TAAUS Top 10 - April 2025

There is never a dull moment in the managed information technology and cybersecurity space. Here is our TAAUS Top Ten for April 2025 – as always, be vigilant!

How Companies Can Safeguard Against the Next Wave of Ransomware

- Cyber Security News

Ransomware is not retreating it’s evolving. Once a niche cybercrime, ransomware has become a multibillion-dollar global threat that disrupts hospitals, banks, factories, and governments

Two Healthcare Orgs Hit by Ransomware Confirm Data Breaches Impacting Over 100,000

- SecurityWeek

Bell Ambulance and Alabama Ophthalmology Associates have suffered data breaches affecting over 100,000 people after being targeted in ransomware attacks

Widespread Microsoft Entra lockouts tied to new security feature rollout

- Bleeping Computer

Windows administrators from numerous organizations report widespread account lockouts triggered by false positives in the rollout of a new Microsoft Entra ID's "leaked credentials" detection app called MACE

Enterprise-specific zero-day exploits on the rise, Google warns

- CSO

Vulnerabilities in enterprise network and security appliances accounted for nearly half of the zero-day flaws exploited by attackers last year, according to Google’s Threat Intelligence Group

Google: 97 zero-days exploited in 2024, over 50% in spyware attacks

- Bleeping Computer

Google's Threat Intelligence Group (GTIG) says attackers exploited 75 zero-day vulnerabilities in the wild last year, over 50% of which were linked to spyware attacks

Threat Actors Use 'Spam Bombing' Technique to Hide Malicious Motives

- Dark Reading

Darktrace researchers detailed "spam bombing," a technique in which threat actors bombard targets with spam emails as a pretense for activity like social engineering campaigns

WhatsApp for Windows Flaw Could Let Hackers Sneak In Malicious Files

- HACKREAD

If you use WhatsApp Desktop on Windows, listen up! A flaw in WhatsApp for Windows (CVE-2025-30401) let attackers disguise malicious files as safe ones. Update to version 2.2450.6 or later to stay secure

Three-Quarters of IT Leaders Fear Nation-State AI Cyber Threats

- Infosecurity Magazine

AI is at the top of most IT leaders' minds when asked about the cyber threats their organizations could face, according to a recent Armis survey

NSA, CISA, FBI, and International Partners Release Cybersecurity Advisory on “Fast Flux,” a National Security Threat

- CISA

“Fast flux” is a technique used to obfuscate the locations of malicious servers through rapidly changing Domain Name System (DNS) records associated with a single domain name

WinRAR flaw bypasses Windows Mark of the Web security alerts

- Bleeping Computer

A vulnerability in the WinRAR file archiver solution could be exploited to bypass the Mark of the Web (MotW) security warning and execute arbitrary code on a Windows machine