Latest Stories

Stay up-to-date with everything at Approach

Blog article

Weekly Digest Week 34 – 2025

Publication date

22.08.2025

Featured Story

Major password managers can leak logins in clickjacking attacks

Six major password managers are vulnerable to clickjacking attacks that could allow attackers to steal credentials, 2FA codes, and credit card details.

Attackers overlay invisible elements over password manager interfaces on malicious websites, tricking users into triggering autofill actions.

Currently affected: 1Password, Bitwarden, Enpass, iCloud Passwords, LastPass, and LogMeOnce, affecting around 40 million users. Some vendors like 1Password and LastPass have dismissed the findings.

SOC Analysis: The clickjacking vulnerability affects widely-used password managers through invisible overlay attacks on malicious sites. As a temporary measure, consider disabling autofill features until patches are available. Organizations using affected solutions should monitor vendor update schedules, with Bitwarden already releasing fixes while others remain unpatched. The attack requires user interaction on compromised sites, making web filtering and user awareness key mitigating controls. That said, this vulnerability should not discourage users from adopting password managers, as their overall security benefits remain significant.

Other Stories

Orange Data Breach Raises SIM-Swapping Attack Fears

Orange Belgium suffered a data breach affecting 850,000 customers, with attackers accessing SIM card numbers, PUK codes, names, and phone numbers. The Warlock ransomware group claimed responsibility.

No passwords, emails, or financial data were compromised, but the exposed data enables potential SIM swapping attacks.

SOC Analysis: The exposed SIM numbers and PUK codes directly enable SIM swapping attacks, allowing attackers to hijack phone numbers and bypass SMS-based MFA. Organizations should review their authentication methods and reduce reliance on SMS verification.

CVE-2025-43300: Zero-Day in iOS, iPadOS, and macOS Under Active Exploitation

A zero-day vulnerability in Apple’s ImageIO framework (CVE-2025-43300) is under active exploitation, allowing memory corruption through malicious images. Apple patched the flaw across iOS, iPadOS, and macOS platforms.

The attacks are believed to target specific individuals using highly sophisticated techniques.

SOC Analysis: The ImageIO vulnerability allows attackers to exploit devices through malicious images, making it particularly concerning for organizations where users regularly process images from external sources. Immediate patching should be prioritized across all Apple devices. Monitor for unusual application crashes related to image processing.

Windows 10 updates will soon stop: how can you remain safe on the internet?

On October 14, 2025, Microsoft will stop providing security updates for Windows 10. The system will continue to function, but it will no longer receive safety patches, leaving users vulnerable.

Around 43% of Windows PCs in Belgium still run Windows 10. Microsoft offers an Extended Security Updates (ESU) program, but it’s a temporary solution.

SOC Analysis: This Windows 10 end-of-life situation presents a significant security challenge with 43% of systems becoming unpatched targets after October 2025. Organizations should prioritize inventory assessments and migrations. For systems that can’t be upgraded immediately, implement network segmentation and consider accelerating hardware refresh cycles.

OTHER STORIES

Weekly Digest Week 36 – 2025

Weekly Digest Week 35 – 2025

Weekly Digest Week 33 – 2025

Contact us to learn more about our services and solutions

Our team will help you start your journey towards cyber serenity

Do you prefer to send us an email?

info@approach-cyber.com

Facebook-f Linkedin-in Youtube

Our certifications & labels

Facebook-f Linkedin-in Youtube