AitM Phishing Attacks on Microsoft 365 and Google Aimed at Stealing Login Credentials
12
Jun
2025

AitM Phishing Attacks on Microsoft 365 and Google Aimed at Stealing Login Credentials

A dramatic escalation in phishing attacks leveraging Adversary-in-the-Middle (AiTM) techniques has swept across organizations worldwide in early 2025, fueled by…

Cloudflare Warns of DDoS Attacks Targeting Journalists and News Organizations
12
Jun
2025

Cloudflare Warns of DDoS Attacks Targeting Journalists and News Organizations

Cybersecurity firm Cloudflare has issued a stark warning about the escalating threat landscape facing independent media organizations worldwide, revealing that…

OneLogin AD Connector Vulnerabilities Expose Authentication Credentials
12
Jun
2025

OneLogin AD Connector Vulnerabilities Expose Authentication Credentials

A critical security vulnerability in OneLogin’s Active Directory (AD) Connector service has exposed enterprise authentication systems to significant risk The…

Researchers warn of ongoing Entra ID account takeover campaign
12
Jun
2025

Researchers warn of ongoing Entra ID account takeover campaign

Attackers are using the TeamFiltration pentesting framework to brute-force their way into Microsoft Entra ID (formerly Azure AD) accounts, Proofpoint…

Threat Actors Exploiting Expired Discord Invite Links to Deliver Multi-Stage Malware
12
Jun
2025

Threat Actors Exploiting Expired Discord Invite Links to Deliver Multi-Stage Malware

Cybercriminals have discovered a sophisticated new attack vector that exploits a critical flaw in Discord’s invitation system, allowing them to…

DragonForce Ransomware Group - The Rise of a Relentless Cyber Threat in 2025
12
Jun
2025

DragonForce Ransomware Group – The Rise of a Relentless Cyber Threat in 2025

The cybersecurity landscape has witnessed the emergence of increasingly sophisticated ransomware operations, with DragonForce standing out as a particularly concerning…

On Constant Community Improvements
12
Jun
2025

On Constant Community Improvements – Cyber Defense Magazine

The theme of this year’s RSAC is “Many Voices. One Community.” While our field can rightly claim “many voices”, portraying…

Microsoft Resolves Windows Server 2025 Restart Bug Disrupting Active Directory Connectivity
12
Jun
2025

Microsoft Resolves Windows Server 2025 Restart Bug Disrupting Active Directory Connectivity

Microsoft has addressed multiple critical issues affecting Windows Server 2025 domain controllers through its June 2025 Patch Tuesday updates, resolving…

[tl;dr sec] #283 - Awesome Black Hat Tools, Evading EDR, Disrupting Malicious Uses of AI
12
Jun
2025

[tl;dr sec] #283 – Awesome Black Hat Tools, Evading EDR, Disrupting Malicious Uses of AI

Huge list of tools presented at various Black Hat conferences, how attackers evade modern EDR, OpenAI’s report on threat actor…

Software vulnerabilities pile up at government agencies, research finds
12
Jun
2025

Software vulnerabilities pile up at government agencies, research finds

Government agencies are operating with massive amounts of “security debt” — meaning unresolved vulnerabilities — putting them and the public…

Password-spraying attacks target 80,000 Microsoft Entra ID accounts
12
Jun
2025

Password-spraying attacks target 80,000 Microsoft Entra ID accounts

Hackers have been using the TeamFiltration pentesting framework to target more than 80,000 Microsoft Entra ID accounts at hundreds of organizations…

Threat Actors Leverages DeepSeek-R1 Popularity to Attack Users Running Windows Devices
12
Jun
2025

Threat Actors Leverages DeepSeek-R1 Popularity to Attack Users Running Windows Devices

Cybercriminals have begun exploiting the surge in popularity of DeepSeek-R1, one of the most sought-after large language models currently available,…