🚨 CISA KEV 1[−]
1 Jul KEVCISA Adds Two Known Exploited Vulnerabilities to CatalogCISA has added two new vulnerabilities to its Known Exploited Vulnerabilities (KEV) Catalog , based on evidence of active exploitation. CVE-2025-48927 TeleMessage TM SGNL Initialization of a Resource with an Insecure Default Vulnerability CVE-2025-48928 TeleMessage TM SGNL …CISA.GOV
🐛 COMMON VULNERABILITIES AND EXPOSURES 8[−]
1 Jul KEVChrome 0-Day Flaw Exploited in the Wild to Execute Arbitrary CodeGoogle has issued an urgent security update for its Chrome browser, addressing a critical zero-day vulnerability that is being actively exploited by attackers. The flaw, tracked as CVE-2025-6554, is a type confusion vulnerability in Chrome’s V8 JavaScript engine, w…GBHACKERS.COM
1 Jul KEVCISA Issues Alert on Actively Exploited Citrix NetScaler ADC and Gateway VulnerabilityThe U.S. Cybersecurity and Infrastructure Security Agency (CISA) has issued an urgent alert following the addition of a critical Citrix NetScaler vulnerability—CVE-2025-6543—to its Known Exploited Vulnerabilities (KEV) Catalog, citing evidence of active exploitation in the wild. …GBHACKERS.COM
1 JulThousands of Citrix NetScaler Instances Unpatched Against Exploited VulnerabilitiesMany Citrix NetScaler systems are exposed to attacks exploiting the vulnerabilities tracked as CVE-2025-5777 and CVE-2025-6543. The post Thousands of Citrix NetScaler Instances Unpatched Against Exploited Vulnerabilities appeared first on SecurityWeek .SECURITYWEEK.COM
1 JulGoogle Patches Critical Zero-Day Flaw in Chrome’s V8 Engine After Active ExploitationGoogle has released security updates to address a vulnerability in its Chrome browser for which an exploit exists in the wild. The zero-day vulnerability, tracked as CVE-2025-6554 (CVSS score: N/A), has been described as a type confusing flaw in the V8 JavaScript and WebAssembly …THEHACKERNEWS.COM
1 JulIBM Cloud Pak Vulnerabilities Allow HTML Injection by Remote AttackersMultiple security vulnerabilities in IBM Cloud Pak System enable remote attackers to execute HTML injection attacks, potentially compromising user data and system integrity. These flaws, detailed in recent IBM security bulletins, affect various versions of the platform and expose…GBHACKERS.COM
1 JulCritical Vulnerability in Anthropic's MCP Exposes Developer Machines to Remote ExploitsCybersecurity researchers have discovered a critical security vulnerability in artificial intelligence (AI) company Anthropic's Model Context Protocol (MCP) Inspector project that could result in remote code execution (RCE) and allow an attacker to gain complete access to the hos…THEHACKERNEWS.COM
1 JulCVE-2025-49741 Microsoft Edge (Chromium-based) Information Disclosure VulnerabilityNo cwe for this issue in Microsoft Edge (Chromium-based) allows an unauthorized attacker to disclose information over a network.MSRC.MICROSOFT.COM
1 JulChromium: CVE-2025-6554 Type Confusion in V8This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/202[SS9.1]5) for more information. Google is aware that an exploit for CVE-2025-6554 ex…MSRC.MICROSOFT.COM
⚠️ VULNERABILITY DISCLOSURE 30[−]
1 JulUS DOJ announces progress combatting North Korean remote IT worker schemesThe US Justice Department today announced progress in its battle against Democratic People’s Republic of North Korea (DPRK) workers who have been fraudulently obtaining remote IT jobs with US organizations. Those schemes, the DOJ said, are part of efforts by the North Korean regi…CSOONLINE.COM
1 JulU.S. DOJ Cracks Down on North Korean Remote IT Workforce Operating IllegallyThe U.S. Department of Justice (DOJ) has announced a major crackdown on North Korea’s covert use of remote information technology (IT) workers to siphon millions from American companies and fund its weapons programs. The coordinated law enforcement actions, resulted in the arrest…GBHACKERS.COM
