Forensics and Cyber Threat Research Area

Threat Intelligence | Insider Threat Detection | User Behavior Analytics | Cyber Threat Management | Data Security Intelligence | Cloud Security Intelligence Application Security Intelligence | Anomaly & Pattern Detection |  Security Information Event Management | Digital Forensics | Data Recovery | Malware Investigation | Packet Analytics | Packet Forensics | security operations and analytics platform architecture (SOAPA)

Weekly Threat Advisory

Home » Blog » Weekly Threat Advisory: Top Cyber Threats from June 02 – June 08, 2025

 Posted in Threat Intelligence

Weekly Threat Advisory: Top Cyber Threats from June 02 – June 08, 2025

   5th August 2025  Leave a Comment on Weekly Threat Advisory: Top Cyber Threats from June 02 – June 08, 2025 0 299

Weekly Threat Advisory: Top Cyber Threats from June 02 – June 08, 2025

The latest edition of the Weekly Threat Advisory delivers an in-depth analysis of evolving cyber threat patterns, spotlighting the rise of emerging threat groups, sophisticated malware variants, intensified ransomware activity, and targeted attack campaigns. It also highlights the growing exploitation of critical software vulnerabilities (CVEs) and the use of advanced phishing kits impacting various sectors. Threat actors are increasingly leveraging newly revealed security flaws, deploying highly persuasive social engineering tactics, and using adaptive malware designed to evade traditional security tools. Ransomware cases continue to surge, often involving double extortion strategies and exploitation of third-party vendors to extend their reach. At the same time, phishing operations are becoming more advanced, driving widespread credential theft and unauthorized enterprise access. This advisory stresses the urgent need for cybersecurity teams to respond proactively—by speeding up patch management, enhancing threat hunting operations, and refining detection strategies—to combat the escalating complexity and scale of modern cyber threats.

Threat Actors

💡 BO Team (also known as Black Owl, Lifting Zmiy, and Hoody Hyena).
💡 Void Blizzard
💡 APT41
💡 APT28
💡 JINX-0132
💡 TA397

Malware

📌 AyySSHush
📌 DOUBLELOADER
📌 PumaBot Linux Botnet
📌 DanaBot
📌 NetSupport RAT
📌 Myth Stealer
📌 DuplexSpy RAT

Ransomware

📍 Lyrix_Ransomware
📍 Datacarry Ransomware
📍 Play ransomware
📍 Bert Ransomware

Campaigns & Phishing Kit

🛡️ CyberLock
🛡️ Lucky_Gh0$t
🛡️ Numero
🛡️ CVE-2025-1907
🛡️ NetBird
🛡️ Malicious Ruby Gems
🛡️ FormBook Payload
🛡️ XWorm and AsyncRAT.
🛡️ Operation DRAGONCLONE

CVE

👉 CVE-2025-49113
👉 CVE-2025-20672
👉 CVE-2025-34027
👉 CVE-2025-0994
👉 CVE-2025-31710
👉 CVE-2025-49113
👉 CVE-2025-5419
👉 CVE-2025-5599
👉 CVE-2025-49113
👉 CVE-2025-30397
👉 CVE-2025-3935

Happy Threat Hunting

#threathunting #threatintelligence #cybersecurity #threatactor #malware #CVE #campaign #ransomware #phishing #threatadvisory #ThreatFeeds #APTGroups #InfosecIntel #CTI #IOC #CyberThreatIntel #TTPs #CyberThreatReport #campaigns

HACKFORLAB Threat Hunt Intelligence Platform

Every adversary, indicator, and technique referenced in this advisory is operational right now on our hosted threat-hunting workbench. SOC, CERT, MSSP, and detection-engineering teams use the platform to pivot indicators against live telemetry, enrich on demand, query historical adversary attribution, and track campaign evolution week over week.

Sign in to start hunting: https://huntintel.hackforlab.com/login.html

Author: Rohit Sadgune
Core Working Areas :- Threat Intelligence, Digital Forensics, Incident Response, Fraud Investigation, Web Application Security Technical Certifications :- Computer Hacking Forensics Investigator | Certified Ethical Hacker | Certified Cyber crime investigator | Certified Professional Hacker | Certified Professional Forensics Analyst | Redhat certified Engineer | Cisco Certified Network Associates | Certified Firewall Solutions | Certified Network Monitoring Solution | Certified Proxy Solutions
Website

Leave a Reply

Your email address will not be published. Required fields are marked *

Enter Captcha Here : *

Reload Image

Indicator of Attacks | Indicator of Compromise

Top SIEM Use Cases | Threat Hunting Hypothesis | Deep Packet Inspection | Insider Threat Hunting | Hunting Data Exfiltration | Banking Fraud | ATM Use Cases | Cross Channel Data Exfiltration | Hunting Endpoint Anomaly | Denial-of-service | Man-in-the-middle (MitM) attack | Spear phishing attacks | Drive-by attack | Eavesdropping attack | Birthday attack