🔴 Microsoft just patched 67 vulnerabilities—including a zero-day WEBDAV flaw actively exploited by the Stealth Falcon group to deploy stealthy malware via phishing URLs.

This bug CVE-2025-33053 lets attackers run code remotely with ease.

Details here → https://thehackernews.com/2025/06/microsoft-patches-67-vulnerabilities.html

Don’t wait—patch immediately.

Two critical flaws in SinoTrack GPS devices let attackers remotely track vehicles—and even cut off fuel remotely. No patch yet.

Default passwords and visible device IDs make hijacking shockingly easy

Details ↓ https://thehackernews.com/2025/06/sinotrack-gps-devices-vulnerable-to.html

If you use these, change passwords now and hide device info.

River Island’s tiny InfoSec team secures 200+ stores and e-commerce with zero headcount growth — by automating attack surface visibility and threat detection.

Their secret? Empowering others to fix issues fast, not doing it all themselves.

See how lean can win → https://thehackernews.com/2025/06/how-to-build-lean-security-model-5.html

🚨 INTERPOL dismantled over 20,000 malicious IPs tied to 69 info-stealing malware strains in a global crackdown involving 26 countries.

Disrupted cybercrime, arrested 32, seized 41 servers used for phishing, fraud, scams.

Read ↓ https://thehackernews.com/2025/06/interpol-dismantles-20000-malicious-ips.html

DNS is the internet’s weakest link — and attackers know it. Unsecured DNS can let hackers reroute traffic, steal data, or take your business offline in minutes.

The good news? Securing DNS with tools like DNSSEC and encrypted queries stops attacks before they start.

Learn more ↓ https://thehackernews.com/2025/06/why-dns-security-is-your-first-defense.html

A massive brute-force attack hit Apache Tomcat Manager on June 5, 2025—295 malicious IPs trying to break in, mostly from US, UK, Germany, and Singapore.

Exposed Tomcat services are a ticking time bomb—this could lead to serious breaches if left unchecked.

Also, 40,000+ security cameras worldwide are openly streaming, risking privacy and corporate espionage.

Full details here → https://thehackernews.com/2025/06/295-malicious-ips-launch-coordinated.html

Black Basta’s old affiliates are back—now using Teams phishing plus Python scripts to silently hijack networks.

Half their attacks come from legit-looking Microsoft domains, fooling security teams.

Here’s what to watch for ↓ https://thehackernews.com/2025/06/former-black-basta-members-use.html

Over 80,000 Microsoft Entra ID accounts targeted by a stealthy takeover campaign using the open-source tool TeamFiltration.

Attackers exploit Microsoft Teams API & AWS servers worldwide to spray passwords, exfiltrate data, and plant persistent access.

Find details here ↓ https://thehackernews.com/2025/06/over-80000-microsoft-entra-id-accounts.html

ConnectWise is urgently rotating code-signing certificates for ScreenConnect and RMM tools by June 13 due to a risky config data handling flaw — no breach, but on-prem users must update to avoid downtime.

Learn more ↓ https://thehackernews.com/2025/06/connectwise-to-rotate-screenconnect.html

🚨 Machine identities now outnumber humans 100:1. GitGuardian found 70% of leaked secrets from 2022 remain active in 2025, fueling major breaches like US Treasury & Toyota.

Secrets spread across repos, pipelines, clouds—beyond traditional vaults’ reach.

Non-human identity risk is a top OWASP threat in 2025.

Full story ↓ https://thehackernews.com/2025/06/non-human-identities-how-to-address.html

🚨 Zero-click AI exploit in Microsoft 365 Copilot (CVE-2025-32711, CVSS 9.3) lets attackers steal sensitive data silently via email—no user interaction needed.

Details ↓ https://thehackernews.com/2025/06/zero-click-ai-vulnerability-exposes.html

Already patched, but shows serious AI security risks ahead.

✨ Webinar Alert! Artificial Intelligence isn’t just transforming tech — it’s creating invisible, unchecked identities hackers exploit to breach your systems silently.

Traditional security can’t see or stop them.

If you use AI, you’re at risk.

LEARN out how to secure these hidden non-human identities ↓ https://thehackernews.com/2025/06/ai-agents-run-on-secret-accounts-learn.html

⚠️ New TokenBreak ATTACK lets attackers bypass AI content filters by tweaking just one letter—making harmful prompts slip past unnoticed.

It fools many text classifiers while keeping meaning clear to humans and AI, enabling prompt injections.

Read more ↓ https://thehackernews.com/2025/06/new-tokenbreak-attack-bypasses-ai.html

VexTrio’s cybercrime network hijacks hundreds of thousands of websites to spread scams & malware through fake ads and push alerts.

Even after a setback in late 2024, they keep running using clever DNS tricks & Russian servers.

What;s really going on ↓ https://thehackernews.com/2025/06/wordpress-sites-turned-weapon-how.html

🚨 WARNING: Apple just confirmed a serious zero-click flaw in Messages was actively exploited to spy on journalists using Israeli spyware Paragon Graphite — no user action needed.

Details here ↓ https://thehackernews.com/2025/06/apple-zero-click-flaw-in-messages.html

🚨 Ransomware gangs are exploiting unpatched SimpleHelp flaws to hit utility billing customers with double extortion attacks — since Jan 2025.

CISA warns: patch now or risk serious breaches.

Read → https://thehackernews.com/2025/06/ransomware-gangs-exploit-unpatched.html

Meanwhile, new Fog ransomware uses legit employee monitoring software to stay hidden and persistent for weeks.

Security teams drown in alerts—but real risks slip through unnoticed.

Continuous Threat Exposure Management (CTEM) shifts focus from alerts to actual attack paths, prioritizing prevention over reaction.

Stop chasing every alert. Start managing risk with purpose.

Read more ↓ https://thehackernews.com/2025/06/ctem-is-new-soc-shifting-from.html

🚨 Over 269,000 legit websites hijacked with hidden JavaScript redirecting search engine visitors to malware and scams.

Using a stealthy JSFireTruck obfuscation, attackers fingerprint devices to serve fake CAPTCHAs, tech support scams, and malware—evading detection at scale.

Learn how this massive campaign works ↓ https://thehackernews.com/2025/06/over-269000-websites-infected-with.html

Discord invite links are being hijacked to deliver malware that steals crypto wallets and personal data.

Attackers reuse expired/deleted invites, redirecting to fake servers, tricking users into running malicious PowerShell scripts disguised as verification.

Full details here ↓ https://thehackernews.com/2025/06/discord-invite-link-hijacking-delivers.html

This Multi-stage attack uses Pastebin & GitHub to evade security tools.

⚠️ A fake Python package just stole AWS tokens, Jamf data & CI/CD secrets — from devs at Grab.

The malware posed as a legit helper for ML workflows, hid a multi-stage info-stealer, and targeted macOS too.

Details here → https://thehackernews.com/2025/06/malicious-pypi-package-masquerades-as.html