Cyber Brief 25-07 - June 2025

This Cyber Brief (June 2025) synthesises 277 open-source reports covering: rising nation-state cyberespionage (China-, Russia-, Iran-, and North Korea-linked operations), multiple supply‑chain and developer-focused attacks (malicious npm/PyPI packages, GitHub repo weaponisation, ConnectWise/ SonicWall abuse), widespread criminal activity including Play ransomware (~900 victims) and large infostealer-derived credential exposures (~16 billion credentials), high-impact disruptive events (a 7.3 Tbps DDoS, Iranian internet shutdowns, destructive npm wipes), and policy/law-enforcement actions (EU crisis blueprint, arrests/takedowns). The brief highlights active exploitation (CVE references, zero-click iOS exploit), cross-sector impacts (telecoms, government, media, critical infrastructure), and ongoing mitigations and takedowns.