Top 5 Cybersecurity News Stories February 21, 2025

By Editorial Team | February 21, 2025

Cybersecurity threats are constantly evolving as threat actors seek access to your data and money. To help you stay secure, we have searched the internet for the top five cybersecurity news stories of the week that we think you should be aware of. No story is too big or small as we look at threats from espionage to security flaws in everyday devices:

1. Cisco Confirms Salt Typhoon Exploited CVE-2018-0171 to Target U.S. Telecom Networks

Cisco has confirmed that Chinese APT group Salt Typhoon exploited a known vulnerability (CVE-2018-0171) and used stolen credentials to infiltrate U.S. telecom networks. The attackers remained undetected for over three years, leveraging advanced techniques like network obfuscation and JumbledPath for stealthy data capture.

Cisco refuted claims of other vulnerabilities being exploited but warned of continued attacks on exposed devices.

2. US healthcare org pays $11M settlement over alleged cybersecurity lapses

Health Net Federal Services (HNFS) and Centene Corporation have agreed to a $11.25 million settlement over allegations of falsely certifying cybersecurity compliance under their TRICARE contract.

The DOJ claims that between 2015-2018, HNFS failed to implement required security measures but reported compliance. While denying wrongdoing, HNFS settled the case, with potential future legal consequences still open.

3. Darcula PhaaS can now auto-generate phishing kits for any brand

Darcula, a phishing-as-a-service (PhaaS) platform, is launching its third version, Darcula 3.0, which allows users to create custom phishing kits for any brand. The new version simplifies phishing campaigns with DIY attack kits, real-time credential theft tracking, anti-detection features, and automated credit card fraud tools.

Security experts warn of increased phishing activity, as cybercriminals are already testing the beta version.

4. Australian fertility services giant Genea hit by security breach

Genea, one of Australia’s largest fertility service providers, confirmed a cyberattack that compromised its network and data. The company is urgently investigating the breach to determine the extent of accessed personal information. While services remain operational, Genea is restoring systems and assuring patients of minimal disruption.

The breach follows a phone and app outage, raising concerns about security. Patients will be notified if their data is affected.

5. Philippines reports foreign cyber intrusions targeting intelligence data, but no breaches

The Philippines has detected foreign attempts to access intelligence data but has reported no breaches, according to Cyber Minister Ivan Uy. Advanced Persistent Threats (APTs) have repeatedly tried to infiltrate government systems but failed.

Uy warns of a global cyber arms race, with threats including deepfakes and disinformation ahead of the May elections. The government is strengthening cybersecurity through diplomatic channels and intelligence sharing.