Latest CyberSec News by @thecyberpicker

Several posts on DPRK IT workers infiltrating companies, Sentinel One on fighting off threat actors, Anthropic shares how attackers were using Claude

Federal authorities, including the EPA and the U.S. Department of Energy, urged network defenders to secure remote access and use stronger passwords.

The age of AI guessing our passwords is upon us and we need to change the ways we authenticate and use passwords where we have no alternatives.

Since the start of the year, the Russian state-backed ColdRiver hacking group has been using new LostKeys malware to steal files in espionage attacks targeting Western governments, journalists, think tanks, and non-governmental organizations.

Cisco addressed a flaw in its IOS XE Wireless Controller that could enable an unauthenticated, remote attacker to upload arbitrary files.

Qilin ransomware led April 2025 with 45 data leaks, driven by NETXLOADER’s stealthy malware delivery method.

Discover key findings from VikingCloud's 2025 SMB Threat Landscape Report, highlighting the cybersecurity challenges and risks faced by small businesses.

This week in cybersecurity from the editors at Cybercrime Magazine

The data dump will likely shed light on LockBit’s recent activity and help law enforcement trace cryptocurrency transactions

With escalating tariffs and trade tensions reshaping global supply chains, interos.ai breaks down the new threats to financial markets, shipping and geopolitics.

DigiCert survey finds only 5% of global businesses are using post-quantum cryptography

MirrorFace deployed ROAMINGMOUSE and updated ANEL malware in March 2025 to target Japan and Taiwan's government systems

61% of orgs suffered breaches despite 43 tools; misconfigured controls + lack of validation fuel failure.

Explore key insights from auditing and implementing ISO 42001, the international standard guiding responsible AI development and risk management.

Meta has won almost $170m in damages from Israel-based NSO Group, maker of the Pegasus spyware.

SonicWall has urged its customers to patch three security vulnerabilities affecting its Secure Mobile Access (SMA) appliances, one of them tagged as exploited in attacks

The UK government is set to prioritize increasing the number of UK organizations who are Cyber Essentials certified over the coming year

A new spam campaign is targeting Brazilian users with a clever twist — abusing the free trial period of trusted remote monitoring tools and the country’s electronic invoice system to spread malicious agents.

L'arnaque aux faux techniciens fibre optique existe toujours en 2025. Nous l'avons vécue en ce début de mois de mai et elle est toujours aussi puissante pour le grand public qui ne connaît pas les prérogatives des opérateurs. L'arnaque au technicien fibre, vous connaissez ? Elle est très simple à mettre en place et

The UK government unveiled two new assessment schemes to boost confidence in the security of products and services during CYBERUK

Researchers spot in-the-wild exploits of Samsung MagicInfo despite recent patch

Organizations can start defending against deepfakes now, before efficient detectors are available

U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds GoVision device flaws to its Known Exploited Vulnerabilities catalog.

Security researchers at Aon have discovered a threat actor who bypassed SentinelOne EDR protection to deploy Babuk ransomware

Polish police arrested 4 people behind DDoS-for-hire platforms used in global attacks, offering takedowns for as little as €10.

Russia-linked COLDRIVER uses LOSTKEYS malware via ClickFix lures, targeting advisors, NGOs, and journalists.

As part of a pioneering coalition, interos.ai brings AI-powered risk intelligence to a global initiative aimed at eradicating forced labor from supply chains

Cisco fixes CVE-2025-20188, a 10.0 CVSS flaw tied to hardcoded JWT in wireless controllers, preventing root-level remote exploits.

Here is an overview of the CIS Benchmarks that the Center for Internet Security (CIS) updated or released for May 2025.

The LockBit ransomware gang has suffered a data breach after its dark web affiliate panels were defaced and replaced with a message linking to a MySQL database dump.