1 JulEuropol Dismantles Massive Crypto Investment Scam Targeting 5000+ victims WorldwideEuropol and international law enforcement have dismantled a sprawling cryptocurrency investment fraud network that allegedly defrauded more than 5,000 victims globally, laundering at least €460 million ($540 million) in illicit funds. The arrests, carried out on June 25, 2025, ma…GBHACKERS.COM
1 Jul160: GregGreg Linares (AKA Laughing Mantis) joins us to tell us about how he became the youngest hacker to be arrested in Arizona. Follow Greg on Twitter: https://x.com/Laughing_Mantis . Sponsors Support for this show comes from ThreatLocker® . ThreatLocker® is a Zero Trust Endpoint Prote…DARKNETDIARIES.COM
1 JulChrome 138 Update Patches Zero-Day VulnerabilityGoogle has released a Chrome 138 update that patches a high-severity vulnerability with an exploit in the wild. The post Chrome 138 Update Patches Zero-Day Vulnerability appeared first on SecurityWeek .SECURITYWEEK.COM
1 JulCISOs must rethink defense playbooks as cybercriminals move faster, smarterLast year nation-state incidents dominated cybersecurity headlines, as Chinese Typhoon threat groups and others made waves across several industries. But throughout the first half of 2025, most publicly known, high-profile attacks have been the work of cybercrime actors. Financia…CSOONLINE.COM
1 JulAI supply chain threats loom — as security practices lagThe AI software supply chain is rapidly expanding to include not only open-source development tools but also collaborative platforms where developers share custom models, agents, prompts, and other resources. And with this expansion of third-party AI component and services use co…CSOONLINE.COM
1 JulDjango App Vulnerabilities Allow Remote Code ExecutionSecurity researchers have uncovered severe vulnerabilities in Django that could allow attackers to execute arbitrary code on affected systems. These flaws, ranging from directory traversal to log injection, highlight critical security risks in one of Python’s most popular w…GBHACKERS.COM
1 JulSimple Patterns for Complex Secure Code Reviews - Louis Nyffenegger - ASW #337Manual secure code reviews can be tedious and time intensive if you're just going through checklists. There's plenty of room for linters and compilers and all the grep-like tools to find flaws. Louis Nyffenegger describes the steps of a successful code review process. It's a proc…YOUTUBE.COM
1 JulBlind Eagle Hackers Leverage Open-Source RATs and Ciphers to Evade Static DetectionTrustwave SpiderLabs has uncovered a chilling cyber threat targeting Latin American organizations, particularly in the financial sector, with a focus on Colombian institutions. The threat cluster, linked to the notorious Proton66 OOO infrastructure, employs a cunning mix of open-…GBHACKERS.COM
1 Jul KEVGoogle fixes fourth actively exploited Chrome zero-day of 2025Google has released emergency updates to patch another Chrome zero-day vulnerability exploited in attacks, marking the fourth such flaw fixed since the start of the year. [...]BLEEPINGCOMPUTER.COM
1 JulPakistani Threat Actors Created 300+ Cracking Sites to Distribute Info-Stealing MalwareA recent in-depth investigation by Intrinsec has exposed a sprawling network of over 300 cracking websites, orchestrated by Pakistani freelancers, designed to distribute info-stealing malware. These sites, often masquerading as legitimate sources for cracked software, have been i…GBHACKERS.COM
1 JulCritical Microsens Product Flaws Allow Hackers to Go ‘From Zero to Hero’CISA has informed organizations about critical authentication bypass and remote code execution vulnerabilities in Microsens NMP Web+. The post Critical Microsens Product Flaws Allow Hackers to Go ‘From Zero to Hero’ appeared first on SecurityWeek .SECURITYWEEK.COM
