7/31/2025 July 31, 2025July 31, 2025 ~ The Cyber Beat ~ Leave a comment Secret Blizzard Deploys Malware in ISP-Level AitM Attacks on Moscow EmbassiesThe Kremlin’s Most Devious Hacking Group Turla Is Using Russian ISPs to Plant SpywareEspionage Costing Australia $8 Billion Each Year, Warns Intelligence ChiefNvidia Says Its Chips Have No ‘Backdoors’ After China Flags H20 Security ConcernsSpikes in Malicious Activity Precede New Security Flaws in 80% of CasesColumbia University Fends Off Hackers by Going Back to BasicsIsraeli Cyber Startup Noma Security Raises $100 Million to Keep AI Agents From Going RogueAs Ransomware Gangs Threaten Physical Harm, ‘I Am Afraid of What’s Next,’ Ex-negotiator SaysN. Korean Hackers Used Job Lures, Cloud Account Access, and Malware to Steal Millions in CryptoDoubleTrouble Android Malware Targets Banking Users Through Discord ChannelsMicrosoft Now Pays up to $40,000 for Some .Net VulnerabilitiesMicrosoft to Disable Excel Workbook Links to Blocked File TypesKali Linux Can Now Run in Apple Containers on macOS SystemsCISA Unveils Eviction Strategies Tool to Aid Incident ResponseCISA Open-Sources Thorium Platform for Malware, Forensic AnalysisBiotech Contractor Illumina Settles for $9.8 Million With DOJ Over Alleged Cybersecurity LapsesCybercriminals ‘Spooked’ After Scattered Spider Arrests
7/30/2025 July 31, 2025July 31, 2025 ~ The Cyber Beat ~ Leave a comment More Than 90 State, Local Governments Targeted Using Microsoft Sharepoint Vulnerability, Group SaysChinese Firms Linked to Silk Typhoon Filed 15+ Patents for Cyber Espionage ToolsCyberattack Shuts Down Hundreds of Russian Pharmacies, Disrupts Healthcare ServicesRussia Blocks Popular U.S.-Made Internet Speed Test Tool Over National Security ConcernsKrebs: Scammers Unleash Flood of Slick Online Gaming SitesHackers Use Facebook Ads to Spread JSCEAL Malware via Fake Cryptocurrency Trading AppsWarning Over Email Scam Using Fake Telecom BillsFunkSec Ransomware Decryptor Released Free to Public After Group Goes DormantDropbox Is Shutting Down Its Password ManagerMore Than 100 Flights Cancelled After UK Air Traffic Control IssueThe TSA Likes Facial Recognition at Airports. Passengers and Politicians, Not So MuchSafePay Ransomware Threatens to Leak 3.5tb of Ingram Micro DataShinyHunters Behind Salesforce Data Theft Attacks at Qantas, Allianz Life, and LVMHDollar Tree Denies Ransomware Claims, Says Stolen Data Is From Defunct Discount ChainHidden Backdoor Found in ATM Network via Raspberry PiHackers Actively Exploit Critical RCE in WordPress Alone ThemeCritical Dahua Camera Flaws Enable Remote Hijack via ONVIF and File Upload ExploitsNew Lenovo UEFI Firmware Updates Fix Secure Boot Bypass FlawsApple Patches Safari Vulnerability Also Exploited as Zero-Day in Google ChromeThird of Exploited Vulnerabilities Weaponized Within a Day of DisclosureGoogle to Publicly Report New Vulnerabilities Within One Week of Vendor DisclosureSchools Are Next for Flock Safety’s Automatic License Place Reader Cameras
7/29/2025 July 29, 2025July 29, 2025 ~ The Cyber Beat ~ Leave a comment Minnesota Activates National Guard After St. Paul CyberattackPoland Says More Than 30 Suspects Face Trial Over Pro-Russian SabotageWyden Asks White House to Scrutinize UK Surveillance LawsSenator Presses Musk on Starlink ‘Misuse’ by Southeast Asian ScammersGoogle Workspace Is Rolling Out a Security Update to Stop Token Stealing AttacksCharity Birthlink Fined After Destroying “Irreplaceable” RecordsFBI Seizes $2.4m in Crypto from Chaos Ransomware GangPalo Alto Networks Nears Over $20 Billion Deal for Cybersecurity Firm CyberArkSex Toy Maker Lovense Caught Leaking Users’ Email Addresses and Exposing Accounts to TakeoversFrench Telco Orange Hit by Cyber-AttackScattered Spider Is Targeting Victims’ Snowflake Data Storage for Quick ExfiltrationCybercriminals Use Fake Apps to Steal Data and Blackmail Users Across Asia’s Mobile NetworksPyPI Warns of Ongoing Phishing Campaign Using Fake Verification Emails and Lookalike DomainNimble ‘Gunra’ Ransomware Evolves With Linux VariantAuto-Color Backdoor Malware Exploits SAP VulnerabilityCritical Authentication Flaw Identified in Base44 Vibe Coding Platform
