Daily CyberSecurity •

Crypto Tax Scam Sweeps Europe: Fake Government Sites Drain Wallets Via Seed Phrase Theft & Malicious Web3

methods

Cybercriminals

Crypto Tax Scam Sweeps Europe: Fake Government Sites Drain Wallets Via Seed Phrase Theft & Malicious Web3

June 21, 2025

Search Hijacking: Cybercriminals Turn Google Ads into Tech Support Scam Portals

phone phishing

Cybercriminals

Search Hijacking: Cybercriminals Turn Google Ads into Tech Support Scam Portals

June 21, 2025

SERPENTINE#CLOUD: Stealthy Malware Campaign Leverages Cloudflare Tunnels for In-Memory RAT Delivery

ConnectWise ScreenConnect hack Nation-state cyberattack FortiGate Leak - zkLend vulnerability - TRIPLESTRENGTH Threat Actor Group Dark Storm

Cybercriminals

SERPENTINE#CLOUD: Stealthy Malware Campaign Leverages Cloudflare Tunnels for In-Memory RAT Delivery

June 20, 2025

Banana Squad Strikes Again: 60+ GitHub Repositories Trojanized in New Software Supply Chain Attack

trojan

Cybercriminals

Banana Squad Strikes Again: 60+ GitHub Repositories Trojanized in New Software Supply Chain Attack

June 20, 2025

Fileless Masslogger Infostealer Spreading via VBScript (.VBE) & Hiding in Your Registry

OAST techniques StilachiRAT macOS Malware PasivRobber

Malware

Fileless Masslogger Infostealer Spreading via VBScript (.VBE) & Hiding in Your Registry

June 21, 2025

Alert: Hunt.io Uncovers SpyNote Android Spyware Disguised as Popular Apps on Open Servers

Android Spyware, SpyNote

Malware

Alert: Hunt.io Uncovers SpyNote Android Spyware Disguised as Popular Apps on Open Servers

June 20, 2025

AntiDot Android Trojan: New MaaS Malware Records Screens, Intercepts SMS, & Steals Financial Data

Android Trojan, AntiDot Android Malware "BadPack"

Malware

AntiDot Android Trojan: New MaaS Malware Records Screens, Intercepts SMS, & Steals Financial Data

June 20, 2025

Amatera Stealer Unveiled: Rebranded ACR Stealer Now More Evasive, Targeting Your Data

CVE-2024-56404 - CVE-2024-39327 CVE-2025-2538

Malware

Amatera Stealer Unveiled: Rebranded ACR Stealer Now More Evasive, Targeting Your Data

June 20, 2025

Massive Data Leak: Hacker Allegedly Selling 16 Billion Login Credentials from Major Tech Giants

Login Credentials, Data Leak CVE-2024-47191 - OATH-Toolkit

Data Leak

Massive Data Leak: Hacker Allegedly Selling 16 Billion Login Credentials from Major Tech Giants

June 20, 2025

Hackers Leak 7.4 Million Paraguayan Citizen Records, Demand $1 Per Person Ransom

Paraguay Data Breach, Ransomware

Data Leak

Hackers Leak 7.4 Million Paraguayan Citizen Records, Demand $1 Per Person Ransom

June 17, 2025

SmartAttack: Turning Your Smartwatch into a Spy Tool for Air-Gapped Networks

Smartwatch Hacking, Air-Gapped Data Exfiltration

Data Leak

SmartAttack: Turning Your Smartwatch into a Spy Tool for Air-Gapped Networks

June 16, 2025

Android’s Secret Tracking: Meta & Yandex Abused Localhost for User Data

Android Tracking

Data Leak

Android’s Secret Tracking: Meta & Yandex Abused Localhost for User Data

June 9, 2025

IBM QRadar SIEM Exposed by Trio of Security Flaws, Including Critical Command Execution Bug IBM QRadar, Critical Vulnerabilities

IBM QRadar, Critical Vulnerabilities

IBM QRadar SIEM Exposed by Trio of Security Flaws, Including Critical Command Execution Bug

Ddos June 21, 2025

Urgent WordPress Alert: Motors Theme Flaw (CVE-2025-4322) Actively Exploited for Site Takeover WordPress Theme, Account Takeover CVE-2024-50623 - European Space Agency cyberattack

WordPress Theme, Account Takeover CVE-2024-50623 - European Space Agency cyberattack

Urgent WordPress Alert: Motors Theme Flaw (CVE-2025-4322) Actively Exploited for Site Takeover

Ddos June 20, 2025

Microsoft 365 Boosts Security: Legacy File Access Protocols RPS & FrontPage RPC Phased Out July 2025 Protocol Deprecation Microsoft 365 Updates, IT Admin Alert Microsoft 365 VPN shut down Microsoft Authenticator, password manager Windows 10 Microsoft 365 Microsoft nonprofit policy, software donations

Protocol Deprecation Microsoft 365 Updates, IT Admin Alert Microsoft 365 VPN shut down Microsoft Authenticator, password manager Windows 10 Microsoft 365 Microsoft nonprofit policy, software donations

Microsoft 365 Boosts Security: Legacy File Access Protocols RPS & FrontPage RPC Phased Out July 2025

Ddos June 20, 2025

Russian APT UNC6293 Exploits Google Application-Specific Passwords to Hack Critics russia

russia

Russian APT UNC6293 Exploits Google Application-Specific Passwords to Hack Critics

Ddos June 20, 2025

Stargazers Ghost Network: Minecraft Mods Used to Distribute Multi-Stage Stealers via GitHub mods

mods

Stargazers Ghost Network: Minecraft Mods Used to Distribute Multi-Stage Stealers via GitHub