1 JulCloudflare Puts a Default Block on AI Web ScrapingThe move could reshape how LLM developers gather information — and force new deals between creators and AI companies. The post Cloudflare Puts a Default Block on AI Web Scraping appeared first on SecurityWeek .SECURITYWEEK.COM
1 Jul50 customers of French bank hit after insider helped SIM swap scammersFrench police have arrested a business student interning at the bank Société Générale who is accused of helping SIM-swapping scammers to defraud 50 of its clients. Read more in my article on the Hot for Security blog.BITDEFENDER.COM
1 JulLLMs are guessing website URLs, and it’s a cybersecurity timeLarge language models (LLMs) are casually sending users to the wrong web addresses, including unregistered, inactive, and even malicious sites, when asked where to log in for specific branded content. In a new study from Netcraft, researchers found that when they asked a popular …CSOONLINE.COM
1 JulLLMs are guessing login URLs, and it’s a cybersecurity time bombLarge language models (LLMs) are casually sending users to the wrong web addresses, including unregistered, inactive, and even malicious sites, when asked where to log in for specific branded content. In a new study from Netcraft, researchers found that when they asked a popular …CSOONLINE.COM
1 JulChinesische Hacker haben über 1.000 SOHO-Geräte infiziertDutzende Cybercrime-Kampagnen mit Fokus auf Asien und die USA wurden als angebliche LAPD-Aktionen getarnt. FOTOGRIN – shutterstock.com Cybersecurity-Experten haben ein Netzwerk von mehr als 1.000 kompromittierten Small-Office- und Home-Office-Geräten (SOHO) entdeckt. Die Devices …CSOONLINE.COM
1 JulUS disrupts North Korean IT worker "laptop farm" scheme in 16 statesThe U.S. Department of Justice (DoJ) announced coordinated law enforcement actions against North Korean government's fund raising operations using remote IT workers. [...]BLEEPINGCOMPUTER.COM
1 JulCritical Vulnerability in Microsens Devices Exposes Systems to HackersA series of critical vulnerabilities have been discovered in MICROSENS NMP Web+, a widely used network management platform for industrial and critical manufacturing environments, putting thousands of organizations worldwide at significant risk of cyberattack. The flaws, reported …GBHACKERS.COM
1 JulCybersecurity But Make It Hilarious… Wait for the Pigeon 💀When three cybersecurity pros dive into a website they helped build, one of them drops a hilarious secret—there’s a pigeon Easter egg that literally poops when you click it. 🤯 It’s unexpected, it’s old-school, and it proves even infosec folks love to sneak in some fun. Hidden gem…YOUTUBE.COM
1 JulSnake Keyloggers Exploit Java Utilities to Evade Detection by Security ToolsThe S2 Group Intelligence team has uncovered a Russian-origin malware known as Snake Keylogger, a stealer coded in .NET, leveraging legitimate Java utilities to bypass security tools. This operation, distributed via a Malware as a Service (MaaS) model, targets diverse victims, in…GBHACKERS.COM
1 JulCISA Releases Seven Industrial Control Systems AdvisoriesCISA released seven Industrial Control Systems (ICS) advisories on July 1, 2025. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS. ICSA-25-182-01 FESTO Didactic CP, MPS 200, and MPS 400 Firmware ICSA-25-182-0…CISA.GOV
1 JulNew FileFix attack runs JScript while bypassing Windows MoTW alertsA new FileFix attack allows executing malicious scripts while bypassing the Mark of the Web (MoTW) protection in Windows by exploiting how browsers handle saved HTML webpages. [...]BLEEPINGCOMPUTER.COM
1 JulNew DEVMAN Ransomware by DragonForce Targets Windows 10 and 11 UsersA new ransomware variant, dubbed DEVMAN, has surfaced in the cyberthreat landscape, showcasing a complex lineage tied to the notorious DragonForce family. Built on a foundation of DragonForce and Conti codebases, DEVMAN introduces unique identifiers such as the .DEVMAN file exten…GBHACKERS.COM
