91Articles
8Categories
2025-06-06Date
🚨 CISA KEV 1[−]
6 Jun KEVU.S. CISA adds Google Chromium V8 flaw to its Known Exploited Vulnerabilities catalogsubmitted by kid to cybersecurity 1 points | 0 comments https://securityaffairs.com/178678/security/u-s-cisa-google-chromium-v8-flaw-known-exploited-vulnerabilities-catalog.htmlSH.ITJUST.WORKS
🐛 COMMON VULNERABILITIES AND EXPOSURES 6[−]
6 JunHackers Exploit Roundcube Vulnerability to Steal User Credentials via XSS AttackA recent spearphishing campaign targeting Polish entities has been attributed with high confidence to the UNC1151 threat actor, a group linked to Belarusian state interests and, according to some sources, Russian intelligence services. CERT Polska reports that the attackers lever…GBHACKERS.COM
6 JunPoC Exploit Released for Apache Tomcat DoS VulnerabilityA critical memory leak vulnerability in Apache Tomcat’s HTTP/2 implementation (CVE-2025-31650) has been weaponized, enabling unauthenticated denial-of-service attacks through malformed priority headers. The flaw affects Tomcat versions 9.0.76–9.0.102, 10.1.10–10.1.39, and 11.0.0-…GBHACKERS.COM
6 JunCritical FreeRTOS-Plus-TCP Flaw Allows Code Execution or System CrashA critical memory corruption vulnerability, tracked as CVE-2025-5688, has been disclosed in FreeRTOS-Plus-TCP, Amazon’s open-source TCP/IP stack widely used in embedded and IoT devices. The flaw, rated 8.4 (High) on the CVSS scale, is rooted in how the stack processes Link-Local …GBHACKERS.COM
6 JunCritical RCE Vulnerability in AWS Amplify Studio – PoC Now PublicIn May 2025, AWS disclosed a critical remote code execution (RCE) vulnerability, CVE-2025-4318, in the @aws-amplify/codegen-ui package—a core dependency for AWS Amplify Studio’s UI code generation pipeline. The flaw, rated 9.5 on the CVSS scale, stemmed from improper input valida…GBHACKERS.COM
6 JunNew Mirai Variant Exploits TBK DVR Flaw for Remote Code ExecutionThe latest wave of Mirai botnet activity has resurfaced with a refined attack chain exploiting CVE-2024-3721, a critical command injection vulnerability in TBK DVR-4104 and DVR-4216 devices. This campaign leverages unpatched firmware to deploy a modified Mirai variant designed fo…GBHACKERS.COM
6 Jun KEVMicrosoft Unveils European Security Effort to Disrupt Cybercrime NetworksA critical heap-based buffer overflow vulnerability, tracked as CVE-2025-24993, has been discovered in the Windows New Technology File System (NTFS), posing a significant threat to millions of Windows users globally. The flaw, patched during Microsoft’s March 2025 Patch Tuesday, …GBHACKERS.COM
⚠️ VULNERABILITY DISCLOSURE 30[−]
6 JunCISA asks CISOs: Does that asset really have to be on the internet?The US Cybersecurity and Infrastructure Security Agency (CISA) this week issued guidance to infosec pros on ways they can find insecure IT and OT systems, including servers, databases, sensors, switches, routers, and industrial control systems, and shield them from the public int…CSOONLINE.COM
6 JunCyber Extortion, Ukraine's Cyber Offensive, and Chrome Trust Shake-upCybersecurity Today, hosted by Jim Love, delves into the latest in cyber threats. Cyber criminals have breached 20 organizations via convincing fake IT support calls, targeting Salesforce data for extortion. Ukraine's intelligence claims a significant cyber operation against Russ…CYBERSECURITYTODAY.LIBSYN.COM
6 JunPaste.ee Turned Cyber Weapon: XWorm and AsyncRAT Delivered by Malicious ActorsThe widespread text-sharing website Paste.ee has been used as a weapon by bad actors to spread powerful malware strains like XWorm and AsyncRAT, which is a worrying trend for cybersecurity professional. This tactic represents a significant shift in phishing and malware delivery s…GBHACKERS.COM
