⚠️ VULNERABILITY DISCLOSURE 34[−]
4 JunHPE Issues Security Patch for StoreOnce Bug Allowing Remote Authentication BypassHewlett Packard Enterprise (HPE) has released security updates to address as many as eight vulnerabilities in its StoreOnce data backup and deduplication solution that could result in an authentication bypass and remote code execution. "These vulnerabilities could be remotely exp…THEHACKERNEWS.COM
4 JunEmergency Patches, Ransomware Exposes, and Rising QR Code ScamsIn this episode of Cybersecurity Today, host Jim Love discusses the latest urgent security updates and cyber threats. Google has released an emergency Chrome patch to fix a high-severity zero-day vulnerability, while Microsoft issued an emergency patch to resolve Windows 11 boot …CYBERSECURITYTODAY.LIBSYN.COM
4 JunDollyWay World Domination Attack Compromises 20,000+ SitesSince 2016, the “DollyWay World Domination” campaign has quietly compromised more than 20,000 WordPress websites worldwide, exploiting vulnerabilities in plugins and themes to redirect visitors to malicious destinations. The operation’s name comes from a telltale code string foun…GBHACKERS.COM
4 JunCustom Active Directory Extensions Create Stealthy Backdoors for Corporate AttacksActive Directory (AD) Group Policy Objects (GPOs) are a cornerstone of centralized management for Windows environments, enabling administrators to configure operating systems, applications, and user settings across all domain-connected machines. The real work of applying these po…GBHACKERS.COM
4 JunHackers Exploit Ruby Gems to Steal Telegram Tokens and MessagesResearchers have unearthed a sophisticated supply chain attack targeting Ruby Gems, a popular package manager for the Ruby programming language. Malicious actors have infiltrated the ecosystem by embedding backdoors in seemingly legitimate gems, enabling them to steal sensitive T…GBHACKERS.COM
4 JunMicrosoft Defender for Endpoint Prevents Cyberattack,Secures 180,000 DevicesThe modern digital estate is under siege. Over the past 18 months, Microsoft’s threat protection teams have tracked a staggering 275% increase in ransomware encounters, with attackers shifting from broad, random attacks to highly targeted, multi-domain campaigns that exploit uniq…GBHACKERS.COM
4 Jun6 ways CISOs can leverage data and AI to better secure the enterpriseData analytics platforms and the information they contain are among the most important corporate resources CISOs are charged with protecting, but data analytics can also be an effective tool for helping security teams identify and mitigate risks. With artificial intelligence (AI)…CSOONLINE.COM
4 JunThreat Actors Abuse ‘Prove You Are Human’ System to Distribute MalwareThreat actors have been found exploiting the ubiquitous “Prove You Are Human” verification systems to distribute malicious software. Specifically, this campaign leverages spoofed websites mimicking legitimate platforms like Gitcodes and DocuSign to deceive users into …GBHACKERS.COM
4 JunThreat Actor Bribes Overseas Support Agents to Steal Coinbase Customer DataOn May 15, 2025, Coinbase, the largest U.S. cryptocurrency exchange, publicly disclosed a major security breach that exposed the sensitive personal data of 69,461 users—less than 1% of its monthly transacting base, but a significant figure given the depth of information compromis…GBHACKERS.COM
4 JunCybersecurity’s ‘rare earth’ skills: Scarce, high-value, and critical for future defenseRare earths have received a lot of attention this year. Like cybersecurity, they are increasingly considered critical to national security, setting up an interesting comparison of two seemingly disparate items that share several important strategic and geopolitical similarities. …CSOONLINE.COM
4 JunWebinar Today: Redefining Vulnerability Management With Exposure ValidationLearn why your security controls matter more than theoretical risk scores and how exposure validation helps slash massive patch lists down to the few vulnerabilities that truly demand action. The post Webinar Today: Redefining Vulnerability Management With Exposure Validation app…SECURITYWEEK.COM
