Cyber Briefing: 2025.05.13

Major Apple fixes, global hacks, ransomware hits and arrests, and new moves in IoT security, here’s what you need to know today.

May 13, 2025

Listen to our podcast here

Welcome to Cyber Briefing, the newsletter that informs you about the latest cybersecurity advisories, alerts, incidents and news every weekday.

First time seeing this?

👉 What's happening in cybersecurity today?

Get Help

🚨 Cyber Alerts

1. Apple Fixes Critical Bugs in iOS and MacOS

Apple released urgent security updates for iOS, macOS, and other platforms to address multiple critical vulnerabilities. The flaws affected components like AppleJPEG, CoreMedia, ImageIO, and WebKit, which could allow attackers to run malicious code, crash apps, or corrupt memory by simply opening a crafted image, video, or website. Notably, some bugs could lead to denial-of-service conditions or leak data, while others—such as CVE-2025-31217—could crash Safari through malicious web content.

2.Hackers Exploit Output Messenger Zero-Day

A Turkish-aligned cyber-espionage group, Marbled Dust, exploited a zero-day vulnerability in Output Messenger to spy on Kurdish military targets in Iraq. The flaw allowed the attackers to access and manipulate users' credentials, leading to data exfiltration. Marbled Dust has a history of targeting entities in Europe and the Middle East, particularly those opposing Turkish interests. This attack marks an escalation in their capabilities, reflecting an increased technical sophistication and urgency in their operations.

3. ASUS Fixes Critical Flaws in DriverHub

ASUS has addressed two severe vulnerabilities in its DriverHub software that could allow remote code execution. Discovered by security researcher MrBruh, these flaws could be exploited via crafted HTTP requests. The flaws involve an origin validation error and improper certificate validation, both posing significant risks. ASUS released fixes for these vulnerabilities on May 9, 2025, urging users to update their DriverHub installations for enhanced security.

For more alerts, click here!

Check Jobs

💥 Cyber Incidents

4. Alleged Steam Breach Exposes 89M Records

A massive data breach allegedly exposed 89 million Steam user records, now for sale on the dark web. The breach may have stemmed from vulnerabilities within Steam's vendor systems, impacting users globally. Leaked data includes two-factor authentication (2FA) logs and personal details, which can be exploited for phishing and account takeovers. Valve is investigating, and users are urged to enable 2FA and change passwords to secure their accounts.

5. Ulhasnagar Municipal Corporation Hacked

The official website of the Ulhasnagar Municipal Corporation in India was compromised on Saturday afternoon. A message with religious overtones and a hacking declaration appeared prominently on the homepage, triggering immediate action from the IT department. The website was quickly taken offline for investigation, with no confirmed data breach or system damage reported yet. Municipal officials, including IT head Shraddha Baviskar and Municipal Commissioner Manisha Awhale, have assured the public that the situation is being handled.

6. Madison County Iowa Systems Disrupted

Ransomware was detected in Madison County, Iowa, after suspicious activity was reported by the Iowa County Emergency Management on April 28. In response, Madison County officials took their systems offline as a precautionary measure. Cybersecurity experts have since been working with the county to investigate the breach and determine its scope and impact. Officials confirmed that the restoration of the computer network environment will take time, causing potential delays in fulfilling requests and providing information.

For more incidents, click here!

Report Incident

📢 Cyber News

7. Hackers Trade Nearly $2 Billion in Japan

Japan’s Financial Services Agency reported a massive surge in unauthorized online trading activity in April 2025. Hackers breached nearly 5,000 financial accounts and conducted 2,746 fraudulent transactions through nine securities firms, totaling close to $2 billion in trades. Attackers typically used stolen login credentials to sell securities and reinvest the proceeds into domestic and foreign small-cap stocks, inflating prices for personal gain. The agency noted that many of these campaigns were linked to phishing attacks, with cybercriminals using tools like CoGUI and AI-generated emails to bypass security and steal user credentials.

8. New UK Law for Enterprise IoT Security

The UK government is addressing significant security vulnerabilities discovered in enterprise IoT devices through recent research. Their proposed interventions include a code of practice outlining security principles for manufacturers. They are also considering legislative measures to mandate stronger security standards across the industry. This proactive approach aims to enhance the overall security posture of connected devices used within business environments.

9.DoppelPaymer Ransomware Suspect Apprehended

Moldovan authorities have arrested a 45-year-old foreign man suspected of orchestrating ransomware attacks against Dutch companies in 2021. The individual is wanted internationally for a string of cybercrimes, encompassing ransomware deployment, blackmail attempts, and subsequent money laundering activities. During the arrest, law enforcement officials seized a substantial amount of cash, along with various electronic devices potentially used in the commission of these crimes. The suspect is believed to be connected to the significant DoppelPaymer ransomware attack that targeted the Netherlands Organization for Scientific Research, causing substantial financial and data-related damage.

For more news, click here

📈Cyber Stocks

TradingView chart — Created with TradingView

💡 Cyber Tip

Update Apple Devices to Patch Critical iOS and macOS Vulnerabilities. Apple has released urgent security updates addressing critical flaws in iOS, macOS, and related platforms. Vulnerabilities in components like AppleJPEG, CoreMedia, ImageIO, and WebKit could allow attackers to execute code, crash apps, or leak data simply by opening a crafted image, video, or website.

Actions You Should Take:

Update all Apple devices immediately – Install the latest security patches for iOS, macOS, Safari, and other Apple software
Avoid opening untrusted media or links – Especially from unknown sources, until devices are updated.
Enable automatic updates – Ensure future patches are applied promptly.

Why it matters: These vulnerabilities—including CVE-2025-31217—can be exploited without user interaction, allowing attackers to compromise systems via common content like images or web pages.

Visit Book Club

📚 Cyber Book

Identity Theft: The Road To Recovery: How To Protect Yourself As A Retiree, Avoid Becoming A Victim, And Recover From Identity Theft (Stress-Free Retirement Series) by Jeff Kikel and Gary Kasper.