6 JunBADBOX 2.0 Malware Hits Over a Million Android Devices in Global Cyber ThreatHUMAN’s Satori Threat Intelligence and Research team, in collaboration with Google, Trend Micro, and Shadowserver, has uncovered and partially disrupted a massive cyber fraud operation named BADBOX 2.0. This operation, an evolved iteration of the original BADBOX malware disclosed…GBHACKERS.COM
6 JunPolice arrests 20 suspects for distributing child sexual abuse contentLaw enforcement authorities from over a dozen countries have arrested 20 suspects in an international operation targeting the production and distribution of child sexual abuse material. [...]BLEEPINGCOMPUTER.COM
6 JunHPE Patches Critical Vulnerability in StoreOnceAn HPE StoreOnce vulnerability allows attackers to bypass authentication, potentially leading to remote code execution. The post HPE Patches Critical Vulnerability in StoreOnce appeared first on SecurityWeek .SECURITYWEEK.COM
6 JunCritical RCE Flaw Found in HPE Insight Remote Support ToolHewlett-Packard Enterprise (HPE) has released a critical security bulletin addressing multiple high-impact vulnerabilities in its Insight Remote Support (IRS) software, versions prior to 7.15.0.646. These flaws, identified by external researchers and disclosed to HPE, could allow…GBHACKERS.COM
6 JunChrome Extensions Flaw Exposes Sensitive API Keys, Secrets and TokensA critical security flaw has been uncovered in numerous popular Chrome extensions, affecting millions of users worldwide by exposing sensitive credentials such as API keys, secrets, and tokens directly within their source code. This alarming oversight in modern development practi…GBHACKERS.COM
6 JunCisco Patches Critical ISE Vulnerability With Public PoCCisco has released patches for a critical vulnerability impacting cloud deployments of Identity Services Engine (ISE). The post Cisco Patches Critical ISE Vulnerability With Public PoC appeared first on SecurityWeek .SECURITYWEEK.COM
6 JunColossal breach exposes 4B Chinese user records in surveillance-grade databaseA colossal data breach has reportedly exposed approximately four billion records containing personal information of hundreds of millions of users, primarily from China. The 631-gigabyte database was discovered sitting wide open on the internet, lacking even the most basic passwor…CSOONLINE.COM
6 JunNew phishing campaign hijacks clipboard via fake CAPTCHA for malware deliveryA new wave of browser-based phishing tricks unsuspecting users into copy-pasting malicious commands into their systems, all while believing they’re completing a legitimate CAPTCHA verification. According to a SlashNext research, attackers have been found cloning the Cloudflare Tu…CSOONLINE.COM
6 JunFake MFA Reset Warning MessageA KnowBe4 co-worker of mine recently got this SMS phishing message (i.e., smish).KNOWBE4.COM
6 JunPoC Exploit Released for Apache Tomcat DoS Vulnerabilitysubmitted by kid to cybersecurity 1 points | 0 comments https://gbhackers.com/apache-tomcat-dos-vulnerability/SH.ITJUST.WORKS
6 JunNew Zero-Click iPhone Exploit “NICKNAME” Targeted High-Profile Individuals Across the US and EUsubmitted by kid to cybersecurity 1 points | 0 comments https://securityonline.info/new-zero-click-iphone-exploit-nickname-targeted-high-profile-individuals-across-the-us-and-eu/SH.ITJUST.WORKS
6 JunMicrosoft startet neues europäisches SicherheitsprogrammMicrosoft will die Cybersicherheit in Europa stärken. MeshCube – shutterstock.com Microsoft warnt davor, dass sich Ransomware-Gruppen und staatlich geförderte Akteure aus Russland, China, dem Iran und Nordkorea in Umfang und Raffinesse stetig weiterentwickeln. Europa dürfe daher …CSOONLINE.COM
6 JunCritical Fortinet flaws now exploited in Qilin ransomware attacksThe Qilin ransomware operation has recently joined attacks exploiting two Fortinet vulnerabilities that allow bypassing authentication on vulnerable devices and executing malicious code remotely. [...]BLEEPINGCOMPUTER.COM
