Cyber Security Headlines SAP zero-day active, another OAuth exploit, cybersecurity CEO arrested
Apr 28, 2025
AI Snips
Chapters
Transcript
Episode notes
Critical SAP Zero-Day Vulnerability
- SAP NetWeaver systems have a zero-day vulnerability highly rated at 10 CVSS score. - This flaw allows unauthorized file uploads, leading to widespread active exploitation.
OAuth 2.0 Hijacking Campaign
- Russian threat actors exploit OAuth 2.0 to hijack Microsoft 365 accounts linked to Ukraine and human rights. - They use WhatsApp and Signal with fake invites posing as officials to trick victims.
CEO Malware Hospital Incident
- CEO Jeffrey Bowie allegedly infected hospital staff computers with malware capturing screenshots every 20 minutes. - He was caught on security footage trying to access multiple offices, compromising patient data.