1 JulHackers Don’t Hack Computers… They Hack People.Most people think hackers sit in dark rooms cracking code all day—but the real secret? They just talk to you. In this short, cybersecurity expert Doug White reveals how social engineering, not zero-day exploits, is still the easiest way to breach even the most secure systems. One…YOUTUBE.COM
1 JulMicrosoft open-sources VS Code Copilot Chat extension on GitHubMicrosoft has released the source code for the GitHub Copilot Chat extension for VS Code under the MIT license. [...]BLEEPINGCOMPUTER.COM
1 JulIs your Human Risk Management Program Creating Measurable Change? Find Out with Our Free Program Maturity AssessmentIn today's threat landscape, your employees represent both your greatest vulnerability and your strongest defense.KNOWBE4.COM
1 JulQantas discloses cyberattack amid Scattered Spider aviation breachesAustralian airline Qantas disclosed that it detected a cyberattack on Monday after threat actors gained access to a third-party platform containing customer data. [...]BLEEPINGCOMPUTER.COM
1 JulESET APT Activity Report Q4 2024–Q1 2025: Malware sharing, wipers and exploitsESET experts discuss Sandworm’s new data wiper, UnsolicitedBooker’s relentless campaigns, attribution challenges amid tool-sharing, and other key findings from the latest APT Activity ReportWELIVESECURITY.COM
📢 SECURITY ADVISORIES 2[−]
1 JulPowerShell überwachen – so geht‘sWird PowerShell nicht richtig überwacht, ist das Security-Debakel meist nicht weit. rsooll | shutterstock.com Kriminelle Hacker setzen mitunter auf raffinierte Techniken, um sich über ausgedehnte Zeiträume in den Netzwerken von Unternehmen einzunisten und still und heimlich sensi…CSOONLINE.COM
1 JulCISA Warns Iranian Cyber Threats Targeting U.S. Critical InfrastructureThe Cybersecurity and Infrastructure Security Agency (CISA), alongside the Federal Bureau of Investigation (FBI), the Department of Defense Cyber Crime Center (DC3), and the National Security Agency (NSA), has issued a stern warning about potential cyberattacks by Iranian state-s…GBHACKERS.COM
🔥 INCIDENT REPORTING 21[−]
1 JulIranian Hackers’ Preferred ICS Targets Left Open Amid Fresh US Attack WarningThe US government is again warning about potential Iranian cyberattacks as researchers find that hackers’ favorite ICS targets remain exposed. The post Iranian Hackers’ Preferred ICS Targets Left Open Amid Fresh US Attack Warning appeared first on SecurityWeek .SECURITYWEEK.COM
1 Jul263,000 Impacted by Esse Health Data BreachEsse Health says the personal information of over 263,000 individuals was stolen in an April 2025 cyberattack. The post 263,000 Impacted by Esse Health Data Breach appeared first on SecurityWeek .SECURITYWEEK.COM
1 JulNew C4 Bomb Attack Breaks Through Chrome’s AppBound Cookie ProtectionsCybersecurity researchers have unveiled a new attack—dubbed the “C4 Bomb” (Chrome Cookie Cipher Cracker)—that successfully bypasses Google Chrome’s much-touted AppBound Cookie Encryption. This breakthrough exposes millions of users to renewed risks of cookie theft, credential com…GBHACKERS.COM
1 JulJohnson Controls starts notifying people affected by 2023 breachBuilding automation giant Johnson Controls is notifying individuals whose data was stolen in a massive ransomware attack that impacted the company's operations worldwide in September 2023. [...]BLEEPINGCOMPUTER.COM
1 JulSwiss Government Confirms Radix Ransomware Attack Leaked Federal DataThe Swiss government has confirmed that sensitive federal data has been leaked onto the dark web following a ransomware attack on Radix, a non-profit health promotion foundation serving multiple federal offices. The breach, attributed to the Sarcoma ransomware group, has raised f…GBHACKERS.COM
1 JulSwitzerland says government data stolen in ransomware attacksubmitted by kid to cybersecurity 1 points | 0 comments https://www.bleepingcomputer.com/news/security/switzerland-says-government-data-stolen-in-ransomware-attack/SH.ITJUST.WORKS
