Cyber Security Week in Review: March 14, 2025

New North Korea-linked Android spyware KoSpy targets Korean and English-speaking users

KoSpy is distributed through fake utility applications, which masquerade as helpful tools.

Chinese hackers Volt Typhoon lurked for nearly a year in systems of US utility company

The breach is believed to be part of a broader cyberespionage effort by China’s government targeting US critical infrastructure.

China-nexus hackers UNC3886 target Juniper MX routers with custom backdoors

The group first gained access to a target network through a terminal server used for managing devices.

Apple rolls out security patches to fix to exploited zero-day vulnerability in WebKit

The vulnerability could be exploited by attackers to break out of WebKit's Web Content sandbox by using maliciously crafted web content.