Infosec bits for 2025 week 14

Kgwadi Matenche | April 4, 2025, 5:41 p.m.

Cybersecurity News:

Over Half of Attacks on Electricity and Water Firms Are Destructive [Phil Muncaster, Infosecurity Magazine]

Oracle privately confirms Cloud breach to customers [Sergiu Gatlan, Bleeping Computer]

UK sets out new cyber reporting requirements for critical infrastructure [Alexander Martin, Recorded Future News]

Vulnerabilities & Patches:

Chrome 135, Firefox 137 Patch High-Severity Vulnerabilities [Ionut Arghire, SecurityWeek]

Max severity RCE flaw discovered in widely used Apache Parquet [Bill Toulas, Bleeping Computer]

Suspected Chinese spies right now hijacking buggy Ivanti gear – for third time in 3 years [Jessica Lyons, The Register]

Disclosure Drama Clouds CrushFTP Vulnerability Exploitation [Rob Wright, Dark Reading]

Ivanti patches Connect Secure zero-day exploited since mid-March [Sergiu Gatlan, Bleeping Computer]

Attackers are leveraging Cisco Smart Licensing Utility static admin credentials (CVE-2024-20439) [Zeljka Zorz, Help Net Security]

Breaches & Leaks:

Sensitive Data Breached in Highline Schools Ransomware Incident [James Coker, Infosecurity Magazine]

Hacker Claims Twilio’s SendGrid Data Breach, Selling 848,000 Records [Waqas, HackRead]

Others:

Hackers hit Ukrainian state agencies, critical infrastructure with new ‘Wrecksteel’ malware [Daryna Antoniuk, Recorded Future News]

CSAM platform Kidflix shut down by international operation [Joe Warminsky, Recorded Future News]

Why is someone mass-scanning Juniper and Palo Alto Networks products? [Jessica Lyons, The Register]