June 2025 – Page 2 – TheCyberThrone

U.S. House of Representatives Bans WhatsApp on Official Devices

📌 Overview On June 25, 2025, the Chief Administrative Officer (CAO) of the U.S. House of Representatives officially banned WhatsApp from all government-issued devices used by House staff. This decision…

PravinKarthik June 26, 2025

CISA Catalog Update-June 25, 2025

🔍 Executive Summary The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has issued an urgent update to its Known Exploited Vulnerabilities (KEV) Catalog, highlighting three newly confirmed exploited security flaws…

PravinKarthik June 26, 2025

CVE-2025-49144 Privilege Escalation via Notepad++ Installer

🛑 Overview CVE-2025-49144 is a high-severity local privilege escalation vulnerability identified in Notepad++ versions 8.8.1 and earlier. The flaw stems from an insecure executable loading behavior during the installation process,…

PravinKarthik June 26, 2025

NVIDIA Megatron-LM Vulnerabilities

🔍 Overview In June 2025, NVIDIA disclosed two critical code injection vulnerabilities in its large-scale transformer training framework, Megatron-LM. These flaws reside in insecure Python file handling mechanisms and are…

PravinKarthik June 25, 2025

Taos County and Dairy Farmers of America Ransomware Incidents

🏛️ Taos County Ransomware Attack (New Mexico) 🧠 Summary Threat Actor: Kairos ransomware group Claim: Theft of 1.94 TB of sensitive data Date of Incident: Likely initiated on or around…

PravinKarthik June 25, 2025

T-Mobile 64 Million Records Breach Claim

🔥 What Happened? A hacker on a dark web forum claimed to possess a trove of 64 million T-Mobile customer records, allegedly stolen in a recent breach. The data, posted…

PravinKarthik June 24, 2025

CVE-2025-5777 – Critical Citrix NetScaler Vulnerability

CVE-2025-5777 is a critical out-of-bounds read vulnerability discovered in Citrix NetScaler ADC and NetScaler Gateway. This flaw allows unauthenticated remote attackers to access sensitive memory contents, which can potentially include…

PravinKarthik June 24, 2025

XDigo Malware exploits a Zeroday vulnerability

📌 1. Overview XDigo is a newly discovered, Go-based espionage malware attributed to the advanced persistent threat group XDSpy. It emerged in March 2025 and has been actively used in…

PravinKarthik June 23, 2025