7/28/2025 July 28, 2025July 28, 2025 ~ The Cyber Beat ~ Leave a comment Flights Grounded as Russia’s Largest Airline Aeroflot Hacked and Systems ‘Destroyed’…‘Partisans’ Who Paralyzed Russian Airports Have Track Record of Disruptive HacksNaval Group Denies Hack Claims, Alleges “Reputational Attack”Microsoft: macOS Sploitlight Flaw Leaks Apple Intelligence DataThe UK Is Slogging Through an Online Age-Gate ApocalypseAn Inside Look Into How a Coalition of State Legislators Plans to Take On Data BrokersThe Internet Archive Is Now a U.S. Federal Depository LibraryTea App Leak Worsens With Second Database Exposing User ChatsEndgame Gear Mouse Config Tool Infected Users With MalwareCISA Flags Papercut RCE Bug as Exploited in Attacks, Patch NowExploit Available for Critical Cisco ISE Bug Exploited in AttacksCritical Flaws in Niagara Framework Threaten Smart Buildings and Industrial Systems WorldwideFlaw in Gemini CLI AI Coding Assistant Allowed Stealthy Code ExecutionNew York State Cyber Chief Calls Out Trump for Cybersecurity Cuts
7/25-27/2025 July 27, 2025July 27, 2025 ~ The Cyber Beat ~ Leave a comment Patchwork Targets Turkish Defense Firms with Spear-Phishing Using Malicious LNK FilesMicrosoft Probing if Chinese Hackers Learned Sharepoint Flaws Through AlertCyber Espionage Campaign ‘CargoTalon’ Hits Russian Aerospace Sector Using EAGLET Backdoor‘Quishing’ Scams Dupe Millions of Americans as Cybercriminals Turn the QR Code BadScattered Spider is Running a VMware ESXi Hacking SpreeAmazon AI Coding Agent Hacked to Inject Data Wiping CommandsSpaceX Probes for Cause of Starlink’s Global Satellite Network OutageU.S. Sanctions North Korean Firm, Nationals Behind IT Worker SchemesAllianz Life Confirms Data Breach Impacts Majority of 1.4 Million CustomersWomen’s Dating App Tea Reports 72,000 Images Stolen in Security BreachParents Concerned After Personal Information of Hundreds of Dearborn Heights (MI) Children Exposed OnlineNASCAR Confirms Data Breach After March CyberattackEmail Scam Demanding Money Targets Hull UniversityNew Chaos Ransomware Emerges, Launches Wave of AttacksPost SMTP Plugin Flaw Exposes 200K WordPress Sites to Hijacking AttacksSecurity Awareness: Why Security Nudges Majorly Took Off
7/24/2025 July 24, 2025July 24, 2025 ~ The Cyber Beat ~ Leave a comment China-Based APTs Deploy Fake Dalai Lama Apps to Spy on Tibetan CommunityFire Ant Exploits VMware Flaws to Compromise ESXi Hosts and vCenter EnvironmentsSatya Nadella Seeks to Reassure Microsoft Employees in Layoffs MemoMicrosoft Put Older Versions of Sharepoint on Life Support. Hackers Are Taking AdvantageDHS and HHS Among Federal Agencies Hacked in Microsoft Sharepoint BreachMicrosoft Says Some SharePoint Server Hackers Now Using RansomwareU.S. Lawmaker Presses for Details of Pentagon Use of Chinese Engineers Under Microsoft DealTemu Lawsuits Pit States Against a Digital SuperpowerUK and Romania Crack Down on ATM Fraudster NetworkBlackSuit Ransomware Leak Sites Seized in Operation CheckmateFBI Exposes The Com’s Criminal Activities and Involvement of MinorsU.S. Woman Gets 8-Year Sentence for Stealing Identities to Give North Koreans JobsA Premium Luggage Service’s Web Bugs Exposed the Travel Plans of Every User—Including DiplomatsKrebs: Phishers Target Aviation Execs to Scam CustomersSarangTrap: Malware Campaign Masquerades as Dating Apps to Steal DataNew Koske Linux Malware Hides in Cute Panda ImagesHacker Sneaks Infostealer Malware Into Early Access Steam GameSoco404: Active Campaign Exploits Cloud Flaws for CryptominingCastleLoader Malware Infects 469 Devices Using Fake GitHub Repos and ClickFix PhishingHackers Breach Toptal Github Account, Publish Malicious npm PackagesHackers Deploy Stealth Backdoor in WordPress Mu-Plugins to Maintain Admin AccessCritical Mitel Flaw Lets Hackers Bypass Login, Gain Full Access to MiVoice MX-ONE SystemsSophos and SonicWall Patch Critical RCE Flaws Affecting Firewalls and SMA 100 DevicesWhy ISO 42001 Matters for AI Governance at Scale
