Latest CyberSec News by @thecyberpicker

Kaspersky reveals Head Mare and Twelve join forces targeting Russian entities via vulnerabilities and new tools, escalating cyber threats.

China-linked APT Aquatic Panda targeted 7 organizations in a 10-month espionage campaign using five malware families.

Learn more about AI agents, advanced autonomous systems designed to perform specific tasks, make decisions, and collaborate with humans and other AI systems.

The report contains statistics on malware, initial infection vectors and other threats to industrial automation systems in Q4 2024.

L'Assemblée nationale s'oppose encore à l'accès aux contenus des messageries chiffrées au profit des services de renseignement. Des dispositions proposées dans le cadre de la proposition de loi pour lutter contre le trafic de drogue ont été largement rejetées. Rien n'y fait. Malgré l'insistance du ministre de

Experts warn of the active exploitation of two recently patched security vulnerabilities affecting Cisco Smart Licensing Utility.

Active exploitation of Cisco CVE-2024-20439 & 20440 in Smart Licensing forces urgent patching of vulnerable versions.

Veeam has patched a critical remote code execution vulnerability tracked as CVE-2025-23120 in its Backup & Replication software that impacts domain-joined installations.

Federal prosecutors said Matthew Weiss, a former assistant football coach at the University of Michigan, learned hacking skills to breach online databases, primarily targeting information about "female college athletes."

CISA has warned U.S. federal agencies to secure their networks against attacks exploiting a high-severity vulnerability in NAKIVO's Backup & Replication software.

Two malicious VSCode Marketplace extensions were found deploying in-development ransomware from a remote server, exposing critical gaps in Microsoft's review process.

In this week’s Threat Source newsletter, William pitches a fun comparison between baseball legend Ichiro Suzuki and the unsung heroes of information security, highlights newly released UAT-5918 research, and shares an exciting new Talos video.

Attackers have started targeting Cisco Smart Licensing Utility (CSLU) instances unpatched against a vulnerability exposing a built-in backdoor admin account.

Learn more about NIST’s Interagency Report (IR) 8547, which provides guidance on transitioning from classical encryption to Post-Quantum Cryptography (PQC).

The phishing campaign for valuable Google accounts continues with a new twist, going after the customers of a Sass platform.

La présidente de la fondation Signal prévient que la loi Narcotrafic est susceptible de provoquer un retrait de son application de messagerie instantanée du marché français. En cause ? Les dispositions pouvant nuire à la sécurité des communications chiffrées. L'avertissement a pris la forme d'un tweet, publié dans

Not all authentication is equal to the task in 2025, but there is a best choice within reach

The UK's National Cyber Security Centre (NCSC) has published specific timelines on migrating to post-quantum cryptography (PQC), dictating that critical organizations should complete migration by 2035.

Security researchers have linked a new backdoor dubbed Betruger, deployed in several recent ransomware attacks, to an affiliate of the RansomHub operation.

The FishMonger APT Group has been linked with I-SOON, targeting governments, NGOs and think tanks in cyber-espionage campaigns

La start-up Stoïk, qui conçoit plusieurs produits d'assurance cyber pour les PME et ETI, a publié son rapport annuel sur la sinistralité de ses...-Cybersécurité

Researchers uncovered a March 11 incident that may have led to the larger supply chain attack.

Experts are warning about the proliferating market for targeted spyware and espionage. Why should we be concerned?

Learn how to optimize your SIEM solution with key strategies and practices.

YouTube game cheat videos deliver Arcane stealer malware; attack chain extracts sensitive data via batch files and PowerShell.

Popular WordPress security plugin WP Ghost is vulnerable to a critical severity flaw that could allow unauthenticated attackers to remotely execute code and hijack servers.

This is serious: A sophisticated cascading supply chain attack has compromised multiple GitHub Actions, exposing critical CI/CD secrets across tens of thousands of repositories. The attack, which originally targeted the widely used “tj-actions/changed-files” utility, is now believed to have originated from an earlier breach of the “reviewdog/action-setup@v1” GitHub Action, according to a report. […] CISA confirmed the vulnerability has been patched in version 46.0.1. Given that the utility is used by more than 23,000 GitHub repositories, the scale of potential impact has raised significant alarm throughout the developer community...

Annual pentests can leave security gaps that attackers can exploit for months. Learn more from Outpost24 about why continuous penetration testing (PTaaS) offers real-time detection, remediation, and stronger protection.