BotNet News

Cyberthreat News is a weekly newsletter that covers key cybersecurity threats, attacks, and vulnerabilities. It also includes tips, strategies, and best practices to help you stay ahead of the curve in 2025.

Ransomware: One of the most impactful and damaging threats, ransomware has hit companies, hospitals, government agencies, and individuals with major disruptions, financial losses, and stolen data. The most recent attack against Change Healthcare resulted in the largest medical data breach in US history and exposed personal information for 190 million patients.

Zero Trust: A security approach that removes all but the most trusted devices from a company’s network is gaining popularity in the industry, though implementation remains uneven. For example, a study by IBM X-Force found that threat actors continue to exploit flaws in unpatched systems and edge devices. To counter these risks, IT teams must adopt a layered defense that includes endpoint protection, access control, and strong security information and event management (SIEM) tools.

Viruses and malware: Threat actors continue to target web cameras and digital video recorders (DVR) with the HiatusRAT malware, which scans for vulnerable devices and injects malicious code into them. The malware family aims to extort funds and eavesdrop on activity.

Other important news this week includes a massive watering hole campaign targeting Chinese-speaking users, with attackers using SEO plugins and fake software sites to distribute malware like HiddenGh0st and Winos (aka ValleyRAT). Two cybercriminal groups tracked as UNC6040 and UNC6395 are extorting organizations after hacking into Salesforce instances, according to the FBI.