---
title: "Cybersecurity Updates For The Week 15 of 2023 | Phish Protection"
description: "In this week’s bulletin, we will look at how hackers burst the iPhone"
image: "https://phishprotection.com/og/blog/cybersecurity-updates-for-the-week-15-of-2023.png"
canonical: "https://phishprotection.com/blog/cybersecurity-updates-for-the-week-15-of-2023/"
---

Quick Answer

In this week’s bulletin, we will look at how hackers burst the \*\*iPhone's\*\* "unhackable" bubble, a global automaker suffered a data breach, and how \[ChatGPT\](/phishing-awareness/the-power-of-chatgpt-how-chatgpt-is-changing-the-phishing-game) remained in the news for the wrong reasons. Stay informed to maintain your \[phishing protection\](/) measures consistent.

Share 

[ ](https://www.linkedin.com/sharing/share-offsite/?url=https%3A%2F%2Fphishprotection.com%2Fblog%2Fcybersecurity-updates-for-the-week-15-of-2023%2F "Share on LinkedIn") [ ](https://twitter.com/intent/tweet?text=Cybersecurity%20Updates%20For%20The%20Week%2015%20of%202023&url=https%3A%2F%2Fphishprotection.com%2Fblog%2Fcybersecurity-updates-for-the-week-15-of-2023%2F "Share on X/Twitter") [ ](https://www.facebook.com/sharer/sharer.php?u=https%3A%2F%2Fphishprotection.com%2Fblog%2Fcybersecurity-updates-for-the-week-15-of-2023%2F "Share on Facebook") [ ](https://reddit.com/submit?url=https%3A%2F%2Fphishprotection.com%2Fblog%2Fcybersecurity-updates-for-the-week-15-of-2023%2F&title=Cybersecurity%20Updates%20For%20The%20Week%2015%20of%202023 "Share on Reddit") [ ](mailto:?subject=Cybersecurity%20Updates%20For%20The%20Week%2015%20of%202023&body=Check out this article: https%3A%2F%2Fphishprotection.com%2Fblog%2Fcybersecurity-updates-for-the-week-15-of-2023%2F "Share via Email") 

![Phish Protection blog post image](https://media.mailhop.org/phishprotection/images/2023/04/what-is-phishing-1.jpg) 

In this week’s bulletin, we will look at how hackers burst the **iPhone’s** “unhackable” bubble, a global automaker suffered a data breach, and how [ChatGPT](/phishing-awareness/the-power-of-chatgpt-how-chatgpt-is-changing-the-phishing-game) remained in the news for the wrong reasons. Stay informed to maintain your [phishing protection](/) measures consistent.

---

### Forensics Confirm Involvement of North Korean Hackers in 3CX Supply Chain Attack

VoIP IPBX software development firm 3CX recently reported a[supply chain attack](https://cyware.com/news/forensic-analysis-confirms-involvement-of-north-korean-attackers-in-3cx-supply-chain-attack-4b65471b)where cybercriminals had targeted and infected its **desktop apps’** macOS and Windows versions. Now, the forensic analysis has revealed additional details of a new malware family and threat actor attribution.

Mandiant published a report based on the forensic analysis revealing that the **UNC4736 group** had targeted 3CX systems with multiple malware strains, accompanying Gopuram and AppleJeus malware.

For targeting Windows devices, attackers used Taxhaul (or TxRLoader), which they used to deploy a second-stage payload called **Coldcat**.

The experts named the [backdoor](https://thehackernews.com/2021/12/experts-discover-backdoor-deployed-on.html) used for targeting macOS machines SIMPLESEA. Mandiant did not confirm if it is a new malware or overlaps with any existing malware family.

### Cybercriminals Hack iPhones to Drop QuaDream’s KingsPawn Spyware

An Israeli firm QuaDream has developed a new commercial [spyware](https://www.veracode.com/security/spyware) KingsPawn which cybercriminals are using to target the iPhones of **high-risk individuals**.

![What is phishing](https://media.mailhop.org/phishprotection/images/2023/04/what-is-phishing-1.jpg) 

The attackers abused a [zero-day](/content/zero-day-protection/zero-day-attack-example) flaw[ENDOFDAYS](https://cyware.com/news/iphones-hacked-to-drop-quadreams-kingspawn-spyware-250d113a)in iPhones running iOS 1.4 to 14.4.2 and launched attacks between January and November 2021\. They leveraged invisible and backdated **iCloud calendar invitations**.