7/23/2025 July 23, 2025July 23, 2025 ~ The Cyber Beat ~ Leave a comment U.S. Nuclear Weapons Agency Reportedly Breached in Microsoft Sharepoint Attacks…CISA Orders Urgent Patching After Chinese Hackers Exploit SharePoint Flaws in Live Attacks…Microsoft SharePoint Victim Count Hits 400+ Orgs in Ongoing AttacksNothing to See Here: Brave Browser Blocks Privacy-Busting Microsoft RecallProton Is Launching a Privacy-Focused AI ChatbotChatGPT Is Rolling Out ‘Personality’ Toggles to Become Your AssistantAfter $380M Hack, Clorox Sues Its “Service Desk” Vendor for Simply Giving Out PasswordsSuspected XSS Forum Admin Arrested in Ukraine5 Nevada Men Sentenced to Prison for Running Jetflicks Pirated Content SiteRussia Turns to Kyrgyzstan’s Booming Crypto Sector to Evade Sanctions, Researchers SayFrance: New Data Breach Could Affect 340,000 JobseekersRadiology Associates of Richmond Data Breach Affects 1.4 Million PatientsThreat Actor Mimo Targets Magento and Docker to Deploy Crypto Miners and ProxywareCISA Warns: SysAid Flaws Under Active Attack Enable Remote File Access and SSRFNPM Package ‘Is’ With 2.8m Weekly Downloads Infected Devs With MalwareNPM ‘Accidentally’ Removes Stylus Package, Breaks Builds and PipelinesVMware Prevents Some Perpetual License Holders From Downloading PatchesNew York Unveils New Cyber Regulations, $2.5 Million Grant Program for Water SystemsIRL Com Recruits Teens for Real-Life Stabbings, Shootings, FBI Warns
7/22/2025 July 23, 2025July 23, 2025 ~ The Cyber Beat ~ Leave a comment Microsoft Says Chinese Hacking Groups Are Behind Sharepoint Attacks…Linen Typhoon, Violet Typhoon & Storm-2603…Microsoft Knew of SharePoint Security Flaw but Failed to Effectively Patch It, Timeline ShowsRussian Threat Actors Target NGOs with New OAuth Phishing TacticsYouTube Wipes Out Thousands of Propaganda Channels Linked to China, Russia, OthersRussian-Speaking Hacker Group Disrupted by Local ResearchersSilicon Valley Engineer Admits Theft of U.S. Missile Tech SecretsUK Confirms Ransomware Payment Ban for Public Sector and CNI…UK Government Wants Ransomware Victims to Report Breaches So It Can Carry Out ‘Targeted Disruptions’ Against HackersAustralian Regulator Alleges Financial Firm Exposed Clients to Unacceptable Cyber RisksCitizen Will Share Crime Videos With the NYPDAI’s High Cost Pushes Smaller Cybersecurity Companies to SellMajor European Healthcare Network AMEOS Group Discloses Security Breach158-Year-Old Company Knights of Old Forced to Close After Ransomware Attack Precipitated by a Single Guessed Password — 700 Jobs Lost After Hackers Demand Unpayable SumWidespread Net RFQ Scam Targets High-Value GoodsCredential Theft and Remote Access Surge as AllaKore, PureRAT, and Hijack Loader ProliferateCISA and FBI Warn of Escalating Interlock Ransomware AttacksLumma Infostealer Malware Returns After Law Enforcement DisruptionCoyote Malware Abuses Windows Accessibility Framework for Data TheftArch Linux Users Told to Purge Firefox Forks After AUR Malware ScareCisco Confirms Active Exploits Targeting ISE Flaws Enabling Unauthenticated Root AccessCritical Infrastructure Security Is a Critical ConcernHumans Can Be Tracked With Unique ‘Fingerprint’ Based on How Their Bodies Block Wi-Fi Signals
7/21/2025 July 21, 2025July 21, 2025 ~ The Cyber Beat ~ Leave a comment China Denies Link to Espionage Group Accused of Attacking Singapore Critical InfrastructureChina-Linked APT41 Hackers Launch Targeted Espionage Campaign on African IT InfrastructureIranian Hackers Deploy New Android Spyware VersionThis ‘Violently Racist’ Hacker Claims to Be the Source of the New York Times’ Mamdani ScoopMalicious Implants Are Coming to AI Components, ApplicationsPoland Investigates Sabotage After Air Traffic Control Disruption Delayed FlightsAlaska Airlines Lifts Ground Stop Caused by Software OutageUK Wants to Weasel Out of Demand for Apple Encryption Back DoorRing Reintroduces Video Sharing With PoliceIntel Announces End of Clear Linux OS Project, Archives GitHub ReposKrebs: Microsoft Fix Targets Attacks on SharePoint Zero-Day…Microsoft Server Hack Hit About 100 Organizations, Researchers SayDell Confirms Breach of Test Lab Platform by World Leaks Extortion GroupRing Denies Breach After Users Report Suspicious LoginsDior Begins Sending Data Breach Notifications to U.S. CustomersIndian Crypto Exchange CoinDCX Says $44 Million Stolen from ReservesExpressVPN Bug Leaked User IPs in Remote Desktop Sessions3,500 Websites Hijacked to Secretly Mine Crypto Using Stealth JavaScript and WebSocket TacticsAccounting Firm Targeted by Malware Campaign Using New Crypter Ghost CryptFake Receipt Generators Fuel Rise in Online Fraud