4 JunMalicious PyPI, npm, and Ruby Packages Exposed in Ongoing Open-Source Supply Chain AttacksSeveral malicious packages have been uncovered across the npm, Python, and Ruby package repositories that drain funds from cryptocurrency wallets, erase entire codebases after installation, and exfiltrate Telegram API tokens, once again demonstrating the variety of supply chain t…THEHACKERNEWS.COM
4 Jun35,000 Internet-Connected Solar Power Systems Vulnerable to CyberattacksForescout Research Vedere Labs has uncovered that nearly 35,000 solar power devices, including inverters, data loggers, and gateways from 42 vendors, are exposed on the internet with vulnerable management interfaces. Identified using the Shodan search engine, these devices repres…GBHACKERS.COM
4 JunCISA warns of ConnectWise ScreenConnect bug exploited in attackssubmitted by kid to cybersecurity 1 points | 0 comments https://www.bleepingcomputer.com/news/security/cisa-warns-of-connectwise-screenconnect-bug-exploited-in-attacks/SH.ITJUST.WORKS
4 JunWindows Authentication Coercion Attacks Present Major Risks to Enterprise NetworksAuthentication coercion remains a potent attack vector in Windows environments, enabling attackers with even low-privileged domain accounts to force targeted systems, often high-value servers or domain controllers, to authenticate to attacker-controlled hosts. This technique is c…GBHACKERS.COM
4 JunVendor email compromise: The silent $300M threat CISOs can’t ignoreVendor email compromise (VEC) attacks are bypassing traditional defenses by exploiting human trust rather than technical vulnerabilities, according to a new report by Abnormal AI. The data in the report shows that 72% of employees at large enterprises engaged with fraudulent vend…CSOONLINE.COM
4 JunYour SaaS Data Isn't Safe: Why Traditional DLP Solutions Fail in the Browser EraTraditional data leakage prevention (DLP) tools aren't keeping pace with the realities of how modern businesses use SaaS applications. Companies today rely heavily on SaaS platforms like Google Workspace, Salesforce, Slack, and generative AI tools, significantly altering the way …THEHACKERNEWS.COM
4 JunGoogle Warns of Vishing, Extortion Campaign Targeting Salesforce CustomersA financially motivated threat actor employing vishing to compromise Salesforce customers, and extort them. The post Google Warns of Vishing, Extortion Campaign Targeting Salesforce Customers appeared first on SecurityWeek .SECURITYWEEK.COM
4 JunGoogle: Hackers target Salesforce accounts in data extortion attacksGoogle has observed hackers claiming to be the ShinyHunters extortion group conducting social engineering attacks against multi-national companies to steal data from organization's SalesForce platforms. [...]BLEEPINGCOMPUTER.COM
4 JunKerberos AS-REP roasting attacks: What you need to knowThink your passwords are strong enough? AS-REP Roasting is back in the spotlight — and it's targeting weak spots in Active Directory. Learn more from Specops Software how attackers exploit missing Kerberos pre-auth and how to stop them with strong password policies. [...]BLEEPINGCOMPUTER.COM
4 JunHacker targets other hackers and gamers with backdoored GitHub codeA hacker targets other hackers, gamers, and researchers with exploits, bots, and game cheats in source code hosted on GitHub that contain hidden backdoors to give the threat actor remote access to infected devices. [...]BLEEPINGCOMPUTER.COM
4 JunHackers use Vishing to breach Salesforce customers and swipe dataIn an active campaign, a financially motivated threat actor is voice phishing (Vishing) Salesforce customers to compromise their organizational data and carry out subsequent extortion. Tracked as UNC6040 by Google Threat Intelligence Group (GTIG), the threat actor group targets e…CSOONLINE.COM
4 JunChaos RAT Malware Targets Windows and Linux via Fake Network Tool DownloadsThreat hunters are calling attention to a new variant of a remote access trojan (RAT) called Chaos RAT that has been used in recent attacks targeting Windows and Linux systems. According to findings from Acronis, the malware artifact may have been distributed by tricking victims …THEHACKERNEWS.COM
