Jorge Laurel
Friday Wrap Up

Friday Wrap Up: 21 February 2025

Jorge Laurel Β· Β·3 min read Β·Issue #67

It’s been a busy week in cybersecurity and time for a Friday Wrap Up. Here are some of the interesting stories from this past week.


πŸ›‘οΈ Cybersecurity Threats & Exploits

Cyberattacks are evolving, with new malware, vulnerabilities, and nation-state threats emerging. Stay informed and vigilant!

  • πŸ›‘ Microsoft detects a new XCSSET macOS malware variant targeting sensitive user data, including crypto wallets and Notes app content. (Published on 2/17/2025, BleepingComputer). Read More

  • πŸ“§ New FinalDraft malware abuses Microsoft Outlook’s mail service for espionage, leveraging the Microsoft Graph API. (Published on 2/17/2025, SecurityWeek). Read More

  • πŸ’¬ Hackers exploit Telegram’s API to control a new Golang-based backdoor, using the popular messaging platform for stealthy operations. (Published on 2/17/2025, Hackread). Read More

  • 🚨 Juniper routers vulnerability (CVE-2025-21589) allows attackers to bypass authentication, posing a critical risk to enterprise networks. (Published on 2/18/2025, The Hacker News). Read More

  • πŸ”“ Hackers abuse Signal’s ’linked devices’ feature to hijack accounts via malicious QR codes, targeting high-risk individuals. (Published on 2/19/2025, The Hacker News). Read More

  • πŸ”₯ CISA warns of active exploitation of a Palo Alto firewall flaw, urging immediate patching to prevent widespread attacks. (Published on 2/19/2025, Dark Reading). Read More

  • 🎭 Chinese APT tools surface in ransomware operations, complicating attribution and security responses. (Published on 2/20/2025, SecurityWeek). Read More

  • πŸ–₯️ Cisco confirms Salt Typhoon exploited CVE-2018-0171 in targeted cyberattacks against U.S. telecom providers. (Published on 2/21/2025, The Hacker News). Read More


πŸ”“ Data Breaches & Privacy Concerns

From exposed personal data to corporate security lapses, breaches continue to put sensitive information at risk.

  • 🏦 Finastra notifies victims of a recent data breach, exposing personal information of affected individuals. (Published on 2/18/2025, SecurityWeek). Read More

  • πŸ’Ύ Hard drives with sensitive medical data were discovered at a flea market, raising serious privacy concerns. (Published on 2/18/2025, Malwarebytes). Read More

  • πŸ•΅οΈ Phishing attacks use an invisible Unicode trick to obfuscate JavaScript, making detection harder for security tools. (Published on 2/19/2025, BleepingComputer). Read More

  • πŸ“± Apple discontinues its highest-level data protection for UK customers, following government pressure on encryption policies. (Published on 2/21/2025, Cloud Computing). Read More


Legal actions and cybercrime investigations shape the digital landscape.

  • 🎭 North Korean hackers target freelance developers using fake job interviews to deploy malware in an ongoing campaign. (Published on 2/20/2025, The Hacker News). Read More

  • βš–οΈ ISP sued by record labels agrees to identify 100 users accused of online piracy, setting a precedent for copyright enforcement. (Published on 2/20/2025, Ars Technica). Read More


πŸ€– AI & Technology Breakthroughs

Artificial intelligence continues to revolutionize problem-solving and innovation.

  • πŸ§ͺ AI cracks a superbug problem in just two days, solving a challenge that took scientists years. (Published on 2/21/2025, Slashdot). Read More

Stay informed and secure in the tech and cybersecurity world. Have a great weekend, and remember to patch and protect your systems!

Don’t forget that you can also subscribe to the Friday Wrap Up on Substack and receive it in your inbox every Friday. Never miss an edition of the Friday Wrap Up!


Disclaimer: The views and opinions expressed in this newsletter are solely those of the author and do not necessarily reflect the official policy or position of any agency of the U.S. government or any other organization. This content is provided for informational purposes only and is not meant to represent the strategies or opinions of any aforementioned entities.