Latest CyberSec News by @thecyberpicker

This week in cybersecurity from the editors at Cybercrime Magazine

Des pirates tentent de dérober les données des clients de Disney+. Un faux mail du service de streaming ciblent les abonnées, les invitant à entrer leurs informations bancaires. Une nouvelle campagne de phishing cible les abonnés de la plateforme de streaming Disney+. Dans un courrier électronique reçu par la

Sygnia has uncovered Weaver Ant, a Chinese threat actor that spied on telecommunications networks for years

Chinese state-sponsored hackers infiltrated an Asian telecom for four years, triggering persistent cyber espionage

Kela researchers detect a 200%+ increase in dark web chatter about malicious AI tools

Today’s complex business landscape renders the “corporate ladder” metaphor useless. The modern journey is unpredictable, challenging, and deeply individual.

112 SaaS apps spur security risks; AI-driven insights like AskOmni streamline threat detection, ensuring robust defenses

Citizen Lab has a new report on Paragon’s spyware: Key Findings: Introducing Paragon Solutions. Paragon Solutions was founded in Israel in 2019 and sells spyware called Graphite. The company differentiates itself by claiming it has safeguards to prevent the kinds of spyware abuses that NSO Group and other vendors are notorious for. Infrastructure Analysis of Paragon Spyware. Based on a tip from a collaborator, we mapped out server infrastructure that we attribute to Paragon’s Graphite spyware tool. We identified a subset of suspected Paragon deployments, including in Australia, Canada, Cyprus, Denmark, Israel, and Singapore. ...

Astral Foods, South Africa’s largest poultry producer, lost over $1M due to a cyberattack disrupting deliveries and impacting operations.

Google has admitted it accidentally deleted some Maps Timeline user data after what it calls a "technical issue".

FakeApp campaign leverages .NET MAUI to steal data from Indian, Chinese users via bogus banking and social apps

Wiz Security finds four critical RCE vulnerabilities in the Ingress NGINX Controller for Kubernetes

A cyberattack on Ukraine’s national railway operator Ukrzaliznytsia disrupted online ticket services, causing long lines at Kyiv’s station.

The Kaspersky financial threat report for 2024 contains the main trends and statistics on financial phishing and scams, mobile and PC banking malware, as well as recommendations on how to protect yourself and your business.

Operation Red Card sees 306 arrests and 1,842 devices seized across Africa, curbing cross-border cybercrime.

Les solutions de cybersécurité ne manquent pas. Mais, en avez-vous réellement besoin si vous faites preuve d’une vigilance à toute épreuve sur internet ? Il est tentant de penser que la prudence reste la meilleure des protections en ligne. Et c'est plutôt vrai, à condition de ne jamais jamais baisser la garde. Les

South Africa’s largest chicken producer lost more than $1 million due to a recent cyberattack that caused delivery delays and other issues.

The software defect in the widely used open-source JavaScript framework allows attackers to bypass middleware-based authorization.

Our risk intelligence platform wins prestigious award for excelling in Third Party Risk Management by the Third-Party Risk Association

China-linked APT Weaver Ant infiltrated the network of a telecommunications services provider for over four years.

​California-based genetic testing provider 23andMe has filed for Chapter 11 bankruptcy and plans to sell its assets following years of financial struggles

A new multi-platform ransomware-as-a-service (RaaS) operation named VanHelsing has emerged, targeting Windows, Linux, BSD, ARM, and ESXi systems.

Thai law enforcement on Saturday reportedly confiscated 38 Starlink satellite internet transmitters allegedly intended to be used in scam compounds in Myanmar.

Paris, France, Mar. 24, 2025, CyberNewswire -- Arsen, a leading cybersecurity company specializing in social engineering defense, today announced the full release of Conversational Phishing, a groundbreaking feature embedded in its phishing simulation platform. This AI-powered tool introduces dynamic, adaptive phishing conversations to train employees against evolving threats more effectively than ever before. Advanced phishing

Cary, NC, Mar. 24, 2025, CyberNewswire -- INE Security, a global provider of cybersecurity training and certification, today announced its initiative to spotlight the increasing cyber threats targeting healthcare institutions. In recognition of National Physicians Week 2025, the company is drawing attention to new industry data showing a sharp rise in cyberattacks on hospitals and

Cary, NC, 24th March 2025, CyberNewsWire

Five critical flaws in Ingress NGINX Controller expose 6,500+ clusters; update now to prevent unauthorized remote code execution.

The genetic testing business says user privacy will be an “important consideration” as it searches for a buyer.

The government of Union County in central Pennsylvania said a recent ransomware attack exposed information related to law enforcement and other government business.

Many Internet service providers (ISPs) worldwide are alerting customers of an outage that started Saturday night and triggered DrayTek router connectivity problems.