I had my browser set to autotranslate, so I read this piece in English (although ironically I can read German too, but perhaps not well on this topic), but if you don't have this feature, here's an English language piece on the hack.

https://caliber.az/en/post/media-russian-hackers-target-key-bundeswehr-suppliers-in-serious-cyberattacks

A satellite firm and an engineering firm that supplies critical technology to Germany's military forces has been reportedly hacked by Russian hackers, although allegedly of the "hacktivist" kind.
https://www.tagesschau.de/investigativ/ndr-wdr/cyberangriffe-bundeswehr-russland-100.html

How in the heck is it Patch Tuesday again?

With layoffs continuing to impact our community, it seemed like a good time to refresh this primer. If you've been directly impacted by these layoffs, I'm incredibly sorry. That sucks. But we're here for you. https://siliconflorist.com/2025/07/08/how-to-connect-with-the-startup-community/

The Treasury’s Office of Foreign Assets Control (OFAC) sanctioned Song Kum Hyok (Song), a malicious cyber actor associated with the sanctioned Democratic People’s Republic of Korea (DPRK) Reconnaissance General Bureau (RGB) hacking group Andariel.
https://home.treasury.gov/news/press-releases/sb0190

NEW: The chairman of UK retail giant Marks & Spencer refused to say whether the company paid ransom to hackers who caused outages and empty shelves.

“We don't think it's in the public interest to go into that," Archie Norman told UK parliament members.

https://techcrunch.com/2025/07/08/marks-spencer-chair-refuses-to-say-if-retailer-paid-hackers-after-ransomware-attack/

The US holiday is a memory now, so time to check out today's Metacurity to get briefed on the most critical infosec developments you should know, including

--Italian cops arrest FBI-wanted Chinese hacker who tried to steal COVID-19 vaccine
--Brazilian cops bust IT worker connected to $100m banking systems hack,
--Call of Duty: WWII yanked offline after RCE rumors,
--OpenAI beefs up corporate spying protections,
--DragonForce battles RansomHub,
--Cambodia accuses Thai hackers of attacks,
--Trump's tax bill contains cyber money,
--Hackers used Shellter Elite product in attacks,
--Researchers release PoC for Citrix NetScaler flaw,
--Nigeria fines pay TV company $500K for violating data protection,
--New ransomware group called Bert emerges,
--287 companies are at high risk of Scattered Spider attacks,
--Vendor to Ballad Health hit with data breach,
--AI protection program Anubis downloaded 200K times,
--New Batavia spyware targets Russian OT enterprises,
--SatanLock ransomware group says hi and bye,
--280K people affected by Nova Scotia Power breach,
--Russian custom drone firmware firm hit with cyberattack,
--Coinbase hacker plays the crypto markets for profit,
--Google to allow GeminiAI to interact with apps,
--Domain Tools offer free grants to needy journos, others,
--Number of malicious open source packages doubled in Q1
https://www.metacurity.com/italian-cops-arrest-fbi-wanted-chinese-hacker-who-tgried-to-steal-covid-19-vaccine/

NASA is looking for a CISO.
https://www.usajobs.gov/job/839985100?mod=djemCybersecruityPro&tpl=cs

For the past few weeks, @DomainTools Investigations worked with OSINT analyst and investigative journalist grantees to help uncover connections between websites involved in the harassment of Ukrainian personnel and their families, and the people and infrastructure involved.

We provide a technical writeup below on the observables and data involved.

#infosec #cybersecurity #threatintel #disinformation

https://www.domaintools.com/resources/blog/rdap-and-bgp-in-investigative-journalism/

VLAI: A RoBERTa-Based Model for Automated Vulnerability Severity Classification.

This paper presents VLAI, a transformer-based model that predicts software vulnerability severity levels directly from text descriptions. Built on RoBERTa, VLAI is fine-tuned on over 600,000 real-world vulnerabilities and achieves over 82% accuracy in predicting severity categories, enabling faster and more consistent triage ahead of manual CVSS scoring. The model and dataset are open-source and integrated into the Vulnerability-Lookup service.

We ( @cedric and I) decided to make a paper to better document how VLAI is implemented. We hope it will give other ideas and improvements in such model.

#vulnerability #cybersecurity #vulnerabilitymanagement #ai #nlp #opensource

@circl

🔗 https://arxiv.org/abs/2507.03607

https://cyberscoop.com/gop-domestic-policy-bill-includes-hundreds-of-millions-for-military-cyber/

GOP domestic policy bill includes hundreds of millions for military cyber

DOJ Finds Man in Photo with Epstein was Actually Biden

https://www.borowitzreport.com/p/doj-finds-man-in-photo-with-epstein

https://crypto-economy.com/hacker-behind-300m-coinbase-breach-buys-millions-in-ethereum-eth/
The hacker who stole $300 million from Coinbase is out there carefully managing trades to capitalize on future bullish cycles.

https://therecord.media/cyberattack-russia-firmware-blow-hackers

“Russian developers behind a custom firmware used to convert consumer drones for military use in Ukraine have reported a cyberattack on their infrastructure, disrupting the system that distributes the software.”

https://www.bleepingcomputer.com/news/security/public-exploits-released-for-citrixbleed-2-netscaler-flaw-patch-now/

Public exploits released for Citrix Bleed 2 NetScaler flaw, patch now

https://cyberscoop.com/call-of-duty-remote-code-execution-pc-game-offline/

Call of Duty takes PC game offline after multiple reports of RCE attacks on players

https://www.reuters.com/world/china/italian-police-arrest-chinese-national-wanted-by-fbi-alleged-industrial-2025-07-07/

Italian police arrest Chinese national wanted by FBI for alleged industrial espionage

https://techcrunch.com/2025/07/07/openai-tightens-the-screws-on-security-to-keep-away-prying-eyes/

OpenAI tightens the screws on security to keep away prying eyes

Closing hospitals to fund concentration camps.

That’s it. That’s what it boils down to.

Think about this for a moment.