Ddos June 20, 2025

PylangGhost: North Korean APT Deploys Python-Based RAT to Target Crypto Professionals North Korean APT, PylangGhost

North Korean APT, PylangGhost

PylangGhost: North Korean APT Deploys Python-Based RAT to Target Crypto Professionals

Ddos June 20, 2025

Silver Fox APT: Chinese Threat Actor Deploys Trojanized Medical Software in Stealth Espionage Campaign Silver Fox APT, Cyber Espionage

Silver Fox APT, Cyber Espionage

Silver Fox APT: Chinese Threat Actor Deploys Trojanized Medical Software in Stealth Espionage Campaign

Ddos June 20, 2025

CISA Warning: Critical Flaw (CVE-2025-5310) Exposes Fueling Station Devices Fuel Infrastructure, Critical Vulnerability

Fuel Infrastructure, Critical Vulnerability

CISA Warning: Critical Flaw (CVE-2025-5310) Exposes Fueling Station Devices

Ddos June 20, 2025

ComfyUI Under Attack: “Pickai” C++ Backdoor Compromises 700+ AI Image Generation Servers Globally Comfy

Comfy

ComfyUI Under Attack: “Pickai” C++ Backdoor Compromises 700+ AI Image Generation Servers Globally

Ddos June 20, 2025

Google Unleashes “Search Live”: Converse with AI in Real-Time for Mobile Search

Google Search Live, Voice Search

Google Unleashes “Search Live”: Converse with AI in Real-Time for Mobile Search

Ddos June 19, 2025

Meta Embraces Passkeys: Facebook & Messenger Get Secure, Passwordless Login Meta Passkeys, Passwordless Login

Meta Passkeys, Passwordless Login

Meta Embraces Passkeys: Facebook & Messenger Get Secure, Passwordless Login

Ddos June 19, 2025

Google Unleashes Gemini 2.5 Pro & Ultra-Affordable 2.5 Flash-Lite AI Models Google Gemini, AI Models

Google Gemini, AI Models

Google Unleashes Gemini 2.5 Pro & Ultra-Affordable 2.5 Flash-Lite AI Models

Ddos June 19, 2025

Intel Prepares Massive Layoffs: Up to 20% of Foundry Division Workforce Cut Starting July 2025 Intel Layoffs, Wafer Foundry CVE-2022-21198

Intel Layoffs, Wafer Foundry CVE-2022-21198

Intel Prepares Massive Layoffs: Up to 20% of Foundry Division Workforce Cut Starting July 2025

Ddos June 19, 2025

Windows 11 Recall Adds Data Export for EU Users: Share Snapshots with Third Parties Windows 11 Recall, Data Export Windows 11 Easy Anti-Cheat Windows 11 Update, Cumulative Update Windows Update, ACPI.sys Windows Updates, Enterprise Software Windows 11 Start Data Encryption Standard Printing Problems Windows 11 updates Estimated installation time Smart App Control, Windows 11 security

Windows 11 Recall, Data Export Windows 11 Easy Anti-Cheat Windows 11 Update, Cumulative Update Windows Update, ACPI.sys Windows Updates, Enterprise Software Windows 11 Start Data Encryption Standard Printing Problems Windows 11 updates Estimated installation time Smart App Control, Windows 11 security

Windows 11 Recall Adds Data Export for EU Users: Share Snapshots with Third Parties

Ddos June 19, 2025

YouTube Shorts to Integrate Veo 3 AI: Text-to-Video Creation Arriving This Summer YouTube Shorts, AI Video Generation

YouTube Shorts, AI Video Generation

YouTube Shorts to Integrate Veo 3 AI: Text-to-Video Creation Arriving This Summer

Ddos June 19, 2025

Seamless eSIM Transfer: iOS 26 Now Supports Direct Migration to Android Apple-WWDC25-iOS-26-Home-Screen

Apple-WWDC25-iOS-26-Home-Screen

Seamless eSIM Transfer: iOS 26 Now Supports Direct Migration to Android

Ddos June 19, 2025

CVE-2025-23171 & CVE-2025-23172: Versa Director Bugs Open Doors to Webshell Uploads and Command Execution Versa Director, SD-WAN Vulnerabilities

Versa Director, SD-WAN Vulnerabilities

CVE-2025-23171 & CVE-2025-23172: Versa Director Bugs Open Doors to Webshell Uploads and Command Execution

Ddos June 19, 2025

Critical Versa Director Flaw (CVSS 9.8): Hardcoded Credentials Grant Root Access, PoC Available Versa Director, Default Credentials

Versa Director, Default Credentials

Critical Versa Director Flaw (CVSS 9.8): Hardcoded Credentials Grant Root Access, PoC Available

Ddos June 19, 2025

Cisco ClamAV Critical Flaws: CVE-2025-20260 (CVSS 9.8) Allows Code Execution ClamAV Vulnerability ClamAV Vulnerabilities, RCE

ClamAV Vulnerability ClamAV Vulnerabilities, RCE

Cisco ClamAV Critical Flaws: CVE-2025-20260 (CVSS 9.8) Allows Code Execution

Ddos June 19, 2025

WordPress AI Engine Flaw (CVE-2025-5071): Critical Bug Allows Subscriber-Level Account Takeover WordPress AI Engine, Privilege Escalation CVE-2024-43153 & CVE-2024-43234

WordPress AI Engine, Privilege Escalation CVE-2024-43153 & CVE-2024-43234

WordPress AI Engine Flaw (CVE-2025-5071): Critical Bug Allows Subscriber-Level Account Takeover

Ddos June 19, 2025