6 JunMicrosoft Helps CBI Dismantle Indian Call Centers Behind Japanese Tech Support ScamIndia's Central Bureau of Investigation (CBI) has revealed that it has arrested four individuals and dismantled two illegal call centers that were found to be engaging in a sophisticated transnational tech support scam targeting Japanese citizens. The law enforcement agency said …THEHACKERNEWS.COM
6 JunScattered Spider Hackers Target Tech Company Help-Desk AdministratorsA newly identified wave of cyberattacks by the notorious Scattered Spider hacking group has zeroed in on help-desk administrators at major technology companies, leveraging advanced social engineering techniques to breach corporate defenses. Known for their adept use of psychologi…GBHACKERS.COM
6 JunReport on the Malicious Uses of AIOpenAI just published its annual report on malicious uses of AI. By using AI as a force multiplier for our expert investigative teams, in the three months since our last report we’ve been able to detect, disrupt and expose abusive activity including social engineering, cyber espi…SCHNEIER.COM
6 JunMarks & Spencer’s ransomware nightmare – more details emergeOver Easter, retail giant Marks & Spencer (M&S) discovered that it had suffered a highly damaging ransomware attack that left some shop shelves empty, shut down online ordering, some staff unable to clock in and out, and caused some of its major suppliers to resort to p…BITDEFENDER.COM
6 JunDragonForce Ransomware Reportedly Compromised Over 120 Victims in the Past YearDragonForce, a ransomware group first identified in fall 2023, has claimed over 120 victims in the past year, marking its rapid ascent as a formidable player in the ransomware ecosystem. Initially operating under a Ransomware-as-a-Service (RaaS) model, DragonForce has since pivot…GBHACKERS.COM
6 JunClickFix Attack Uses Fake Cloudflare Verification to Silently Deploy MalwareA newly identified social engineering attack dubbed “ClickFix” has emerged as a significant threat, leveraging meticulously crafted fake Cloudflare verification pages to trick users into executing malicious code on their devices. This phishing tactic, disguised as a r…GBHACKERS.COM
6 JunHundreds of Malicious GitHub Repos Targeting Novice Cybercriminals Traced to Single UserSophos X-Ops researchers have identified over 140 GitHub repositories laced with malicious backdoors, orchestrated by a single threat actor associated with the email address ischhfd83[at]rambler[.]ru. Initially sparked by a customer inquiry into the Sakura RAT, a supposed open-so…GBHACKERS.COM
6 JunHackers Leverage New ClickFix Tactic to Exploit Human Error with Deceptive PromptsA sophisticated social engineering technique known as ClickFix baiting has gained traction among cybercriminals, ranging from individual hackers to state-sponsored Advanced Persistent Threat (APT) groups like Russia-linked APT28 and Iran-affiliated MuddyWater. This method targets…GBHACKERS.COM
6 JunHPE Insight Remote Support Vulnerability Let Attackers Execute Remote Codesubmitted by kid to cybersecurity 1 points | 0 comments https://cybersecuritynews.com/hpe-insight-remote-support-vulnerability/SH.ITJUST.WORKS
6 JunMicrosoft shares script to restore inetpub folder you shouldn’t deleteMicrosoft has released a PowerShell script to help restore an empty 'inetpub' folder created by the April 2025 Windows security updates if deleted. As Microsoft previously warned, this folder helps mitigate a high-severity Windows Process Activation privilege escalation vulnerabi…BLEEPINGCOMPUTER.COM
6 JunNew Atomic macOS Stealer Campaign Exploits ClickFix to Target Apple UsersCybersecurity researchers are alerting to a new malware campaign that employs the ClickFix social engineering tactic to trick users into downloading an information stealer malware known as Atomic macOS Stealer (AMOS) on Apple macOS systems. The campaign, according to CloudSEK, ha…THEHACKERNEWS.COM
