Cyber Security News Daily Recap

Cybersecurity News | Daily Recap [12 Jun 2025]

admin
Cybersecurity News | Daily Recap [12 Jun 2025]

Recent cybersecurity developments include the Warlock ransomware targeting government agencies and the Fog ransomware using advanced open-source tools to evade detection. Additionally, law enforcement operations have successfully dismantled cyber scam networks and infostealer malware infrastructures, highlighting ongoing efforts to combat cyber threats. #Warlock #FogRansomware #InterpolInfostealers #AsiaScamCrackdown

Ransomware & Cybercrime

  • Warlock ransomware gang strikes government agencies worldwide with data encryption and theft, continuing threats to critical infrastructure – Warlock Strikes
  • Fog ransomware group uses a sophisticated mix of legitimate and open-source tools like Syteca to evade detection during attacks – Fog Ransomware
  • Former Black Basta affiliates leverage Microsoft Teams phishing and Python scripts to maintain persistent access in evolving cyberattacks – Black Basta Evolution
  • Erie Insurance confirms cyberattack causing significant disruptions and website outages as investigation continues – Erie Cyberattack
  • Singapore-led multi-country law enforcement operation arrests 1,800 suspects and freezes 32,000 bank accounts linked to $225 million cyber scams – Asia Scam Crackdown
  • Interpol dismantles over 20,000 malicious IPs tied to infostealer malware families like Lumma and Vidar, arresting 32 suspects and notifying 216,000 victims globally – Interpol Infostealer Crackdown, Infostealer Arrests

Vulnerabilities & Patching

  • Microsoft patches a zero-day Windows WebDav RCE exploited by APT group Stealth Falcon targeting Middle Eastern government organizations – Stealth Falcon Zero-Day
  • Microsoft’s June 2025 Patch Tuesday fixes one zero-day and nine high-risk flaws across Windows and Office to counter advanced threats – Microsoft Patch Tuesday
  • GitLab issues critical patches for account takeover and authentication bypass vulnerabilities; immediate upgrade recommended – GitLab Patches
  • Palo Alto Networks releases multiple advisories fixing privilege escalation and code injection flaws in GlobalProtect, PAN-OS, and Prisma Access – Palo Alto Advisory, Palo Alto Patches
  • Apache CloudStack security patches in versions 4.19.3.0 and 4.20.1.0 fix privilege escalation and unauthorized access vulnerabilities – CloudStack Fixes
  • Microsoft releases emergency Windows 11 24H2 update fixing Easy Anti-Cheat BSOD issues and a separate patch for incompatible devices – Windows 11 Patch, Windows 11 Separate Update
  • Microsoft Outlook critical local vulnerability (CVE-2025-47176) enables remote code execution via crafted files, urging timely patching – Outlook Vulnerability
  • ConnectWise to rotate ScreenConnect code signing certificates addressing security risks linked to configuration data handling flaws – ConnectWise Certificate Rotation

AI Security & Vulnerabilities

  • New TokenBreak attack undermines AI content moderation by exploiting tokenization methods through single-character text alterations – TokenBreak Attack
  • EchoLeak, a zero-click AI vulnerability in Microsoft 365 Copilot, exposed sensitive data without user interaction before Microsoft patched it – EchoLeak Vulnerability, EchoLeak Data Leak
  • Hirundo, an Israeli startup, raises $8 million to develop AI debiasing technology to improve safety and reliability across key industries – Hirundo Funding
  • AI introduces numerous invisible identities that attackers exploit to move laterally and exfiltrate data, prompting the need for enhanced security strategies – AI Agents Risk Webinar
  • GitGuardian’s platform addresses security blind spots in machine and non-human identities like API keys and service accounts to prevent breaches from leaked secrets – Non-Human Identities

Account Takeovers & Password Attacks

  • Over 80,000 Microsoft Entra ID accounts targeted globally using the open-source TeamFiltration tool via password spraying and OAuth abuse in a campaign named UNK_SneakyStrike – Password Spraying Attacks, Microsoft Entra Takeover
  • Microsoft Edge introduces secure password deployment for enterprises to safely share credentials and support Zero Trust security models – Edge Password Deployment

Data Exfiltration & Covert Channels

  • SmartAttack exploits smartwatches and ultrasonic signals to stealthily exfiltrate data from physically air-gapped systems, highlighting new risks in isolated environments – SmartAttack Method, SmartAttack Discovery

Cybersecurity Platforms & Intelligence

  • Securonix acquires ThreatQuotient to build an AI-driven, unified security operations platform enhancing threat detection and response efficiency – Securonix Acquisition

Security Awareness & Incidents

  • Jake Gallen’s experience demonstrates how a simple Zoom call led to a costly crypto hack, emphasizing cybersecurity vigilance within crypto and NFT communities – $200K Zoom Hack
  • Rising retail cyberattacks disrupt supply chains and operations, blocking orders and emptying shelves while exposing customer data – Retail Cyberattacks Rise

Cybersecurity News | Daily Recap – hendryadrian.com