Cybersecurity Threat Rundown Thumbnail 720

12 Cybersecurity Threats You Need to Know About Right Now

By Bryan Longworth | A Faster PC

This week in cybersecurity was genuinely alarming. A hospital had to close every single clinic. A single hacker used artificial intelligence to break into 600 firewalls across 55 countries in five weeks. Malware showed up in physical postal mailboxes. And the FBI is warning that $20 million was stolen directly from ATMs last year.

This isn't future scary. This is happening right now.

If you run a business on Florida's Treasure Coast, Space Coast, or in South Florida, this week's threat landscape is a wake-up call. Here are 12 cybersecurity stories you need to know about — and what you can do to protect yourself.

1. Ransomware Shuts Down a Major Hospital System

On February 19th, the University of Mississippi Medical Center — one of the largest employers in the state — was hit by a ransomware attack. The system includes seven hospitals, 35 clinics, and over 200 telehealth sites. It is the only level one trauma center in Mississippi, the only children's hospital, and the only organ transplant program in the state.

All 35 clinics closed. Surgeries were canceled. Imaging appointments were canceled. Doctors were writing patient notes by hand because they were completely locked out of their electronic medical record system. The attackers made contact, and the hospital is working with federal authorities and national cybersecurity experts for next steps. Officials say it could be a multi-day or even multi-week event.

What this means for your business: Ransomware doesn't just happen to big corporations. It happens to hospitals, schools, small businesses, and yes, even individual people. If your data isn't backed up and protected, you could be looking at closed doors, lost revenue, and hackers demanding money. Florida businesses of all sizes are targets.

2. One Hacker. AI. 600 Firewalls. Five Weeks.

This is the story getting the most attention in cybersecurity circles this week — and it should be getting more attention everywhere else too.

Amazon's chief security officer published a report warning that a single Russian-speaking hacker used commercially available artificial intelligence tools to break into more than 600 Fortinet firewalls across 55 countries in just five weeks. The attacks ran from January 11 through February 18th.

Here's the part that should wake you up: this person didn't use any secret hacking tool or unknown software vulnerabilities. They used AI to automate attacks against firewalls that had weak passwords and no multi-factor authentication. That's it. The AI wrote the attack script. The AI analyzed stolen configuration files. The AI helped plan how to move through the networks once inside. What used to require a team of skilled hackers can now be done by one person with a subscription to an AI service.

What this means for your business: If your firewall or any internet-facing system doesn't have multi-factor authentication and strong, unique passwords, you're a target. This isn't hypothetical anymore.

3. The World's First AI-Powered Android Malware

Researchers just discovered what they're calling the world's first Android malware that uses live AI models during its actual operation. It's called Prompt Spy, and it works by tapping into Google Gemini's AI to help it stay hidden on your phone.

The malware takes a snapshot of whatever is on your screen and sends it to Gemini, which then tells the malware exactly where to tap and swipe to keep itself pinned and running. Once it's on your device, it can watch your screen in real time, steal your lock screen PIN and password, record video of your screen activity, and block you from uninstalling it. The distribution domain researchers found was disguised as a Chase banking website.

Right now, researchers believe it may be mostly a proof of concept — but it is coming.

What to do: Only install apps from the Google Play Store or the Apple App Store. Be extremely cautious of any app that asks for accessibility permissions. If your phone starts behaving strangely, contact a professional immediately.

4. FBI Alert: $20 Million Stolen from ATMs Using Malware

The FBI issued an urgent alert this week revealing that more than $20 million was stolen from American ATMs last year using malware. In over 700 attacks, a technique called jackpotting was used. Criminals physically open ATM maintenance panels using generic keys that are widely available, swap out the hard drive, install malware, and then command the machine to spit out cash. No card needed. No account needed. The bank doesn't even know until the cash is gone.

More than a third of all jackpotting attacks since 2020 happened in 2025 alone.

What this means: This is primarily a problem for financial institutions, but the losses are passed on to everyone. It's also a reminder that cybercrime isn't just happening online — criminals are getting physical to pull off digital crimes.

5. Two Major Financial Data Breaches

Two significant data breaches hit financial institutions this week.

First, a breach at a French national bank account registry exposed the personal account data of 12 million people. Second, US fintech company Figure, which handles home equity loans and other financial products, disclosed a breach affecting nearly one million customer accounts.

