Latest CyberSec News by @thecyberpicker

OpenAI has finally announced the GPT Go subscription, which costs just $4 in the US or INR 399 in India.

Enterprise search and security company Elastic is rejecting reports of a zero-day vulnerability impacting its Defend endpoint detection and response (EDR) product.

Depuis plusieurs semaines, de nombreux messages circulent sur des groupes WhatsApp et sont transférés dans les discussions privées des utilisateurs, propageant une rumeur infondée. Selon ceux-ci, l’IA de Meta, intégrée à la messagerie en mars 2025, pourrait accéder au contenu des discussions privées ainsi qu'à de

Business leaders want to prevent further fallout as nearly all have experienced at least one problematic incident tied to AI, according to an Infosys survey.

The cybersecurity firm said its “platformization” strategy is beginning to pay dividends as more large customers consolidate their spending on its offerings.

A critical flaw in SAP NetWeaver AS Java is being widely exploited, allowing unauthenticated remote code execution

Startups are ready to bring AI powered toys to the market as an alternative for screen time. But is that really progress?

A cyber-attack on Allianz Life, linked to the ShinyHunters group, has exposed the personal information of 1.1 million customers

GodRAT Trojan Targets Financial Institutions via Malicious Skype Files, Leveraging Steganography and Gh0st RAT Legacy

American pharmaceutical company Inotiv has disclosed that some of its systems and data have been encrypted in a ransomware attack, impacting the company's business operations.

Recent surveys found enterprises are enthusiastically adopting AI, even as they neglect basic cybersecurity measures.

The Canadian Investment Regulatory Organization (CIRO) said it will work to identify the personal information breached and notify those affected

North Korea-linked hackers were seen targeting more than a dozen embassies in Seoul with phishing emails.

The Business Council of New York State (BCNYS) has revealed that attackers who breached its network in February stole the personal, financial, and health information of over 47,000 individuals.

Microsoft has confirmed that the August 2025 Windows security updates are breaking reset and recovery operations on systems running Windows 10 and older versions of Windows 11.

The United Kingdom has withdrawn its demand that Apple create a backdoor to its encrypted cloud systems following months of diplomatic pressure from the United States, according to a statement from Director of National Intelligence Tulsi Gabbard.

See how itariffs and Similar Suppliers can help you stay ahead of tariff changes and provide actionable insights and next steps to mitigate risk.  With unprecedented supply chain volatility, identifying and engaging with alternative suppliers is no longer just tactical, it’s a necessity to keep your organization running at maximum efficiency.   However, finding alternative....

SAP NetWeaver Exploit Chains CVE-2025-31324 and CVE-2025-42999, Abused as Zero-Days by Ransomware and Espionage Groups Targeting Critical Infras

Red Canary observed the novel tactic in a cluster of activity targeting a legacy vulnerability to access cloud-based Linux systems

The most effective security isn’t a gate—it’s a foundation. By weaving security into the DNA of platforms, we empower teams to build fast and safely.

The Indiana-based pharmaceutical company Inotiv discovered a cybersecurity incident earlier this month and found the hackers had encrypted certain systems.

This week in cybersecurity from the editors at Cybercrime Magazine

Get an inside look at how JJ Cummings helped build and lead one of Cisco Talos’ most impactful security teams, and discover what drives him to stay at the forefront of threat intelligence.

Ransomware attackers continue to primarily target small and medium-sized manufacturing businesses in Japan.

Nearly 60% of 2024 breaches involved human factors, showing weak security culture undermines advanced defenses

U.K. drops January 2025 Apple backdoor mandate after U.S. civil liberties concerns, protecting encrypted iCloud data.

Trivial C# Random Exploitation

Researchers detected that FreeVPN.One, a longstanding Chrome Web Store VPN extension, recently turned into spyware

Kaspersky experts analyze GodRAT, a new Gh0st RAT-based tool attacking financial firms. It is likely a successor of the AwesomePuppet RAT connected to the Winnti group.

As digital infrastructure increasingly influences our daily lives, the National Institute of Standards and Technology (NIST) is committed to advancing cybers