bypass authentication, posing a critical risk to enterprise networks. (Published on 2/18/2025, The Hacker News). Read More
π Hackers abuse Signal’s ’linked devices’ feature to hijack accounts via malicious QR codes, targeting high-risk individuals. (Published on 2/19/2025, The Hacker News). Read More
π₯ CISA warns of active exploitation of a Palo Alto firewall flaw, urging immediate patching to prevent widespread attacks. (Published on 2/19/2025, Dark Reading). Read More
π Chinese APT tools surface in ransomware operations, complicating attribution and security responses. (Published on 2/20/2025, SecurityWeek). Read More
π₯οΈ Cisco confirms Salt Typhoon exploited CVE-2018-0171 in targeted cyberattacks against U.S. telecom providers. (Published on 2/21/2025, The Hacker News). Read More
π Data Breaches & Privacy Concerns
From exposed personal data to corporate security lapses, breaches continue to put sensitive information at risk.
π¦ Finastra notifies victims of a recent data breach, exposing personal information of affected individuals. (Published on 2/18/2025, SecurityWeek). Read More
πΎ Hard drives with sensitive medical data were discovered at a flea market, raising serious privacy concerns. (Published on 2/18/2025, Malwarebytes). Read More
π΅οΈ Phishing attacks use an invisible Unicode trick to obfuscate JavaScript, making detection harder for security tools. (Published on 2/19/2025, BleepingComputer). Read More
π± Apple discontinues its highest-level data protection for UK customers, following government pressure on encryption policies. (Published on 2/21/2025, Cloud Computing). Read More
π΄ββ οΈ Cybercrime & Legal Battles
Legal actions and cybercrime investigations shape the digital landscape.
π North Korean hackers target freelance developers using fake job interviews to deploy malware in an ongoing campaign. (Published on 2/20/2025, The Hacker News). Read More
βοΈ ISP sued by record labels agrees to identify 100 users accused of online piracy, setting a precedent for copyright enforcement. (Published on 2/20/2025, Ars Technica). Read More
π€ AI & Technology Breakthroughs
Artificial intelligence continues to revolutionize problem-solving and innovation.
- π§ͺ AI cracks a superbug problem in just two days, solving a challenge that took scientists years. (Published on 2/21/2025, Slashdot). Read More
Stay informed and secure in the tech and cybersecurity world. Have a great weekend, and remember to patch and protect your systems!