When financial data gets stolen, it doesn't disappear. It ends up on the dark web and gets used for identity theft, fraudulent loans, and account takeovers — sometimes months or even years later.

What to do: If you've ever applied for a loan, used a fintech app, or have any financial accounts online, you should be monitoring your credit regularly. There are free tools available to do this. A Faster PC can help you set up credit and identity monitoring as part of a broader cybersecurity plan.

6. North Korean Hackers Infiltrated US Companies Through Fake Remote Workers

A Ukrainian man was sentenced to five years in federal prison this week for helping North Korean IT workers steal real American identities and use them to get hired at US companies, including technology and defense firms. The North Korean workers would apply for remote tech jobs, get hired, collect salaries, and funnel the money back to North Korea, which used it to fund weapons programs. Some of the workers also stole company data.

What this means for business owners: If you hire remote workers, especially for IT and development roles, you need to verify identities carefully. This isn't just fraud — it's a national security issue. A Faster PC can advise Florida businesses on tools and processes to properly vet remote hires.

7. Texas Sues TP-Link Over Chinese Hacking Risk

The state of Texas filed a lawsuit against TP-Link, one of the most popular home and small business router brands in the US, over concerns that the devices could be exploited by Chinese state-sponsored hackers and that the company has been deceptive to customers about the risk.

TP-Link routers are everywhere — in homes, small offices, and schools across the Treasure Coast, Space Coast, and South Florida.

What to do: Watch for firmware updates from the manufacturer and consider whether it's time to evaluate replacing your TP-Link equipment. A Faster PC can help business owners and residential users assess whether their network hardware represents a security risk.

8. Google Blocked 1.75 Million Bad Apps — But Malware Still Gets Through

Here's the good news and bad news combo of the week. The good news: Google blocked 1.75 million apps from the Google Play Store last year for policy violations and prevented 255,000 apps from accessing sensitive data they had no business accessing.

The bad news: a new Android banking malware called Massive is making the rounds right now, disguised as an IPTV streaming app. Once installed, it can steal your banking credentials.

What to do: Only install apps from trusted sources. Check reviews carefully. If an app asks for permissions that seem unrelated to what it does, that's a red flag.

9. Crypto Wallet Owners Are Being Targeted Through the Postal Mail

This one is almost creative, if it weren't so dangerous. Cybercriminals are now sending physical letters in the postal mail to owners of Trezor and Ledger hardware cryptocurrency wallets. The letters look official and warn users that they need to complete an authentication check by a deadline, and include a QR code to scan. That QR code leads to a fake website that asks for the wallet's seed phrase — the master password to the entire crypto wallet. Anyone who enters it loses everything.

What to know: Hardware wallet companies will never ask for your seed phrase. Ever. Not by email, not by text, not by postal mail. If anyone asks for it, it is a scam. Do not enter your seed phrase.

10. Microsoft Copilot Bug Exposed Confidential Emails

Microsoft disclosed a bug this week in its Copilot AI assistant that incorrectly summarized confidential emails, essentially surfacing sensitive content to users who shouldn't have been seeing it. Microsoft says it fixed the problem.

What to do: Review your AI assistant settings and understand what data it has access to. AI tools embedded in your email and productivity software can sometimes behave in unexpected ways and may expose sensitive information.

11. 651 Cybercriminals Arrested Across Africa in Operation Red Card

Here's one for the win column. International law enforcement wrapped up Operation Red Card, arresting 651 cybercrime suspects across Africa and recovering over $4.3 million in stolen funds. The operation targeted investment fraud, mobile money scams, and fake loan applications that had victimized tens of thousands of people.

It's a reminder that cybercrime is global, and so is the fight against it. These operations matter, and they're getting more effective.

12. Action Item: Update Google Chrome Right Now

Google issued an emergency patch this week for a zero-day vulnerability in Google Chrome that has already been actively exploited in real-time attacks. A zero-day threat means hackers were using it before Google even knew about it.

Here's what to do right now:

  1. Open Google Chrome
  2. Click the three dots in the upper right-hand corner
  3. Go to Help, then About Google Chrome
  4. If it is not on the latest version, let it update and then restart

Done. A Faster PC can automate the patching of Windows updates, Google Chrome, Firefox, Adobe Reader, and other programs on your computers so this never falls through the cracks.

