Tuesday, July 8, 2025

Security Threat Summary - July 8, 2025

         

Security Threat Summary - July 8, 2025

Top 5 Critical Security Alerts

  • Ransomware Attack Triggers Widespread Outage at Ingram Micro — Disruption of customer ordering and services due to a ransomware attack. Read more
  • Chrome Store Features Extension Poisoned With Sophisticated Spyware — A popular color picker extension is hijacking sessions and redirecting users to malicious sites. Read more
  • Bert Blitzes Linux & Windows Systems — A new ransomware strain uses aggressive multithreading and cross-platform capabilities. Read more
  • SEO Poisoning Campaign Targets 8,500+ SMB Users with Malware Disguised as AI Tools — Malvertising delivers Oyster malware loader via trojanized versions of legitimate tools. Read more
  • Employee arrested after Brazil's central bank service provider hacked for US $140 million — Approximately US $140 million was stolen from the reserve accounts of six financial institutions after a cyber attack hit a service provider. Read more

Threat Intelligence (APT, malware, ransomware)

  • Bert Blitzes Linux & Windows Systems — A new ransomware strain uses aggressive multithreading and cross-platform capabilities. Read more
  • DPRK macOS 'NimDoor' Malware Targets Web3, Crypto Platforms — North Korean threat actors are targeting cryptocurrency and Web3 platforms with malicious Zoom meeting requests. Read more
  • 'Hunters International' RaaS Group Closes Its Doors — The ransomware-as-a-service group is reportedly rebranding to a data theft outfit called World Leaks. Read more
  • SEO Poisoning Campaign Targets 8,500+ SMB Users with Malware Disguised as AI Tools — Malvertising delivers Oyster malware loader via trojanized versions of legitimate tools. Read more
  • TAG-140 Deploys DRAT V2 RAT, Targeting Indian Government, Defense, and Rail Sectors — A hacking group with ties to Pakistan targets Indian government organizations with a modified remote access trojan. Read more

Security Breaches & Incidents

  • Ransomware Attack Triggers Widespread Outage at Ingram Micro — Disruption of customer ordering and services due to a ransomware attack. Read more
  • Employee arrested after Brazil's central bank service provider hacked for US $140 million — Approximately US $140 million was stolen from the reserve accounts of six financial institutions after a cyber attack hit a service provider. Read more

Security Tools & Best Practices

  • Manufacturing Security: Why Default Passwords Must Go — CISA urges manufacturers to eliminate default passwords after Iranian hackers breached a US water facility. Read more
  • What's My (File)Name?, (Mon, Jul 7th) — Article discusses anti-debugging and anti-analysis features in modern malware and suggests renaming suspicious files to avoid detection during analysis. Read more

Endpoint Security

  • Chrome Store Features Extension Poisoned With Sophisticated Spyware — A popular color picker extension is hijacking sessions and redirecting users to malicious sites. Read more

Share: