Cybersecurity Exec Brief: Device Code Phishing, US Treasury Zero-Day, Thailand Pulls Scammer Plug

Exec Brief: Cybercriminals are evolving their tactics, from device code phishing campaigns to zero-day exploits targeting critical infrastructure. Meanwhile, entire scam hubs are being dismantled as governments crack down on cyber fraud. 2024 Cybersecurity Year in Review: https://risk3sixty.com/webinars/2024-cybersecurity-year-review Threat Actors Utilize Device Code Phishing On February 13, 2025, Microsoft reported that the threat actor group Storm-2372 has been conducting a sophisticated phishing campaign targeting users through device code authentication. This method involves tricking individuals into granting access to their accounts by prompting them to enter a malicious device code, thereby compromising their security. Microsoft advises users to remain vigilant and recommends implementing multi-factor authentication to protect against such attacks. https://www.microsoft.com/en-us/security/blog/2025/02/13/storm-2372-conducts-device-code-phishing-campaign/ Zero Day Exploited in US Treasury Department In December 2024, attackers exploited a zero-day vulnerability in PostgreSQL (CVE-2025-1094) to breach BeyondTrust's network, compromising 17 Remote Support SaaS instances. The U.S. Treasury Department was also affected, with Chinese state-backed hackers, known as Silk Typhoon, using a stolen API key to access sensitive information. BeyondTrust has since patched the vulnerabilities, and the Cybersecurity and Infrastructure Security Agency (CISA) has mandated that U.S. federal agencies secure their networks against these attacks. https://www.bleepingcomputer.com/news/security/postgresql-flaw-exploited-as-zero-day-in-beyondtrust-breach/ Thailand Turns off Power to Scam Hubs In a decisive move to combat online scam operations, Thailand has cut off electricity, fuel, and internet supplies to three areas in Myanmar—Myawaddy, Payathonzu, and Tachileik—known as hubs for fraudulent activities. This action follows China's call for stronger measures against scamming networks, especially after the high-profile abduction of Chinese actor Wang Xing, who was trafficked from Thailand to a scam compound in Myanmar. The Thai government aims to disrupt the operations of criminal syndicates that have exploited border regions to conduct widespread fraud, often involving trafficked individuals forced into scam operations. https://therecord.media/thailand-cuts-power-scam-compounds-myanmar https://www.usip.org/publications/2024/10/latest-southeast-asias-transnational-cybercrime-crisis