6 JunThe Command That Causes a Core Dump 💥 #LinuxHackWhen a simple screen command spirals into a full buffer overflow, chaos follows. In this short, Paul and Larry break down how just a few lines in a Linux terminal can crash a session and leave behind a core dump. It's a jaw-dropping glimpse into how fragile even seasoned systems …YOUTUBE.COM
6 JunCritical Fortinet flaws now exploited in Qilin ransomware attackssubmitted by kid to cybersecurity 1 points | 0 comments https://www.bleepingcomputer.com/news/security/critical-fortinet-flaws-now-exploited-in-qilin-ransomware-attacks/SH.ITJUST.WORKS
6 JunCyber Godzilla Can’t Be Tracked… Unless THIS HappensCybersecurity pros won’t believe what just got exposed. In this short, a group of experts joke about “Cyber Godzilla” evading surveillance—until someone drops a truth bomb: text messages still fly under the radar. But then the conversation shifts to something even scarier… an API…YOUTUBE.COM
📢 SECURITY ADVISORIES 8[−]
6 JunCISOs urged to push vendors for roadmaps on post-quantum cryptography readinessCISOs have been urged to demand clear post-quantum cryptography (PQC) readiness roadmaps from vendors and partners to combat the looming threat of cryptographically relevant quantum computers. Quantum computers capable of large-scale cryptographic attacks are yet to be developed …CSOONLINE.COM
6 JunDon’t give hacktivists what they really wantRecently, several important Swedish services have been hit by distributed denial-of-service attacks: a few weeks ago it was Swish, before that it was Bank-id, and when the tax return period started in March, the DDoS guns were aimed at the Swedish Tax Agency. DDoS attacks are an …CSOONLINE.COM
6 JunNew PathWiper Data Wiper Malware Disrupts Ukrainian Critical Infrastructure in 2025 AttackA critical infrastructure entity within Ukraine was targeted by a previously unseen data wiper malware named PathWiper, according to new findings from Cisco Talos. "The attack was instrumented via a legitimate endpoint administration framework, indicating that the attackers likel…THEHACKERNEWS.COM
6 JunU.S. Offers $10M Bounty for Information on RedLine Malware CreatorThe US State Department has announced a reward of up to $10 million for information leading to the identification or location of Maxim Alexandrovich Rudometov, the alleged developer and administrator of the notorious RedLine infostealer malware. This action, under the Rewards for…GBHACKERS.COM
6 JunIn Other News: FBI Warns of BadBox 2, NSO Disputes WhatsApp Fine, 1,000 Leave CISANoteworthy stories that might have slipped under the radar: FBI issues an alert on BadBox 2 botnet, NSO disputing the $168 million WhatsApp fine, 1,000 people left CISA since Trump took office. The post In Other News: FBI Warns of BadBox 2, NSO Disputes WhatsApp Fine, 1,000 Leave…SECURITYWEEK.COM
🔥 INCIDENT REPORTING 8[−]
6 JunNew pathWiper Malware Targets Critical Infrastructure to Deploy Admin ToolsCisco Talos has uncovered a sophisticated and destructive cyberattack targeting a critical infrastructure entity in Ukraine, deploying a previously unknown wiper malware dubbed “PathWiper.” This attack, attributed with high confidence to a Russia-nexus advanced persis…GBHACKERS.COM
6 JunANY.RUN Empowers Government Agencies with Real-Time Threat DetectionGovernment agencies worldwide are facing an unprecedented wave of cyberattacks, with adversaries employing advanced tactics to breach critical infrastructure and steal sensitive data. Recent case studies analyzed using the ANY.RUN malware analysis platform reveal how attackers ar…GBHACKERS.COM
6 JunBeware: Fake AI Business Tools Spreading Hidden RansomwareAs small businesses increasingly adopt artificial intelligence (AI) tools to streamline operations, cybercriminals are seizing the opportunity to deploy ransomware through deceptive campaigns. According to a recent report by Cisco Talos, attackers are masquerading as legitimate A…GBHACKERS.COM
