Incident: Lee Enterprises Cyberattack Exposes 39,779 Social Security Numbers Incident Date: February 2025 Article Date: June 4, 2025 Summary: Lee Enterprises confirmed that a ransomware attack in February 2025 compromised the personal information of 39,779 individuals, including names and Social Security numbers. The breach primarily affected current and former employees, with notifications sent to regulators and affected parties. Reference: therecord.media/newspaper…
Incident: Cisco Patches Critical Vulnerabilities in ISE and CCP Platforms Incident Date: June 4, 2025 Article Date: June 4, 2025 Summary: Cisco released patches addressing three vulnerabilities in its Identity Services Engine (ISE) and Customer Collaboration Platform (CCP), including a critical static credential flaw (CVE-2025-20286). The vulnerabilities, which had public proof-of-concept exploit code, could allow unauthorized access and were urged to be patched immediately. Reference: sec.cloudapps.cisco.com/security/…
Incident: New Chaos RAT Variant Targets Windows and Linux Systems Incident Date: June 4, 2025 Article Date: June 4, 2025 Summary: A new variant of the Chaos Remote Access Trojan (RAT) has been identified, targeting both Windows and Linux systems. The malware is distributed through fake network troubleshooting utilities, enabling attackers to execute commands, steal data, and potentially deploy ransomware. Reference: thehackernews.com/2025/06/c…
Incident: Malicious GitHub Repositories Distribute Backdoors via Impersonated Tools Incident Date: June 4, 2025 Article Date: June 4, 2025 Summary: Researchers uncovered over 130 malicious GitHub repositories impersonating malware tools and game cheats to distribute backdoors. The campaign, attributed to the threat actor “ischhfd83,” targets developers and gamers by embedding hidden backdoors in the code. Reference: news.sophos.com/en-us/202…
Incident: Everest Ransomware Leaks Data from Abu Dhabi’s Department of Culture and Tourism Incident Date: May 26, 2025 Article Date: June 4, 2025 Summary: The Everest ransomware group claimed responsibility for an attack on Abu Dhabi’s Department of Culture and Tourism, leaking approximately 1,500 personal records and sensitive internal documents. The breach has raised concerns over the targeting of government entities in the Middle East. Reference: www.cyfirma.com/news/week…
Incident: Gateway Community Services Data Breach Affects 34,498 Individuals Incident Date: May 16, 2025 Article Date: June 4, 2025 Summary: Gateway Community Services announced a data breach involving a mismailing incident that compromised personal information of 34,498 individuals, including names, addresses, Social Security numbers, and medical treatment details. The organization is providing affected individuals with credit monitoring services. Reference: www.claimdepot.com/investiga…
Incident: Google Warns of Hackers Stealing Salesforce Data via IT Impersonation Incident Date: June 4, 2025 Article Date: June 4, 2025 Summary: Google’s Threat Intelligence Group reported that hackers are impersonating IT personnel to trick employees into installing a malicious version of Salesforce’s Data Loader tool. The attackers, identified as group UNC6040, have targeted approximately 20 organizations, leading to data theft and extortion attempts. Reference: fortune.com/2025/06/0…
Incident: FBI Reports 900 Organizations Affected by Play Ransomware Exploiting SimpleHelp Vulnerabilities Incident Date: May 2025 Article Date: June 4, 2025 Summary: The FBI disclosed that approximately 900 organizations have been affected by Play ransomware attacks exploiting vulnerabilities in SimpleHelp remote access software. The ransomware group has developed new techniques in their double-extortion campaigns, including exploiting security flaws in remote-access tools. Reference: www.theregister.com/2025/06/0…
Incident: Honeywell Reports 46% Surge in Ransomware Attacks Targeting Industrial Sectors Incident Date: Q1 2025 Article Date: June 4, 2025 Summary: Honeywell’s 2025 Cybersecurity Threat Report revealed a 46% increase in ransomware attacks on industrial sectors between Q4 2024 and Q1 2025. The report highlights rising threats to operational technology systems and emphasizes the need for enhanced cybersecurity measures in industrial environments. Reference: www.cyfirma.com/news/week…