π’ Government cybersecurity action plan includes Β£16 million in funding π’
π Read more.
π Via "ITPro"
----------
ποΈ Seen on @cibsecurity
Cash will go to help startups, scaleups, and university spinouts, while a new advisory group will aim to improve public sector cybersecurity.π Read more.
π Via "ITPro"
----------
ποΈ Seen on @cibsecurity
IT Pro
Government cybersecurity action plan includes Β£16 million in funding
Cash will go to help startups, scale-ups, and university spinouts, while a new advisory group will aim to improve public sector cybersecurity
π΅οΈββοΈ How CISOs Can Govern AI & Meet Evolving Regulations π΅οΈββοΈ
π Read more.
π Via "Dark Reading"
----------
ποΈ Seen on @cibsecurity
Security teams are no longer just the last line of defense they are the foundation for responsible AI adoption.π Read more.
π Via "Dark Reading"
----------
ποΈ Seen on @cibsecurity
Dark Reading
How CISOs Can Govern AI & Meet Evolving Regulations
Security teams are no longer just the last line of defense β they are the foundation for responsible AI adoption.
π€1
π΅οΈββοΈ Serpentine#Cloud Uses Cloudflare Tunnels in Sneak Attacks π΅οΈββοΈ
π Read more.
π Via "Dark Reading"
----------
ποΈ Seen on @cibsecurity
An unidentified threat actor is using .lnk Windows shortcut files in a series of sophisticated attacks utilizing inmemory code execution and livingofftheland cyberattack strategies.π Read more.
π Via "Dark Reading"
----------
ποΈ Seen on @cibsecurity
Dark Reading
Serpentine#Cloud Malware Uses Cloudflare in Sneak Attacks
An unidentified threat actor is using .lnk Windows shortcut files in a series of sophisticated attacks utilizing in-memory code execution and living-off-the-land cyberattack strategies.
ποΈ FedRAMP at Startup Speed: Lessons Learned ποΈ
π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
For organizations eyeing the federal market, FedRAMP can feel like a gated fortress. With strict compliance requirements and a notoriously long runway, many companies assume the path to authorization is reserved for the wellresourced enterprise. But thats changing. In this post, we break down how fastmoving startups can realistically achieve FedRAMP Moderate authorization without derailing.π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
ποΈ Water Curse Employs 76 GitHub Accounts to Deliver Multi-Stage Malware Campaign ποΈ
π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
Cybersecurity researchers have exposed a previously unknown threat actor known as Water Curse that relies on weaponized GitHub repositories to deliver multistage malware. "The malware enables data exfiltration including credentials, browser data, and session tokens, remote access, and longterm persistence on infected systems," Trend Micro researchers Jovit Samaniego, Aira Marcelo, Mohamed.π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
π AI Now Generates Majority of Spam and Malicious Emails π
π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
Barracuda observed a big spike in spam emails generated using AI tools, making up the majority detected in April 2025.π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
π GodFather Malware Upgraded to Hijack Legitimate Mobile Apps π
π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
Upgraded GodFather banking malware now uses ondevice virtualization to hijack apps, enabling realtime fraud.π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
π ClickFix Helps Infostealers Use MHSTA for Defense Evasion π
π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
ClickFix techniques are enabling threat actors to bypass defenses using tools like MSHTA, says ReliaQuest.π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
π UK Government Publishes Plan to Boost Cyber Sector Growth π
π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
The new Cyber Growth Action Plan aims to support the UKs cyber industry, including the development of innovative new technologies and startups.π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
π Ransomware Group Qilin Offers Legal Counsel to Affiliates π
π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
The group positions itself not just as a ransomware group, but as a fullservice cybercrime platform, according to Cybereason.π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
π Paddle Pays $5m to Settle Tech Support Scam Allegations π
π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
Payment processor Paddle has agreed to settle with the FTC over allegations related to tech support scams.π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
π¦
CERT-In Vulnerability Note Highlights Critical Security Risks in Ivanti, Trend Micro, Apache Kafka, and SAP Products π¦
π Read more.
π Via "CYBLE"
----------
ποΈ Seen on @cibsecurity
Cyble CERTIn Vulnerability Note Highlights Critical Security Risks in Ivanti, Trend Micro, Apache Kafka, and SAP Products " dataimagecaption"Cyble CERTIn Vulnerability Note Highlights Critical Security Risks in Ivanti, Trend Micro, Apache Kafka, and SAP Products " datamediumfile"httpscyble.comwpcontentuploads202506CybleBlogsCERTINVulnerability300x150.jpg" datalargefile"httpscyble.comwpcontentuploads202506CybleBlogsCERTINVulnerability1024x512.jpg" title"CERTIn Vulnerability Note Highlights Critical Security Risks in Ivanti, Trend Micro, Apache Kafka, and SAP Products 1" The Indian Computer Emergency Response Team CERTIn has issued a series of highand criticalseverity alerts through its CERTIn Vulnerability Note platform, warning enterprises and individuals about newly discovered securit...π Read more.
