Top 5 Cybersecurity News Stories January 31, 2025

Loading the Elevenlabs Text to Speech AudioNative Player...

Cybersecurity threats are constantly evolving as threat actors seek access to your data and money. To help you stay secure, we have searched the internet for the top five cybersecurity news stories of the week that we think you should be aware of.  No story is too big or small as we look at threats from espionage to security flaws in everyday devices:

1. Sensitive DeepSeek data exposed to web, cyber firm says

A major cybersecurity lapse has put Chinese AI startup DeepSeek in the spotlight after New York-based firm Wiz discovered over a million lines of sensitive data left exposed online. The leaked data included software keys and user chat logs, raising serious security concerns.

The only kind breach we like to see is one done by a whale!

While DeepSeek swiftly secured the data, the incident fuels the growing AI rivalry between China and the U.S., as DeepSeek’s rapid rise challenges American tech giants.

Read more here: Reuters

2. Google: Over 57 Nation-State Threat Groups Using AI for Cyber Operations

State-sponsored hackers from China, Iran, North Korea, and Russia are exploiting Google’s AI tool, Gemini, to boost cyberattacks and disinformation efforts. A new Google report reveals these groups use AI for coding, phishing, reconnaissance, and even drafting fake job applications to infiltrate companies.

With AI-powered hacking tools emerging on underground forums, the risks are growing. Google urges stronger public-private collaboration to combat these threats.

Read more here: The Hacker News

3. Apple Patches Actively Exploited Zero-Day Affecting iPhones, Macs, and More

Apple has rolled out critical security updates to patch multiple vulnerabilities, including an actively exploited zero-day flaw (CVE-2025-24085) in Core Media. This bug could let malicious apps escalate privileges on affected devices.

Other fixes address AirPlay and CoreAudio flaws that could cause system crashes or enable attacks. With federal agencies required to patch by February 19, users should update their devices immediately to stay protected.

Read more here: The Hacker News

4. Google blocked 2.36 million risky Android apps from Play Store in 2024

Google blocked a record 2.3 million harmful Android apps from the Play Store in 2024, thanks to AI-powered reviews catching threats faster than ever. Additionally, 158,000 developer accounts were banned for attempting to distribute malware.

Google Play Protect scanned over 200 billion apps daily, stopping millions of malicious installations. Despite these advances, cybercriminals adapt, making it crucial for users to stay cautious and prioritize security.

Read more here: BleepingComputer

5. UnitedHealth now says 190 million impacted by 2024 data breach

UnitedHealth has disclosed that a staggering 190 million Americans had their personal and healthcare data stolen in the largest healthcare data breach in U.S. history—nearly double the initial estimate.

The Change Healthcare ransomware attack, orchestrated by the BlackCat gang, led to a $22 million ransom payment, followed by a second extortion attempt. With sensitive medical and personal data at risk, this breach highlights the growing threat of cyberattacks in healthcare.

Read more here: BleepingComputer

At DIESEC, our experts are ready to assist with all your cybersecurity needs. We ensure your system is safe and secure and provide training for your employees to avoid falling victim to social engineering tactics.

For more information please contact us now!