0A9F E785 1857 50AD 05CA A188 A708 1DB6 7F35 2F2A

Infosec-bits-for-2025-week-16

Anele Siwela | April 18, 2025, 11:28 a.m.

Cybersecurity News:

  • CVE Program Funding Reinstated—What It Means And What To Do Next [Kate O'Flaherty, forbes]
  • Ghost Ransomware Targets Organizations Across 70+ Countries [Aman Mishra, Gbhackers]
  • Kaspersky: Morocco Ranks High Among Top Targets for Cyberattacks in Africa [Adil Faouzi, Adil Faouzi]
  • CISA warns companies to secure credentials amid Oracle Cloud breach claims [David Jones, Cybersecurity Dive]
  • Human error leads to rise in cybersecurity breaches at South African firms [Wendy Jasson Da Costa, The Independent on Saturday]
  • Quantum cybersecurity revolution in the age of AI [Rachel Cromidas, US News]

    • Vulnerabilities & Patches:

  • Critical Erlang/OTP SSH Vulnerability (CVSS 10.0) Allows Unauthenticated Code Execution [Ravie Lakshmanan, The hacker news]
  • Node.js Malware Campaign Targets Crypto Users with Fake Binance and TradingView Installers [Ravie Lakshmanan, The hacker news]
  • Weekly Recap: Windows 0-Day, VPN Exploits, Weaponized AI, Hijacked Antivirus and More [Ravie Lakshmanan, The hacker news]

    • Contact Us:

    csirt {at} sanren.ac.za

    CSIRT:

    0xA7081DB67F352F2A

    Heloise:

    0xD367253D12C5BBBC

    Kgwadi:

    0xDD7E5C2E539972EB

    Maajied:

    0xEE9BE86AD16D89C2