DJBSEC's CyberNews 2-28-25

Created in February 28, 2025

2025   ·   CyberNews   ·   News

Story 1. Critical Microsoft Partner Center Vulnerability Under Attack, CISA Warns

A critical vulnerability in Microsoft’s Partner Center is actively being exploited, prompting an urgent warning from CISA. The flaw, tracked as CVE-2024-1234, allows attackers to gain unauthorized access to accounts, potentially leading to data theft and privilege escalation. Microsoft has released a patch, but many organizations remain at risk if they have not applied the update. Security experts advise immediate mitigation to prevent compromise.
Read more here

Story 2. Hackers Behind 90 Data Leaks Worldwide Identified

Cybersecurity researchers have linked a hacking group to over 90 data breaches worldwide, targeting various industries, including healthcare, finance, and government sectors. The threat actors used a combination of phishing, credential stuffing, and ransomware attacks to steal and expose sensitive information. Their operations have caused millions of dollars in damages and led to widespread identity theft. Authorities are working to track down and dismantle the group’s infrastructure.
Read more here

Story 3. Hackers Can Crack Car Cameras in Minutes, Researchers Warn

Security researchers have discovered vulnerabilities in automotive camera systems that allow hackers to access and manipulate video feeds in minutes. These flaws could enable cybercriminals to disable security cameras, track vehicle movements, or inject fake footage. The vulnerabilities affect multiple brands and models, with some manufacturers already working on patches. Experts recommend that car owners and fleet managers update their systems as soon as fixes become available.
Read more here

Story 4. OpenSSF Introduces Minimum Security Baselines for Open-Source Projects

The Open Source Security Foundation (OpenSSF) has launched a set of minimum security baselines aimed at improving the security of open-source software projects. These guidelines focus on key areas such as secure coding practices, vulnerability management, and supply chain security. The initiative aims to reduce the growing risks associated with open-source software dependencies. Developers are encouraged to adopt these baselines to enhance the security of their projects.
Read more here

Story 5. Chinese APT Exploiting VPN Bug to Target OT Organizations Worldwide

A Chinese advanced persistent threat (APT) group has been exploiting a critical VPN vulnerability to infiltrate operational technology (OT) networks worldwide. The attack campaign, ongoing since 2023, enables hackers to bypass authentication and gain persistent access to sensitive infrastructure. Affected organizations include energy, manufacturing, and transportation sectors. Security experts recommend applying patches and monitoring network activity for signs of compromise.
Read more here

Story 6. Google’s SafetyCore App Secretly Scanning Android Devices for Security Threats

Google’s SafetyCore app, recently discovered running in the background on Android devices, has raised privacy concerns due to its undisclosed security scanning capabilities. The app appears to be monitoring for malware and system vulnerabilities, but its lack of transparency has drawn criticism. While Google claims the feature is meant to enhance user security, some privacy advocates worry about potential misuse. Android users are calling for more control over SafetyCore’s functionality.
Read more here

Story 7. Hackers Exploited XSS Vulnerability in Popular Web Framework

A newly disclosed cross-site scripting (XSS) vulnerability in a widely used web development framework has been actively exploited by hackers. The flaw allows attackers to inject malicious scripts, leading to data theft, session hijacking, and further compromise of affected web applications. Several high-profile websites were impacted before a patch was released. Developers are urged to update their applications immediately to prevent further exploitation.
Read more here

Story 8. MITRE Caldera Security Advisory Warns of Maximum Severity Flaw

A maximum severity vulnerability in MITRE Caldera, an open-source adversary emulation tool, has been disclosed, putting cybersecurity teams at risk. The flaw allows remote attackers to execute arbitrary code without authentication, potentially leading to full system compromise. Security researchers have urged immediate patching to prevent exploitation by threat actors. This incident highlights the risks associated with red-team tools falling into the wrong hands.
Read more here

Story 9. Microsoft’s Generative AI in Azure Allegedly Used for Hacking-for-Hire Operations

Microsoft is facing allegations that its generative AI tools on Azure have been misused by hacking-for-hire groups to develop sophisticated cyberattacks. A recently amended legal complaint accuses the tech giant of failing to prevent malicious actors from leveraging its AI models to enhance phishing, malware development, and social engineering tactics. Microsoft has stated that it actively monitors AI misuse and is working to prevent further exploitation. The case underscores growing concerns about AI-driven cybercrime.
Read more here



Enjoy Reading This Article?

Here are some more articles you might like to read next:

  • DJBSEC's CyberNews 2025-07-11
  • DJBSEC's CyberNews 2025-07-10
  • DJBSEC's CyberNews 2025-07-09
  • DJBSEC's CyberNews 2025-07-08
  • DJBSEC's CyberNews 2025-07-07