🛡️ Weekly Cyber Update – May 5th - May 11th, 2025

Community Center
, , , , , , ,
1

This week’s update brings you 20 critical cybersecurity stories from May 5–11, 2025! For everyday folks, we’ve got breaches, scams, and privacy tips you can use right now. For the pros, we’re digging into zero-days, malware, and supply chain attacks with technical details to keep you sharp. Plus, actionable advice, tools, and questions to spark some chatter—let’s stay secure together!

Cybersecurity for Everyone

Simple, relatable updates to protect your online life.

:police_car_light: Top Stories

1. Ascension Health Breach Hits Over 430,000 Patients :hospital:

  • Summary: A cyberattack on Ascension Health leaked personal and medical info for over 430,000 patients.
  • Why it matters: If you’re a patient, check your health records for mistakes and turn on two-factor authentication for extra safety.
  • :link: Read more

2. Darcula Scam Steals 884,000 Credit Cards :credit_card:

  • Summary: Fake texts from the Darcula phishing scam tricked people into giving up credit card details, hitting millions globally.
  • Why it matters: Don’t click links in random texts—go straight to your bank’s official site to check messages.
  • :link: Read more

3. Google Fined $1.4 Billion for Tracking :round_pushpin:

  • Summary: Google paid Texas $1.4 billion to settle lawsuits over secretly tracking locations and storing face data.
  • Why it matters: Peek at your Google privacy settings and cut back on what you share to stay safer.
  • :link: Read more

4. Fake AI Video Tools Spread Malware :movie_camera:

  • Summary: Scammers pushed fake AI video apps that installed Noodlophile malware to steal your info.
  • Why it matters: Only download apps from trusted stores like Google Play or the App Store—skip shady sites.
  • :link: Read more

5. iClicker Hack Targets Students :graduation_cap:

  • Summary: Hackers hit iClicker’s site with fake CAPTCHAs, tricking students into downloading malware.
  • Why it matters: Watch out for weird pop-ups—double-check a site’s security before clicking anything.
  • :link: Read more

6. Pearson Education Data Stolen :books:

  • Summary: A cyberattack on Pearson exposed customer data from the education giant.
  • Why it matters: If you use Pearson, keep an eye on your accounts for anything fishy and update passwords.
  • :link: Read more

7. LockBit Hackers Get Hacked :unlocked:

  • Summary: The LockBit gang’s site was breached, leaking victim chats and payment details.
  • Why it matters: Even hackers get hit! Use strong, unique passwords to dodge ransomware trouble.
  • :link: Read more

8. Insight Partners Breach Exposes Investors :briefcase:

  • Summary: Venture capital firm Insight Partners lost employee and investor data in a cyberattack.
  • Why it matters: If you’re tied to them, watch for phishing emails trying to use that stolen info.
  • :link: Read more

9. PowerSchool Extortion Targets Schools :school:

  • Summary: After hitting PowerSchool, hackers are now shaking down individual schools for cash.
  • Why it matters: If your school uses PowerSchool, lock down your personal details and report odd emails.
  • :link: Read more

10. Masimo Hit, Delays Medical Devices :factory:

  • Summary: A cyberattack on Masimo messed up production of medical gear.
  • Why it matters: Attacks like this can delay critical supplies—stay updated if you rely on their products.
  • :link: Read more

:hammer_and_wrench: Tool of the Week

Bitwarden Password Strength Tester — Instantly check if your favorite password could survive modern cracking rigs and get tips on creating unique phrases.

:speech_balloon: Let’s Hear From You!

Have you spotted a suspicious text or pop‑up lately? Share the red flags you saw—and any clever ways you shut it down!

Pro Insights: Advanced Cyber Threats (Advanced)

Technical breakdowns for pros and curious learners.

