Morning Briefing

Incident: Ukraine Hacks Russian Warplane Manufacturer Tupolev Incident Date: June 5, 2025 Article Date: June 5, 2025 Summary: Ukraine’s military intelligence agency (HUR) claimed responsibility for a cyberattack on Russia’s state-owned aircraft manufacturer Tupolev, resulting in the exfiltration of over 4.4 GB of sensitive data. The breach underscores the ongoing cyber conflict between the two nations. Reference: www.govinfosecurity.com/breach-ro…

Incident: Interlock Ransomware Group Begins Leaking Kettering Health’s Stolen Data Incident Date: May 20, 2025 Article Date: June 6, 2025 Summary: The cybercrime group Interlock has started publishing portions of the 941 GB of data allegedly stolen during a May ransomware attack on Kettering Health. The Ohio-based healthcare organization continues to recover and enhance its cybersecurity measures. Reference: warrencountypost.com/g/lebanon…

Incident: Passion.io Data Breach Exposes Information of 3.6 Million Users Incident Date: June 5, 2025 Article Date: June 6, 2025 Summary: A massive data breach exposed personal and financial information of over 3.6 million users of the app-building platform Passion.io. The breach involved 12.2 terabytes of unencrypted and publicly accessible data. Reference: social.cyware.com/category/…

Incident: Hackers Leak 86 Million AT&T Records with Decrypted SSNs Incident Date: June 5, 2025 Article Date: June 6, 2025 Summary: Hackers have leaked 86 million AT&T records, including decrypted Social Security Numbers, full names, addresses, and dates of birth. The data, reportedly stolen by the ShinyHunters group, raises significant privacy concerns. Reference: social.cyware.com/category/…

Incident: Critical Vulnerabilities in Dell PowerScale OneFS Allow Unauthorized Access Incident Date: June 5, 2025 Article Date: June 5, 2025 Summary: Dell Technologies released a critical security advisory addressing multiple flaws in its PowerScale OneFS. The most severe vulnerability, CVE-2024-53298, allows unauthenticated remote attackers to access and manipulate the file system. Reference: social.cyware.com/cyber-sec…

Incident: Hackers Exploit Roundcube Vulnerability to Steal User Credentials via XSS Attack Incident Date: June 6, 2025 Article Date: June 6, 2025 Summary: Cisco Talos uncovered a sophisticated cyberattack targeting a critical infrastructure entity by exploiting a vulnerability in Roundcube webmail software, allowing attackers to steal user credentials through cross-site scripting (XSS). Reference: gbhackers.com/hackers-e…

Incident: EU Adopts Blueprint to Better Manage European Cyber Crises and Incidents Incident Date: June 6, 2025 Article Date: June 6, 2025 Summary: The European Union adopted a new cyber crisis management blueprint to enhance coordination and response to large-scale cybersecurity incidents. The plan aims to strengthen Europe’s resilience against cyber threats. Reference: www.consilium.europa.eu/en/press/…

Incident: Microsoft Launches Free Cybersecurity Aid for Europe Incident Date: June 5, 2025 Article Date: June 5, 2025 Summary: Microsoft unveiled a new initiative to provide free cybersecurity support across Europe, targeting the rising tide of AI-powered cyber threats challenging governments, businesses, and communities. Reference: www.webpronews.com/microsoft…

Edward Kiledjian @ekiledjian