CyberHoot Newsletter – April 2025

16th April 2025 | Blog, Newsletters

Welcome to CyberHoot’s April Newsletter!

Spring may be in full bloom, but in the digital world, threat actors are flourishing with equal intensity.

This month, we’re diving into the Medusa Ransomware group’s latest evasion tactic—deploying a malicious kernel driver that can disable security tools and operate undetected. We review Polymorphic Extensions, a stealthy new threat that mimics legitimate browser add-ons with the ability to change its skin to look like common password managers (and steal your secret key!). Finally, we take a closer look at EncryptHub, a rising star in the Malware-as-a-Service ecosystem, offering professional-grade attack kits to cybercriminals around the globe.

As threats grow smarter and more accessible, staying informed is your first line of defense.

Customer Spotlight

Liking CyberHoot? We need your help. Please leave us a review using the links below!

TrustPilot.com | G2.com | Capterra.com | Google.com | TrustRadius.com | Gartner.com

-Gartner

For more information on how to leave a CyberHoot review, please watch the brief video overviews below. Note: to avoid fraudulent reviews, each review website will require to you to create and validate your identity through an email account registration process.

CyberHoot Awarded Badges From G2

Cybrary Term of the Month

Malicious URL

A Malicious URL is a link created with the purpose of promoting scams, attacks, and fraud. By clicking on an infected URL, you may download malware or a trojan that can take control of your device, or you might be persuaded into providing personal information on a fake website such as your username and password. Malicious URLs are often seen embedded in phishing attacks, tricking users into clicking on the link(s). Hackers use techniques like “typosquatting” to make malicious URLs look legitimate. For example, the URL is r n icrosoft.com rather than microsoft.com can be used to trick users due to it looking legitimate at a glance.

Click here to read more!

Explore CyberHoot’s Extensive 950+ Term Cybersecurity Library

Recently Added Features

General Release Notes

Updated my assignments and email footers to work with disabling settings.
Fixed issue where Entra ID and Google sync would overwrite local managers.
Added email notifications to user logs.
Added in support for Norwegian Bokmål language.
Added settings to Autopilot and API to allow admins to disable my assignments portal and email footers at the partner level.
Updated automatic mode assignments to assign fall foundational videos + past 1 day of active assignments + 1 most recent HootPhish training instead of assigning foundational videos + past 100 days of active assignments.
Updated user exposure emails with a button that takes the user directly to their exposures tab in my assignments.
Updated HootPhish challenge in Power to allow start and end dates to run based on time instead of day.
Updated sync settings for Google in Power and Autopilot with ‘Exclude suspended users’ option.
Added the ability to preview messages in the custom messaging PowerUp.
Added the ability to download and email AttackPhish summary reports from Autopilot.
Added free trial note to customers dashboard in Autopilot and redesigned the dashboard to put each customer in a card instead of an icon.
Removed recipient requirement from Cybersecurity Summary Report in Power and Autopilot/Custom Messaging PowerUp so admins can disable the report.
Added in the all recipients toggles to the Partner & Customer Recipient(s) under Scheduled Report Settings in Power.
Added a new setting to custom reporting PowerUp that will allow admins to disable auto-generated reports without overwriting any saved settings.
Updated HootPhish explanation video on instructions & results pages as well as the link in instruction messaging.

Watch our CyberHoot CEO Craig Taylor Featured on The FedNinjas Podcast!

New Feature Alert: HootPhish Challenge

Set up a HootPhish Challenge to Test your Phishing Knowledge in a Fun Game

Enroll in CyberHoot’s Referral Program today and start earning a 20% share of all revenue generated for one year by those who register through your exclusive referral link. As a referral partner, not only will you receive financial rewards, but you’ll also experience the satisfaction of aiding others in becoming more security-conscious, safeguarding them against cyber threats. Don’t hesitate, sign up now at https://cyberhoot.com/referral-program/.

Referral through Autopilot’s Dashboard:

Join CyberHoot in our mission to create a more aware and better secured world! Recommend CyberHoot Autopilot to a friend, and they will enjoy a complimentary first month. For every new sign up who uses your referral link, you will receive a free month added to your account. This offer is exclusively for first-time CyberHoot registrants.

CyberHoot has Free Introductory Cyber Literacy Classes

Know someone who had a close call recently with a cyber attack, phishing email, or social engineering phone call? Recommend CyberHoot’s free Cyber Literacy 101 training. They’ll receive six (6) videos (each video is 3-4min.) and one of our positive reinforcement, hyper-realistic, phishing simulations. All for free.

Registration: https://cyberhoot.com/individuals