7/18-20/2025

~ The Cyber Beat
Singapore Says Cyber Espionage Group UNC3886 Targeting Critical Infrastructure

Microsoft to Stop Using Engineers in China for Tech Support of U.S. Military, Hegseth Orders Review

How China’s Patriotic ‘Honkers’ Became the Nation’s Elite Cyberspies

UNG0002 Group Hits China, Hong Kong, Pakistan Using LNK Files and RATs in Twin Campaigns

Russia APT28 Linked to New Malware ‘Authentic Antics’ Targeting Email Accounts for Espionage

Krebs: Poor Passwords Tattle on AI Hiring Bot Maker Paradox.ai

Ex-IDF Cyber Chief on Iran, Scattered Spider, and Why Social Engineering Worries Him More Than 0-Days

New Phobos and 8Base Ransomware Decryptor Recover Files for Free

Retail Becomes New Target as Healthcare Ransomware Attacks Slow

At Least 750 U.S. Hospitals Faced Disruptions During Last Year’s CrowdStrike Outage, Study Finds

Securing the Budget: Demonstrating Cybersecurity’s Return		Malware Injected into 5 npm Packages After Maintainer Tokens Stolen in Phishing Attack

AI-Generated Lcryx Ransomware Discovered in Cryptomining Botnet

Arch Linux Pulls AUR Packages that Installed Chaos RAT Malware

Threat Actors Downgrade FIDO2 MFA Auth in PoisonSeed Phishing Attack

EncryptHub Targets Web3 Developers Using Fake AI Platforms to Deploy Fickle Stealer Malware

HPE Warns of Hardcoded Passwords in Aruba Access Points

Hackers Scanning for TeleMessage Signal Clone Flaw Exposing Passwords

Hackers Exploit Critical CrushFTP Flaw to Gain Admin Access on Unpatched Servers

Ivanti Zero-Days Exploited to Drop MDifyLoader and Launch In-Memory Cobalt Strike Attacks

Critical Unpatched SharePoint Zero-Day Actively Exploited, Breaches 75+ Company Servers

CISA Issues Advisories on Critical ICS Vulnerabilities Across Multiple Sectors

Citrix Bleed 2 Exploited Weeks Before PoCs as Citrix Denied Attacks

Published by The Cyber Beat

Leave a Reply