🚨 New ransomware “Anubis” can encrypt your files—and then erase them forever.

Even if you pay, recovery is impossible. Victims span healthcare, hospitality & more.

This rare dual-threat ups the pressure to pay.

Details here → https://thehackernews.com/2025/06/anubis-ransomware-encrypts-and-wipes.html

🚨 U.S. seizes $7.7M linked to North Korean IT worker scam targeting crypto firms.

Fake identities, AI tools, and Zoom hacks helped funnel millions to fund Pyongyang’s weapons program.

Here’s how deep the deception goes ↓ https://thehackernews.com/2025/06/us-seizes-774m-in-crypto-tied-to-north.html

🚨 WhatsApp ads are finally here—inside your Status updates.

Meta says it’s privacy-friendly, but it’s tapping your location, device data, and even Facebook activity to target you.

Here’s what’s changing ↓ https://thehackernews.com/2025/06/meta-starts-showing-ads-on-whatsapp.html

🚨 VPNs are now a business risk — not just a security hole.

Hackers are using AI to scan for flaws 24/7. One bug in your VPN, and it’s open season.

The fix? Stop trusting the network. Start securing access.

Details here → https://thehackernews.com/expert-insights/2025/04/its-time-to-rethink-your-security-for.html

🚨 CISA just flagged a live exploit in TP-Link routers (CVE-2023-33538, CVSS 8.8) — attackers can run system commands remotely.

Worse? Many affected models may be end-of-life, with no fix coming.

Here’s what you need to know ↓ https://thehackernews.com/2025/06/tp-link-router-flaw-cve-2023-33538.html

🚨 Langflow flaw (CVSS 9.8) now exploited in the wild — installs new Flodrix botnet

No login needed. One HTTP request = full remote control.

Targets AI servers for encrypted DDoS via TOR.

Details here → https://thehackernews.com/2025/06/new-flodrix-botnet-variant-exploits.html

🚨 Sitecore flaw gives hackers full access — with a single-character password.

A default login of “b” can be chained to remote code execution. It works pre-auth.

Used by banks, airlines, global firms. The blast radius is huge.

Here’s what you need to know ↓ https://thehackernews.com/2025/06/hard-coded-b-password-in-sitecore-xp.html

🚨 Ransomware is now destroying your backups first.

Hackers are targeting snapshots, wiping cloud copies, and deleting recovery paths — before locking your systems.

The worst part? Many orgs don’t realize it until it’s too late.

Here’s how to bulletproof your backups ↓ https://thehackernews.com/2025/06/how-to-protect-your-backups-from-ransomware-attacks.html

🚨 24 million secrets exposed on GitHub—and AI is making it worse.

Repos using Copilot are 40% more likely to leak credentials.

Think API keys, SSH tokens… the stuff attackers love.
The worst part? Most devs don’t even know they’re leaking them.

Here’s how to fix it ↓ https://thehackernews.com/expert-insights/2025/06/exposed-developer-secrets-are-big.html

🕷️ Scattered Spider is now hitting U.S. insurance giants — not just retailers.

⚠️ They’re bypassing MFA, tricking help desks, and breaching entire IT ecosystems.

Here’s how they do it — and how to stop them ↓ https://thehackernews.com/2025/06/google-warns-of-scattered-spider.html

🚨 New phishing campaign hits Taiwan, delivering stealthy malware like Gh0stCringe and HoldingHands RAT.

Hackers use fake tax emails, sneaky PDFs, and ZIP traps to hijack systems and spy on users.

It’s all linked to China-backed Silver Fox APT.

Here’s what’s happening → https://thehackernews.com/2025/06/silver-fox-apt-targets-taiwan-with.html

🚨 130,000 devices. One forgotten service account.

A 2024 botnet attack used stale Microsoft 365 accounts with weak passwords—bypassing MFA silently via legacy auth.

If you're not auditing AD service accounts, you're already exposed.

Here’s how to fix it ↓ https://thehackernews.com/2025/06/are-forgotten-ad-service-accounts.html

🚨 A LangChain vulnerability let attackers steal OpenAI API keys, prompts & files—just by clicking “Try It.”

All data silently routed through a malicious proxy.

Details → https://thehackernews.com/2025/06/langchain-langsmith-bug-let-hackers.html

Patched now—but the risk was real.

🚨 A Chrome zero-day (CVE-2025-2783) was used in a live attack to drop a stealthy backdoor.

The hacker group TaxOff tricked targets with fake forum invites—one click, full compromise.

Here’s how the Trinper malware quietly hijacked systems ↓ https://thehackernews.com/2025/06/google-chrome-zero-day-cve-2025-2783.html

🚨 Iran slows internet access following Israeli missile strikes and cyber attacks on Bank Sepah.

Both sides ramp up digital warfare as state hackers and hacktivist groups escalate regional cyber conflict.

Here’s what’s unfolding ↓ https://thehackernews.com/2025/06/iran-restricts-internet-access-to.html

⚠️ Critical flaw in Veeam Backup (CVSS 9.9) lets attackers execute code remotely—even after a prior patch.

Researchers warn: the old fix could be bypassed. New version out now.

Don’t wait. Update now → https://thehackernews.com/2025/06/veeam-patches-cve-2025-23121-critical.html

🛠️🔓 A critical Linux kernel flaw (CVE-2023-0386) is now confirmed actively exploited—granting root access via a simple trick.

CISA just added it to the KEV list. Agencies have until July 8 to fix it.

Details here → https://thehackernews.com/2025/06/cisa-warns-of-active-exploitation-of.html

A CIA analyst stole Top Secret docs—including Israel's plans to strike Iran—and leaked them online.

He tried to cover his tracks with image edits and file wipes.

Now? Just 37 months in prison.

Here’s what happened ↓ https://thehackernews.com/2025/06/ex-cia-analyst-sentenced-to-37-months.html

Tacking on compliance late? You risk more than fines—think failed audits, stalled deals, and fragile systems.

Build it in from day one.

Here's why ↓ https://thehackernews.com/expert-insights/2025/06/the-hidden-cost-of-treating-compliance.html

🧪⚠️ Water Curse hijacked 76 GitHub repos to spread stealthy, multi-stage malware.

Posing as dev tools, it steals credentials, hijacks sessions, and persists undetected—active since March 2023.

Details → https://thehackernews.com/2025/06/water-curse-hijacks-76-github-accounts.html

Webinar: Shadow IT Monitoring Across OAuth & Chrome + Gmail Security — Without Scripts or Rigid Tools

If you’re a Google Workspace Admin, you’ve seen it all:
📤 Emails forwarded to personal accounts
🔗 OAuth apps with risky Drive or Gmail access
🧩 Unapproved Chrome extensions sneaking through
📩 ...and endless back-and-forth approval emails

You don’t need another alert—you need enforcement.

Join us for a fast-paced session where we’ll show how Admins are automating:
✅ Gmail forwarding rule detection & response
✅ Passive shadow IT monitoring across OAuth & Chrome
✅ Extension & app approval requests with AI-powered policy logic

Featuring:
Mike Klambro – Ex-Google, now helping orgs scale security workflows
Fernanda Lopez – Customer Success Engineer at Zenphi.

When: June 26, in 3 time zones

👉 Register here: https://thn.news/google-workspace-security