Latest CyberSec News by @thecyberpicker

Kidflix had 1.8M users and 91K CSAM videos; Europol's 38-country probe seized 3K+ devices.

Sophisticated skimmer uses legacy Stripe API to validate and steal card data from 49 sites since Aug 2024.

Executive Director Morgan Adamski said the agency’s use of generative AI tools has reduced the timeframe for analyzing malicious traffic from days and weeks to hours and minutes.

Reps. Andrew Garbarino and Eric Swalwell said legislative priorities include an expiring information-sharing law and making a threat information-sharing organization permanent.

FIN7 cybercrime group has been linked to Anubis, a Python-based backdoor that provides remote access to compromised Windows systems.

The openSNP project, a platform for sharing genetic and phenotypic data, will shut down on April 30, 2025, and delete all user submissions over privacy concerns and the risk of misuse by authoritarian governments.

The Lower Sioux Indian Community warned residents on Wednesday that a cyberattack caused disruptions for the local healthcare facility, government center and casino.

A vulnerability in Verizon's Call Filter feature allowed customers to access the incoming call logs for another Verizon Wireless number through an unsecured API request.

This week in cybersecurity from the editors at Cybercrime Magazine

Microsoft has announced that hotpatch updates are now available for business customers using Windows 11 Enterprise 24H2 on x64 (AMD/Intel) systems, starting today.

Over 39 million secrets like API keys and account credentials were leaked on GitHub throughout 2024, exposing organizations and users to significant security risks.

A novel skimming attack has been observed by Jscramber, using the Stripe API to steal payment information by injecting malicious scripts into pages

​Royal Mail is investigating claims of a security breach after a threat actor leaked over 144GB of data allegedly stolen from the company's systems.

A l'occasion du Forum InCyber, qui se tient actuellement à Lille, Docaposte a annoncé l'intégration de Wimi, qui propose une suite...-Cybersécurité

A cyber threat actor has claimed to have leaked 144GB of data from Royal Mail users

A malicious hacker recently offered to sell the security firm’s sensitive customer information.

Nearly 24K unique IP addresses have attempted to access portals in the last 30 days, raising concerns of imminent attacks over the past 30 days.

Gray bots surge as generative AI scraper activity increases, impacting web applications with millions of requests daily

À l'occasion du Forum InCyber, la grande messe européenne de la cybersécurité, Numerama a rencontré le directeur général de l'ANSSI, l'agence chargé de la cybersécurité en France, pour avoir son analyse sur les fuites de données qui ont marqué l'actualité des derniers mois. Les alertes « fuite de données » dans les

A multi-year operation against the child sexual abuse material (CSAM) platform Kidflix has led to dozens of arrests and the seizure of tens of thousands of illegal videos, Europol said Wednesday.

As the war between Russian and Ukraine continues, Western cyber support is waning, raising growing concerns about the long-term effectiveness of these efforts.

ChatGPT, the famous artificial intelligence chatbot that allows users to converse with various personalities and topics, has connectivity issues worldwide.

A generative AI nudify service has been found storing explicit deepfakes in an unprotected cloud database.

A new version of the Triada trojan has been discovered preinstalled on thousands of new Android devices, allowing threat actors to steal data as soon as they are set up.

ImageRunner exploit let attackers access private GCP container images; Google patched issue Jan 28, 2025.

AWS, Microsoft Azure and Google Cloud Platform each scored 0% security effectiveness in CyberRatings.org’s evaluation of cloud network firewall vendors’ ability to prevent exploits and evasions.

Most orgs only discover their security controls failed after a breach. With OnDefend's continuous validation, you can test, measure, and prove your defenses work—before attackers exploit blind spots.

Kidflix, one of the largest platforms used to host, share, and stream child sexual abuse material (CSAM) on the dark web, was shut down on March 11 following a joint action coordinated by German law enforcement.

U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds Apache Tomcat flaw to its Known Exploited Vulnerabilities catalog.

One of the major updates to CSF 2.0 is the creation of the Govern Function, highlighting the importance of ensuring c