ICYMI: 2025-06-13
Latest Headlines
Over 269,000 Websites Infected with JSFireTruck JavaScript Malware in One Month
Ransomware Gangs Exploit Unpatched SimpleHelp Flaws to Target Victims with Double Extortion
CTEM is the New SOC: Shifting from Monitoring Alerts to Measuring Risk
Apple Zero-Click Flaw in Messages Exploited to Spy on Journalists Using Paragon Spyware
‘No Kings’ Protests, Citizen-Run ICE Trackers Trigger Intelligence Warnings
CBP’s Predator Drone Flights Over LA Are a Dangerous Escalation
Here’s What Marines and the National Guard Can (and Can’t) Do at LA Protests
In Other News: Cloudflare Outage, Cracked.io Users Identified, Victoria’s Secret Cyberattack Cost
Industry Reactions to Trump Cybersecurity Executive Order: Feedback Friday
SimpleHelp Vulnerability Exploited Against Utility Billing Software Users
Critical Vulnerability Exposes Many Mitel MiCollab Instances to Remote Hacking
Critical Vulnerabilities Patched in Trend Micro Apex Central, Endpoint Encryption
ZeroRISC Raises $10 Million for Open Source Silicon Security Solutions
China and Taiwan Accuse Each Other for Cyberattacks Against Critical Infrastructure
Kali Linux 2025.2 Released: Smartwatch Wi-Fi Injection, Android Radio, and Hacking Tools
Arsen Launches AI-Powered Vishing Simulation to Help Organizations Combat Voice Phishing at Scale
Predator Mobile Spyware Remains Consistent with New Design Changes to Evade Detection
Microsoft 365 Authentication Issues Disrupt User Access Across Multiple Regions
New SmartAttack Steals Sensitive Data From Air-Gapped Systems via Smartwatches
Acer Control Center Vulnerability Let Attackers Execute Malicious Code as a Privileged User
New GitHub Device Code Phishing Attacks Targeting Developers to Steal Tokens
HashiCorp Nomad Vulnerability Allows Privilege Escalation via ACL Policy Lookup Exploit
New TokenBreak Attack Bypasses AI Model’s with Just a Single Character Change
Discord flaw lets hackers reuse expired invites in malware campaign
Microsoft: KB5060533 update triggers boot errors on Surface Hub v1 devices
Microsoft confirms auth issues affecting Microsoft 365 users
Victoria’s Secret restores critical systems after cyberattack
Cloudflare: Outage not caused by security incident, data is safe
– MTZ