7/18-20/2025 July 20, 2025July 20, 2025 ~ The Cyber Beat ~ Leave a comment Singapore Says Cyber Espionage Group UNC3886 Targeting Critical InfrastructureMicrosoft to Stop Using Engineers in China for Tech Support of U.S. Military, Hegseth Orders ReviewHow China’s Patriotic ‘Honkers’ Became the Nation’s Elite CyberspiesUNG0002 Group Hits China, Hong Kong, Pakistan Using LNK Files and RATs in Twin CampaignsRussia APT28 Linked to New Malware ‘Authentic Antics’ Targeting Email Accounts for EspionageKrebs: Poor Passwords Tattle on AI Hiring Bot Maker Paradox.aiEx-IDF Cyber Chief on Iran, Scattered Spider, and Why Social Engineering Worries Him More Than 0-DaysNew Phobos and 8Base Ransomware Decryptor Recover Files for FreeRetail Becomes New Target as Healthcare Ransomware Attacks SlowAt Least 750 U.S. Hospitals Faced Disruptions During Last Year’s CrowdStrike Outage, Study FindsSecuring the Budget: Demonstrating Cybersecurity’s ReturnMalware Injected into 5 npm Packages After Maintainer Tokens Stolen in Phishing AttackAI-Generated Lcryx Ransomware Discovered in Cryptomining BotnetArch Linux Pulls AUR Packages that Installed Chaos RAT MalwareThreat Actors Downgrade FIDO2 MFA Auth in PoisonSeed Phishing AttackEncryptHub Targets Web3 Developers Using Fake AI Platforms to Deploy Fickle Stealer MalwareHPE Warns of Hardcoded Passwords in Aruba Access PointsHackers Scanning for TeleMessage Signal Clone Flaw Exposing PasswordsHackers Exploit Critical CrushFTP Flaw to Gain Admin Access on Unpatched ServersIvanti Zero-Days Exploited to Drop MDifyLoader and Launch In-Memory Cobalt Strike AttacksCritical Unpatched SharePoint Zero-Day Actively Exploited, Breaches 75+ Company ServersCISA Issues Advisories on Critical ICS Vulnerabilities Across Multiple SectorsCitrix Bleed 2 Exploited Weeks Before PoCs as Citrix Denied Attacks
7/17/2025 July 17, 2025July 17, 2025 ~ The Cyber Beat ~ Leave a comment Personal Details of UK Special Forces and Spies Were Included in Afghan Data BreachLawmakers Call On DNI to Review Intel Sharing With Spain Over Huawei RevelationsAI Cloaking Tools Enable Harder-to-Detect Cyber-AttacksMicrosoft Exposes Scattered Spider’s Latest TacticsOne in 12 US/UK Employees Uses Chinese GenAI ToolsCrypto Crime in 2025 Is Topping Last Year’s Totals AlreadyQuantum Code Breaking? You’d Get Further With an 8-Bit Computer, an Abacus, and a DogGoogle Sues to Disrupt BadBox 2.0 Botnet Infecting 10 Million DevicesArmenian, Ukrainian Nationals Among Ryuk Ransomware Actors Facing U.S. Hacking ChargesUK NCA Officer Jailed for Stealing Bitcoin From Darknet Criminal He Previously Helped InvestigateMeta Investors, Zuckerberg Settle $8 Billion Privacy Lawsuit Tied to Cambridge Analytica ScandalElite Russian University Launches Degree Program on Sanctions EvasionThai Officials Restore Ministry of Labor Website After Hack, DefacementCo-op Confirms Data of 6.5 Million Members Stolen in CyberattackHacker Steals $27 Million in BigONE Exchange Crypto BreachRussian Vodka Producer Reports Disruptions After Ransomware AttackMower County (MN) Still Working to Restore Systems After Cyber AttackMalware-as-a-Service Campaign Exploits GitHub to Deliver PayloadsHackers Are Finding New Ways to Hide Malware in DNS RecordsLameHug Malware Uses AI LLM to Craft Windows Data-Theft Commands in Real-TimeHackers Exploit Apache HTTP Server Flaw to Deploy Linuxsys Cryptocurrency MinerCisco Warns of Critical ISE Flaw Allowing Unauthenticated Attackers to Execute Root CodeVMware Fixes Four ESXi Zero-Day Bugs Exploited at Pwn2Own BerlinWhy Cybersecurity Still Matters for America’s Schools
7/16/2025 July 16, 2025July 16, 2025 ~ The Cyber Beat ~ Leave a comment Ukrainian Hackers Claim to Have Destroyed Major Russian Drone Maker’s Entire NetworkWhat We Know So Far About Afghan Data BreachChina-Linked Hackers Target Taiwan’s Chip Industry With Increasing Attacks, Researchers SaySenate Panel Passes Intelligence Authorization Act That Takes Aim At Telecom HacksChinese Authorities Are Using a New Tool to Hack Seized Phones and Extract DataDark Web Travel Agencies Take FlightCloudflare Says 1.1.1.1 Outage Not Caused by Attack or BGP HijackPro-Russian Cybercrime Network NoName057(16) Demolished in Operation EastwoodCo-op Aims to Divert More Young Hackers into Cyber CareersAdoption Agency Data Exposure Revealed Information About Children and ParentsLouis Vuitton Says Regional Data Breaches Tied to Same CyberattackDragonForce Claims Belk Data Breach from May, Says Belk Refuse to Pay UpSquidLoader Malware Campaign Targets Hong Kong Financial SectorHackers Leverage Microsoft Teams to Spread Matanbuchus 3.0 Malware to Targeted FirmsNew Konfety Malware Variant Evades Detection by Manipulating APKs and Dynamic CodeNew Fortinet FortiWeb Hacks Likely Linked to Public RCE ExploitsUNC6148 Backdoors Fully-Patched SonicWall SMA 100 Series Devices with OVERSTEP RootkitUrgent: Google Releases Critical Chrome Update for CVE-2025-6558 Exploit Active in the Wild
