Security News Update for April 27, 2025
This week’s news includes:
- Microsoft Says Bug has “Low Exploitability”; Hackers Exploited it 8 Days Later
- 159 Vulnerabilities Exploited in 1Q2025 – 28.3% With 24 Hours of Disclosure
- CMMC
- Linux io_uring Proof of Concept Rootkit Demonstrated
- Fortinet Says Even After Patching Hackers Could Still be Inside Your Network
- Critical Commvault Flaw Allows Full System Takeover
- FTC Publishes Update to COPPA
- Jen Easterly, Former Head of CISA, Pens Opinion Piece on Risk of Attacking CISA
- Baltimore City School Teachers and Students Impacted by Ransomware Cyberattack
- Retail Giant Marks & Spencer Disputed by Cybersecurity Incident
- DaVita Kidney Center Hacked, Data Leaked
- City of Long Beach Notifying 500,000 Breach Victims a Year After the Breach
- Attention all GMail Users
- Nation State Hackers Go After Small and Medium Businesses
- FBI Says Crime Definitely Pays
- Security News for the week ending April 25th, 2025: more countries issue travel advisories for travel to the US, two CISA officials in charge of secure by design quit, when is 32,234 really 263,893, retailer Marks & Spencer cyber attack gets worse, shuts down online ordering system and what happens when the big guns get hacked