Hackers begin the attack by sending backdated iCloud calendar invitations to targeted iOS devices. The iPhones add these invites to the victim’s calendar without any prompt or notification. It further allows [cybercriminals](https://www.bleepingcomputer.com/news/security/cybercriminals-charge-5k-to-add-android-malware-to-google-play/) to execute ENDOFDAYS exploit **without interacting** with the users, who remain unaware of the attack.

The compromised iPhones belonged to users of North America, Central Asia, Europe, the Middle East, and Southeast Asia. _Furthermore, the victims mainly included **NGO workers**, journalists, and political opposition figures._

### CERT-In, Indonesian Hackers Can Target Indian Government Websites

CERT-In issued an ‘[Urgent- High Alert](https://www.deccanchronicle.com/nation/crime/130423/indonesian-hackers-threaten-to-attack-12000-government-websites.html?&web%5Fview=true)’ anticipating possible attacks on over 12,000 Central and state government websites. The agency warned all **central and state departments** to remain alert and report any suspicious activities.

After the alert, the departments, including defense, law enforcement agencies, critical installations, and vital establishments, braced up **to thwart** the attacks.

> 

CERT-In said in the alert, ” An Indonesian [hacktivist group](https://www.iranintl.com/en/202210085084) is claiming to target 12,000 Indian websites , and the cybercriminals are launching **DoS/DDoS attacks**.”

The agency claims the attackers also released a list of Central and state government websites. It has communicated to all concerned departments and wings to stay alert and **initiate preventive measures**.

### Hyundai Suffered A Data Breach Impacting French And Italian Customers

Hyundai recently suffered a[data breach](https://cyware.com/news/iphones-hacked-to-drop-quadreams-kingspawn-spyware-250d113a)impacting Italian and French car owners and individuals who booked a test drive. Threat actors accessed the victims’ e-mail addresses, telephone numbers, physical addresses, and vehicle **chassis numbers**.

![Email phishing protection](https://media.mailhop.org/phishprotection/images/2023/04/email-phishing-protection-8632.jpg) 

The company sent a data breach letter to the impacted individuals, informing them that an unauthorized third party had accessed their **customer database**. Additionally, Hyundai Italy hired external [cybersecurity](/content/cybersecurity-in-a-nutshell) experts to determine the incident’s scope and notified the privacy watchdog.

In response to the incident, Hyundai has taken the impacted systems offline. It also warned affected individuals to **remain cautious** about [unsolicited](https://news.pindula.co.zw/2023/04/14/unsolicited-ed-mnangagwa-texts-illegal-misa/) contact attempts via text message or e-mail.

### FBI Warns People Against Using Public Charging Stations

The FBI says you must **think twice** before plugging your devices into[public charging stations](https://www.axios.com/2023/04/10/fbi-warning-charging-stations-juice-jacking?&web%5Fview=true).

> 

It posted on Twitter, “Avoid using free charging stations in hotels, airports or shopping centers. Cybercriminals have **figured out** ways to utilize public USB ports to inject [malware](/content/protection-against-malware/what-is-malware) and monitoring software onto your devices.” 

“Cybersecurity experts warn that [threat actors](/phishing-awareness/threat-actors-using-malicious-onenote-attachments-to-spread-malware-via-phishing-emails) can load malware onto public USB charging stations and maliciously access devices while they are getting charged,” the FCC says. If your mobile gets infected by malware through a dirty USB port, it can **export passwords** and personal data to cyber criminals or lock your device.

“Cybercriminals can use the information to access your **online accounts** or sell it on the dark web,” the FCC added.

### Samsung Employees Unknowingly Leak Company Data By Using ChatGPT

Samsung employees unwittingly shared **internal documents**, including source code and meeting notes, with the popular chatbot service. ChatGPT uses data entered by the users to train itself and build experience, and there is a risk that the popular chatbot can make it available to other users. So how did the trained[Samsung engineers](https://securityaffairs.com/144597/security/samsung-data-leak-chatgpt.html?web%5Fview=true)commit such a mistake?