1 JulHumac Apple reseller targeted by Kraken ransomware | Cybernewssubmitted by kid to cybersecurity 1 points | 0 comments https://cybernews.com/security/humac-apple-partner-ransomware-breach/SH.ITJUST.WORKS
1 JulInternational Criminal Court hit by cyber attack - iTnewssubmitted by kid to cybersecurity 2 points | 0 comments https://www.itnews.com.au/news/international-criminal-court-hit-by-cyber-attack-618324SH.ITJUST.WORKS
1 JulEsse Health says recent data breach affects over 263,000 patientsEsse Health, a healthcare provider based in St. Louis, Missouri, is notifying over 263,000 patients that their personal and health information was stolen in an April cyberattack. [...]BLEEPINGCOMPUTER.COM
1 JulAI-Themed SEO Poisoning Attacks Spread Info, Crypto Stealerssubmitted by kid to cybersecurity 1 points | 0 comments https://www.darkreading.com/cyberattacks-data-breaches/ai-seo-poisoning-attack-info-crypto-stealersSH.ITJUST.WORKS
1 JulRansomware-Attacke auf Welthungerhilfesrcset="https://b2b-contenthub.com/wp-content/uploads/2025/07/shutterstock_2183269825.jpg?quality=50&strip=all 8256w, https://b2b-contenthub.com/wp-content/uploads/2025/07/shutterstock_2183269825.jpg?resize=300%2C168&quality=50&strip=all 300w, https://b2b-contenthub.c…CSOONLINE.COM
1 JulThe top-five funny school, social media, and IoT hacks | Kaspersky official blogFive of the funniest cyberattacks ever: from school pranks and brand-account hijacks to hacked robot vacuums and talking crosswalk buttons.KASPERSKY.COM
1 JulThe #1 Cyber Insurance Mistake CISOs Keep Making 😬Most CISOs think having a cyber insurance policy is enough—but it’s not. In this short, Mandy shares the one mistake that can leave your organization exposed even with a policy in place. It’s not about coverage—it’s about connection. When a breach hits, will your insurer know you…YOUTUBE.COM
1 JulInternational Criminal Court hit by new 'sophisticated' cyberattackOn Monday, the International Criminal Court (ICC) announced that it's investigating a new "sophisticated" cyberattack that targeted its systems last week. [...]BLEEPINGCOMPUTER.COM
1 JulHacktivist Group Launches Attacks on 20+ Critical Sectors Amid Iran–Israel ConflictA series of sophisticated cyberattacks targeting over 20 vital sectors in Israel and its allies has been launched by more than 80 hacktivist groups in a major escalation of cyberwarfare that parallels the ongoing Iran-Israel confrontation. Following Israel’s recent airstrik…GBHACKERS.COM
1 JulKimusky Hackers Employ ClickFix Technique to Run Malicious Scripts on Victim DevicesThe North Korean state-sponsored hacker collective Kimsuky has been found to use a dishonest technique called “ClickFix” to compromise victim machines in a number of concerning cyberattacks. First documented by Proofpoint in April 2024, ClickFix manipulates users into…GBHACKERS.COM
1 JulAeza Group sanctioned for hosting ransomware, infostealer serversThe U.S. Department of the Treasury has sanctioned Russian hosting company Aeza Group and four operators for allegedly acting as a bulletproof hosting company for ransomware gangs, infostealer operations, darknet drug markets, and Russian disinformation campaigns. [...]BLEEPINGCOMPUTER.COM
1 JulKelly Benefits says 2024 data breach impacts 550,000 customersKelly & Associates Insurance Group (dba Kelly Benefits) is informing more than half a million people of a data breach that compromised their personal information. [...]BLEEPINGCOMPUTER.COM
1 JulHow Russia Turned Cyber Attacks Into Real ExplosionsSince 2022, Russia has merged cyber intrusions with physical warfare—coordinating digital attacks with real-world explosions. This short breaks down how energy grids, telecom systems, and even public psychology are now targeted in this chilling new form of integrated warfare. Cyb…YOUTUBE.COM
