The IT Dispatch–Issue #2 (April 2, 2025)
April 2, 2025 | Essential IT and Security Updates
🚨 Security & Risk Management
Ex-GCHQ Intern Admits to Data Breach Compromising National Security
Hasaan Arshad, a former intern at GCHQ, pleaded guilty to violating the Computer Misuse Act by transferring sensitive data from a top-secret workstation to personal devices. This breach underscores the critical need for stringent data-handling policies within organizations.
EU Proposes Enhanced Police Powers to Counter Foreign Threats
The European Commission plans to introduce a new internal security strategy to strengthen EU policing capabilities against foreign threats, particularly hybrid attacks linked to criminal networks. Proposed measures include extending sanctions to target these networks and enhancing law enforcement access to banking transactions and online data.
🖥️ Hardware & Infrastructure
Microsoft Announces Upcoming End-of-Support Dates for Key Products
Microsoft has released a schedule for the retirement or end of servicing/support for several products in 2025. Notable dates include the end of Windows 10 Enterprise and Education support on October 14, 2025. IT managers should review these timelines to plan upgrades and ensure continued support.
11 Essential Podcasts for It Leaders To Listen on the Go
These cover topics like emerging tech, cybersecurity, leadership, and team management. These shows offer practical insights to help CIOs and IT managers stay informed, strategic, and effective as technology becomes increasingly central to business success. Great for on-the-go learning.
🛡️ Patching & Vulnerability Watch
Microsoft Releases March 2025 Security Updates
Microsoft's March 2025 Patch Tuesday addressed 57 vulnerabilities, including six critical remote code execution flaws. IT administrators are advised to apply these updates promptly to maintain system security.
Adobe Released a Security Update on February 11, 2025 (APSB25-08)
Adobe has released a security advisory addressing multiple vulnerabilities in Adobe Commerce and Magento Open Source, classified as critical, meaningful, and moderate.
These issues could enable attackers to execute arbitrary code, bypass security mechanisms, or escalate privileges. Affected versions include 2.4.8-beta1 and earlier, as well as patched versions up to 2.4.7-p3, 2.4.6-p8, 2.4.5-p10, and 2.4.4-p11.
Users are strongly urged to apply the latest security updates to minimize risk immediately. An isolated patch for CVE-2025-24434 is also available for urgent remediation. Adobe Support is here to help with any update-related complications.
Recommended by LinkedIn
🤖 AI & Emerging Tech
Microsoft Enhances M365 Copilot with New Features
Microsoft has introduced several updates to M365 Copilot, including adding an AI Admin role with permissions to manage Copilot agents. These enhancements aim to improve administrative control and user experience within the platform.
NIST Releases Draft Guidelines for API Protection in Cloud-Native Systems
NIST has published the initial public draft of Special Publication 800-228, offering guidelines for API protection in cloud-native environments. During the public comment period, stakeholders are encouraged to review and provide feedback.
🧩 Quick Hits
FBI Warns Gmail & Outlook Users of Ransomware Threats
The FBI and other agencies released a joint Cybersecurity Advisory warning users of Gmail, Outlook, and various VPN services about ransomware attacks spreading across different industries, which have already impacted a few hundred victims.
NiCE Releases VMware Management Pack 5.8
NiCE has launched version 5.8 of its VMware Management Pack, offering comprehensive support for VMware vSphere versions 8.0.1, 8.0.2, and 8.0.3, ensuring seamless compatibility with the latest advancements in virtualization technology.
SUSECON '25 Highlights Expansion of Open Source in Cloud
SUSECON '25 emphasized the expansion of open-source solutions in cloud environments, showcasing innovations and collaborations that are shaping the future of cloud computing.
World Backup Day 2025 Emphasizes Data Protection Strategies
World Backup Day highlighted the importance of consistently backing up data to avoid potential loss due to hardware failure, ransomware, or other threats. Experts stressed the benefits of cloud backup services and the 3-2-1 backup strategy.