Latest CyberSec News by @thecyberpicker

ASUS advises updating routers with the latest firmware releases to receive the vulnerability fix, or disable AiCloud as mitigation.

An ISACA survey found that just 5% of organizations have a defined strategy to defend against quantum-enabled threats

Researchers created a PoC rootkit called Curing that uses Linux’s io_uring feature to evade traditional system call monitoring.

Earth Kurma APT Targets Southeast Asia Governments With Rootkits and Cloud-Based Data Theft Tools

The US authorities have asked the public to help them unmask China’s Salt Typhoon threat actors

Orange Cyberdefense's CSIRT reported that threat actors exploited two vulnerabilities in Craft CMS to breach servers and steal data.

Le sulfureux site 4chan est de retour sur le web, deux semaines après une panne causée par une cyberattaque. La plateforme a expliqué les causes de son indisponibilité et détaillé les mesures prises pour ne plus se faire avoir à l'avenir. La « poubelle du web », comme est parfois surnommé 4chan, est de retour. Quasi

Cybercriminals are targeting WooCommerce users with fake patch emails that use IDN homograph spoofing to deliver backdoor malware.

The UK government says it will ban the possession or supply of SIM farms, in a fraud crackdown

SAN FRANCISCO — RSAC 2025 kicks off today at Moscone Center, with more than 40,000 cybersecurity pros, tech executives, and policy leaders gathering to chart the future of digital risk management. Related: RSAC 2025's full agenda One dominant undercurrent is already clear: GenAI isn’t coming. It’s here — embedded in enterprise security architectures, compliance tools,

A list of topics we covered in the week of April 21 to April 27 of 2025

Threat actors exploited Craft CMS zero-days CVE-2025-32432 and CVE-2024-58136, compromising 300 of 13,000 vulnerable servers.

Key Takeaways An open directory associated with a ransomware affiliate, likely linked to the Fog ransomware group, was discovered in December 2024. It contained tools and scripts for reconnaissance…

A large-scale phishing campaign targets WooCommerce users with a fake security alert urging them to download a "critical patch" that adds a Wordpress backdoor to the site.

The ransomware scene is re-organizing, with one gang known as DragonForce working to gather other operations under a cartel-like structure.

Brave has open-sourceed a new tool called "Cookiecrumbler," which uses large language models (LLMs) to detect cookie consent notices and then community-driven reviews to block those that won't break site functionality.

Coinbase has fixed a confusing bug in its account activity logs that caused users to think their credentials were compromised.

Microsoft warns that threat actor Storm-1977 is behind password spraying attacks against cloud tenants in the education sector.

SAN FRANCISCO -- The first rule of reporting is to follow the tension lines—the places where old assumptions no longer quite hold. Related: GenAI disrupting tech jobs I’ve been feeling that tension lately. Just arrived in the City by the Bay. Trekked here with some 40,000-plus cyber security pros and company execs flocking to RSAC

In Q1 2025, the Top 10 Malware observed via the MS-ISAC® changed slightly from the previous quarter. Read our blog post to learn more.

Storm-1977 used AzureChecker in password spray attacks on education clouds, leading to crypto mining abuse.

African multinational telecommunications company MTN Group disclosed a data breach that exposed subscribers' personal information.

CSA and Northeastern University’s Trusted AI Safety Knowledge Certification Program trains professionals to build, secure, and manage AI responsibly across its lifecycle.

ToyMaker deploys LAGTOY malware to steal credentials and sell access to CACTUS ransomware groups for double extortion.

L’Usine Digitale vous propose un récapitulatif des grandes actualités de la semaine en matière de cybersécurité. Au programme, une...-Cybersécurité

Veritaco CEO Jeffrey Bowie faces charges for allegedly installing malware on hospital computers, violating Oklahoma's Computer Crimes Act.

Microsoft has confirmed that Windows Recall is rolling out to everyone with Windows 11 KB5055627 on Copilot+ PCs.

Text “SQUID” to 1-833-SCI-TEXT for daily squid facts. The website has merch. As usual, you can also use this squid post to talk about the security stories in the news that I haven’t covered.

​​Microsoft has released the KB5055627 preview cumulative update for Windows 11 24H2 with many new features gradually rolling out, and some new bug fixes for everyone.

Two vulnerabilities impacting Craft CMS were chained together in zero-day attacks to breach servers and steal data, with exploitation ongoing, according to CERT Orange Cyberdefense.