2025-06-12
Talos Intelligence
Know thyself, know thy environment
Microsoft Security
Cyber resilience begins before the crisis
Schneier on Security
Airlines Secretly Selling Passenger Data to the Government
Troy Hunt
Weekly Update 456
Cloudflare
Cloudflare service outage June 12, 2025
Elastic Security Labs
Call Stacks: No More Free Passes For Malware
Ars Technica Security
Coming to Apple OSes: A seamless, secure way to import and export passkeys
Offensive Security
CVE-2024-21683 – Authenticated RCE via “Add a New Language” in Atlassian Confluence
Offensive Security
CVE‑2025‑49113 – Post‑Auth Remote Code Execution in Roundcube via PHP Object Deserialization
Eclypsium
Securing AI Data Centers
The Citizen Lab
Graphite Caught: First Forensic Confirmation of Paragon’s iOS Mercenary Spyware Finds Journalists Targeted
ReversingLabs
How to Speed Up TPRM Approvals with Spectra Assure
Sansec Threat Research
Adobe patches critical Magento admin takeover via menu injection
Krebs on Security
Inside a Dark Adtech Empire Fed by Fake CAPTCHAs
Palo Alto Networks
See How We’re Fortifying Cloud and AI at AWS re:Inforce 2025
2025-06-11
Talos Intelligence
catdoc zero-day, NVIDIA, High-Logic FontCreator and Parallel vulnerabilities
Fastly
DDoS in May
Project Black
FileFlows SQL Injection by Decompiling .NET Code
Amazon Security
AWS completes Police-Assured Secure Facilities (PASF) audit in Europe (London) AWS Region
Dark Reading
ConnectWise to Rotate Code-Signing Certificates
Dark Reading
Agentic AI Takes Over Gartner's SRM Summit
Black Lantern Security
Doomla! Zero Days
Synacktiv
NTLM reflection is dead, long live NTLM reflection! – An in-depth analysis of CVE-2025-33073
Redteam-Pentesting.de
A Look in the Mirror - The Reflective Kerberos Relay Attack
Krebs on Security
Patch Tuesday, June 2025 Edition
Searchlight Cyber
Why is Attack Surface Management Now Worth the Cost?
2025-06-10
Talos Intelligence
Microsoft Patch Tuesday for June 2025 — Snort rules and prominent vulnerabilities
Datadog HQ
Explore your data with Sheets, DDSQL Editor, and Notebooks for advanced analysis in Datadog
Datadog HQ
Detect anomalies beyond spikes and new values with Content Anomaly Detection in Cloud SIEM
Datadog HQ
Reduce cloud storage costs and improve operational efficiency with Datadog Storage Monitoring
Rapid7
Patch Tuesday - June 2025
Amazon Security
Building identity-first security: A guide to the Identity and Access Management track at AWS re:Inforce 2025
Ars Technica Security
Found in the wild: 2 Secure Boot exploits. Microsoft is patching only 1 of them.
White Knight Labs
Understanding Double Free in Windows Kernel Drivers
Dark Reading
PoC Code Escalates Roundcube Vuln Threat
Eclypsium
Leading Cloud Computing Company Relies on Eclypsium to Protect AI Data Center Infrastructure
Synacktiv
Exploiting Heroes of Might and Magic V
Compass Security Blog
LinkedIn for OSINT: tips and tricks
Sicuranext Blog
Influencing LLM Output using logprobs and Token Distribution
Sicuranext Blog
Influencing LLM Output using logprobs and Token Distribution
Zero Day Initiative
The June 2025 Security Update Review
TrustedSec
Common Mobile Device Threat Vectors
2025-06-09
Malwarebytes
How and where to report an online scam
Malwarebytes
Been scammed online? Here’s what to do
Malwarebytes
A week in security (June 1 – June 7)
Schneier on Security
New Way to Track Covertly Android Users
Troy Hunt
Weekly Update 455
Amazon Security
Building secure foundations: A guide to network and infrastructure security at AWS re:Inforce 2025
Embrace The Red
Hosting COM Servers with an MCP Server
Dark Reading
'Librarian Ghouls' Cyberattackers Strike at Night
Dark Reading
Next-Gen Developers Are a Cybersecurity Powder Keg
Palo Alto Networks
Securing AI Agent Innovation with Prisma AIRS MCP Server
2025-06-08
Ars Technica Security
Cybercriminals turn to “residential proxy” services to hide malicious traffic
2025-06-06
Malwarebytes
How to update Chrome on every operating system
Malwarebytes
OpenAI forced to preserve ChatGPT chats
Schneier on Security
Friday Squid Blogging: Squid Run in Southern New England
Schneier on Security
Hearing on the Federal Government and AI
Schneier on Security
Report on the Malicious Uses of AI
Hunt and Hackett
Cyber Risks in Agriculture: A Guide for Business Leaders
Rapid7
Metasploit Wrap-up 06/06/25
Amazon Security
How to use on-demand rotation for AWS KMS imported keys
Ars Technica Security
Millions of low-cost Android devices turn home networks into crime platforms
Dark Reading
F5 Acquires Agentic AI Security Startup Fletch
Searchlight Cyber
BidenCash Marketplace Seized by U.S. Law Enforcement