1 JulJohnson Controls starts notifying people affected by 2023 breachsubmitted by kid to cybersecurity 1 points | 0 comments https://www.bleepingcomputer.com/news/security/johnson-controls-starts-notifying-people-affected-by-2023-breach/SH.ITJUST.WORKS
1 JulYou Have 11 Minutes Before It’s Too Late ⏱️When Danny Jenkins said, "You have 11 minutes before it’s too late," he wasn’t exaggerating. In the cybersecurity world, 11 minutes is all it takes for a breach to spread from one machine to another. This short dives into the brutal speed of cyberattacks, the pressure security te…YOUTUBE.COM
🕵️ THREAT INTELLIGENCE 29[−]
1 JulU.S. Arrests Key Facilitator in North Korean IT Worker Scheme, Seizes $7.74 MillionThe U.S. Department of Justice (DoJ) on Monday announced sweeping actions targeting the North Korean information technology (IT) worker scheme, leading to the arrest of one individual and the seizure of 29 financial accounts, 21 fraudulent websites, and nearly 200 computers. The …THEHACKERNEWS.COM
1 JulUS Storms 29 Laptop Farms in Crackdown on North Korean IT Worker SchemesThe US has made 29 searches of known or suspected laptop farms supporting North Korean individuals posing as US IT workers. The post US Storms 29 Laptop Farms in Crackdown on North Korean IT Worker Schemes appeared first on SecurityWeek .SECURITYWEEK.COM
1 JulNorth Korean IT Workers Employ New Tactics to Infiltrate Global OrganizationsMicrosoft Threat Intelligence has uncovered a sophisticated operation by North Korean remote IT workers who are leveraging cutting-edge artificial intelligence (AI) tools to infiltrate organizations worldwide. Since at least 2020, these highly skilled individuals, often based in …GBHACKERS.COM
1 JulDownload the ‘AI-ready data centers’ spotlight reportDownload the July 2025 issue of the Enterprise Spotlight from the editors of CIO, Computerworld, CSO, InfoWorld, and Network World. aria-label="Embed of AI-ready data centers."> AI-ready data centers DownloadCSOONLINE.COM
1 JulLinux 6.16-rc4 Launches Out With Filesystem, Driver, and Hardware FixesLinus Torvalds has officially announced the release of Linux 6.16-rc4, marking the halfway point in the development cycle for the upcoming 6.16 kernel. Despite a notably large merge window, Torvalds described the release candidate process as “fairly calm,” signaling a smooth…GBHACKERS.COM
1 JulIranian Blackout Affected Misinformation CampaignsDozens of accounts on X that promoted Scottish independence went dark during an internet blackout in Iran. Well, that’s one way to identify fake accounts and misinformation campaigns.SCHNEIER.COM
1 JulStealthy WordPress Malware Uses PHP Backdoor to Deliver Windows TrojanA sophisticated malware campaign targeting WordPress websites has recently been uncovered, showcasing an intricate and stealthy approach to delivering a Windows-based trojan. This attack, which operates beneath the surface of seemingly clean websites, employs a layered infection …GBHACKERS.COM
1 JulMicrosoft Teams Enables In‑Chat Bot & Agent IntegrationMicrosoft Teams is set to revolutionize workplace collaboration once again, rolling out a highly anticipated feature that enables users to add bots and agents directly within Chats and Channels, without disrupting their ongoing conversations. The update, announced under Message I…GBHACKERS.COM
1 JulLevelBlue to Acquire Trustwave to Create Major MSSPLevelBlue has announced plans to acquire Trustwave to create the largest pure-play managed security services provider (MSSP). The post LevelBlue to Acquire Trustwave to Create Major MSSP appeared first on SecurityWeek .SECURITYWEEK.COM
1 JulIranian Cyber Threats Persist Despite Ceasefire, US Intelligence Warns - Infosecurity Magazinesubmitted by kid to cybersecurity 1 points | 0 comments https://www.infosecurity-magazine.com/news/iranian-cyber-threats-us/SH.ITJUST.WORKS
1 JulCyberheistNews Vol 15 #26 [My Clicking Time Bomb] What Do I Do About the Repeat Clickers?KNOWBE4.COM
