svoboda.center Logo svoboda.center

Svoboda Cybersecurity Brief August 31, 2025

Aug 31, 2025

bulletproof VPN - stay anonymous

WhatsApp Zero-Click Exploit Targets iOS and macOS Devices

WhatsApp issued an emergency update to patch CVE-2025-55177, a zero-click vulnerability affecting iOS and macOS apps. The flaw, combined with Apple’s CVE-2025-43300, allowed attackers to process arbitrary URLs on a victim’s device without interaction. Amnesty International confirmed active exploitation targeting journalists and human rights defenders.
Impact: Unauthorized remote code execution and spyware deployment.
Mitigation: Update WhatsApp to version 2.25.21.73+ (iOS) or 2.25.21.78+ (macOS) and perform a factory reset if targeted.
Source: The Hacker News

TamperedChef Infostealer Spreads via Fake PDF Editor Campaign

Threat actors distributed the TamperedChef infostealer through fraudulent PDF Editor apps promoted via Google Ads. The malware, activated weeks after installation, steals credentials and enrolls devices in proxy networks. Over 50 domains and revoked code-signing certificates were linked to the campaign.
Impact: Credential theft, residential proxy abuse, and potential secondary payload delivery.
Mitigation: Remove suspicious PDF editors, monitor for IoCs (Truesec/Expel reports), and enforce ad-blocking policies.
Source: BleepingComputer

Velociraptor Forensic Tool Abused for C2 Tunneling via Visual Studio Code

Attackers misused Velociraptor, an open-source forensic tool, to deploy Visual Studio Code for C2 tunneling. The attack chain involved Cloudflare Workers for payload staging and PowerShell for execution. Sophos warns this tactic may precede ransomware deployment.
Impact: Covert C2 access and potential ransomware escalation.
Mitigation: Monitor unauthorized Velociraptor usage, restrict PowerShell scripting, and enforce EDR solutions.
Source: The Hacker News

Massachusetts AG Fines Peabody Properties $795K for Data Security Failures

A property management firm settled for $795K after failing to secure consumer data and delaying breach notifications following five phishing-related breaches (2019–2021). The breaches exposed SSNs, driver’s licenses, and bank details for 14K individuals.
Source: DataBreaches.net

Thailand PDPC Imposes $660K in Cumulative Fines for PDPA Violations

Thailand’s data protection authority fined one government agency and private firms THB 21.5 million ($660K) for failing to appoint DPOs, implement security measures, and report breaches under the PDPA. This marks the second major enforcement action since 2024.
Source: DataBreaches.net

Share this brief: https://svo.bz/16oy

If you want to support us, you can donate here: Donate