Terry

From school systems and local governments to Chrome browsers and Medicare applications, this week’s cyber headlines underscore a common theme: no organization or individual is immune. As cybercriminals exploit tax season, unsecured applications, and even fake file converters, both public and private sectors continue to grapple with vulnerabilities and data breaches. Dive into this week’s top stories, alerts, and patch advisories to stay ahead of emerging threats.

Medicare Application Data Exposed by Oberlin Marketing Firm

A misconfigured database belonging to an Oberlin marketing company exposed sensitive Medicare application data, including personal health information. The breach highlights ongoing concerns about third-party vendors and the importance of securely storing health-related data.
Read more on CyberNews

Pennsylvania Education Data Breach Impacts Half a Million

A significant data breach has affected over 500,000 individuals in Pennsylvania’s education system. Names, birthdates, and Social Security numbers were among the compromised information. Investigations are ongoing, and affected individuals are being notified.
Read more on The Record

Union County, PA Suffers Ransomware Attack

Union County, Pennsylvania, confirmed a ransomware attack that has disrupted government operations and system availability. The incident adds to the growing list of rural counties and small municipalities targeted by cybercriminals.
Read more on The Record

Municipalities Struggle to Maintain Services Amid Cyberattacks

Local governments across the U.S. are increasingly under siege from cyberattacks, forcing many to scale back or suspend essential services. Limited budgets and outdated infrastructure make these entities particularly vulnerable.
Read more on The Record

Tax Season Scams Ramp Up as April Deadline Nears

Cybercriminals are capitalizing on tax season with phishing campaigns, fake IRS calls, and malicious file attachments. The IRS warns taxpayers and nonprofits to remain vigilant and avoid clicking on unfamiliar links or emails related to taxes.
Read more on HelpNetSecurity

New Phishing Campaign Targets macOS Users with Fake Updates

A newly identified phishing campaign is tricking Mac users into downloading malware disguised as browser or system updates. The malware is designed to steal passwords, monitor activity, and create persistent backdoor access.
Read more on HackRead

FBI Warns: Free File Converter Sites Are Malware Traps

The FBI has issued a warning about fake “free file converter” websites that are actually lures for delivering malware. These sites often rank high in search results and have been used to install infostealers and remote access tools.
Read more on HelpNetSecurity

Veeam and IBM Patch High-Severity Vulnerabilities

Both Veeam and IBM have issued patches for critical vulnerabilities affecting backup and cloud systems. These flaws could allow remote attackers to gain elevated privileges or compromise data, making immediate patching a top priority.
Read more on The Hacker News

CrushFTP Users Urged to Patch Critical Access Flaw

CrushFTP has warned of an unauthenticated access vulnerability that could allow remote attackers to bypass login screens and access sensitive data. A patch is available, and administrators are strongly encouraged to apply it immediately.
Read more on BleepingComputer

Google Patches Chrome Zero-Day Exploited by APT Hackers

Google has patched a high-severity zero-day vulnerability in Chrome that was being exploited in the wild by advanced persistent threat (APT) groups. Users should update to the latest version of Chrome to stay protected.
Read more on Dark Reading

HopeNet reviews a variety of security news sources so you do not have to! This list is curated specifically for churches, nonprofits, and other Organizations of Hope. The headlines and our added comments are meant to provide enough to get an overview of recent happenings, but links are also provided for readers that want to explore certain topics deeper.

If this was shared with you and you would like to receive a copy directly to your email, please sign up for this FREE newsletter at HopeNetCISO.com. Also, check out the Services section of our site for ways we can help! Thanks for reading!

Comments

Leave a Reply

Your email address will not be published. Required fields are marked *