1 JulIran-linked hackers resurface, threaten to release more stolen Trump emails | Cybernewssubmitted by kid to cybersecurity 1 points | 0 comments https://cybernews.com/news/iranian-hackers-threaten-to-leak-trump-emails/SH.ITJUST.WORKS
1 JulAiroha Chip Vulnerabilities Expose Headphones to Takeover - SecurityWeeksubmitted by kid to cybersecurity 1 points | 0 comments https://www.securityweek.com/airoha-chip-vulnerabilities-expose-headphones-to-takeover/SH.ITJUST.WORKS
1 JulThreat Overview - mommy Access Brokersubmitted by kid to cybersecurity 1 points | 0 comments https://intel471.com/blog/mommy-access-brokerSH.ITJUST.WORKS
1 JulBreak The Air Gap With Ultrasoundsubmitted by cm0002 to cybersecurity 1 points | 0 comments https://hackaday.com/2025/06/29/break-the-air-gap-with-ultrasound/INFOSEC.PUB
1 JulAI Bots Are Working 24/7… and Using Your CredentialsAI is revolutionizing enterprise productivity—but at what cost? 🤖 Each time a new bot spins up, it doesn’t just eat up electricity or server cycles. It’s logging in. It’s accessing services. It’s pinging third parties. Doug White highlights a quiet cybersecurity storm brewing und…YOUTUBE.COM
1 JulTA829 and UNK_GreenSec Share Tactics and Infrastructure in Ongoing Malware CampaignsCybersecurity researchers have flagged the tactical similarities between the threat actors behind the RomCom RAT and a cluster that has been observed delivering a loader dubbed TransferLoader. Enterprise security firm Proofpoint is tracking the activity associated with TransferLo…THEHACKERNEWS.COM
1 JulTA829 Hackers Use New TTPs and Enhanced RomCom Backdoor to Evade DetectionThe cybercriminal group TA829, also tracked under aliases like RomCom, Void Rabisu, and Tropical Scorpius, has been observed deploying sophisticated tactics, techniques, and procedures (TTPs) alongside an updated version of its infamous RomCom backdoor, now dubbed SingleCamper (a…GBHACKERS.COM
1 JulPlanning your move to Microsoft Defender portal for all Microsoft Sentinel customersMicrosoft is transitioning Microsoft Sentinel into the Microsoft Defender portal to create a unified security operations experience. The post Planning your move to Microsoft Defender portal for all Microsoft Sentinel customers appeared first on Microsoft Security Blog .TECHCOMMUNITY.MICROSOFT.COM
1 JulWhy Engineers Should Be in Your Security Calls 👀In this clip, cybersecurity expert Summer Craze Fowler reveals why having engineers on vendor risk calls is non-negotiable. While sales reps may know all the right buzzwords, it’s the technical minds who truly understand the risks hidden in the details. This short cuts through th…YOUTUBE.COM
1 JulBlind Eagle Uses Proton66 Hosting for Phishing, RAT Deployment on Colombian Bankssubmitted by kid to cybersecurity 1 points | 0 comments https://thehackernews.com/2025/06/blind-eagle-uses-proton66-hosting-for.htmlSH.ITJUST.WORKS
1 JulUS disrupts North Korean IT worker "laptop farm" scheme in 16 statessubmitted by cm0002 to cybersecurity 2 points | 0 comments https://www.bleepingcomputer.com/news/security/us-disrupts-north-korean-it-worker-laptop-farm-scheme-in-16-states/INFOSEC.PUB
1 JulNew FileFix attack runs JScript while bypassing Windows MoTW alertssubmitted by cm0002 to cybersecurity 1 points | 0 comments https://www.bleepingcomputer.com/news/security/new-filefix-attack-runs-jscript-while-bypassing-windows-motw-alerts/INFOSEC.PUB
1 JulJasper Sleet: North Korean remote IT workers’ evolving tactics to infiltrate organizationssubmitted by Pro to cybersecurity 1 points | 0 comments https://www.microsoft.com/en-us/security/blog/2025/06/30/jasper-sleet-north-korean-remote-it-workers-evolving-tactics-to-infiltrate-organizations/INFOSEC.PUB
1 JulJasper Sleet: North Korean remote IT workers’ evolving tactics to infiltrate organizationssubmitted by Pro to cybersecurity 1 points | 0 comments https://www.microsoft.com/en-us/security/blog/2025/06/30/jasper-sleet-north-korean-remote-it-workers-evolving-tactics-to-infiltrate-organizations/SH.ITJUST.WORKS
