Advisories

ZeroFox Weekly Intelligence Brief – June 28, 2025

|by Alpha Team

banner image

ZeroFox Weekly Intelligence Brief – June 28, 2025

ZeroFox’s Weekly Intelligence Briefing highlights the major developments and trends across the threat landscape, including digital, cyber, and physical threats. ZeroFox Intelligence is derived from a variety of sources, including—but not limited to—curated open-source accesses, vetted social media, proprietary data sources, and direct access to threat actors and groups through covert communication channels. Information relied upon to complete any report cannot always be independently verified. As such, ZeroFox applies rigorous analytic standards and tradecraft in accordance with best practices and includes caveat language and source citations to clearly identify the veracity of our Intelligence reporting and substantiate our assessments and recommendations. All sources used in this particular Intelligence product were identified prior to 6:00 AM (EDT) on June 26, 2025; per cyber hygiene best practices, caution is advised when clicking on any third-party links.

Read the Brief

View the full report here

Chinese State Hackers Suspected to be Behind Espionage Infrastructure “LapDogs”

What we know:

  • Suspected Chinese state hackers have built a network of botnet-like operational relay boxes (ORBs) in targeted countries, reportedly for cyber espionage purposes.
  • The targeted countries include the United States, Taiwan, Japan, Hong Kong, and South Korea.
  • The infrastructure building has been dubbed “LapDogs” and is thought to have started in September 2023.

Phishing Campaign Targets DMVs; Steals Financial Information

What we know:

  • An ongoing SMS phishing campaign impersonating Departments of Motor Vehicles (DMVs) across the United States has tricked thousands of Americans into exposing their personal and financial data.

New Guidance Released for Reducing Memory-Related Vulnerabilities

What we know:

  • The Cybersecurity and Infrastructure Security Agency (CISA) and the National Security Agency (NSA) have released a joint guide highlighting the importance of adopting memory safe languages (MSLs) in improving software security and reducing the risk of security incidents.

Tags: tlp:green