Top 5 Cybersecurity News Stories February 7, 2025

By Editorial Team | February 7, 2025

Cybersecurity threats are constantly evolving as threat actors seek access to your data and money. To help you stay secure, we have searched the internet for the top five cybersecurity news stories of the week that we think you should be aware of. No story is too big or small as we look at threats from espionage to security flaws in everyday devices:

1. Taiwan Bans DeepSeek AI Over National Security Concerns, Citing Data Leakage Risks

Taiwan has joined a growing list of countries banning DeepSeek AI over national security concerns. The Chinese-built chatbot, praised for its open-source model and efficiency, faces scrutiny for potential data leaks and censorship issues.

Meanwhile, cyberattacks targeting DeepSeek and malicious impersonations on PyPI highlight rising threats. As AI risks escalate, governments and tech giants are tightening regulations—raising critical questions about security and ethical AI development.

2. Critical RCE bug in Microsoft Outlook now exploited in attacks

CISA has issued an urgent warning to U.S. federal agencies about an actively exploited Microsoft Outlook vulnerability (CVE-2024-21413) that enables remote code execution. Attackers can bypass Outlook’s protections using a simple URL trick, putting sensitive data at risk.

Agencies must patch the flaw by February 27, while private organizations are also urged to act fast. Cybercriminals are already exploiting this weakness.

3. Ransomware payments fell by 35% in 2024, totalling $813,550,000

Ransomware payments plunged 35% in 2024, dropping to $813.55 million despite a record-breaking number of attacks. Fewer victims are paying, thanks to better cybersecurity, stronger backups, and increased legal pressure.

Law enforcement crackdowns, like Operation Cronos, disrupted major ransomware groups, making laundering funds harder. Even when payments occur, they’re often negotiated down. The ransomware landscape is shifting

4. GrubHub data breach impacts customers, drivers, and merchants

GrubHub has disclosed a data breach after attackers accessed its systems through a compromised third-party service provider account. While sensitive financial and login details were not exposed, attackers accessed names, emails, phone numbers, and partial payment info of some campus diners.

In response, GrubHub terminated access, enhanced security, and urged users to maintain strong passwords. With cybersecurity threats on the rise, how this breach unfolded.

5. Spyware firm cuts Italy access after alleged targeting of activists – reports

Israeli spyware firm Paragon Solutions has cut ties with its Italian clients following allegations that its software was used to target critics of the Italian government. WhatsApp recently exposed a spyware campaign affecting 90 users in 24 countries, including journalists and activists.

Italy has launched an investigation, calling the incident “particularly serious.”