Latest CyberSec News by @thecyberpicker

Latest CyberSec News by @thecyberpicker

30552 bookmarks
Custom sorting
CISA warns of hackers exploiting SysAid vulnerabilities in attacks
CISA warns of hackers exploiting SysAid vulnerabilities in attacks
CISA has warned that attackers are actively exploiting two security vulnerabilities in the SysAid IT service management (ITSM) software to hijack administrator accounts.
·bleepingcomputer.com·
CISA warns of hackers exploiting SysAid vulnerabilities in attacks
Ukraine arrests suspected admin of XSS Russian hacking forum
Ukraine arrests suspected admin of XSS Russian hacking forum
The suspected administrator of the Russian-speaking hacking forum XSS.is was arrested by the Ukrainian authorities yesterday at the request of the Paris public prosecutor's office.
·bleepingcomputer.com·
Ukraine arrests suspected admin of XSS Russian hacking forum
OpenAI prepares Sora 2 to take on Google's Veo 3
OpenAI prepares Sora 2 to take on Google's Veo 3
OpenAI has had enough of Google's Veo 3 dominating generative AI videos and is now working on Sora 2, the successor to Sora.
·bleepingcomputer.com·
OpenAI prepares Sora 2 to take on Google's Veo 3
What to Expect in the ISO 42001 Certification Process | CSA
What to Expect in the ISO 42001 Certification Process | CSA
Learn what ISO 42001 is, what to expect from the certification process, and practical insights to help you lay a strong foundation for compliance.
·cloudsecurityalliance.org·
What to Expect in the ISO 42001 Certification Process | CSA
« Les données de 340 000 demandeurs d’emploi ont été consultées », êtes-vous concerné par le nouveau piratage de France Travail ?
« Les données de 340 000 demandeurs d’emploi ont été consultées », êtes-vous concerné par le nouveau piratage de France Travail ?
Depuis quelques jours, de nombreux inscrits à France Travail ont reçu un courriel inquiétant : des personnes non autorisées ont accédé à leurs données personnelles hébergées sur la plateforme. Que s'est-il réellement passé ? Qui est concerné ? France Travail a déroulé la chronologie des faits pour Numerama. L’alerte
·numerama.com·
« Les données de 340 000 demandeurs d’emploi ont été consultées », êtes-vous concerné par le nouveau piratage de France Travail ?
npm 'accidentally' removes Stylus package, breaks builds and pipelines
npm 'accidentally' removes Stylus package, breaks builds and pipelines
npm has taken down all versions of the Stylus library and replaced them with a "security holding" page, breaking pipelines and builds worldwide that rely on the package.
·bleepingcomputer.com·
npm 'accidentally' removes Stylus package, breaks builds and pipelines
Suspected XSS Forum Admin Arrested in Ukraine
Suspected XSS Forum Admin Arrested in Ukraine
The individual is accused of numerous illicit cybercrime and ransomware activities that have generated at least $7m in profit
·infosecurity-magazine.com·
Suspected XSS Forum Admin Arrested in Ukraine
STRATEGIC REEL: From guesswork to ground truth — stopping threats before they spread
STRATEGIC REEL: From guesswork to ground truth — stopping threats before they spread
In today’s post-signature world, attackers don’t just break in — they blend in. In this second installment of the Last Watchdog Strategic LinkedIn Reel (LW SLR) series, Corelight CEO Brian Dye delivers a clear-eyed take on how defenders can regain the upper hand with network-derived ground truth. This high-impact reel distills key insights from our
·lastwatchdog.com·
STRATEGIC REEL: From guesswork to ground truth — stopping threats before they spread
Le Escobar Phone était une arnaque : son créateur risque 120 ans de prison
Le Escobar Phone était une arnaque : son créateur risque 120 ans de prison
Dévoilé en 2020, le Escobar Fold 2 se présentait comme un concurrent du Samsung Galaxy Fold aux couleurs du trafiquant Pablo Escobar. Après plusieurs polémiques, une extraction et une enquête internationale, son créateur a finalement reconnu avoir conçu une vaste arnaque. Un téléphone pliant en hommage à un
·numerama.com·
Le Escobar Phone était une arnaque : son créateur risque 120 ans de prison
Meet Hazel Burton
Meet Hazel Burton
In the first Humans of Talos, Amy sits with Hazel Burton — storyteller, security advocate, and all-around Talos legend. Hazel shares her journey from small business entrepreneurship to leading content programs at Talos.