:police_car_light: Top Technical Updates

1. Commvault Bug Actively Hit (CVE-2025-34028) :hammer_and_wrench:

  • Summary: A critical flaw (CVE-2025-34028) in Commvault lets attackers access systems—it’s now on CISA’s must-patch list.
  • Why it matters: Patch fast to block system takeovers; check CISA’s notes for details.
  • :link: Read more

2. AirPlay Flaws Allow Zero-Click Hacks :red_apple:

  • Summary: Apple’s AirPlay had “AirBorne” flaws letting attackers hijack devices on public Wi-Fi with no clicks needed.
  • Why it matters: Update Apple gear ASAP—these zero-days (new flaws hackers exploit) are patched now.
  • :link: Read more

3. SonicWall Fixes Exploited SMA Flaws :locked:

  • Summary: SonicWall patched three SMA 100 bugs, including a possible zero-day, that could let attackers run code remotely.
  • Why it matters: Apply updates quick—chainable flaws mean big risks if left open.
  • :link: Read more

4. SAP NetWeaver Zero-Day Under Attack :desktop_computer:

  • Summary: A zero-day (CVE-2025-31324) in SAP NetWeaver lets attackers run code, not just upload files—exploited since January.
  • Why it matters: Patch now; this flaw’s hitting multiple sectors hard.
  • :link: Read more

5. Malicious npm Packages Hit Cursor AI :package:

  • Summary: Three fake npm packages targeted Cursor AI’s macOS users, stealing credentials and data.
  • Why it matters: Double-check dependencies—use npm audit to spot bad packages.
  • :link: Read more

6. Play Ransomware Uses Windows Zero-Day :microbe:

  • Summary: Play gang exploited a Windows zero-day (CVE-2025-29824) to gain top-level access and deploy ransomware.
  • Why it matters: Install Microsoft’s patch and watch for privilege spikes in logs.
  • :link: Read more

7. Langflow Flaw Exploited for AI Hacks :robot:

  • Summary: A critical Langflow bug (CVE-2025-3248) is being used to remotely control AI app servers.
  • Why it matters: Update Langflow and lock down AI workflows to stop this.
  • :link: Read more

8. Apache Parquet Exploit Tool Out :bar_chart:

  • Summary: A proof-of-concept tool for CVE-2025-30065 finds vulnerable Apache Parquet servers fast.
  • Why it matters: Scan your systems and patch to keep data safe from exposure.
  • :link: Read more

9. Cisco IOS XE Flaw Fixed (CVE-2025-20188) đź–§

  • Summary: Cisco patched a critical IOS XE bug (CVE-2025-20188) that let attackers hijack devices with a hardcoded token.
  • Why it matters: Update IOS XE now—unpatched devices are wide open.
  • :link: Read more

10. Russian APT Drops LostKeys Malware :russia:

  • Summary: Russia’s ColdRiver group used LostKeys malware to swipe files in espionage hits on Western targets.
  • Why it matters: Boost endpoint monitoring—look for odd file access patterns.
  • :link: Read more

:hammer_and_wrench: Tool of the Week

Shodan — Scan your public footprint for vulnerable Commvault, SonicWall, or MagicINFO instances before criminals do.

:speech_balloon: Tech Talk Challenge!

Zero-days in SAP and Windows are popping off—how do you handle these risks in your setups? Share your tricks!

:brain: Takeaway

From scams to zero-days, cyber threats hit us all—but you’ve got this! Here’s how:

  • :locked: Use unique passwords or passkeys for every account.
  • :mobile_phone_with_arrow: Update your devices and apps pronto.
  • :man_detective: Double-check weird messages before acting.

:globe_with_meridians: Stay Connected and Secure

Want more? :bell: Join the Crushing Security newsletter for fresh news and tips straight to your inbox: Sign up here.
Drop your thoughts, news, or questions below—let’s keep the convo going!

:repeat_button: Suggestions

:light_bulb: Got ideas to make these updates even better? Comment below, hit up the feedback page, or ping Steve directly.