Cyber Security Headlines Stalkerware company breach, Microsoft Zero Day, Global Jira attack
8 snips
Mar 21, 2025 A shocking data breach at SpyX exposed nearly 2 million people's information. Microsoft faces a serious zero-day vulnerability that puts many at risk. The hacker group Hellcat targets Swiss telecoms, showcasing the surge in cyber threats. Meanwhile, a cyber campaign aimed at Ukraine's defense sector uses sneaky tactics to deliver malware. Plus, there's a spotlight on how data brokers exploit online safety measures, highlighting the importance of privacy solutions.
AI Snips
Chapters
Transcript
Episode notes
SpyX Data Breach
- SpyX, a consumer spyware app marketed for parental control, suffered a data breach in June 2024.
- The breach exposed data on almost 2 million people, including thousands of Apple users, but SpyX did not notify anyone.
Canadian Police Spyware Use
- Citizen Lab reports that the Ontario Provincial Police's IP address matches that of a spyware customer.
- The OPP claims they only use such tools with judicial authorization for serious criminal investigations.
Veeam Vulnerability
- Veeam's backup and replication software has a critical vulnerability (CVSS 9.9) allowing remote code execution.
- While authentication is required, Watchtower notes it's weak and stems from a broader deserialization issue Veeam hasn't addressed.