4 JunGoogle Exposes Vishing Group UNC6040 Targeting Salesforce with Fake Data Loader AppGoogle has disclosed details of a financially motivated threat cluster that it said "specialises" in voice phishing (aka vishing) campaigns designed to breach organizations' Salesforce instances for large-scale data theft and subsequent extortion. The tech giant's threat intellig…THEHACKERNEWS.COM
4 JunDCRat Targets Latin American Users to Steal Banking CredentialsIBM X-Force has uncovered a series of targeted email campaigns orchestrated by Hive0131, a financially motivated threat group likely originating from South America. Observed in early May 2025, these campaigns specifically target users in Colombia, masquerading as official notific…GBHACKERS.COM
4 JunNews alert: $198K in Grants Awarded to Boost Cybersecurity Workforce in MassachusettsBoston, MA, Jun. 4, 2025, – The Healey-Driscoll administration and Massachusetts Technology Collaborative’s (MassTech) MassCyberCenter awarded $198,542 to four Massachusetts-based programs focused on preparing professionals for the cybersecurity workforce. MassTech provided the f…LASTWATCHDOG.COM
4 JunFBI warns of NFT airdrop scams targeting Hedera Hashgraph walletsThe FBI is warning about a new scam where cybercriminals exploit NFT airdrops on the Hedera Hashgraph network to steal crypto from cryptocurrency wallets. [...]BLEEPINGCOMPUTER.COM
4 JunThreat Actors Exploit Malware Loaders to Circumvent Android 13+ Accessibility SafeguardsThreat actors have successfully adapted to Google’s stringent accessibility restrictions introduced in Android 13 and later versions. These safeguards, rolled out in May 2022, were designed to prevent malicious applications from abusing accessibility services by blocking such acc…GBHACKERS.COM
4 JunCrowdStrike’s former CTO on cyber rivalries and how automation can undermine security for early-stage startups“One of the biggest vulnerabilities in companies is actually humans,” Crowdstrike co-founder and former CTO Dmitri Alperovitch told TechCrunch in this week’s episode of Equity. “The more you automate, the more opportunities there are for people to find vulnerabilities in your sys…TECHCRUNCH.COM
4 JunBidenCash carding market domains seized in international operationEarlier today, law enforcement seized multiple domains of BidenCash, the infamous dark web market for stolen credit cards, personal information, and SSH access. [...]BLEEPINGCOMPUTER.COM
4 JunExploiting Clickfix: AMOS macOS Stealer Evades Security to Deploy Malicious CodeA newly uncovered campaign involving an Atomic macOS Stealer (AMOS) variant has emerged, showcasing the evolving sophistication of multi-platform social engineering attacks. This campaign, discovered during routine attacker infrastructure analysis, leverages typo-squatted domains…GBHACKERS.COM
4 JunCisco warns of ISE and CCP flaws with public exploit codeCisco has released patches to address three vulnerabilities with public exploit code in its Identity Services Engine (ISE) and Customer Collaboration Platform (CCP) solutions. [...]BLEEPINGCOMPUTER.COM
4 JunUpdated Guidance on Play RansomwareCISA, the Federal Bureau of Investigation (FBI), and the Australian Signals Directorate’s Australian Cyber Security Centre (ASD’s ACSC) have issued an updated advisory on Play ransomware , also known as Playcrypt. This advisory highlights new tactics, techniques, and procedures u…CISA.GOV
4 JunMultiple Vulnerabilities in HPE StoreOnce Software Could Allow for Remote Code ExecutionMultiple Vulnerabilities have been discovered in HPE StoreOnce Software, which when chained together could allow for remote code execution, potentially leading to session hijacking and full system compromise. HPE StoreOnce is a data protection platform from Hewlett Packard Enterp…CISECURITY.ORG
📋 SECURITY BULLETINS 2[−]
4 JunIBM QRadar Vulnerabilities Expose Sensitive Configuration Files to AttackersIBM has issued a security bulletin highlighting multiple vulnerabilities in its QRadar Suite Software and Cloud Pak for Security platforms. The flaws, which range from medium to critical severity, could enable attackers to compromise sensitive data, execute arbitrary code, or dis…GBHACKERS.COM
