Cyber Security news for Information Security professionals pulled from the likes of; Krebs on Security, The hacker news, Zero day initiative, SANS, Microsoft, AWS and NCSC.

The DFIR Report

• Another Confluence Bites the Dust: Falling to ELPACO-team Ransomware
  May 19, 2025
  Key Takeaways The DFIR Report Services Table of Contents: Case Summary In late June 2024, an unpatched Confluence server was compromised via CVE-2023-22527, a template […]
• Navigating Through The Fog
  April 28, 2025
  Key Takeaways An open directory associated with a ransomware affiliate, likely linked to the Fog ransomware group, was discovered in December 2024. It contained tools […]
• Fake Zoom Ends in BlackSuit Ransomware
  March 31, 2025
  Key Takeaways Case Summary This case from May 2024 started with a malicious download from a website mimicking the teleconferencing application Zoom. When visiting the […]

Krebs On Security News

• Inside a Dark Adtech Empire Fed by Fake CAPTCHAs
  June 12, 2025
  Late last year, security researchers made a startling discovery: Kremlin-backed disinformation campaigns were bypassing moderation on social media platforms by leveraging the same malicious advertising technology that powers a sprawling ecosystem of online hucksters and website hackers. A new report on the fallout from […]
• Patch Tuesday, June 2025 Edition
  June 11, 2025
  Microsoft today released security updates to fix at least 67 vulnerabilities in its Windows operating systems and software. Redmond warns that one of the flaws is already under active attack, and that software blueprints showing how to exploit a pervasive Windows bug patched this […]
• Proxy Services Feast on Ukraine’s IP Address Exodus
  June 5, 2025
  Ukraine has seen nearly one-fifth of its Internet space come under Russian control or sold to Internet address brokers since February 2022, a new study finds. The analysis indicates large chunks of Ukrainian Internet address space are now in the hands of proxy and […]
• U.S. Sanctions Cloud Provider ‘Funnull’ as Top Source of ‘Pig Butchering’ Scams
  May 30, 2025
  The U.S. government today imposed economic sanctions on Funnull Technology Inc., a Philippines-based company that provides computer infrastructure for hundreds of thousands of websites involved in virtual currency investment scams, commonly known as “pig butchering." In January 2025, KrebsOnSecurity detailed how Funnull was being […]
• Pakistan Arrests 21 in ‘Heartsender’ Malware Service
  May 28, 2025
  Authorities in Pakistan have arrested 21 individuals accused of operating "Heartsender," a once popular spam and malware dissemination service that operated for more than a decade. The main clientele for HeartSender were organized crime groups that tried to trick victim companies into making payments […]

The Hacker News

• Is There a Half-Life for the Success Rates of AI Agents?
  June 18, 2025
  Article URL: https://www.tobyord.com/writing/half-life Comments URL: https://news.ycombinator.com/item?id=44308711 Points: 1 # Comments: 0
• The Role of War Reporting and Journalism in Modern Conflicts
  June 18, 2025
  Article URL: https://totalmilitaryinsight.com/war-reporting-and-journalism/ Comments URL: https://news.ycombinator.com/item?id=44308709 Points: 1 # Comments: 0
• Show HN: Plancana – AI-Powered Trading Journal for Smarter Trades
  June 18, 2025
  Hey HN, we’ve been working on Plancana, an AI-powered trading journal that helps traders track, analyze, and improve their performance across markets like forex, crypto, and stocks. It’s built for traders who want more than just a logbook—Plancana syncs with platforms like MetaTrader in real-time, […]
• Social media: a mother's fight for the truth about her son's death
  June 18, 2025
  Article URL: https://www.theguardian.com/media/2025/jun/18/for-jools-one-mothers-fight-for-the-truth-about-her-sons-death Comments URL: https://news.ycombinator.com/item?id=44308688 Points: 1 # Comments: 0
• Blink and you'll miss it – a URL handler surprise
  June 18, 2025
  Article URL: https://dgl.cx/2025/06/blink-at-a-url-handler Comments URL: https://news.ycombinator.com/item?id=44308681 Points: 1 # Comments: 0

NCSC Weekly Threat Reports

• Impact of AI on cyber threat from now to 2027
• Vendor Security Assessment
• Threat report on application stores
• The threat from commercial cyber proliferation
• The near-term impact of AI on the cyber threat