Newsletter

Cybersecurity Decrypted: March 27 โ€“ April 3 2025

Last updated on Apr 4, 2025
Joel Witts
Laura Iannini
Written by Joel Witts Technical Review by Laura Iannini
This article will cover

๐Ÿ‘‹ Hello! Welcome to Cybersecurity Decrypted, your weekly cybersecurity news recap. In this weekโ€™s issue:

  • ๐Ÿ”’ New encryption features from Google
  • ๐Ÿ’ฌ A major new SMS phishing campaign revealed
  • ๐Ÿ’ฐ Millions of stolen crypto seized by the DOJ

Sign up to get Decrypted in your inbox every week:

๐Ÿ“ฐ Top Stories

  • Google has announced a new end-to-end email encryption feature for all Gmail enterprise users. Once the feature is released, business users will be able to send out fully encrypted emails to any user on any email service or platform, directly from the Gmail inbox. ๐Ÿ”—
  • Companies are scrapping AI initiatives due to concerns around cost, data privacy, and security risks, according to new analysis from S&P Global Market Intelligence. ๐Ÿ”—
  • An SMS-based Phishing-as-a-Service threat group has successfully hit 100s of targets with phishing text messages since 2023. The group claims to be sending 100,000 phishing text messages on iOS and Android every day. ๐Ÿ”—
  • Ransomware group BlackLock has been targeted by security researchers who were able to find a vulnerability in their data leak site, exposing configuration files and credentials. What goes around, comes around! ๐Ÿ”—
  • The DOJ has seized $8.2 million USD in stolen cryptocurrency funds connected to “pig butchering” romance scams. This involves scammers building romantic connections with victims before pressuring them for cash. ๐Ÿ”—

๐Ÿ“ก Threat Watch

  • Ransomware delivery gangs like “RansomHub” are increasingly using tools designed to disable endpoint detection and response (EDR) solutions as part of their services, according to ESET threat research. ๐Ÿ”—
  • Half of all organizations experienced 2 – 4 email security incidents last year, with 64% of IT professionals expecting to see more phishing this year, says a new report from TitanHQ. ๐Ÿ”—
  • Morphing Meerkat,” a new threat actor group offering phishing campaigns “as-a-Service” are using DNS MX records to serve fake login pages that impersonate around 114 well-known brands, say threat researchers at Infoblox. ๐Ÿ”—
  • Check Point has responded after a hacker claimed to be selling data stolen from the company. Check Point said the stolen data is not from a recent breach and that the importance of the data has been exaggerated. ๐Ÿ”—

๐Ÿšจ Industry News

  • ReliaQuest, a security operations provider, has announced a new $500 million USD funding round. The total raised by the company is now $830 million USD, which brings ReliaQuestโ€™s total valuation to $3.4 billion.ย ๐Ÿ”—
  • Data security startup Cyberhaven has raised $100 million in series A funding, which brings its total valuation to $1 billion USD. ๐Ÿ”—
  • Material Security, an innovative email security platform, has announced a major expansion to provide a complete cloud workspace protection platform. ๐Ÿ”—
  • Two new AI-focused security companies have announced funding rounds this week. Straiker has emerged from stealth with a platform to help secure AI apps, raising $21 million USD. GetReal Security has raised $17.5 million for an AI deepfake detection solution. 
  • GitHub has announced new updates to its Advanced Security platforms after 39 million leaked secrets were found in GitHub repositories in 2024, including API keys and credentials. ๐Ÿ”—
  • The Women in Cybersecurity conference is taking place this week in Dallas, Texas, an event dedicated to recruiting and advancing women in cybersecurity. ๐Ÿ”—
  • Wiz took the crown for April Foolsโ€™ Day effort. Check out their CISO Musicalโ€ฆ๐Ÿ•บ๐Ÿ’ƒ

๐ŸŒŽ Global News

  • The French Competition Authority has fined Apple $162 million USD for anticompetitive practices around a tool that protects users from app tracking. ๐Ÿ”—
  •  The European Union has announced a โ‚ฌ1.3 billion investment in improving digital technology in Europe, including cybersecurity, AI, and digital training. ๐Ÿ”—
  • The UK Government has set out details of its upcoming “Cyber Security and Resilience Billโ€, which will include new cyber reporting requirements. ๐Ÿ”—

๐Ÿ”Ž๏ธ Expert Insights: Latest From Us

Here are a few articles from Expert Insights matching the stories in the news this week.

Thatโ€™s all for this week! ๐Ÿ‘‹

Did you find this email interesting? Please let us know by replying directly to this message. We love to hear any thoughts and feedback.

Expert Insightsโ€™ Cybersecurity Resources

Want more stories like this? Subscribe to Decrypted.

Written By
Joel Witts
Joel Witts

Joel Witts is the Content Director at Expert Insights, meaning he oversees all articles published and topics covered. He is an experienced journalist and writer, specialising in identity and access management, Zero Trust, cloud business technologies, and cybersecurity. Joel is a co-host of the Expert Insights Podcast and conducts regular interviews with leading B2B tech industry experts, including directors at Microsoft and Google. Joel holds a First Class Honours degree in Journalism from Cardiff University.

Technical Review
Laura Iannini
Laura Iannini Cybersecurity Analyst

Laura Iannini is an Information Security Engineer. She holds a Bachelorโ€™s degree in Cybersecurity from the University of West Florida. Laura has experience with a variety of cybersecurity platforms and leads technical reviews of leading solutions. She conducts thorough product tests to ensure that Expert Insightsโ€™ reviews are definitive and insightful.