They asked the chatbot to assess their company source code and **optimize test** sequences for fault identification in the chips they were designing. According to Techradar, in less than a month, Samsung suffered three data leaks because their employees leaked [sensitive information](/cybersecurity/sensitive-information-at-risk-as-a-security-breach-hits-us-marshals-service) via ChatGPT.

“In another case, a Samsung employee used ChatGPT for converting **meeting notes** into a presentation, which contained contents that Samsung would not have liked to share with external third parties,” reported TechRadar.

### Protect Your Organization

- [Learn how phishing attacks work and how to spot them](/learn-what-is-phishing/)
- [See how Phish Protection blocks threats in real time](/anti-phishing-tools/)

## Topics

[ Announcements ](/tags/announcements/) 

![Brad Slavin](https://media.mailhop.org/phishprotection/images/authors/brad-slavin.jpg) 

[ Brad Slavin ](/authors/brad-slavin/) 

General Manager

Founder and General Manager of DuoCircle. Product strategy and commercial lead across DuoCircle's 2,000+ customer base.

[LinkedIn Profile →](https://www.linkedin.com/in/bradslavin) 

## Protect your inbox from phishing attacks

Real-time email security with 60-day free trial. No credit card required.

[Start Free Trial](https://portal.duocircle.com/cart.php?a=add&pid=101&brand=phishprotection) [View Pricing](/pricing/) 

