Cybercrime Crackdown: Arrests in Europe, Cleo and MOVEit Exploits, and Identity System Vulnerabilities

Authorities in Belgium and the Netherlands have arrested eight individuals involved in a phone phishing operation. The group targeted victims by impersonating trusted entities to extract sensitive information. This arrest highlights ongoing global efforts to combat cybercrime. Meanwhile, hackers are exploiting vulnerabilities in popular file transfer tools, such as Cleo, to launch mass attacks. At least 10 businesses have been targeted, with post-exploitation activity observed. Hackers are also weaponizing Visual Studio Code Remote Tunnels for cyber espionage, further emphasizing the increasing sophistication of cyber threats. CERT-UA has warned of phishing campaigns targeting Ukraine’s defense and security forces, underscoring the growing risks to critical infrastructure. Additionally, the MOVEit hack and other breaches in December 2024 revealed that identity systems remain a major weak spot in cybersecurity.