Latest CyberSec News by @thecyberpicker

Researchers warn that Iran-aligned threat groups could soon target U.S. companies and individuals in cyber espionage or sabotage attacks.

The warning from Google researchers follows a recent incident at Erie Insurance, although the perpetrators of that attack have not been identified.

Threat intelligence researchers are warning of hackers breaching multiple U.S. companies in the insurance industry using all the tactics observed with Scattered Spider activity.

U.S. DoJ seizes $7.74M in crypto linked to North Korean IT worker scheme exploiting AI, fake IDs, and BYOD loopholes.

A high-severity vulnerability in ASUS Armoury Crate software could allow threat actors to escalate their privileges to SYSTEM level on Windows machines.

This week on the Lock and Code podcast, we revisit a 2024 interview with Dr. Jean Twenge about smartphones and the teen mental health crisis.

The SEC is pulling back cybersecurity regulations for investment companies and investment advisers proposed under the Biden administration.

A burst of global law enforcement actions during the past few weeks marked by a flurry of successful takedowns gives cybercrime experts a jolt of hope.

Archetyp Market facilitated high-volume sales of fentanyl, cocaine, MDMA, amphetamines and synthetic opioids since 2020, according to authorities.

Cyber-attacks using HijackLoader and DeerStealer have been identified exploiting phishing tactics via ClickFix

Operation DEEP Sentinel has shut down Archetyp Market, the longest-running dark web drug marketplace

Kali Linux 2025.2, the second release of the year, is now available for download with 13 new tools and an expanded car hacking toolkit.

Email accounts of several Washington Post journalists were compromised in a cyberattack believed to have been carried out by a foreign government.

The commission offered no rationale for removing rules that would have imposed security requirements on financial services providers.

Malware-laced PyPI and npm packages steal developer credentials, CI/CD data, and crypto wallets. Attacks target macOS, AI workflows, and cloud setups

Anubis ransomware encrypts and erases data, leaving no recovery options for targeted industries.

The Bengaluru-based company told investors that it initially became aware of the breach on June 9.

Zoomcar Holdings (Zoomcar) has disclosed via an 8-K form filing with the U.S. Securities and Exchange Commission (SEC) a data breach incident impacting 8.4 million users.

This week in cybersecurity from the editors at Cybercrime Magazine

A multinational law enforcement operation targeted the leaders and infrastructure Archetyp Market, known for illegal drug sales on the dark web.

United Natural Foods (UNFI) said in an update that it “made significant progress" toward restoring its ordering systems after a cyberattack affected the company's ability to keep grocery stores stocked.

Both AI agents and AI chatbots automate tasks, but the security implications differ significantly. Dive into what sets them apart.

Microsoft has shared a workaround for a known issue that causes the classic Outlook email client to crash when opening or starting a new message.

Cynomi's playbook helps providers scale from tactical services to strategic cybersecurity programs with MRR growth.

Zero-click spyware. Undetectable AI leaks. Microsoft Copilot exploited. Read this week's top cyber incidents and the silent tactics behind them.

Manual remediation can't scale SaaS risk. Learn how automation transforms SaaS security into a collaborative, efficient, risk-reducing strategy.

Nessus users should update patches as soon as possible

Law enforcement authorities from six countries took down the Archetyp Market, an infamous darknet drug marketplace that has been operating since May 2020.

Artificial intelligence is changing everything - from how we search for answers to how we decide who gets hired, flagged, diagnosed, or denied. Related: Does AI take your data? It offers speed and precision at unprecedented scale. But without intention, progress often leaves behind a trail of invisible harm. We are moving fast. Too fast.

Sorbonne Université est victime d'une nouvelle cyberattaque. Les données personnelles de 32 000 salariés et anciens salariés auraient été dérobées, dont certaines très sensibles. Le communiqué de presse de l'université est laconique, mais la cyberattaque est de grande ampleur : Sorbonne Université a été victime d'une