Summary: This week’s cybersecurity roundup highlights various critical security vulnerabilities, emerging threats, and significant developments affecting the landscape. Key incidents include advisories on vulnerabilities in Hitachi Energy products, warning on tax-themed phishing by Microsoft, and a ransomware attack on Sam’s Club. Additionally, the report mentions a quantum random number generator achieving NIST validation and changes in leadership at the NSA and Cyber Command.
Affected: Hitachi Energy, Apple, Microsoft, Sam’s Club, Texas Republican Party, Indiana University, Quantinuum, NSA and Cyber Command
Keypoints :
- Hitachi Energy has multiple vulnerabilities that could allow for DoS attacks and remote command execution.
- Upcoming macOS versions will enhance malware detection capabilities, improving security against TCC bypass attempts.
- Microsoft cautions users about tax-themed phishing campaigns utilizing URL shorteners and QR codes.
- Sam’s Club is under investigation after a ransomware group claimed to have stolen data from them.
- A Canadian national was charged with hacking the Texas Republican Party and distributing sensitive data.
- An FBI inquiry has impacted a cybersecurity professor at Indiana University, who has since disappeared with his wife.
- Quantinuum’s quantum random number generator has achieved NIST validation, marking a milestone in quantum randomness.
- Cybersecurity funding in Q1 2025 saw .2 billion raised, reflecting a slight decrease from the previous year.
- General Timothy Haugh was fired from his position at the NSA and Cyber Command, with political motivations suggested behind the decision.