7/15/2025 July 15, 2025July 15, 2025 ~ The Cyber Beat ~ Leave a comment U.S. National Guard Unit Was ‘Extensively’ Hacked by Salt Typhoon in 2024, Memo SaysNSA: Volt Typhoon Was ‘Not Successful’ at Persisting in Critical InfrastructureState-Backed HazyBeacon Malware Uses AWS Lambda to Steal Data from SE Asian GovernmentsNorth Korean Actors Expand Contagious Interview Campaign with New Malware Loader XORIndexKrebs: DOGE Denizen Marko Elez Leaked API Key for xAIMITRE Launches New Framework to Tackle Crypto RisksICEBlock Isn’t ‘Completely Anonymous’Ex-U.S. Soldier Who Googled ‘Can Hacking Be Treason’ Pleads Guilty to ExtortionPolice Disrupt “Diskstation” Ransomware Gang Attacking NAS DevicesLouis Vuitton Says Customers in Turkey, South Korea and UK Impacted by Data BreachesAlbemarle County (VA) IDs INC Ransom Group Behind Ransomware AttackThreat Actors Exploit SVG Files in Stealthy JavaScript RedirectsAsyncRAT’s Open-Source Code Sparks Surge in Dangerous Malware Variants Across the GlobeAndroid Malware Konfety Uses Malformed APKs to Evade DetectionHyper-Volumetric DDoS Attacks Reach Record 7.3 Tbps, Targeting Key Global SectorsGoogle Says ‘Big Sleep’ AI Tool Found Bug Hackers Planned to UseCurl Creator Mulls Nixing Bug Bounty Awards to Stop AI SlopAbacus Dark Web Market Shutters After Exit Scam, Say Experts
7/14/2025 July 14, 2025July 14, 2025 ~ The Cyber Beat ~ Leave a comment Russia-Linked Group Storm-1516 Spoofing European Journalists to Spread DisinformationElmo’s Hacked X Account Posted Racist Messages. Sesame Workshop Is Trying to Regain ControlGrok-4 Jailbroken Two Days After Release Using Combined AttackAI ‘Nudify’ Websites Are Raking in Millions of DollarsCBI Shuts Down £390K U.K. Tech Support Scam, Arrests Key Operatives in Noida Call CenterRomanian Police Arrest 13 Scammers Targeting UK’s Tax AuthorityPiracy Sites for Nintendo Switch, PS4 Games Taken Down by FBIFederal IT Contractor Hill Associates to Pay $14.75 Fine Over ‘Cyber Fraud’ AllegationsGardendale (AL) Purportedly Compromised by INC Ransom GroupMalicious VSCode Extension in Cursor IDE Led to $500K Crypto TheftInterlock Ransomware Unleashes New RAT in Widespread CampaignGigabyte Motherboards Vulnerable to UEFI Malware Bypassing Secure BootIoT Devices at Risk Due to eSIM Flaw in Kigen eUICC CardsExploited Wing File Transfer Bug Risks ‘Total Server Compromise,’ CISA WarnsUK Launches Vulnerability Research Program for External ExpertsThe Dark Side of Global Power Shifts & Demographic Decline
7/11-13/2025 July 14, 2025July 14, 2025 ~ The Cyber Beat ~ Leave a comment MPs Warn of “Significant” Iranian Cyber-Threat to UKSpain Awards Huawei Contracts to Manage Intelligence Agency WiretapsFormer Mexican President Investigated Over Allegedly Taking Bribes From Spyware IndustryMounting Ransomware Gang Prevalence Met With Decline in VictimizationTrump Blocks Acquisition of Equipment Supplier Jupiter Systems by Hong Kong FirmTikTok Loses Bid to Dismiss Lawsuit Alleging Its ‘Addictive Design’ Exploits KidsOver Half of “Finfluencer” Victims Have Lost Money, Says TSBGoogle Gemini Flaw Hijacks Email Summaries for PhishingAirline Executive Agrees to Dismiss Litigation Around Alleged Hack-For-Hire SchemeBritish Man Sentenced for Network Rail Wi-Fi HackIndonesia Extradites Russian Accused of Selling Personal Data on TelegramISACA Addresses Experience Gap with CISA Associate DesignationLouis Vuitton Says UK Customer Data Stolen in Cyber-AttackHacker Returns Cryptocurrency Stolen From GMX Exchange After $5 Million Bounty PaymentGPUHammer: New RowHammer Attack Variant Degrades AI Models on NVIDIA GPUsWordPress Gravity Forms Developer Hacked to Push Backdoored PluginsOver 600 Laravel Apps Exposed to Remote Code Execution Due to Leaked APP_KEYs on GitHubHackers Are Exploiting Critical RCE Flaw in Wing FTP ServerCritical Wing FTP Server Vulnerability (CVE-2025-47812) Actively Being Exploited in the WildFortinet Releases Patch for Critical SQL Injection Flaw in FortiWeb (CVE-2025-25257)CISA Adds Citrix NetScaler CVE-2025-5777 to KEV Catalog as Active Exploits Target EnterprisesWindows 11 Now Uses JScript9Legacy Engine for improved SecurityFactoring Cybersecurity Into Finance’s Digital Strategy