1 JulSony, Scattered Spider, Hikvision, Cybercrime, Iran, BSODs, Cloudflare, Josh Marpet.. - SWN #490Sony, Scattered Spider, Hikvision, Cybercrime, Iran, BSODs, Cloudflare, Josh Marpet, and more on the Security Weekly News. Visit https://www.securityweekly.com/swn for all the latest episodes! Show Notes: https://securityweekly.com/swn-490YOUTUBE.COM
1 JulThe $0 Customization Tax That Costs You Thousands 💸Many cybersecurity pros think buying a SIEM means the hard part is over. But as Adrian Sanabria points out, there’s a hidden cost nobody talks about—the customization tax. It’s not on the invoice, but it drains time, money, and sanity. Vendors sell “plug-and-play” tools, but your…YOUTUBE.COM
1 JulIf You’re Still Using Separate WAFs, Watch This 😬Most cybersecurity teams still juggle multiple tools for WAF, API security, bot management, and client-side protection—but that’s quickly changing. In this clip, Forrester’s Sandy Carielli explains why the industry is shifting toward unified web application protection platforms, …YOUTUBE.COM
🌐 CYBER THREAT LANDSCAPE 1[−]
1 JulESET Threat Report H1 2025: Key findingsESET Chief Security Evangelist Tony Anscombe reviews some of the report's standout findings and their implications for organizations in 2025 and beyondWELIVESECURITY.COM
🎙️ PODCASTS 1[−]
1 JulThe AI Fix #57: AI is the best hacker in the USA, and self-learning AIIn episode 57 of The AI Fix, our hosts discover an AI “dream recorder”, Mark Zuckerberg tantalises OpenAI staff with $100 million signing bonuses, Graham finds out why robot butlers sit in chairs, Wikipedia holds the line against AI slop, an AI cat collar can tell you if your cat…GRAHAMCLULEY.COM
📡 INFOSEC NEWS 12[−]
1 JulMicrosoft Removes Password Management from Authenticator App Starting August 2025Microsoft has said that it's ending support for passwords in its Authenticator app starting August 1, 2025. The changes, the company said, are part of its efforts to streamline autofill in the two-factor authentication (2FA) app. "Starting July 2025, the autofill feature in Authe…THEHACKERNEWS.COM
1 JulA New Maturity Model for Browser Security: Closing the Last-Mile RiskDespite years of investment in Zero Trust, SSE, and endpoint protection, many enterprises are still leaving one critical layer exposed: the browser. It’s where 85% of modern work now happens. It’s also where copy/paste actions, unsanctioned GenAI usage, rogue extensions, and pers…THEHACKERNEWS.COM
1 JulNew Flaw in IDEs Like Visual Studio Code Lets Malicious Extensions Bypass Verified StatusA new study of integrated development environments (IDEs) like Microsoft Visual Studio Code, Visual Studio, IntelliJ IDEA, and Cursor has revealed weaknesses in how they handle the extension verification process, ultimately enabling attackers to execute malicious code on develope…THEHACKERNEWS.COM
1 JulAT&T rolls out "Wireless Lock" feature to block SIM swap attacksAT&T has launched a new security feature called "Wireless Lock" that protects customers from SIM swapping attacks by preventing changes to their account information and the porting of phone numbers while the feature is enabled. [...]BLEEPINGCOMPUTER.COM
1 JulICEBlock, an app for anonymously reporting ICE sightings, goes viral overnight after Bondi criticismThe citizen app for anonymously reporting ICE agents and raids went viral after criticism from the U.S. Attorney General.TECHCRUNCH.COM
1 JulRising star: Meet Dylan, MSRC’s youngest security researcherAt just 13 years old, Dylan became the youngest security researcher to collaborate with the Microsoft Security Response Center (MSRC). His journey into cybersecurity is inspiring—rooted in curiosity, resilience, and a deep desire to make a difference. Early beginnings: From scrat…MSRC.MICROSOFT.COM