This Week in Cybersecurity - June 13, 2025

This week’s cybersecurity headlines spotlight just how fast the threat landscape is shifting—from large-scale website compromises to critical AI vulnerabilities and increased federal involvement in healthcare security. Whether you're leading a healthcare organization, managing a business website, or adopting tools like Microsoft Copilot, the message is clear: attackers are adapting, and your defenses must too. In this week’s roundup, we break down three major stories and what they mean for SMBs looking to stay secure in an AI-driven, digitally connected world.

Top News This Week

Mass Website Infections: JSFireTruck Malware Hits 269K+ Sites in One Month

A massive malware campaign has infected over 269,000 legitimate websites in just one month using a highly obfuscated JavaScript technique called JSFireTruck. This code redirects users—especially those coming from search engines like Google or Bing—to malicious sites distributing malware, scams, and unwanted software. Researchers also highlighted a related threat: HelloTDS, a sophisticated system that uses fake CAPTCHA pages and browser fingerprinting to selectively deliver malware like PEAKLIGHT.

Takeaway: Even trusted websites can become malware distributors without their owners realizing it. SMBs must regularly audit their websites for unauthorized code injections and ensure up-to-date security controls are in place—especially if their site traffic comes from search engines. Website compromise is no longer just an enterprise problem—SMBs are soft targets in widespread campaigns like this.

(The Hacker News)

Congress Proposes New Healthcare Cybersecurity Bill Amid Rising Attacks

On June 10, 2025, U.S. lawmakers introduced a bipartisan Healthcare Cybersecurity Bill to address the sharp rise in data breaches impacting the healthcare sector—most notably the Change Healthcare ransomware attack, which exposed 190 million Americans' medical records. The bill mandates stronger collaboration between CISA and HHS to bolster cyber defenses through shared threat intelligence, mandatory training for providers, a dedicated risk management plan, and real-time reporting to Congress. This legislation builds on prior HHS plans to modernize HIPAA rules with more rigorous data protection measures.

Takeaway: For healthcare providers and partners—including small clinics, billing services, and IT vendors—tighter federal cybersecurity oversight is coming. SMBs in the healthcare space should start aligning with evolving federal standards, including stronger authentication, risk assessments, and continuous security testing. Compliance isn't just about avoiding penalties—it's about protecting patient trust and business continuity in an increasingly targeted sector.

(Infosecurity Magazine)

Critical Microsoft Copilot Vulnerability Could Have Enabled Zero-Click Data Theft

Researchers have disclosed a critical vulnerability in Microsoft Copilot, dubbed "EchoLeak" (CVE-2025-32711), which could have allowed remote attackers to steal sensitive data without any user interaction. The flaw, described as the first known zero-click attack on an AI assistant, exploited an LLM scope violation, potentially exposing data from OneDrive, SharePoint, Teams, and more. Microsoft has since patched the issue and implemented additional security measures. While no active exploitation has been confirmed, the incident highlights growing concerns about the security implications of AI integration in workplace tools.

Takeaway: As AI becomes deeply embedded in business platforms like Microsoft 365, SMBs must recognize that these tools introduce new threat vectors. It's crucial to maintain a proactive security posture by staying updated on vendor advisories, enforcing access controls, and monitoring AI activity. Even tools designed to boost productivity can become liabilities if not properly secured.

(Cybersecurity Dive)

Cyber Tip of the Week

Don’t trust what you don’t monitor.

If you're using AI tools like Microsoft Copilot, ensure they’re configured with principle of least privilege in mind. Regularly audit what data these tools can access and monitor their activity just like you would a human user with elevated permissions.

Stat of the Week

269,552 websites were compromised in just one month by a JavaScript malware campaign known as JSFireTruck, according to Palo Alto Networks Unit 42.

Final Thoughts

From massive website compromises to emerging threats targeting AI tools, this week makes one thing clear: attackers are evolving—and fast. SMBs can no longer afford to treat cybersecurity as an afterthought. Whether you're running a healthcare clinic or a professional services firm, it's time to ask not just if your systems are protected, but how often you're verifying that protection. Proactive is the new secure.

Until next week—stay sharp and stay secure.

Have questions about your cybersecurity posture? Let’s talk.