7/10/2025 July 11, 2025July 11, 2025 ~ The Cyber Beat ~ Leave a comment Security Through Quality: Navigating the Latest Cybersecurity Executive OrderHackers Target Eldercare HomesNew AI Malware PoC Reliably Evades Microsoft DefenderLLMs Fall Short in Vulnerability Discovery and ExploitationKrebs: UK Arrests Four in ‘Scattered Spider’ Ransom GroupRussian Pro Basketball Player Arrested in France for Alleged Role in Ransomware AttacksEx-ASML Engineer Who Stole Chip Tech for Russia Gets Three Years in Dutch PrisonLovestruck U.S. Air Force Worker Admits Leaking Secrets on Dating AppWindows 11 Now Uses JScript9Legacy Engine for Improved SecurityNippon Steel IT Subsidiary Hit by “Zero-Day Attack,” Causing Data BreachAlbemarle County (VA) Warns of Cybersecurity BreachFlorida Lung, Asthma and Sleep Specialists Warn Patients of Data Breach After Russian Group Claims ResponsibilityMicrosoft Outlook Hit With Hours-Long OutageFake Gaming and AI Firms Push Malware on Cryptocurrency Users via Telegram and DiscordNew ZuRu Malware Variant Targeting Developers via Trojanized Termius macOS AppCritical MCP-remote Vulnerability Enables Remote Code Execution, Impacting 437,000+ DownloadsPerfektBlue Bluetooth Flaws Impact Mercedes, Volkswagen, Skoda Cars
7/9/2025 July 9, 2025July 9, 2025 ~ The Cyber Beat ~ Leave a comment French Intel Chief Warns of Evolving Russian Hybrid Operations, ‘Existential Threat’ to EuropeRubio Impersonator Signals Growing Security Threat From DeepfakesDoNot APT Expands Operations, Targets European Foreign Ministries with LoptikMod MalwareFake CNN and BBC Sites Used to Push Investment ScamsAfter Setback, Tech Firms Renew Push for Federal AI RegulationIsrael’s Cyberstarts Launches $300 Million Fund to Help Startups Retain TalentMicrosoft Authenticator on iOS Moves Backups Fully to iCloudSamsung Announces Major Security Enhancements Coming to One UI 8Google Reveals Details on Android’s Advanced Protection for ChromeGerman Court Rules Meta Tracking Technology Violates European Privacy LawsTreasury Sanctions North Korean Over IT Worker Malware SchemeKnow Your Enemy: Understanding Dark Market DynamicsMcDonald’s AI Hiring Bot Exposed Millions of Applicants’ Data to Hackers Using the Password ‘123456’Ransomware Attack Stops Nova Scotia Power Meter ReadingsM&S Confirms Social Engineering Led to Massive Ransomware AttackQantas Confirms Data Breach Impacts 5.7 Million CustomersBitcoin Depot Breach Exposes Data of Nearly 27,000 Crypto UsersMore Than $40 Million Stolen From GMX Crypto PlatformIngram Micro Starts Restoring Systems After Ransomware AttackNew Android TapTrap Attack Fools Users With Invisible UI TrickGold Melody IAB Exploits Exposed ASP.NET Machine Keys for Unauthorized Access to TargetsNew ServiceNow Flaw Lets Attackers Enumerate Restricted DataRuckus Networks Leaves Severe Flaws Unpatched in Management DevicesAMD Warns of New Meltdown, Spectre-Like Bugs Affecting CPUsKrebs: Microsoft Patch Tuesday, July 2025 Edition
7/8/2025 July 8, 2025July 8, 2025 ~ The Cyber Beat ~ Leave a comment Imposter Used AI to Pose as Marco Rubio and Contact Foreign MinistersSuspected Chinese Silk Typhoon Cybersnoop Grounded in Italy After U.S. TipoffIranian Ransomware Group Pay2Key.I2P Offers Bigger Payouts for Attacks on Israel, U.S.Over 500 Scattered Spider Phishing Domains Poised to Target Multiple IndustriesBaitTrap: Over 17,000 Fake News Websites Caught Fueling Investment Fraud Globally4 Critical Steps in Advance of 47-Day SSL/TLS CertificatesSatanLock Ransomware to Leak All Stolen Data as Operation Shuts DownUnless Users Take Action, Android Will Let Gemini Access Third-Party AppsChinese Video Surveillance Vendor Hikvision to Fight Canadian BanBritish Criminals Convicted Over Wagner Group-Linked Arson Attack on London WarehouseUK Companies Should Have to Disclose Major Cyberattacks, Marks & Spencer