π Via "CYBLE"
----------
ποΈ Seen on @cibsecurity
Cyble
CERT-In Vulnerability Note: Critical Flaws In Top Software
CERT-In Vulnerability Note warns of high-risk flaws in Ivanti Workspace Control, exposing sensitive credentials and urging urgent patching to prevent breaches.
ποΈ 1,500+ Minecraft Players Infected by Java Malware Masquerading as Game Mods on GitHub ποΈ
π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
A new multistage malware campaign is targeting Minecraft users with a Javabased malware that employs a distributionasservice DaaS offering called Stargazers Ghost Network. "The campaigns resulted in a multistage attack chain targeting Minecraft users specifically," Check Point researchers Jaromr Hoej and Antonis Terefos said in a report shared with The Hacker News. "The malware was.π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
β€2
π Critical Linux Flaws Discovered Allowing Root Access Exploits π
π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
Two critical Linux flaws allow unprivileged users to gain root access, affecting major distributions.π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
π B2B Growth Marketing Manager π
π Read more.
π Via "UnderDefense"
----------
ποΈ Seen on @cibsecurity
The post B2B Growth Marketing Manager appeared first on UnderDefense.π Read more.
π Via "UnderDefense"
----------
ποΈ Seen on @cibsecurity
UnderDefense
B2B Growth Marketing Manager - UnderDefense
π¦Ώ Two WormGPT Clones That Use Grok and Mixtral Found in Underground Forum π¦Ώ
π Read more.
π Via "Tech Republic"
----------
ποΈ Seen on @cibsecurity
WormGPT was created by Last, a Portuguese hacker, using GPTJ to bypass AI safety filters before being shut down in 2023 after public exposure.π Read more.
π Via "Tech Republic"
----------
ποΈ Seen on @cibsecurity
TechRepublic
Two WormGPT Clones That Use Grok and Mixtral Found in Underground Forum
WormGPT was created by βLast,β a Portuguese hacker, using GPT-J to bypass AI safety filters before being shut down in 2023 after public exposure.
ποΈ New Malware Campaign Uses Cloudflare Tunnels to Deliver RATs via Phishing Chains ποΈ
π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
A new campaign is making use of Cloudflare Tunnel subdomains to host malicious payloads and deliver them via malicious attachments embedded in phishing emails. The ongoing campaign has been codenamed SERPENTINECLOUD by Securonix. It leverages "the Cloudflare Tunnel infrastructure and Pythonbased loaders to deliver memoryinjected payloads through a chain of shortcut files and obfuscated.π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
π΅οΈββοΈ GodFather Banking Trojan Debuts Virtualization Tactic π΅οΈββοΈ
π Read more.
π Via "Dark Reading"
----------
ποΈ Seen on @cibsecurity
The Android malware is targeting Turkish financial institutions, completely taking over legitimate banking and crypto apps by creating an isolated virtualized environment on a device.π Read more.
π Via "Dark Reading"
----------
ποΈ Seen on @cibsecurity
Dark Reading
GodFather Banking Trojan Debuts Virtualization Tactic
The Android malware is targeting Turkish financial institutions, completely taking over legitimate banking and crypto apps by creating an isolated virtualized environment on a device.
π΅οΈββοΈ OpenAI Awarded $200M Contract to Work With DoD π΅οΈββοΈ
π Read more.
π Via "Dark Reading"
----------
ποΈ Seen on @cibsecurity
OpenAI intends to help streamline the Defense Department's administrative processes using artificial intelligence.π Read more.
π Via "Dark Reading"
----------
ποΈ Seen on @cibsecurity
Darkreading
OpenAI Awarded $200M Contract to Work With DoD
OpenAI intends to help streamline the Defense Department's administrative processes using artificial intelligence.
π΅οΈββοΈ OpenAI Awarded $200M Contract to Work With DoD π΅οΈββοΈ
π Read more.
π Via "Dark Reading"
----------
ποΈ Seen on @cibsecurity
OpenAI intends to help streamline the Defense Department's administrative processes using artificial intelligence.π Read more.
π Via "Dark Reading"
----------
ποΈ Seen on @cibsecurity
Darkreading
OpenAI Awarded $200M Contract to Work With DoD
OpenAI intends to help streamline the Defense Department's administrative processes using artificial intelligence.
π΅οΈββοΈ The Triple Threat of Burnout: Overworked, Unsatisfied, Trapped π΅οΈββοΈ
π Read more.
π Via "Dark Reading"
----------
ποΈ Seen on @cibsecurity
Many cybersecurity professionals still don't feel comfortable admitting when they need a break. And the impact goes beyond being overworked.π Read more.
π Via "Dark Reading"
----------
ποΈ Seen on @cibsecurity
Darkreading
The Triple Threat of Burnout: Overworked, Unsatisfied, Trapped
Many cybersecurity professionals still don't feel comfortable admitting when they need a break. Yet their pressures continue to expand and involve, often leading to burnout and organizational risks.