·blog.talosintelligence.com·
Meet Hazel Burton
Google Sues the Badbox Botnet Operators - Schneier on Security
Google Sues the Badbox Botnet Operators - Schneier on Security
It will be interesting to watch what will come of this private lawsuit: Google on Thursday announced filing a lawsuit against the operators of the Badbox 2.0 botnet, which has ensnared more than 10 million devices running Android open source software. These devices lack Google’s security protections, and the perpetrators pre-installed the Badbox 2.0 malware on them, to create a backdoor and abuse them for large-scale fraud and other illicit schemes. This reminds me of Meta’s lawauit against Pegasus over its hack-for-hire software (which I wrote about ...
·schneier.com·
Google Sues the Badbox Botnet Operators - Schneier on Security
Microsoft fixes bug behind incorrect Windows Firewall errors
Microsoft fixes bug behind incorrect Windows Firewall errors
Microsoft has resolved a known issue that triggers invalid Windows Firewall errors after rebooting Windows 11 24H2 systems with the June 2025 preview update installed.
·bleepingcomputer.com·
Microsoft fixes bug behind incorrect Windows Firewall errors
US Government Warns of Wide-Ranging Interlock Attacks
US Government Warns of Wide-Ranging Interlock Attacks
A joint US government advisory highlighted novel initial access techniques deployed by Interlock, and urged businesses and critical infrastructure to stay vigilant
·infosecurity-magazine.com·
US Government Warns of Wide-Ranging Interlock Attacks
Oui, le mail Free Mobile « Procédure Obligatoire » est une arnaque, ne tombez pas dans le piège
Oui, le mail Free Mobile « Procédure Obligatoire » est une arnaque, ne tombez pas dans le piège
Une nouvelle campagne de phishing aux couleurs de Free Mobile est en cours. Si vous avez reçu un mail de l'opérateur vous demandant de confirmer certaines informations personnelles, il s'agit très probablement d'un piège. Ton professionnel, couleurs, logo de Free. Autant d'éléments qui pourraient vous inciter à
·numerama.com·
Oui, le mail Free Mobile « Procédure Obligatoire » est une arnaque, ne tombez pas dans le piège
Global Ransomware Attacks Plummet 43% in Q2 2025
Global Ransomware Attacks Plummet 43% in Q2 2025
NCC Group observed a 43% drop in ransomware attacks in Q2 2025, driven by law enforcement actions and internal conflicts in groups
·infosecurity-magazine.com·
Global Ransomware Attacks Plummet 43% in Q2 2025
Comment sauvegarder un iPhone ? (iCloud, Mac, PC)
Comment sauvegarder un iPhone ? (iCloud, Mac, PC)
Avant d'installer une mise à jour, pour changer d'iPhone ou simplement par sécurité, il est vivement recommandé de sauvegarder son iPhone. Il existe plusieurs moyens pour récupérer toutes ses données. On ne le répètera jamais assez : sauvegarder ses appareils est important. En cas de panne, de vol, de changement
·numerama.com·
Comment sauvegarder un iPhone ? (iCloud, Mac, PC)
News alert: Living Security report reveals that just 10% of employees drive 73% of cyber risk
News alert: Living Security report reveals that just 10% of employees drive 73% of cyber risk
Austin, TX, July 21, 2025, CyberNewswire — Living Security, the global leader in Human Risk Management (HRM), today released the 2025 State of Human Cyber Risk Report, an independent study conducted by leading research firm Cyentia Institute. The report provides an unprecedented look at behavioral risk inside organizations and reveals how strategic HRM programs can reduce that risk 60%
·lastwatchdog.com·
News alert: Living Security report reveals that just 10% of employees drive 73% of cyber risk
Lumma infostealer malware returns after law enforcement disruption
Lumma infostealer malware returns after law enforcement disruption
The Lumma infostealer malware operation is gradually resuming activities following a massive law enforcement operation in May, which resulted in the seizure of 2,300 domains and parts of its infrastructure.
·bleepingcomputer.com·
Lumma infostealer malware returns after law enforcement disruption
Windows 11 KB5062660 update brings new 'Windows Resilience' features
Windows 11 KB5062660 update brings new 'Windows Resilience' features
​​Microsoft has released the KB5062660 preview cumulative update for Windows 11 24H2 with twenty-nine new features or changes, with many gradually rolling out, such as the new Black Screen of Death and Quick Machine Recovery tool.
·bleepingcomputer.com·
Windows 11 KB5062660 update brings new 'Windows Resilience' features