Says…Marks & Spencer Chair Refuses to Say if Retailer Paid Hackers After Ransomware AttackActivision Took Down Call of Duty Game After PC Players HackedAnatsa Android Banking Trojan Hits 90,000 Users with Fake PDF App on Google PlayResearchers Reveal 18 Malicious Chrome and Edge Extensions Disguised as Everyday ToolsMalicious Pull Request Targets 6,000+ Developers via Vulnerable Ethcode VS Code ExtensionRondoDox Botnet Exploits Flaws in TBK DVRs and Four-Faith Routers to Launch DDoS AttacksPublic Exploits Released for Citrix Bleed 2 NetScaler Flaw, Patch NowMicrosoft July 2025 Patch Tuesday Fixes One Zero-Day, 137 FlawsCISA Adds Four Critical Vulnerabilities to KEV Catalog Due to Active Exploitation
7/7/2025 July 7, 2025July 7, 2025 ~ The Cyber Beat ~ Leave a comment Cyberattack Deals Blow to Russian Firmware Used to Repurpose Civilian Drones for Ukraine WarTAG-140 Deploys DRAT V2 RAT, Targeting Indian Government, Defense, and Rail Sectors‘Batavia’ Windows Spyware Campaign Targets Dozens of Russian OrgsHundreds of Malicious Domains Registered Ahead of Prime DaySEO Poisoning Campaign Targets 8,500+ SMB Users with Malware Disguised as AI ToolsHackers Target Employee Credentials Amid Spike in ID AttacksEmployee Gets $920 for Credentials Used in $140 Million Bank HeistRussia’s St. Petersburg Hit by Major Internet Outage Amid Drone Strike WarningsQantas Is Being Extorted in Recent Data-Theft CyberattackNearly 300,000 People Were Impacted by Cyberattack on Nova Scotia PowerBeware of Bert: New Ransomware Group Targets Healthcare, Tech FirmsHackers Abuse Leaked Shellter Red Team Tool to Deploy InfostealersAtomic macOS Infostealer Adds Backdoor for Persistent AttacksResearchers Share CitrixBleed 2 Detection Analysis After Initial HoldTikTok Recruits Senior UK Privacy Regulator as It Battles Fine and Investigation
7/4-6/2025 July 6, 2025July 6, 2025 ~ The Cyber Beat ~ Leave a comment NightEagle APT Exploits Microsoft Exchange Flaw to Target China’s Military and Tech SectorsRansomware: Hunters International Is Not Shutting Down, It’s RebrandingMassive Spike in Use of .es Domains for Phishing AbuseQantas Attack Reveals One Phone Call Is All It Takes to Crack Cybersecurity’s Weakest Link: HumansAndroid 16 Can Warn You That You Might Be Connected to a Fake Cell TowerTaiwan Flags Chinese Apps Over Data Security ViolationsIngram Micro Confirms SafePay Ransomware Behind Multi-Day OutageHacker Leaks Telefónica Data Allegedly Stolen in a New BreachLouis Vuitton Korea Says Systems Breach Led to Customer Data LeakCoinbase Director Flags Possible Hack Behind $8B Bitcoin AwakeningWordPress Plugin Flaw Exposes 600,000 Sites to File DeletionLeaks Hint at Operator-Like Tool in ChatGPT Ahead of GPT-5 LaunchSouth Korea Penalises ‘Negligent’ SK Telecom Over Major Data Leak
7/3/2025 July 4, 2025July 4, 2025 ~ The Cyber Beat ~ Leave a comment Two New Pro-Russian Hacktivist Groups Target Ukraine, Recruit InsidersMicrosoft Shuts Down 3,000 Email Accounts Created by North Korean IT WorkersTop FBI Cyber Official: Salt Typhoon ‘Largely Contained’ in Telecom NetworksThe Person in Charge of Testing Tech for U.S. Spies Has ResignedCBP Wants New Tech to Search for Hidden Data on Seized PhonesKrebs: Big Tech’s Mixed Response to U.S. Treasury SanctionsAutomation and Vulnerability Exploitation Drive Mass Ransomware BreachesThe Sky-High Cyber Risk in Healthcare: WSJ Readers Weigh InRansomware Crew Hunters International Shuts Down, Hands Out Keys to VictimsRussia Jails Man for 16 Years Over Pro-Ukraine Cyberattacks on Critical InfrastructureIdeaLab Confirms Data Stolen in Ransomware Attack Last YearYoung Consulting Finds Even More Folks Affected in Breach Mess – Now Over 1 MillionGloucester County (VA) Says April Ransomware Attack Exposed Employee SSNsMassive Android Fraud Operations Uncovered: IconAds, Kaleidoscope, SMS Malware, NFC ScamsIDE Extensions Pose Hidden Risks to Software Supply ChainPrivilege Escalation Flaw Found in Azure Machine Learning ServiceGrafana Releases Critical Security Update for Image Renderer PluginLinux Users Urged to Patch Critical Sudo CVECVE Program Launches Two New Forums to Enhance CVE UtilizationMicrosoft Windows Firewall Complains About Microsoft CodeGoogle Open-Sources Privacy Tech for Age Verification
