April 14, 2025 - Cyber Briefing

👉 What's happening in cybersecurity today?

🚨 #CyberAlerts

Cybercriminals Use SEO Tricks to Push Malicious Websites in Search Results

Source: Tomáš Foltýn via ESET

Fortinet Alerts of Ongoing FortiGate Access After Patch via SSL-VPN Symlink Exploit

Source: Fortinet

Hackers Exploit Dangling DNS Records to Hijack Corporate Subdomains

Source: Chris Hosking via SentinelOne

Tycoon2FA Updates Enhance Phishing Kit to Bypass Detection and MFA Security

Source: Phil Hay, Rodel Mendrez via Trustwave

Hackers Imitate Google Play Store to Distribute Android Spyware and Steal Data

Source: DomainTools

💥 #CyberIncidents

MorphoBlue Frontend Vulnerability Causes $2.6 Million Exploit in DeFi Protocol

Source: PeckShield via X

LSC Data Breach Exposes Personal and Medical Information of 1.6 Million Individuals

Source: Office of the Maine Attorney General

Nippon Life India Reports Cyberattack on IT Systems and Investigates Impact

Source: National Stock Exchange of India Limited 

SIAPA Guadalajara Reports Cyberattack Disrupting Services and Payments

Source: Milenio

Western Sydney University Reports Personal Data Breaches and Dark Web Leak

Source: Western Sydney University

📢 #CyberNews

US Justice Department Rolls Out New Data Security Program to Protect Personal Data

Source: US Justice Department, Office of Public Affairs

China Admits Cyberattacks Against US Infrastructure in Secret Meeting

Source: Dustin Volz Wall Street Journal

US Interior Department Fires Cybersecurity Leaders Amid Dispute With DOGE

Source: Rebecca Kern via NEXTGOV