Supplemental Cyber Highlights – January 14, 2025

The following posts are useful for general awareness of current cyber threats, vulnerabilities, guidance, and other cyber-related news or updates. These resources have been curated by the WaterISAC analyst team as items of broad relevance and benefit that do not need supplemental analysis at this time.

Critical Infrastructure Resilience

• Verizon Says It Has ‘Contained The Cyber Incident’ Linked To China-Based Salt Typhoon | CRN
• Adopting holistic approach to address complexities of cyber-physical security across IT and OT environments | Industrial Cyber
• Singapore’s CSA issues urgent advisory on Mirai botnet threat to industrial routers, smart home devices | Industrial Cyber

IT Vulnerability Security Updates

• Microsoft: macOS bug lets hackers install malicious kernel drivers | Bleeping Computer
• Zero-Day Vulnerability Suspected in Attacks on Fortinet Firewalls with Exposed Interfaces | The Hacker News
• SAP Patches Critical Vulnerabilities in NetWeaver | SecurityWeek

IT Malware, Threats & Risks

• Fancy Bear spotted using real Kazak government documents in spearpishing campaign | CyberScoop
• Cyberattackers Hide Infostealers in YouTube Comments, Google Search Results | Dark Reading
• Cloud Attackers Exploit Max-Critical Aviatrix RCE Flaw | Dark Reading

Ransomware

• Comparitech reveals drop in ransomware attacks in 2024, though breached records may increase | Industrial Cyber
• Emerging FunkSec Ransomware Developed Using AI | SecurityWeek
• Attackers are encrypting AWS S3 data without using ransomware | Help Net Security
• Compromised AWS Keys Abused in Codefinger Ransomware Attacks | SecurityWeek

Cyber Resilience, General Awareness, & AI

• 5 Key Cyber Security Trends for 2025 | Check Point
• Treasury hackers also breached US foreign investments review office | Bleeping Computer
• Executive Order on Advancing United States Leadership in Artificial Intelligence Infrastructure | The White House