## Related Articles

[  Intermediate 5m  Cybersecurity Updates For The Week 33 of 2022  Aug 22, 2022 ](/blog/cyber-security-news-update-week-33-2022/)[  Intermediate 6m  Cybersecurity Updates For The Week 41 of 2022  Oct 21, 2022 ](/blog/cybersecurity-news-21-oct-2022/)[  Intermediate 5m  Cybersecurity Updates For The Week 1 of 2021  Jan 1, 2021 ](/blog/cybersecurity-updates-for-the-week-1-of-2021/)[  Intermediate 6m  Cybersecurity Updates For The Week 1 of 2022  Jan 7, 2022 ](/blog/cybersecurity-updates-for-the-week-1-of-2022/)

```json
{"@context":"https://schema.org","@type":"Organization","name":"Phish Protection","url":"https://phishprotection.com","logo":{"@type":"ImageObject","url":"https://phishprotection.com/images/phishprotection-logo.png"},"description":"Advanced phishing protection and email security for businesses. Real-time threat defense, time-of-click protection, and seamless Office 365 integration.","parentOrganization":{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138883901","name":"DuoCircle LLC","url":"https://www.duocircle.com","sameAs":["https://www.wikidata.org/wiki/Q138883901","https://www.crunchbase.com/organization/duocircle-llc","https://www.linkedin.com/company/duocircle","https://github.com/duocircle"],"subOrganization":[{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138898167","name":"DMARC Report","url":"https://dmarcreport.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897474","name":"AutoSPF","url":"https://autospf.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897912","name":"Phish Protection","url":"https://www.phishprotection.com"}]},"sameAs":["https://www.linkedin.com/company/duocircle","https://x.com/duocirclellc","https://www.facebook.com/duocirclellc","https://github.com/duocircle"],"contactPoint":{"@type":"ContactPoint","contactType":"customer support","url":"https://phishprotection.com/contact/"},"knowsAbout":["Phishing Protection","Email Security","Anti-Phishing","Business Email Compromise","Ransomware Protection","Time of Click Protection","Office 365 Email Security","Advanced Threat Defense"]}
```

```json
{"@context":"https://schema.org","@type":"WebSite","name":"Phish Protection","url":"https://phishprotection.com","description":"Advanced phishing protection and email security for businesses. Real-time threat defense, time-of-click protection, and seamless Office 365 integration.","publisher":{"@type":"Organization","name":"Phish Protection","url":"https://phishprotection.com","logo":{"@type":"ImageObject","url":"https://phishprotection.com/images/phishprotection-logo.png"},"description":"Advanced phishing protection and email security for businesses. Real-time threat defense, time-of-click protection, and seamless Office 365 integration.","parentOrganization":{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138883901","name":"DuoCircle LLC","url":"https://www.duocircle.com","sameAs":["https://www.wikidata.org/wiki/Q138883901","https://www.crunchbase.com/organization/duocircle-llc","https://www.linkedin.com/company/duocircle","https://github.com/duocircle"],"subOrganization":[{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138898167","name":"DMARC Report","url":"https://dmarcreport.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897474","name":"AutoSPF","url":"https://autospf.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897912","name":"Phish Protection","url":"https://www.phishprotection.com"}]}}}
```

```json
{"@context":"https://schema.org","@type":"BlogPosting","headline":"Cybersecurity Updates For The Week 15 of 2023","description":"In this week’s bulletin, we will look at how hackers burst the iPhone's \"unhackable\" bubble, a global automaker suffered a data breach.","url":"https://phishprotection.com/blog/cybersecurity-updates-for-the-week-15-of-2023/","datePublished":"2023-04-12T04:59:34.000Z","dateModified":"2026-04-17T15:43:10.000Z","dateCreated":"2023-04-12T04:59:34.000Z","author":{"@type":"Person","@id":"https://phishprotection.com/authors/brad-slavin/#person","name":"Brad Slavin","url":"https://phishprotection.com/authors/brad-slavin/","jobTitle":"General Manager","description":"Brad Slavin is the founder and General Manager of DuoCircle, the company behind DMARC Report, AutoSPF, Phish Protection, and Mailhop. He founded DuoCircle in 2014 and has led the company's growth to 2,000+ customers across its email security product family. Brad's focus is product strategy, customer relationships, and the commercial and compliance side of email authentication (DPAs, SLAs, enterprise procurement).","image":"https://media.mailhop.org/phishprotection/images/authors/brad-slavin.jpg","knowsAbout":["Email Security Strategy","SaaS Product Management","Enterprise Compliance","Customer Success","Email Deliverability Business"],"worksFor":{"@type":"Organization","name":"Phish Protection","url":"https://phishprotection.com"},"sameAs":["https://www.linkedin.com/in/bradslavin"]},"publisher":{"@type":"Organization","name":"Phish Protection","url":"https://phishprotection.com","logo":{"@type":"ImageObject","url":"https://phishprotection.com/images/phishprotection-logo.png"},"description":"Advanced phishing protection and email security for businesses. Real-time threat defense, time-of-click protection, and seamless Office 365 integration.","parentOrganization":{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138883901","name":"DuoCircle LLC","url":"https://www.duocircle.com","sameAs":["https://www.wikidata.org/wiki/Q138883901","https://www.crunchbase.com/organization/duocircle-llc","https://www.linkedin.com/company/duocircle","https://github.com/duocircle"],"subOrganization":[{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138898167","name":"DMARC Report","url":"https://dmarcreport.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897474","name":"AutoSPF","url":"https://autospf.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897912","name":"Phish Protection","url":"https://www.phishprotection.com"}]},"sameAs":["https://www.linkedin.com/company/duocircle","https://x.com/duocirclellc","https://www.facebook.com/duocirclellc","https://github.com/duocircle"],"contactPoint":{"@type":"ContactPoint","contactType":"customer support","url":"https://phishprotection.com/contact/"},"knowsAbout":["Phishing Protection","Email Security","Anti-Phishing","Business Email Compromise","Ransomware Protection","Time of Click Protection","Office 365 Email Security","Advanced Threat Defense"]},"mainEntityOfPage":{"@type":"WebPage","@id":"https://phishprotection.com/blog/cybersecurity-updates-for-the-week-15-of-2023/"},"articleSection":"intermediate","keywords":"Announcements","wordCount":849,"image":{"@type":"ImageObject","url":"https://media.mailhop.org/phishprotection/images/2023/04/what-is-phishing-1.jpg","caption":"Phish Protection blog post image","width":1200,"height":630},"speakable":{"@type":"SpeakableSpecification","cssSelector":[".answer-block","h1"]}}
```

```json
{"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https://phishprotection.com/"},{"@type":"ListItem","position":2,"name":"Blog","item":"https://phishprotection.com/blog/"},{"@type":"ListItem","position":3,"name":"Intermediate","item":"https://phishprotection.com/intermediate/"},{"@type":"ListItem","position":4,"name":"Cybersecurity Updates For The Week 15 of 2023","item":"https://phishprotection.com/blog/cybersecurity-updates-for-the-week-15-of-2023/"}]}
```