Cyber Briefing: 2025.06.17

Cyber Briefing: 2025.06.17

👉 What’s the latest in the cyber world today?

Water Curse spreads multi-stage malware via GitHub repos, XDSpy exploits Windows LNK zero-day, and CISA flags Apple zero-click flaw used in spyware attacks. Qilin gang leaks FC Barcelona-linked insurer data, Zoomcar breach impacts 8.4M users, and Colombia’s justice system crippled by 45TB hack. Google rolls out AI anti-scam efforts in India, UK romance fraud losses hit $144M, and WhatsApp debuts Status ads with privacy promises.

Listen to our podcast here ⏬

Welcome to Cyber Briefing, the newsletter that informs you about the latest cybersecurity advisories, alerts, incidents and news every weekday.

First time seeing this? Please subscribe

🚨 Cyber Alerts

1. Water Curse Group Hits Developers Via GitHub

A threat actor group known as Water Curse has weaponized at least 76 GitHub accounts to distribute malicious repositories containing multi-stage malware, creating a significant…