Cyber Briefing: 2025.02.10

👉 What’s happening in cybersecurity today?

Global Brute Force Attack, VPNs, Firewalls, Google Tag Manager, Credit Card Data, Magento Sites, Phishing Campaign, Facebook Users, Login Data, Fake Notices, Remote Code Execution, Marvel Rivals Game, CISA, Trimble Cityworks, Lee Enterprises, US Newspaper, Media Outlets, Hauts-de-France Chamber of Commerce, Karnataka Police, Property Portal, Pinehurst Radiology, North Carolina, Crystal Lake Elementary, Illinois, Data Breach, UK Government, Apple, iCloud Backdoor, US State Attorneys General, DOGE, Data Access, India, Bank Domains, Digital Payment Security, Brave Browser, Custom Scriptlets, ThreatMate, AI, Funding, Attack Surface Management Platform.

Welcome to Cyber Briefing, the newsletter that informs you about the latest cybersecurity advisories, alerts, incidents and news every weekday.

First time seeing this? Please subscribe.

🚨 Cyber Alerts

1. Brute Force Attack Targets Edge Devices

A massive brute force attack campaign, first detected in January 2025, targets edge security devices including VPNs, firewalls, and gateways from vendors like Palo Alto Networks, Ivanti, and SonicWall. The attack leverages 2.8 million IP addresses, primarily from Brazil, Turkey, and Russia, to guess login credentials and hijack devices for network access and data theft. The Shadowserver Foundation warns of escalating threats and urges organizations to prioritize multi-factor authentication and patch management to defend against these attacks.

2. Hackers Use Google Tag Manager to Steal Data

Hackers are using Google Tag Manager (GTM) to deploy malicious scripts on eCommerce sites, particularly those using Magento, to steal credit card information. The attack involves embedding encoded JavaScript payloads in GTM tags that mimic legitimate tracking scripts but secretly collect and transmit sensitive data. Website administrators are urged to audit GTM tags regularly, use malware detection tools, and ensure…