(TLP:CLEAR) Supplemental Cyber Highlights – March 20, 2025

The following posts are useful for general awareness of current cyber threats, vulnerabilities, guidance, and other cyber-related news or updates. These resources have been curated by the WaterISAC analyst team as items of broad relevance and benefit that do not need supplemental analysis at this time.

Critical Infrastructure Resilience & OT/ICS Vulnerability Management

• Keynote Highlights | Cyber Threats in Critical Infrastructure | SentinelOne
• Strengthening OT/ICS incident response to address growing complexity of cyber threats, deliver business continuity | Industrial Cyber
• Strengthening Critical Infrastructure with the NCSC CAF | Tripwire

IT Vulnerability Security Updates

• Critical RCE flaw in Apache Tomcat actively exploited in attacks | Bleeping Computer
• CVE-2025-27636 – Apache Camel Message Header Injection vulnerability | Broadcom
• Hackers Target Cisco Smart Licensing Utility Vulnerabilities | SecurityWeek
• Hackers are exploiting Fortinet firewall bugs to plant ransomware | TechCrunch

IT Malware, Threats & Risks

• Flashpoint 2025 Global Threat Intelligence Report: Stay Ahead of Emerging Threats | Flashpoint
• Microsoft Warns of New StilachiRAT Malware | SecurityWeek

Ransomware

• Ransomware gang creates tool to automate VPN brute-force attacks | Bleeping Computer
• Category deep-dive: Ransomware demands reached an all-time high in 2024 | TRM Labs
• Ransomware Hits Record High: 126% Surge in Attacks in February 2025 | Hackread

Cyber Resilience, General Awareness, & AI

• That breach cost HOW MUCH? How CISOs can talk effectively about a cyber incident’s toll | CSO Online
• A Matter of Trust: How AI Is Reshaping Risk Assessment | PYMNTS
• Chairmen Green, Garbarino, Brecheen Conduct Oversight of the Federal Government’s Response to China-Backed “Typhoon” Intrusions Under Previous Administration | Homeland Security Republicans