4 JunGoogle addresses 34 high-severity vulnerabilities in June’s Android security update | CyberScoopsubmitted by kid to cybersecurity 2 points | 0 comments https://cyberscoop.com/android-security-update-june-2025/SH.ITJUST.WORKS
📢 SECURITY ADVISORIES 6[−]
4 JunDobrindt will aufrüsten gegen CyberkriminelleBundesinnenminister Alexander Dobrindt will stärker gegen Cyberkriminalität vorgehen. Max Acronym – shutterstock.com Bundesinnenminister Alexander Dobrindt (CSU) hat Maßnahmen angekündigt, um Cyberkriminalität künftig effektiver bekämpfen zu können. “Wir rüsten massiv auf: rechtl…CSOONLINE.COM
4 JunUkraine claims it hacked Tupolev, Russia’s strategic warplane makerThe Main Intelligence Directorate (GUR) of Ukraine's Ministry of Defense claims it hacked the Russian aerospace and defense company Tupolev, which develops Russia's supersonic strategic bombers. [...]BLEEPINGCOMPUTER.COM
4 JunFBI: Play ransomware breached 900 victims, including critical orgsIn an update to a joint advisory with CISA and the Australian Cyber Security Centre, the FBI said that the Play ransomware gang had breached roughly 900 organizations as of May 2025, three times the number of victims reported in October 2023. [...]BLEEPINGCOMPUTER.COM
🔥 INCIDENT REPORTING 12[−]
4 JunVictoria’s Secret Says It Will Postpone Earnings Report After Recent Security BreachVictoria’s Secret is postponing the release of its quarterly earnings following a security breach that disrupted the popular lingerie brand’s corporate operations. The post Victoria’s Secret Says It Will Postpone Earnings Report After Recent Security Breach appeared first o…SECURITYWEEK.COM
4 JunEPA breach claims lack teeth, researchers say | Cybernewssubmitted by kid to cybersecurity 1 points | 0 comments https://cybernews.com/news/epa-data-breach-claims-lack-evidence/SH.ITJUST.WORKS
4 JunCoinbase breach tied to bribed TaskUs support agents in Indiasubmitted by kid to cybersecurity 1 points | 0 comments https://www.bleepingcomputer.com/news/security/coinbase-breach-tied-to-bribed-taskus-support-agents-in-india/SH.ITJUST.WORKS
4 JunThe Rising Tide: Understanding the Surge in Cyber Attacks in Indiasubmitted by kid to cybersecurity 2 points | 0 comments https://www.tripwire.com/state-of-security/rising-tide-understanding-surge-cyber-attacks-indiaSH.ITJUST.WORKS
4 JunMedia giant Lee Enterprises says data breach affects 39,000 peoplePublishing giant Lee Enterprises is notifying over 39,000 people whose personal information was stolen in a February 2025 ransomware attack. [...]BLEEPINGCOMPUTER.COM
4 JunNew Eleven11bot Hacks 86,000 IP Cameras for Large-Scale DDoS AttackThe newly identified Eleven11bot malware has compromised over 86,000 IP cameras across the Asia-Pacific (APAC) region, transforming these devices into a massive botnet for launching large-scale Distributed Denial of Service (DDoS) attacks. This incident, detailed in the Q1 2025 D…GBHACKERS.COM
4 JunData breach at newspaper giant Lee Enterprises affects 40,000 peopleThe ransomware attack paralyzed newspaper printing and disrupted operations at media outlets across the country for weeks.TECHCRUNCH.COM
4 JunSCATTERED SPIDER Hackers Target IT Support Teams & Bypass Multi-Factor AuthenticationA cybercriminal group known as SCATTERED SPIDER has emerged as a formidable threat, targeting sectors like hospitality, telecommunications, finance, and retail with unprecedented sophistication. This group, active since at least 2022, differentiates itself from traditional ransom…GBHACKERS.COM
4 JunThe Pregnancy That Hacked Biometrics 😨When a military contractor’s iris scan suddenly failed, no one expected pregnancy to be the reason. In this jaw-dropping short, cybersecurity pros recount the real story of how a woman’s biometric access was denied—because her body changed after conception. The craziest part? She…YOUTUBE.COM
4 JunRansomware gang claims responsibility for Kettering Health hackA group of cybercriminals known as Interlock is advertising stolen data from Kettering Health, which includes patients’ data.TECHCRUNCH.COM
4 JunHacker arrested for breaching 5,000 hosting accounts to mine cryptoThe Ukrainian police arrested a 35-year-old hacker who breached 5,000 accounts at an international hosting company and used them to mine cryptocurrency, resulting in $4.5 million in damages. [...]BLEEPINGCOMPUTER.COM