The Bottom Line for Florida Businesses

This week was one of the heavier ones we've seen in a while. AI-powered hacking, hospitals shut down, banks breached, phone malware that communicates with AI to hide itself. Cybercriminals are getting smarter, faster, and more automated.

But here's the good news: most of these attacks still succeed because of a few basic, preventable things — weak passwords, no multi-factor authentication, unpatched software or hardware, and people who don't know what to look for.

That's where A Faster PC comes in.

Protect Your Business with A Faster PC

A Faster PC is a managed IT services provider (MSP) serving businesses and individuals across Florida's Treasure Coast, Space Coast, and South Florida — including Port St. Lucie, Stuart, Vero Beach, Melbourne, Fort Lauderdale, and surrounding areas. We work with medical offices, dental offices, accounting offices, law firms, nonprofits, home office users, and small to mid-sized businesses of all kinds.

We can come to your location and run a full cybersecurity audit on your systems to determine whether you're protected. If there are vulnerabilities, we'll propose a customized plan to address them. Our cybersecurity programs are designed to fit your budget and make you more protected starting today.

Call us at 772-878-5978 or visit AFasterPC.com to schedule a free discovery call. We also have a free cybersecurity report available on our website to help you understand the threats that are out there.

Don't wait for an incident. Contact A Faster PC today.

Which story surprised you the most this week? The AI hacker, the hospital shutdown, or the physical mail scam? Leave a comment and let us know.

Watch our YouTube Video and our YouTube Short that cover the threats presented in this blog.

A Faster PC is a leading managed services provider (MSP) serving Florida's Treasure Coast, Space Coast, and South Florida. We provide comprehensive IT support, advanced cybersecurity solutions, patch management, computer repair, and technical support for businesses and individuals throughout the region.

Every week at 10:07 AM EST, A Faster PC hosts A Faster PC Live Technical Support which is a live Radio Show that is livestreamed to YouTube and Facebook and is available as a podcast. For various ways to listen to and watch A Faster PC Live Technical support, visit https://www.afasterpc.com/live-technical-support/.

A Faster PC services the following counties and cities: St. Lucie County including: Port St. Lucie, Fort Pierce, St. Lucie West, Tradition, St. Lucie Village; Martin County including: Stuart, Jensen Beach, Jupiter Island, Ocean Breeze Park, and Sewall's Point; Indian River County: including Vero Beach, Sebastian, Fellsmere, Indian River Shores; Palm Beach County including: Jupiter, Jupiter Inlet Colony, Juno Beach, Tequesta, Palm Beach Gardens, North Palm Beach, Palm Beach Shores, Riviera Beach, West Palm Beach, Wellington, Royal Palm Beach, Greenacres, Lake Worth Beach, Lantana, Boynton Beach, Ocean Ridge, Briny Breezes, Gulf Stream, Delray Beach, Highland Beach, and Boca Raton; Broward County including: Fort Lauderdale, Hollywood, Pompano Beach, Coral Springs, Pembroke Pines, Miramar, Davie, Plantation, Sunrise, Deerfield Beach, Lauderhill, Weston, Tamarac, Coconut Creek, Margate, Lauderdale Lakes, Oakland Park, Hallandale Beach, Cooper City, Wilton Manors, Lighthouse Point, Parkland, Lauderdale-by-the-Sea, Sea Ranch Lakes, Lazy Lake, Hillsboro Beach, Southwest Ranches, North Lauderdale, Dania Beach; Miami-Dade County including: Miami, Miami Beach, Hialeah, Miami Gardens, Coral Gables, Homestead, Doral, North Miami, Aventura, Kendall, Cutler Bay, Sunny Isles Beach, Key Biscayne, Pinecrest, Surfside, Bal Harbour, North Miami Beach, Palmetto Bay, Miami Springs, Opa-locka, Miami Lakes, Florida City, South Miami, Sweetwater, West Miami, Bay Harbor Islands, Biscayne Park, El Portal, Golden Beach, Hialeah Gardens, Indian Creek, Medley, North Bay Village, and Virginia Gardens; and Okeechobee County including: Okeechobee, Taylor Creek, Cypress Quarters, Fort Drum, and Basinger.