Weekly Cybersecurity & Ethical Hacking Recap (June 1–7, 2025)
The difficult landscape of cyberattacks with AI threats becoming more prominent necessitates organizations and professionals being always one step ahead. The biggest news in cyber security this week further stresses the dire need for professionals in the field. Whether you are a technology enthusiast or a student pursuing a cyber security course in India, keeping yourself abreast of real-world cases and responses is crucial in crafting a defense strategy.
From state-sponsored ransomware gangs to an executive order carrying cyber-policy implications, here are the top cybersecurity and ethical-hacking stories from 1 to 7 June 2025.
🔍 Cybersecurity and Ethical Hacking News for 1-7 June 2025
1. AI-Driven Cyber Threats Are Going Global
It is now considered sure that this can no longer be a set of defensive tools: grossly phishing attacks and deepfakes are being designed by the criminals. In 2024, a ransomware attack on Synovis led to cancellation of over 12,000 appointments in the scope of manipulation of the UK NHS. With AI-fueled breaches, M&S lost £600M in capitalization.
Source: Financial Times
2. FBI Warns of a Surge in Ransomware from North Korea
The FBI and CISA issued a joint advisory on a significant hacking campaign associated with North Korean actors, holding over 900 organizations under target in the month of May alone, many in critical infrastructure systems.
Source: Times of India
3. Trump Executive Order Reworks U.S. Cyber Policy
This executive order issued under the Trump administration revises cyberattack-related sanctions, toning down some protective measures and now covering only foreign actors. It also rolls back the Biden-era initiative for digital IDs and promotes standards for AI and quantum technologies.
Source: Politico
4. 💰Cybercriminals Steal $64 Million from UK Tax Office via Phishing Scam
A cybercrime gang has managed to steal nearly $64 million (53 million pounds) from the UK tax authority HMRC (Her Majesty’s Revenue and Customs) after using stolen identities in a sophisticated phishing scam.
The crooks took control of taxpayer accounts through HMRC’s self-assessment tax system and then submitted fake claims that exploited that taxpayer’s identity and personal data. HMRC acted swiftly to shut down the affected accounts (taxpayer accounts) and is currently assisting them back on-line to access their accounts.
Officials assured that no core HMRC systems were breached and that HMRC’s internal systems infrastructure was robust and secure. The relevant law enforcement agencies are pursuing an investigation.
Such breaches highlight the increased danger of identity-based attacks and highlight the importance of cybersecurity vigilance and protection when using financial platforms.
Source: Reuters
5. CrowdStrike Reports Financial Hit Amid Software Outage Fallout
The $110-million loss for CrowdStrike due to an outage and free trials of software set the stage for fines by regulators in Europe. After revenues missed the Wall Street estimates by a whisker, the company’s stock priced in a 6-percent correction.
Source: Wall Street Journal
6. Infosecurity Europe 2025: AI, Quantum & Global Defense
The 30th edition of Infosecurity Europe was held in London. It was all about stressing defense against AI and quantum threats. Companies exhibited identity protection tools that use AI and stressed that being human is still an essential layer of cyber defense.
Source – TechRadar
7. Microsoft Restaurants Cybersecurity Defence for Free for European Governments
The recent initiative from Microsoft will provide cybersecurity intel and protection services to European government agencies for free to counter the rise in state-sponsored cyberattacks.
Source – Times of India
8. Vodafone Fined €50M for an Infraction of Data
The German Datenschutzbehörde has fined Vodafone for a number of violations of the GDPR regulations regarding the access of personal data by unauthorized third parties. Such violations occurred between 2020 and 2021 with one contracted call center.
Source – DIESEC
9. Google Discovers Large Vishing Campaign
Google TAG found a threat actor group (UNC6040) that conducted a voice phishing campaign to convince employees to allow access to their systems. The incident highlights the importance of awareness and regular training for staff related to cybersecurity protocols.
Source – DIESEC
10. Critical Vulnerabilities Disclosed in Major Platforms
Several significant vulnerabilities were disclosed this week:
FreeRTOS-Plus-TCP (CVE-2025-5688): Memory corruption, remote code execution.
Apache Tomcat (CVE-2025-31650): Memory leak allows unauthenticated DoS attacks.
AWS Amplify Studio (CVE-2025-4318): RCE vulnerability with severity of 9.5 CVSS.
Source – Cyware
11. Hackers Target the Mining Sector
Cyberattacks are increasing in the mining and energy area, with damages in the millions reported. Many companies are “criminally unprepared” according to cybersecurity ethical hackers, who add that implementing a security framework is urgent.
Source – Mining.com
Conclusion
As global cyber threats expand in both scope and sophistication, there has never been a more critical moment to upskill your cyber capabilities. If you are defending national infrastructure, securing cloud environments, identifying complex social engineering attacks, or anything in between, you will never reach your objective unless you receive a quality education.
Joining a cyber security course in India can provide professionals with the modalities to detect threats and, if possible, mitigate them in advanced threats. Similarly, if your passion is offensive security, joining an ethical hacking course in India can lead to one of the most impactful professions in high-demand.
Be on the offensive. Be secure. And just keep learning – cyber dedication is not a project; it is a lifetime commitment.
Cyber Security Course in Mumbai | Cyber Security Course in Bengaluru | Cyber Security Course in Hyderabad | Cyber Security Course in Delhi | Cyber Security Course in Pune | Cyber Security Course in Kolkata | Cyber Security Course in Thane | Cyber Security Course in Chennai
![June 2025 Cybersecurity Weekly Recap [June 9 – 13]: AI Exploits, Zero-Days, Botnets & Ransomware Updates](https://bostoninstituteofanalytics.b-cdn.net/wp-content/uploads/2025/06/24-768x403.jpg)