227/68 Tuesday, June 24, 2025 The Qilin ransomware group has escalated its operations by launching a new feature called “Call Lawyer”, offering legal advisory services to its affiliates to help pressure victims into paying ransom. According to cybersecurity firm Cybereason, Qilin is aiming to position itself as a major player in the Ransomware-as-a-Service (RaaS) ecosystem, […]
226/68 Monday, June 23, 2025 The Iranian government has officially confirmed that it has restricted nationwide internet access in response to escalating cyber tensions with Israel. Officials stated that the move was aimed at protecting critical infrastructure from cyberattacks and preventing adversaries from remotely controlling drones via internet networks. According to reports by Iranian news […]
225/68 Monday, June 23, 2025 In May 2025, Cloudflare—one of the world’s leading web infrastructure and cybersecurity companies—announced that it successfully mitigated the largest Distributed Denial of Service (DDoS) attack ever recorded, which peaked at a staggering 7.3 terabits per second (Tbps). The attack targeted a hosting provider and exceeded the previous record by 12%, […]
224/68 Friday, June 20, 2025 Veeam has released a security update to address a critical vulnerability in its Backup & Replication product. The flaw, tracked as CVE-2025-23121 and rated CVSS 9.9, allows authenticated domain users to execute arbitrary code remotely on the Backup Server, potentially leading to full system compromise. This vulnerability affects versions 12.3.1.1139 […]
223/68 Friday, June 20, 2025 A Russian state-linked hacking group has been detected using a highly targeted phishing technique that bypasses Gmail’s two-factor authentication (2FA) by exploiting a lesser-known Google feature called App-Specific Passwords (ASPs). According to Google’s Threat Intelligence Group, the campaign ran from April to early June, with attackers impersonating officials from the […]
222/68 Thursday, June 19, 2025 GreyNoise has reported widespread exploitation attempts targeting CVE-2023-28771, a critical Remote Code Execution (RCE) vulnerability (CVSS score: 9.8) affecting Zyxel devices’ IKE decoder via UDP port 500. On June 16, 2025, GreyNoise detected attack attempts from 244 unique IP addresses over a short timeframe, with primary targets located in the […]
221/68 Thursday, June 19, 2025 Cybersecurity researchers at Todyl have uncovered a new variant of the ClickFix malware, dubbed “LightPerlGirl”, on June 13, 2025. This variant was found embedded in a compromised WordPress-based travel website, used as part of a “waterholing” attack—a tactic where attackers lure victims through otherwise trusted websites. The site mimicked a […]
220/68 Wednesday, June 18, 2025 Trend Micro has released a report on a newly discovered ransomware strain named “Anubis”, which poses a serious threat due to its unique dual-functionality: it not only encrypts files but also features a “wipe mode” that permanently erases file contents. This destructive behavior makes data recovery impossible, even if the […]
219/68 Wednesday, June 18, 2025 Cyber threat analysts from Google’s Threat Intelligence Group (GTIG) have warned that the hacker group Scattered Spider has shifted its focus to targeting insurance companies in the United States. The group is employing tactics previously seen in attacks on the retail sector in both the U.K. and the U.S. According […]
218/68 Tuesday, June 17, 2025 WestJet, the second-largest airline in Canada, has confirmed a cyberattack that disrupted access to its internal systems and applications. The incident caused service interruptions for some users, although the company emphasized that flight safety has not been affected. In response, WestJet has activated its incident response team to investigate and […]
