Cyber Security News Daily Recap

Cybersecurity News | Daily Recap [18 Jul 2025]

admin
Cybersecurity News | Daily Recap [18 Jul 2025]

Recent cybersecurity developments highlight global government crackdowns on cybercrime suspects, China’s cyber espionage activities, and the use of AI to enhance malware capabilities. Key incidents include Cambodia’s mass arrests, Chinese hacking targeting US and Taiwan sectors, and malware like LAMEHUG and Matanbuchus exploiting new vulnerabilities. #LAMEHUG #Matanbuchus

Cybercrime Crackdowns & Government Espionage

  • Cambodia arrested over 1,000 cybercrime suspects amid criticism of ongoing collusion and human trafficking concerns – Cambodia Crackdown
  • Chinese-backed hackers targeted a US law firm; espionage against Taiwan’s semiconductor sector and UK retailers raise alarm over China-linked cyber threats – China Cyber Threats
  • The US intelligence community faces scrutiny over sharing intel with Spain due to Huawei equipment risks linking to Chinese espionage – Huawei Intel Concerns
  • The British government sanctions 18 Russian GRU spies involved in cyberattacks targeting Ukraine and Western nations with sophisticated malware – UK Sanctions GRU
  • Salt Typhoon, a Chinese hacking group, breached the US National Guard network, stealing sensitive configurations over nine months – National Guard Breach

Malware & Exploits

  • Ukrainian CERT uncovers LAMEHUG malware using AI large language models for phishing, linked to APT28 – LAMEHUG AI Malware, LAMEHUG Adaptive Attacks
  • Hackers exploit new Fortinet FortiWeb SQL injection flaw (CVE-2025-25257) for remote code execution soon after PoC release – Fortinet FortiWeb Exploit
  • Multiple critical bugs in Cisco Identity Services Engine (ISE), including CVE-2025-20337 with CVSS 10 rating, risk root code execution – Cisco Critical Bugs, Cisco Patch Released
  • CitrixBleed 2 (CVE-2025-5777) exploited weeks before public PoCs compromised over 120 firms, urging urgent patching – CitrixBleed 2 Exploitation
  • VMware patches four zero-days exploited during Pwn2Own Berlin competition, with severity up to 9.3 – VMware Zero-Day Fixes
  • NVIDIA Container Toolkit vulnerable to privilege escalation through CVE-2025-23266, threatening AI cloud services – NVIDIA Privilege Escalation
  • Microsoft Teams voice calls exploited to distribute advanced Matanbuchus malware featuring evasion and obfuscation capabilities – Matanbuchus Malware
  • GitHub repositories abused by threat actors to host loaders delivering Amadey, Lumma, and Rhadamanthys stealers, bypassing filters – GitHub Malware Hosting
  • New campaign exploits CVE-2021-41773 Apache HTTP Server flaw to deploy Linuxsys crypto miner via compromised websites – Apache CVE Exploitation
  • Ivanti Connect Secure bugs remain exploited months after patches, with malware like DslogdRAT and SPAWNCHIMERA targeting diverse sectors – Ivanti Continued Exploitation

Data Breaches & Ransomware

  • Anne Arundel Dermatology data breach exposed info of 1.9 million patients, with no misuse detected; identity protection offered – Anne Arundel Breach
  • Virginia Radiology Practice suffered a breach affecting 1.4 million, exposing health and personal data without detected misuse – Virginia Radiology Breach
  • Novabev Group, a Russian vodka producer, forced to close 2,000+ stores after ransomware disrupted operations; ransom demand refused – Novabev Ransomware
  • Legal action targets Ryuk ransomware actors of Armenian and Ukrainian origin accused of 2,400+ attacks and $15M ransom gains – Ryuk Ransomware Charges
  • BigONE exchange lost $27 million in a crypto breach; no private key or user data compromised; full reimbursement promised – BigONE Crypto Breach
  • Thailand Ministry of Labor website restored after defacement by Devman, who claimed data theft and device encryption – Thailand Ministry Hack

Legal & Regulatory Developments

  • Meta settles an $8 billion privacy lawsuit involving CEO Zuckerberg over the Cambridge Analytica data scandal – Meta Privacy Settlement, Meta Privacy Update
  • Experts urge organizations to adopt cyber resilience tactics beyond backups amid evolving ransomware threats, emphasizing immutable backups and automated recovery – Cyber Resilience Guidance
  • ANZ region highlighted for cybersecurity risks; top 10 threat intelligence platforms like Cyble and Recorded Future recommended for 2025 defense strategies – ANZ Threat Intelligence

Emerging Technologies & AI Security

  • Startup StrongestLayer unveils TRACE, an AI-based email security platform tackling spear-phishing and fake websites using AI reasoning – StrongestLayer Launch
  • AI-driven fraud surges with data harvesting and deepfakes fueling synthetic, scalable attacks projected to cause up to $40 billion annual U.S. losses by 2027 – AI Fraud Growth
  • Roblox introduces AI-based age verification and enhanced parental controls addressing privacy and safety challenges for teen users – Roblox Safety Tools

Phishing & Social Engineering Attacks

  • Scanception quishing campaign abuses QR codes in PDFs to deliver malware and steal credentials, bypassing traditional defenses and targeting mobile users – Scanception QR Attack

Cybersecurity News | Daily Recap – hendryadrian.com

SHARE THIS STORY

WhatsAppX (Twitter)TelegramBlueskyFacebookLinkedInThreadsEmailPrint