6 JunKettering Health confirms Interlock ransomware behind cyberattackHealthcare giant Kettering Health, which manages 14 medical centers in Ohio, confirmed that the Interlock ransomware group breached its network and stole data in a May cyberattack. [...]BLEEPINGCOMPUTER.COM
6 JunTax resolution firm Optima Tax Relief hit by ransomware, data leakedU.S. tax resolution firm Optima Tax Relief suffered a Chaos ransomware attack, with the threat actors now leaking data stolen from the company. [...]BLEEPINGCOMPUTER.COM
6 JunHearing on the Federal Government and AIOn Thursday I testified before the House Committee on Oversight and Government Reform at a hearing titled “ The Federal Government in the Age of Artificial Intelligence .” The other speakers mostly talked about how cool AI was—and sometimes about how cool their …SCHNEIER.COM
6 JunKettering Health confirms Interlock ransomware behind cyberattacksubmitted by kid to cybersecurity 1 points | 0 comments https://www.bleepingcomputer.com/news/security/kettering-health-confirms-interlock-ransomware-behind-cyberattack/SH.ITJUST.WORKS
6 JunThreat Actors Using ViperSoftX Malware to Exfiltrate Sensitive Detailssubmitted by kid to cybersecurity 1 points | 0 comments https://cybersecuritynews.com/threat-actors-using-vipersoftx-malware/SH.ITJUST.WORKS
🕵️ THREAT INTELLIGENCE 27[−]
6 JunUncle Sam puts $10M bounty on RedLine dev and Russia-backed croniessubmitted by cm0002 to cybersecurity 1 points | 0 comments https://www.theregister.com/2025/06/05/rewards_for_justice_maxim_rudometov/INFOSEC.PUB
6 JunISC Stormcast For Friday, June 6th, 2025 https://isc.sans.edu/podcastdetail/9482, (Fri, Jun 6th)(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.ISC.SANS.EDU
6 JunUS Offering $10 Million Reward for RedLine Malware DeveloperA reward is being offered for Maxim Alexandrovich Rudometov, who is accused of developing and managing the RedLine malware. The post US Offering $10 Million Reward for RedLine Malware Developer appeared first on SecurityWeek .SECURITYWEEK.COM
6 JunDestructive ‘PathWiper’ Targeting Ukraine’s Critical InfrastructureA Russia-linked threat actor has used the destructive malware dubbed PathWiper against a critical infrastructure organization in Ukraine. The post Destructive ‘PathWiper’ Targeting Ukraine’s Critical Infrastructure appeared first on SecurityWeek .SECURITYWEEK.COM
6 JunMIND Raises $30 Million for Data Loss PreventionData security firm MIND has raised $30 million in Series A funding to expand its R&D and go-to-market teams. The post MIND Raises $30 Million for Data Loss Prevention appeared first on SecurityWeek .SECURITYWEEK.COM
6 JunUK tax authority reveals scammers stole £47 million | The Record from Recorded Future Newssubmitted by kid to cybersecurity 1 points | 0 comments https://therecord.media/uk-hmrc-tax-authority-scammers-stole-47million-poundsSH.ITJUST.WORKS
6 JunFBI: BADBOX 2.0 Android malware infects millions of consumer devicessubmitted by kid to cybersecurity 1 points | 0 comments https://www.bleepingcomputer.com/news/security/fbi-badbox-20-android-malware-infects-millions-of-consumer-devices/SH.ITJUST.WORKS
6 JunUnsecured Database Exposes Data of 3.6 Million Passion.io Creatorssubmitted by kid to cybersecurity 1 points | 0 comments https://hackread.com/unsecured-database-exposes-passion-io-creators-data/SH.ITJUST.WORKS
6 JunCybersecurity M&A Roundup: 42 Deals Announced in May 2025The number of cybersecurity-related merger and acquisition (M&A) announcements surged in May 2025. The post Cybersecurity M&A Roundup: 42 Deals Announced in May 2025 appeared first on SecurityWeek .SECURITYWEEK.COM
6 JunWhat Are The Key Components Of A Successful Human Risk Management Program?When it comes to cybersecurity, organizations face an ever-present and often underestimated threat: human risk.KNOWBE4.COM
6 JunAI-Powered Website Cloning: Same Tool Enables Automated Phishing at Scalesubmitted by kid to cybersecurity 1 points | 0 comments https://www.netcraft.com/blog/same-automated-impersonation-for-allSH.ITJUST.WORKS
