Security Threat Summary - July 9, 2025 ~ Security Insights Daily

Top 5 Critical Security Alerts

Microsoft Patch Tuesday, July 2025 Edition — Microsoft released updates to fix 137 security vulnerabilities, including 14 critical ones that could allow attackers to seize control of Windows PCs. Read more
Microsoft Patch Tuesday for July 2025 — Snort rules and prominent vulnerabilities — Microsoft's monthly security update includes 132 vulnerabilities, with 14 marked as critical. Read more
CISA Adds Four Critical Vulnerabilities to KEV Catalog Due to Active Exploitation — CISA added four actively exploited vulnerabilities to its KEV catalog, including a buffer overflow in Multi-Router Looking Glass (MRLG). Read more

Malicious Open Source Packages Spike 188% YoY — Data exfiltration was the most common malware, with over 4,400 packages designed to steal secrets and credentials. Read more
Suspected Hacker Linked to Silk Typhoon Arrested in Milan — The alleged Chinese state-sponsored hacker faces charges including wire fraud and unauthorized access. Read more
Hackers Use Leaked Shellter Tool License to Spread Lumma Stealer and SectopRAT Malware — Hackers are exploiting a leaked license of the Shellter red teaming tool to distribute stealer malware. Read more
Hackers 'Shellter' Various Stealers in Red-Team Tool to Evade Detection — Campaigns spreading Lumma, Arechclient2, and Rhadamanthys malware leverage key features of the AV/EDR evasion framework. Read more
RondoDox Botnet Exploits Flaws in TBK DVRs and Four-Faith Routers to Launch DDoS Attacks — A new botnet called RondoDox is exploiting security flaws in TBK DVRs and Four-Faith routers. Read more
Researchers Uncover Batavia Windows Spyware Stealing Documents from Russian Firms — An ongoing campaign targets Russian organizations with a previously undocumented Windows spyware called Batavia. Read more
TAG-140 Targets Indian Government Via 'ClickFix-Style' Lure — Threat actors trick victims into opening a malicious script, leading to the execution of the BroaderAspect .NET loader. Read more

South Korean Government Imposes Penalties on SK Telecom for Breach — A breach at SK Telecom exposed 27 million records, leading to penalties and regulatory requirements. Read more
5 Ways Identity-based Attacks Are Breaching Retail — Major retailers like Adidas and Victoria's Secret have been breached through cracks of trust and access. Read more
BaitTrap: Over 17,000 Fake News Websites Caught Fueling Investment Fraud Globally — A large-scale scam operation uses fake news websites to deceive users into online investment fraud. Read more

4 Critical Steps in Advance of 47-Day SSL/TLS Certificates — IT teams need to plan for shorter certificate lifespans by 2029 to avoid operational disruptions. Read more

The AI Fix #58: An AI runs a shop into the ground, and AI's obsession with the number 27 — Podcast discusses AI headphones, Microsoft's "medical superintelligence," and AI's fascination with the number 27. Read more