7/2/2025 July 2, 2025July 2, 2025 ~ The Cyber Beat ~ Leave a comment Scattered Spider: A Group of Young Cybercriminals Poses the ‘Most Imminent Threat’ of Cyberattacks Right NowChinese Hackers Target France in Ivanti Zero-Day Exploit CampaignChina-Linked Hackers Spoof Big-Name Brand Websites to Steal Shoppers’ Payment InfoNorth Korean Hackers Target Web3 with Nim Malware and Use ClickFix in BabyShark CampaignAI Models Mislead Users on Login URLsStates Notch Victory Over 10-Year AI Law BanCalifornia Jury Orders Google to Pay $314 Million Over Data Transfers From Android PhonesDOJ Investigates Ex-Ransomware Negotiator Over Extortion KickbacksSpain Arrests Hackers Who Targeted Politicians and JournalistsCISA Warns the Signal Clone Used by Natsec Staffers Is Being Attacked, so Patch NowGermany Seeks Deeper Partnership With Israel on Cybersecurity1 Year Later: Lessons Learned From the CrowdStrike OutageAirline Qantas Hit by Cyber Attack, Leaving 6 Million Customer Records at Risk of Data Breach…Amid Scattered Spider Aviation BreachesRansomware Gang Attacks German Charity That Feeds Starving ChildrenMedical Device Company Surmodics Reports Cyberattack, Says It’s Still RecoveringHackers Using PDFs to Impersonate Microsoft, DocuSign, and More in Callback Phishing CampaignsDozens of Fake Wallet Add-Ons Flood Firefox Store to Drain CryptoData Breach Reveals Catwatchful ‘Stalkerware’ Is Spying on Thousands of PhonesAndroid SMS Stealer Infects 100,000 Devices in UzbekistanNimDoor Crypto-Theft macOS Malware Revives Itself When KilledForminator Plugin Flaw Exposes WordPress Sites to Takeover AttacksCisco Scores a Perfect 10 – Sadly for a Critical Flaw in Its Comms PlatformCitrix Warns of Login Issues After Netscaler Auth Bypass Patch
7/1/2025 July 1, 2025July 1, 2025 ~ The Cyber Beat ~ Leave a comment New Report Uncovers Major Overlaps in Cybercrime and State-Sponsored EspionageCyberattack on Russian Independent Media Had Links to U.S.-Sanctioned Institute, Researchers FindColumbia Cyberattack Appears Politically Motivated, University SaysTA829 and UNK_GreenSec Share Tactics and Infrastructure in Ongoing Malware CampaignsAeza Group Sanctioned for Hosting Ransomware, Infostealer ServersAT&T Now Lets You Lock Down Your Account to Prevent SIM Swapping AttacksCloudflare Now Blocks AI Web Scraping by DefaultWhy Cybersecurity Should Come Before AI in SchoolsKelly Benefits Says 2024 Data Breach Impacts 550,000 CustomersEsse Health Says Recent Data Breach Affects Over 263,000 PatientsJohnson Controls Starts Notifying People Affected by 2023 BreachDragonForce Ransomware Variant Tied to Emerging DEVMAN Threat ActorNew FileFix Attack Runs JScript While Bypassing Windows MoTW AlertsNew Flaw in IDEs Like Visual Studio Code Lets Malicious Extensions Bypass Verified StatusCritical Vulnerability in Anthropic’s MCP Exposes Developer Machines to Remote ExploitsGoogle Issues Emergency Patch for Fourth Chrome Zero-Day of 2025
6/30/2025 July 1, 2025July 1, 2025 ~ The Cyber Beat ~ Leave a comment Iran-Linked Hackers May Target U.S. Firms and Critical Infrastructure, U.S. Government WarnsDOJ Raids 29 ‘Laptop Farms’ in Operation Against North Korean IT Worker Scheme…Identities of More Than 80 Americans Stolen for North Korean IT Worker ScamsKrebs: Senator Chides FBI for Weak Advice on Mobile SecurityFBI: Cybercriminals Steal Health Data Posing as Fraud InvestigatorsSinaloa Drug Cartel Hired a Cybersnoop to Identify and Kill FBI InformantsInternational Taskforce Dismantles €460m Crypto Fraud NetworkIT Worker Jailed After Revenge Attack on EmployerGermany Asks Google, Apple to Remove DeepSeek AI From App StoresCloudflare Confirms Russia Restricting Access to Services Amid Free Internet CrackdownICC Says New Cybersecurity Incident Has Been ContainedSwiss Nonprofit Health Organization Breached by Sarcoma Ransomware Group…Switzerland Says Government Data Stolen in Ransomware AttackIntegrated Oncology Network Reports Data Breach Affecting cCARE PatientsBlind Eagle Uses Proton66 Hosting for Phishing, RAT Deployment on Colombian BanksOver 1,200 Citrix Servers Unpatched Against Critical Auth Bypass FlawVulnerability Debt: How Do You Put a Price on What to Fix?Microsoft Warns of Windows Update Delays Due to Wrong TimestampMicrosoft Defender for Office 365 Now Blocks Email Bombing AttacksMicrosoft Authenticator Is Ending Support for Passwords