Latest CyberSec News by @thecyberpicker

A Chinese threat actor, tracked as UAT-6382, exploited a patched Trimble Cityworks flaw to deploy Cobalt Strike and VShell.

In the latest phase of Operation Endgame, an international law enforcement operation, national authorities from seven countries seized 300 servers and 650 domains used to launch ransomware attacks.

Google has launched a new Chrome feature that automatically updates compromised passwords using its built-in Password Manager.

Indirect prompt injection in GitLab Duo exposed private source code and inserted malicious HTML into AI responses, risking credential theft and data l

Commvault app secrets exposed via CVE-2025-3928 in Azure; CISA warns of broader SaaS campaign

Three critical Versa Concerto flaws disclosed after 90 days allow remote code execution via reverse proxy misconfigurations.

Today, OpenAI rival Anthropic announced Claude 4 models, which are significantly better than Claude 3 in benchmarks, but we're left disappointed with the same 200,000 context window limit.

The successful break-up of DanaBot marks the second high-profile law enforcement disruption of a widespread malware operation in as many days.

This publication provides essential data security guidance for organisations that develop and/or use AI systems, including businesses, government and critical infrastructure. It highlights the importance of data security in ensuring the accuracy and integrity of AI outcomes, and presents an in-depth examination of 3 areas of data security risks in AI systems: data supply chain, maliciously modified (poisoned) data, and data drift.

U.S. CISA adds a Samsung MagicINFO 9 Server vulnerability to its Known Exploited Vulnerabilities catalog. .....

The U.S. government today unsealed criminal charges against 16 individuals accused of operating and selling DanaBot, a prolific strain of information-stealing malware that has been sold on Russian cybercrime forums since 2018. The FBI says a newer version of DanaBot…

The alleged leader of the cybercriminal gang behind the Qakbot malware, which was used by many high-profile ransomware gangs, has been indicted by the U.S. Justice Department.

Miami, Fla., May 22, 2025, CyberNewsWire -- Halo Security, a leading provider of attack surface management and penetration testing services, today announced it has successfully achieved SOC 2 Type 1 compliance following a comprehensive audit by Insight Assurance. This certification validates that Halo Security's security controls and practices are properly designed and implemented to meet

The company paused the platform for safety reasons before confirming that an attacker had stolen the funds.

The U.S. government has indicted Russian national Rustam Rafailevich Gallyamov, the leader of the Qakbot botnet malware operation that compromised over 700,000 computers and enabled ransomware attacks.

Cary, NC. May 22, 2025, CyberNewswire -- INE Security, a global leader in Cybersecurity training and certifications, has announced a strategic partnership with Abadnet Institute for Training, a Riyadh-based leader in specialized Information Technology, Cybersecurity, and Networking training. The collaboration leverages INE Security's internationally recognized cybersecurity training content and Abadnet's established presence in the Saudi

Chair Brendan Carr said the agency is exploring how to expand STIR/SHAKEN protocols to older legacy phone networks.

Hazel observes that cybercriminals often fumble teamwork, with fragile alliances crumbling over missed messages. Plus, how UAT-6382 is exploiting Cityworks and what you can do to stay secure.

Le géant britannique de la distribution a été victime d'une cyberattaque en avril, entraînant notamment une suspension des commandes en...-Cybersécurité

Since January, cybersecurity experts have seen Chinese-speaking hackers exploiting a bug impacting a tool used by local governments to manage critical infrastructure assets and other services.

Investors still have concerns about margins as the company uses incentives to drive customers into unified platform deals.

The joint guidance comes as officials fear how hackers could manipulate AI systems, especially in critical infrastructure.

Earlier this month, Killnet claimed it had hacked Ukraine’s drone-tracking system after disappearing from public view in 2023.

Cybercriminal campaigns are using fake Ledger apps to target macOS users and their digital assets by deploying malware that attempts to steal seed phrases that protect access to digital cryptocurrency wallets.

Learn how to optimize your SIEM solution with key strategies and practices.

Chinese threat actor UAT-6382 exploited CVE-2025-0944 in Trimble Cityworks to drop malware on U.S. systems.

The legislation Sens. Gary Peters and James Lankford would create an executive branch panel to align federal cyber rules.

Malware campaign exploiting TikTok’s popularity has been observed using social engineering to spread Vidar and StealC

Police arrested 270 suspects following an international law enforcement action codenamed 'Operation RapTor' that targeted dark web vendors and customers from ten countries.

Kettering Health is facing significant disruptions from a cyber-attack that impacted patient care