4 JunMedia giant Lee Enterprises says data breach affects 39,000 peoplesubmitted by kid to cybersecurity 2 points | 0 comments https://www.bleepingcomputer.com/news/security/media-giant-lee-enterprises-says-data-breach-affects-39-000-people/SH.ITJUST.WORKS
🕵️ THREAT INTELLIGENCE 32[−]
4 JunISC Stormcast For Wednesday, June 4th, 2025 https://isc.sans.edu/podcastdetail/9478, (Wed, Jun 4th)(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.ISC.SANS.EDU
4 JunTrustifi Raises $25 Million for AI-Powered Email SecurityTrustifi has raised $25 million in Series A funding to accelerate its product roadmap and go-to-market initiatives. The post Trustifi Raises $25 Million for AI-Powered Email Security appeared first on SecurityWeek .SECURITYWEEK.COM
4 JunFake DocuSign, Gitcode Sites Spread NetSupport RAT via Multi-Stage PowerShell Attacksubmitted by cm0002 to cybersecurity 1 points | 0 comments https://thehackernews.com/2025/06/fake-docusign-gitcode-sites-spread.htmlINFOSEC.PUB
4 JunThreatBook Selected In The First-ever Gartner® Magic Quadrant™ For Network Detection And Response (NDR)Beijing, China, June 4th, 2025, CyberNewsWire After nearly a year of research and evaluation, Gartner released the first “Magic Quadrant for Network Detection and Response” report on May 29, ThreatBook became the only Chinese company selected. As enterprises accelerat…GBHACKERS.COM
4 Jun35,000 Solar Power Systems Exposed to InternetResearchers from Forescout have analyzed the prevalence of internet-exposed solar power devices and shared a list of the top vendors and devices. The post 35,000 Solar Power Systems Exposed to Internet appeared first on SecurityWeek .SECURITYWEEK.COM
4 JunRegain Control of Business Risks, Your Leadership Habits, and Being Present - Alla Val... - BSW #398During times of volatility, business leaders often don’t know what they are able to change or even what they should change. At precisely these times, business leaders become risk leaders and need to quickly learn how to identify what is within their control and what isn’t — to no…YOUTUBE.COM
4 JunThousands Hit by The North Face Credential Stuffing AttackThreat actors steal personal information from thenorthface.com user accounts in a recent credential stuffing campaign. The post Thousands Hit by The North Face Credential Stuffing Attack appeared first on SecurityWeek .SECURITYWEEK.COM
4 JunNew Crocodilus Malware Grants Full Control Over Android DevicesThe Mobile Threat Intelligence (MTI) team identified a formidable new player in the mobile malware landscape: Crocodilus, an Android banking Trojan designed for device takeover. Initially observed in test campaigns with limited live instances, this malware has rapidly evolved, de…GBHACKERS.COM
4 JunNew Malware Attack Uses Malicious Chrome & Edge Extensions to Steal Sensitive DataCybersecurity experts from Positive Technologies’ Security Expert Center have uncovered a sophisticated malicious campaign dubbed “Phantom Enigma,” primarily targeting Brazilian residents while also affecting organizations worldwide. This campaign employs a dual-attac…GBHACKERS.COM
4 JunWireshark Certified Analyst – Wireshark Released Official Certification for Security ProfessionalsThe Wireshark Foundation has officially launched the Wireshark Certified Analyst (WCA-101) certification, marking a significant milestone for IT professionals and network engineers worldwide. Designed by Wireshark’s developers and leading protocol experts, the WCA-101 exam is tai…GBHACKERS.COM
4 JunThreatSpike Raises $14 Million in Series A FundingEnd-to-end cybersecurity provider ThreatSpike has raised $14 million in a Series A funding round led by Expedition Growth Capital, after being bootstrapped for 14 years. Founded in 2011, the London-based firm provides real-time detection and response and penetration testing capab…SECURITYWEEK.COM
4 JunThe Ramifications of Ukraine’s Drone AttackYou can read the details of Operation Spiderweb elsewhere. What interests me are the implications for future warfare: If the Ukrainians could sneak drones so close to major air bases in a police state such as Russia, what is to prevent the Chinese from doing the same with U.S. ai…SCHNEIER.COM