6 JunPopular Chrome Extensions Leak API Keys, User Data via HTTP and Hard-Coded Credentialssubmitted by kid to cybersecurity 1 points | 1 comments https://thehackernews.com/2025/06/popular-chrome-extensions-leak-api-keys.htmlSH.ITJUST.WORKS
6 JunOld AT&T data leak repackaged to link SSNs, DOBs to 49M phone numberssubmitted by kid to cybersecurity 1 points | 0 comments https://www.bleepingcomputer.com/news/security/old-atandt-data-leak-repackaged-to-link-ssns-dobs-to-49m-phone-numbers/SH.ITJUST.WORKS
6 JunNearly 94 Billion Stolen Cookies Found on Dark Websubmitted by kid to cybersecurity 1 points | 0 comments https://hackread.com/nearly-94-billion-stolen-cookies-on-dark-web/SH.ITJUST.WORKS
6 JunProxy Services Feast on Ukraine’s IP Address Exodus – Krebs on Securitysubmitted by kid to cybersecurity 1 points | 0 comments https://krebsonsecurity.com/2025/06/proxy-services-feast-on-ukraines-ip-address-exodus/SH.ITJUST.WORKS
6 JunIranian APT 'BladedFeline' Hides in Network for 8 Yearssubmitted by kid to cybersecurity 1 points | 0 comments https://www.darkreading.com/threat-intelligence/iranian-apt-bladedfeline-hides-network-8-yearsSH.ITJUST.WORKS
6 JunViperSoftX Malware Used by Threat Actors to Steal Sensitive InformationThe AhnLab Security Intelligence Center (ASEC) has recently issued a detailed report confirming the persistent distribution of ViperSoftX malware by threat actors, with notable impact on users in South Korea and beyond. First identified by Fortinet in 2020, ViperSoftX is a sophis…GBHACKERS.COM
6 JunOff-Topic Fridaysubmitted by shellsharks to cybersecurity 1 points | 0 comments Wanna chat about something non-infosec amongst those of us who frequent /c/cybersecurity? Here’s your chance! (Keep things civil & respectful please)INFOSEC.PUB
6 JunNew Rust-Developed InfoStealer Drains Sensitive Data from Chromium-Based BrowsersA newly identified information-stealing malware, crafted in the Rust programming language, has emerged as a significant threat to users of Chromium-based browsers such as Google Chrome, Microsoft Edge, and others. Dubbed “RustStealer” by cybersecurity researchers, thi…GBHACKERS.COM
6 JunNew Chaos RAT Targets Linux and Windows Users to Steal Sensitive Datasubmitted by kid to cybersecurity 1 points | 0 comments https://gbhackers.com/new-chaos-rat-targets-linux-and-windows-users/SH.ITJUST.WORKS
6 JunBooking.com reservation abused as cybercriminals steal from travelers | Malwarebytessubmitted by kid to cybersecurity 1 points | 0 comments https://www.malwarebytes.com/blog/news/2025/06/booking-com-abused-by-cybercriminals-to-steal-from-travelersSH.ITJUST.WORKS
6 JunPro-Russia group hits Ukraine with fresh wiper malware • The Registersubmitted by kid to cybersecurity 1 points | 0 comments https://www.theregister.com/2025/06/06/pro_russia_wiper_ukraine/SH.ITJUST.WORKS
6 JunScattered Spider Uses Tech Vendor Impersonation to Target Helpdesks - Infosecurity Magazinesubmitted by kid to cybersecurity 1 points | 0 comments https://www.infosecurity-magazine.com/news/scattered-spider-tech-vendor/SH.ITJUST.WORKS
6 JunStack Overflow = Hacker Superpower 🤯Most people think coding is all genius-level logic and math. But Jackie just revealed a truth every cybersecurity pro already knows… developers basically live on Stack Overflow and Google. In this short, the crew dives into how real tech work gets done — and why knowing how to se…YOUTUBE.COM
6 JunFriday Squid Blogging: Squid Run in Southern New EnglandSouthern New England is having the best squid run in years. As usual, you can also use this squid post to talk about the security stories in the news that I haven’t covered.SCHNEIER.COM
6 JunElsa, Redline, ChaosRat, iMessage, Bladed Feline , Aaran Leyland, and More... - SWN #483Elsa, Redline, ChaosRat, iMessage, Bladed Feline , Aaran Leyland, and More on this episode of the Security Weekly News. Visit https://www.securityweekly.com/swn for all the latest episodes! Show Notes: https://securityweekly.com/swn-483YOUTUBE.COM
