Triaging the Week 066

Identity attack and InfoStealer surge in 2025, Apache Tomcat vulnerability and GitHub supply chain attack impact many, and Windows zero-day fuels APT attacks in triaging the week 066.
We use cookies to help you navigate efficiently and perform certain functions. You will find detailed information about all cookies under each consent category below.
The cookies that are categorized as "Necessary" are stored on your browser as they are essential for enabling the basic functionalities of the site. ...
Necessary cookies are required to enable the basic features of this site, such as providing secure log-in or adjusting your consent preferences. These cookies do not store any personally identifiable data.
Functional cookies help perform certain functionalities like sharing the content of the website on social media platforms, collecting feedback, and other third-party features.
Analytical cookies are used to understand how visitors interact with the website. These cookies help provide information on metrics such as the number of visitors, bounce rate, traffic source, etc.
Performance cookies are used to understand and analyze the key performance indexes of the website which helps in delivering a better user experience for the visitors.
Advertisement cookies are used to provide visitors with customized advertisements based on the pages you visited previously and to analyze the effectiveness of the ad campaigns.
Identity attack and InfoStealer surge in 2025, Apache Tomcat vulnerability and GitHub supply chain attack impact many, and Windows zero-day fuels APT attacks in triaging the week 066.
X hit by DDoS attack, 300+ critical infrastructure orgs targeted by Medusa ransomware, and AI-powered fake GitHub repos spread malware in triaging the week 065.
New ClickFix attacks use Microsoft SharePoint, fake ransomware notes, and AI-generated CEO used in phishing scam in triaging the week 064.
Apple removed E2EE in the UK, a record-breaking crypto heist, and PayPal phishing emails run rampant in triaging the week 063.
Android fights back against scammer, massive data breaches, and Signal targeted in phishing campaigns in triaging the week 062.
Major crackdown on 8Base ransomware site and LockBit hackers, ClickFix attacks on the rise, and Ivanti patches more critical vulnerabilities in triaging the week 061.
DeepSeek AI tools impersonated, Five Eyes release tell us how to secure network devices, and zero-click WhatsApp vulnerability spotted in-the-wild in triaging the week 060.
Vulnerabilities in Git and Node JS, hackers abuse SSH tunnels and SimpleHelp RMM, and DeepSeek AI hit by cyber attack in traiging the week 059
Malicious Python packages and fake websites, vulnerabilities in tunneling protocols, and Trump pardons Silk Road creator in triaging the week 058.
Vulnerabilities for MacOS and Google OAuth, cybercriminals use AI and AWS features for ransomware, and high-speed Microsoft 365 Password Attacks in traiging the week 057.
AI spearphising, new malware targeting Android, and Ivanti zero-day flaw in triaging the week 056.
Clop ransomware gang behind massive Cleo breach, malicious ads and AI-driven scam plague the Internet, and Microsoft Teams and AnyDesk used to deliver malware in triaging the week 055.
Fake apps target mobile devices, QR codes bypass browser sandboxing, and Visual Studio Code dev tunnels exploited in triaging the week 054.
Notorious ransomware affiliate arrested, new phishing attack spotted, and Cloudflare developer domains abused by hackers in triaging the week 053.
Cyber security contractor runs wild, NHS hit by another cyber attack, and the first UEFI bootkit for Linux revealed in triaging the week 052.