Cyber Briefing: 2025.02.05

👉 What’s trending in cybersecurity today?

Malicious Go Package, Remote Access, Developer Systems, 7-Zip Security Flaw, SmokeLoader, AWS S3 Buckets, Security Flaw, Apache Cassandra Flaw, Data Centers, Veeam Updater Flaw, Backup Systems, River Region Cardiology, Sensitive Personal Data, PowerSchool, St Johns School District, McKinney Texas, Personal Information, Lighthouse Electric Company, San Francisco-Marin Food Bank, Texas, Cyber Command, State Infrastructure, CISA, Network Edge Devices, Taiwan, DeepSeek AI, Security Risks, Cross-Border Concerns, Sophos, SecureWorks, macOS Malware, Cryptocurrency, Data.

Welcome to Cyber Briefing, the newsletter that informs you about the latest cybersecurity advisories, alerts, incidents and news every weekday.

First time seeing this? Please subscribe.

🚨 Cyber Alerts

1. Malicious Go Package Grants Remote Access

Researchers identified a malicious Go package designed to grant attackers remote access to infected systems. The package, a deceptive clone of the legitimate BoltDB module, exploited Git tags and Go Module Mirror caching to persist undetected. Attackers modified repository history, making it appear clean while ensuring unsuspecting developers continued downloading the compromised version. This technique highlights the risks posed by mutable Git tags and indefinitely cached modules, allowing malicious code to spread even after its removal from the original repository.

2. 7-Zip Flaw Exploited to Deliver SmokeLoader

A recently patched vulnerability in 7-Zip enabled Russian cybercriminals to bypass Windows security measures and deploy SmokeLoader malware through phishing attacks. Hackers used homoglyph techniques to disguise malicious archive files as legitimate documents, tricking users into executing harmful payloads. Ukrainian government agencies and municipal organizations were primary targets, demonstrating how smaller institutions remain highly vulnerable to sophisticated cyber…