6 JunStay Ahead of Cyber Threats Sweeping Container Telemetry dataThreat Intelligence Sweeping starts to support sweep container security telemetry data. It helps identify possible attacks happened based on TI intelligence in container environment. The trigger events are visible in workbench alert.TRENDMICRO.COM
🌐 CYBER THREAT LANDSCAPE 3[−]
6 JunUS offers $10 million reward for tips about state-linked RedLine hackersHow would you like to earn yourself millions of dollars? Well, it may just be possible - if you have information which could help expose the identities of cybercriminals involved with the notorious RedLine information-stealing malware. Read more in my article on the Tripwire Stat…TRIPWIRE.COM
6 JunNew PathWiper data wiper malware hits critical infrastructure in UkraineA new data wiper malware named 'PathWiper' is being used in targeted attacks against critical infrastructure in Ukraine, aimed at disrupting operations in the country. [...]BLEEPINGCOMPUTER.COM
6 JunItalian lawmakers say Italy used spyware to target phones of immigration activists, but not against journalistA parliamentary investigation answered some — but not all — the questions related to a spyware scandal involving the use of the Israeli company’s spyware, Graphite.TECHCRUNCH.COM
📡 INFOSEC NEWS 8[−]
6 JunUpcoming DShield Honeypot Changes and Customizations, (Fri, Jun 6th)There are some upcoming DShield honeypot [1] changes that introduce some opportunities for additional customization and data analysis. For most users, no additional actions are needed. A couple of those changes: ISC.SANS.EDU
6 JunInside the Mind of the Adversary: Why More Security Leaders Are Selecting AEVCybersecurity involves both playing the good guy and the bad guy. Diving deep into advanced technologies and yet also going rogue in the Dark Web. Defining technical policies and also profiling attacker behavior. Security teams cannot be focused on just ticking boxes, they need t…THEHACKERNEWS.COM
6 JunEmpower Users and Protect Against GenAI Data LossWhen generative AI tools became widely available in late 2022, it wasn’t just technologists who paid attention. Employees across all industries immediately recognized the potential of generative AI to boost productivity, streamline communication and accelerate work. Like so many …THEHACKERNEWS.COM
6 JunNEOM McLaren Formula E Team & Trend Micro Innovation HistoryExplore how innovation becomes a team sport when Trend Micro and the NEOM McLaren Formula E Team leaders come together to talk culture, risk, and forward thinking.TRENDMICRO.COM
6 JunHuman vs AI: Who Fixes Code Faster?AI agents are writing code — but who fixes the bugs faster: humans or AI? 🤖💻 In this short, we explore the evolving world of cybersecurity where automation helps, but the human element remains crucial. As AI takes over more tasks, cybersecurity professionals still play a vital ro…YOUTUBE.COM
6 JunBlindfolded Dart Throws? The Truth About AI in Software Security 🎯She compares AI risks to throwing darts blindfolded — and it’s not far from the truth. 🎯 In this eye-opening short, cybersecurity expert Jenn Gile breaks down why AI in software development feels unpredictable and why asking the right security questions matters more than ever. Fr…YOUTUBE.COM
6 JunAnthropic appoints a national security expert to its governing trustAnthropic's long-term benefit trust is a governance mechanism that Anthropic claims helps it promote safety over profit, and which has the power to elect some of the company's board of directors.TECHCRUNCH.COM
6 JunHow Google’s Wiz Acquisition Impacts CNAPPGoogle aims to stake out a share of the CNAPP market and compete head-on against AWS and Microsoft Azure with its planned Wiz acquisition. What are the implications for companies invested in AWS and Azure cloud infrastructure?TRENDMICRO.COM