Top 5 Cybersecurity News Stories April 11, 2025

By Editorial Team | April 11, 2025

Cybersecurity threats are constantly evolving as threat actors seek access to your data and money. To help you stay secure, we have searched the internet for the top five cybersecurity news stories of the week that we think you should be aware of. No story is too big or small as we look at threats from espionage to security flaws in everyday devices:

1. OttoKit WordPress Plugin Admin Creation Vulnerability Under Active Exploitation

A severe vulnerability (CVE-2025-3102, CVSS 8.1) in the OttoKit (formerly SureTriggers) WordPress plugin is under active attack. The bug allows unauthorized creation of admin accounts when the plugin is active but not configured.

Over 100,000 sites use OttoKit, though only some are at risk. Patch now to version 1.0.79, check for rogue admin accounts like “xtw1838783bc.”

2. Google Releases Android Update to Patch Two Actively Exploited Vulnerabilities

Google has fixed 62 vulnerabilities in its April 2025 Android security update, including two high-severity Linux kernel flaws (CVE-2024-53150 & CVE-2024-53197) exploited in targeted attacks.

These bugs were part of a hacking chain reportedly used by Cellebrite to breach a Serbian activist’s device. CISA has added them to its KEV catalog, urging U.S. agencies to patch by April 30.

3. Sensata Technologies hit by ransomware attack impacting operations

Industrial tech firm Sensata Technologies suffered a ransomware attack on April 6, disrupting shipping, manufacturing, and support services.

The breach included data theft, and while the company is working to restore critical functions, it has no clear recovery timeline yet. Sensata, which serves the automotive and aerospace sectors, is still assessing what data was stolen. No threat group has claimed responsibility.

4. US regulator OCC says its executives’ emails were hacked

The U.S. Office of the Comptroller of the Currency (OCC) disclosed a breach involving unauthorized access to sensitive emails of executives and staff, exposing data tied to federally regulated financial institutions.

Blaming long-standing IT flaws, the breach was detected in February but publicly revealed weeks later. The OCC is now overhauling its cybersecurity protocols, with Acting Comptroller Rodney Hood promising accountability for the systemic failures.

5. Oracle says “obsolete servers” hacked, denies cloud breach

Oracle has confirmed a data breach involving “two obsolete servers,” but insists Oracle Cloud Infrastructure (OCI) was not impacted. The company emphasized that no customer data, services, or environments were affected.

Still, critics argue Oracle is playing with terminology—since the breach hit Oracle Cloud Classic, a predecessor to OCI. The stolen credentials, some dated as recent as 2025, are reportedly valid.