Monthly Security Bulletin – April 2025

This month’s security bulletin hot topics:

1. Nearly 12,000 API keys and passwords found in AI training dataset

2. Silk Typhoon hackers now target IT supply chains to breach networks

3. Open-source tool ‘Rayhunter’ helps users detect Stingray attacks

4. Ransomware gang encrypted network from a webcam to bypass EDR

5. Critical PHP RCE vulnerability mass exploited in new attacks

6. Silk Typhoon Hackers Indicted

7. Cisco IOS XR vulnerability lets attackers crash BGP on routers

8. ClickFix: How to Infect Your PC in Three Easy Steps

9. New Akira ransomware decryptor cracks encryptions keys using GPUs

10. Malicious Adobe, DocuSign OAuth apps target Microsoft 365 accounts

11. Critical RCE flaw in Apache Tomcat actively exploited in attacks

12. New Windows zero-day exploited by 11 state hacking groups since 2017

13. New Arcane infostealer infects YouTube, Discord users via game cheats

14. HellCat hackers go on a worldwide Jira hacking spree

15. Critical GitHub Attack

16. Critical Cisco Smart Licensing Utility flaws now exploited in attacks

17. Veeam RCE bug lets domain users hack backup servers, patch now

18. Microsoft Trusted Signing service abused to code-sign malware

19. More Countries are Demanding Backdoors to Encrypted Apps

20. Critical flaw in Next.js lets hackers bypass authorization

21. New VanHelsing ransomware targets Windows, ARM, ESXi systems

22. Report on Paragon Spyware

23. AI Data Poisoning

24. RedCurl cyberspies create ransomware to encrypt Hyper-V servers

25. Oracle customers confirm data stolen in alleged cloud breach is valid

26. Mozilla warns Windows users of critical Firefox sandbox escape flaw

27. New Ubuntu Linux security bypasses require manual mitigations

28. Microsoft’s killing script used to avoid Microsoft Account in Windows 11