#Zyxel devices are under active attack via CVE-2023-28771. Researchers spotted a sudden spike in exploit attempts from 244 IPs, possibly tied to #Mirai botnet variants.
https://hackread.com/zyxel-devices-active-exploits-cve-2023-28771-vulnerability/
Latest issue of my curated #cybersecurity and #infosec list of resources for week #25/2025 is out!
It includes the following and much more:
The Washington Post experienced a #cyberattack that compromised the email accounts of several journalists;
The U.K. watchdog fined #23andMe £2.31 million;
#UBS Confirms Data Stolen After Hack at External Supplier;
Over 1,500 #Minecraft players have been infected by a new Java #malware;
Researchers say #AI hacking tools sold online were powered by #Grok, #Mixtral;
Subscribe to the #infosecMASHUP newsletter to have it piping hot in your inbox every week-end 
https://infosec-mashup.santolaria.net/p/infosec-mashup-25-2025
Oxford City Council just faced a massive cyberattack—21 years of sensitive data and decades-old systems proved vulnerable. How did legacy tech become the weak link? Read the full story.
https://thedefendopsdiaries.com/oxford-city-council-cyberattack-a-comprehensive-overview/
#oxfordcitycouncil
#cyberattack
#databreach
#cybersecurity
#infosec
Banks are under fire. A new report shows a sharp rise in sophisticated DDoS attacks targeting financial institutions worldwide hitting APIs, websites, and entire networks.
Read: https://hackread.com/sophisticated-ddos-campaigns-crippling-global-banks/
Just In: 
Anubis ransomware gang claims Disneyland Paris as its latest victim, calling it “the largest data leak in the history of Disneyland Park.”
More: https://hackread.com/anubis-ransomware-lists-disneyland-paris-new-victim/
New malware alert: Mocha Manakin uses #Clickfix (fakeCAPTCHA) to trick users into deploying a custom backdoor called NodeInitRAT. Red Canary warns it could lead to ransomware!
https://hackread.com/mocha-manakin-malware-nodeinitrat-via-clickfix-attack
NEW #BananaSquad is back, hiding data-stealing malware in fake GitHub repos disguised as Python tools. Watch out for suspicious code tricks.
https://hackread.com/banana-squad-data-stealing-malware-github-repositories/
#ScatteredSpider is now targeting US insurance firms after hitting UK retailers, using social engineering to breach help desks and disrupt services, warns Google.
Read: https://hackread.com/scattered-spider-us-insurers-uk-retail-hit-google/
The Washington Post has been the victim of a cyberattack, with the attackers compromising the email accounts of several journalists, specifically those reporting on national security, economics, and China.
Some speculate this attack was the work of a nation state threat actor. If this is the case, this attack has concerning implications for the freedom of the press.
Cyberprzestępcy sponsorowani przez państwa. Jak działają i kogo atakują? Niektóre państwa, dążąc do realizacji swoich celów strategicznych, wykorzystują zorganizowane grupy cyberprzestępców. Mogą one atakować kluczową infrastrukturę innych krajów, siać dezinformacje czy wykradać poufne dane. https://linuxiarze.pl/cyberprzestepcy-sponsorowani-przez-panstwa/ #cyberattack #cybersecurity
Exclusive: Gunra claims to have stolen 20TB of information from the liquor company Varela Hermanos, demanded a $7 million ransom, which the company refused to pay.
more details:
https://www.security-chu.com/2025/06/gunra-filtra-los-datos-de-Varela-Hermanos-Dark-Web.html
#ransomware #gunra #cyberattack #Cybersecurity #Panama #LATAM #ciberseguridad #noticias #news
#infosec
‘What F***ing Russia Day?’: Ukrainian Intel Wipes Out Russian Telecom in Massive Cyberattack
" Ukrainian cyberattack cripples major Russian provider Orion Telecom, leaving uranium mining city offline and erasing 370 servers, 500 switches, and all backups, intel sources say. "
https://www.kyivpost.com/post/54421
#WarOfAggression #Europa #Ukraine #cyberattack #army #Telecom #RussianTelecom #war #Russia #WarCriminal #occupiers #defenders
#перемогаYкраїни
DATE: June 10, 2025 at 08:37AM
SOURCE: HEALTHCARE INFO SECURITY
Direct article link at end of text block below.
Why is a #cyberattack that happened a year ago still affecting #bloodsupplies in #England? https://t.co/8ZpsHZALwp
Here are any URLs found in the article text:
Articles can be found by scrolling down the page at https://www.healthcareinfosecurity.com/ under the title "Latest"
-------------------------------------------------
Private, vetted email list for mental health professionals: https://www.clinicians-exchange.org
Healthcare security & privacy posts not related to IT or infosec are at @HIPAABot . Even so, they mix in some infosec with the legal & regulatory information.
-------------------------------------------------
#security #healthcare #doctors #itsecurity #hacking #doxxing #psychotherapy #securitynews #psychotherapist #mentalhealth #psychiatry #hospital #socialwork #datasecurity #webbeacons #cookies #HIPAA #privacy #datanalytics #healthcaresecurity #healthitsecurity #patientrecords @infosec #telehealth #netneutrality #socialengineering
Chinese hackers hit governments, media, and cybersecurity firms in a global cyber espionage spree. Over 70 orgs targeted using tools like ShadowPad and PurpleHaze.
Read: https://hackread.com/chinese-linked-hackers-targeted-global-organizations/
Siedem lat po wejściu RODO polskie samorządy wciąż kuleją w kwestii ochrony danych. Ponad 70% jednostek samorządowych, skontrolowanych przez Najwyższą Izbę Kontroli (NIK) w 2024 r., nie posiada planów przywracania systemów IT po awarii. https://linuxiarze.pl/siedem-lat-po-wejsciu-rodo-polskie-samorzady-wciaz-kuleja-w-kwestii-ochrony-danych/ #rodo #cybersecurity #cyberattack