4 JunRamnit Malware Infections Spike in OT as Evidence Suggests ICS ShiftIndustrial giant Honeywell has published its 2025 Cybersecurity Threat Report with information on the latest trends. The post Ramnit Malware Infections Spike in OT as Evidence Suggests ICS Shift appeared first on SecurityWeek .SECURITYWEEK.COM
4 JunAPT37 Hackers Fake Academic Forum Invites to Deliver Malicious LNK Files via Dropbox PlatformThe North Korean state-sponsored hacking group APT37 has launched a sophisticated spear phishing campaign in March 2025, targeting activists focused on North Korean issues. Disguised as invitations to an academic forum hosted by a South Korean national security think tank, these …GBHACKERS.COM
4 JunCompyl Raises $12 Million for GRC PlatformCompyl has raised $12 million in a Series A funding round that will be invested in go-to-market initiatives, hirings, and GRC platform expansion. The post Compyl Raises $12 Million for GRC Platform appeared first on SecurityWeek .SECURITYWEEK.COM
4 JunOver 8M records with US patients' data leaked | Cybernewssubmitted by kid to cybersecurity 3 points | 0 comments https://cybernews.com/security/dental-marketing-gargle-data-leak/SH.ITJUST.WORKS
4 Jun1,000 Instantel Industrial Monitoring Devices Possibly Exposed to Hacking - SecurityWeeksubmitted by kid to cybersecurity 1 points | 0 comments https://www.securityweek.com/1000-instantel-industrial-monitoring-devices-possibly-exposed-to-hacking/SH.ITJUST.WORKS
4 JunTwitter launches 'XChat' encrypted DMs with big caveats • The Registersubmitted by kid to cybersecurity 3 points | 0 comments https://www.theregister.com/2025/06/03/xs_new_encrypted_xchat_feature/SH.ITJUST.WORKS
4 JunMeta and Yandex are de-anonymizing Android users’ web browsing identifiers - Ars Technicasubmitted by kid to cybersecurity 1 points | 0 comments https://arstechnica.com/security/2025/06/meta-and-yandex-are-de-anonymizing-android-users-web-browsing-identifiers/SH.ITJUST.WORKS
4 JunXSSing TypeErrors in Safari - The Spannersubmitted by kid to cybersecurity 1 points | 0 comments https://thespanner.co.uk/xssing-typeerrors-in-safariSH.ITJUST.WORKS
4 JunGoing Into the Deep End: Social Engineering and the AI FloodAI is transforming the cybersecurity landscape—empowering attackers with powerful new tools while offering defenders a chance to fight back. But without stronger awareness and strategy, organizations risk falling behind. The post Going Into the Deep End: Social Engineering and th…SECURITYWEEK.COM
4 JunMalicious ‘Sleeper Agent’ Browser Extensions Infected 1.5 Million Users GloballyLayerX, a cybersecurity firm, has uncovered a sophisticated network of malicious browser extensions, dubbed “sleeper agents,” that are currently installed on nearly 1.5 million devices worldwide. These extensions, masquerading as legitimate in-browser sound management tools, are …GBHACKERS.COM
4 JunAembit Recognized on the 2025 Rising in Cyber List of Top Cybersecurity StartupsAembit, the workload identity and access management (IAM) company, today announced its inclusion in Rising in Cyber 2025, an independent list launched by Notable Capital to spotlight the 30 most promising cybersecurity startups shaping the future of security. Unlike traditional r…GBHACKERS.COM
4 JunThe “Stiff Arm” Keeping CISOs Out of the BoardroomIn this explosive short, cybersecurity veteran Ben Carr drops a truth bomb: despite the growing importance of cyber defense, many boardrooms are still pushing CISOs away. It’s not just a lack of understanding—it’s a cultural wall. With references to industry groups like NACD and …YOUTUBE.COM
4 JunTnok – Next Generation Port Securitysubmitted by seanlaplante to cybersecurity 1 points | 0 comments https://www.ainfosec.com/tnok-next-generation-port-securitySH.ITJUST.WORKS
4 JunLumma Infostealer Developers Persist in Their Malicious ActivitiesA coordinated operation by Europol, the FBI, Microsoft, and other public and private sector partners targeted the Lumma infostealer, a prolific malware distributed via a malware-as-a-service (MaaS) model. Known for stealing credentials and being a tool of choice for notorious cyb…GBHACKERS.COM
4 JunWhat are You Working on Wednesdaysubmitted by shellsharks to cybersecurity 1 points | 0 comments Weekly thread to discuss whatever you’re working on, big or small, at work or in your free time.INFOSEC.PUB
4 JunEnterprise Wealth Is Changing Hands. Are We Secure? 🧠 #shortsAs enterprise wealth shifts to younger generations, cybersecurity faces a new challenge. In this short, Jackie McGuire breaks down why 65% of enterprise money will soon be controlled by professionals under 45—and what that means for risk, leadership, and the future of cyber defen…YOUTUBE.COM
4 JunCyberRiskTV Live Coverage from Identiverse 2025 - Day 2CyberRisk Alliance's Security Weekly broadcasting live from the CyberRiskTV Studio on the show floor at Identiverse 2025 at Mandalay Bay in Las Vegas! Schedule (PT): 12:10pm - The Identity Security Paradox ft. John Pritchard, CEO at Radiant Logic 12:30pm - LUNCH BREAK 1:40pm - Fr…YOUTUBE.COM
4 JunLinux Doesn’t Care About Your Feelings 💀When Paul tried swapping out his bootloader on Manjaro, things got real. Most OS platforms beg you not to touch critical files—Windows won't even let you uninstall Edge. But Linux? It hands you the grenade and says, “Pull the pin.” In this hilarious clip, cybersecurity pros joke …YOUTUBE.COM
4 Jun"Users Are the Weakest Link" — True or Just Convenient?In this quick yet thought-provoking short, cybersecurity experts Adrian Sanabria and Sean Metcalf break down one of the most controversial beliefs in the industry: are users truly the weakest link, or is that just a convenient excuse security teams tell themselves? Based on real …YOUTUBE.COM
4 JunHacker targets other hackers and gamers with backdoored GitHub codesubmitted by kid to cybersecurity 2 points | 0 comments https://www.bleepingcomputer.com/news/security/hacker-targets-other-hackers-and-gamers-with-backdoored-github-code/SH.ITJUST.WORKS
🌐 CYBER THREAT LANDSCAPE 2[−]
4 JunThe strange tale of ischhfd83: When cybercriminals eat their ownA simple customer query leads to a rabbit hole of backdoored malware and game cheatsSOPHOS.COM
4 JunRisky Business #794 -- Psychic Panda outgunned by Fluffy Lizard and UNC56728242On this week’s show Patrick Gray and Adam Boileau discuss the week’s cybersecurity news: Cyber firms agree to deconflict and cross-reference hacker group names Russian nuclear facility blueprints gathered from public procurement websites Someone audio deepfaked the White House Ch…RISKY.BIZ
📡 INFOSEC NEWS 6[−]
4 JunPhishing e-mail that hides malicious link from Outlook users, (Wed, Jun 4th)I recently came across an interesting phishing e-mail. At first glance, it looked like a “normal†phishing that tried to pass itself off as a message from one of the Czech banks asking account holders to update their information ISC.SANS.EDU
4 JunScammers are promising compensation from a bank | Kaspersky official blogIn a deepfake newscast, AI-generated journalists and senior government officials are promising compensation from a bank to every citizen of the country. What's the catch?KASPERSKY.COM
4 JunThink Your Company is Secure? Think Again… 😬Most companies think they have cybersecurity figured out—until they realize they’re protecting the wrong assets. 🔥 While IT teams focus on hardware and infrastructure, the real treasure lies in data—the most valuable asset of all. Yet, so many organizations fail to recognize this…YOUTUBE.COM
4 JunA Sexy SOC Won’t Save You! Here’s Why… 🚨Most companies spend millions on flashy Security Operations Centers (SOCs) filled with blinking lights and high-tech dashboards—but are they actually protecting anything? 🤔 In this eye-opening short, cybersecurity experts reveal why a “sexy SOC” won’t save a business from real th…YOUTUBE.COM
4 JunMicrosoft unveils free EU cybersecurity program for governmentsMicrosoft announced in Berlin today a new European Security Program that promises to bolster cybersecurity for European governments. [...]BLEEPINGCOMPUTER.COM
4 JunDriving Success on the Track or in the BoardroomDiscover how the Trend Micro and the NEOM McLaren Formula E Team partnership is powered by a common vision for winning, on the track and in the boardroom.TRENDMICRO.COM