Latest CyberSec News by @thecyberpicker

StoryChief Wordpress Plugin 1.0.42 - Arbitrary File Upload. CVE-2025-7441 . webapps exploit for Multiple platform

Ivanti Endpoint Manager Mobile 12.5.0.0 - Authentication Bypass. CVE-2025-4427 . remote exploit for Multiple platform

This guide has been developed to help organisational personnel in understanding the threat environment and the value of implementing secure keys and secrets management to make better informed decisions.

Internet intelligence firm GreyNoise reports that it has recorded a significant spike in scanning activity consisting of nearly 1,971 IP addresses probing Microsoft Remote Desktop Web Access and RDP Web Client authentication portals in unison, suggesting a coordinated reconnaissance campaign.

Docker fixed a critical flaw in Docker Desktop app for Windows and macOS that could potentially allow to escape the confines of a container

Researchers have developed a novel attack that steals user data by injecting malicious prompts in images processed by AI systems before delivering them to a large language model.

Researchers warn that attackers are using compromised Amazon email accounts in spear-phishing attacks that may lead to ransomware infections.

U.S. insurance giant Farmers Insurance has disclosed a data breach impacting 1.1 million customers, with BleepingComputer learning that the data was stolen in the widespread Salesforce attacks.

French retailer Auchan is informing that some sensitive data associated with loyalty accounts of several hundred thousand of its customers was exposed in a cyberattack.

The FCC announced Monday it has blocked more than 1,200 voice service providers from having access to the country’s phone network for failing to comply with anti-robocall regulations.

Docker patched CVE-2025-9074 (CVSS 9.3), a flaw enabling container escape via unauthenticated API, risking host takeover.

UNC6384 hijacked captive portals in March 2025 to deploy PlugX malware, advancing PRC cyber-espionage goals.

Dover, Del., Aug. 25, 2025, CyberNewswire—Attaxion announces the addition of the Agentless Traffic Monitoring capability to its exposure management platform. Agentless Traffic Monitoring is a new capability designed to give cybersecurity teams actionable visibility into network traffic flowing to and from their digital assets – all without the need to deploy any agents or sensors

UpCrypter phishing since Aug 2025 uses fake voicemails, RAT payloads, and anti-analysis, hitting global industries.

Prompt injection attacks could be coming to an AI browser near you. Read on to understand what these attacks do and how to stay safe.

More than one million customers of Farmers Insurance and its subsidiaries were impacted by a cyberattack on a third-party vendor.

A social engineering campaign leveraging signed malware, evasive tactics, and captive portal hijacking.

The 34-year-old suspect, identified only by his surname Jeon, was taken into custody last Friday and appeared in court on Sunday for a pretrial detention hearing, according to the Seoul police.

Seventy-seven malicious Android apps containing different types of malware were found on Google Play after being downloaded more than 19 million times.

The Oregon Democrat cited recent news of a major hack and years of “covering up” explanations of incidents.

The electronics manufacturer and software vendor serves major automotive suppliers and top tech firms.

Earlier this month court officials publicly acknowledged recent digital attacks “of a sophisticated and persistent nature on its case management system” had prompted them to boost their online defenses.

The Maryland Transit Administration (MTA) experienced a cyber incident that is affecting its Mobility transit service for people with disabilities.

Depuis août 2024, Pavel Durov, fondateur et dirigeant de Telegram, accumule les coups d'éclats médiatiques contre la justice française. Mis en examen pour complicité de diffusion d'images pédopornographiques, de trafic de stupéfiants et d'escroquerie en bande organisée, le Russe de 40 ans vient de s'en prendre à une

Executives plan to increase IT spend despite disappointing returns on tech investments, according to Unisys.

A critical vulnerability in Docker Desktop for Windows and macOS allows compromising the host by running a malicious container, even if the Enhanced Container Isolation (ECI) protection is active.

Des internautes misent sur les VPN pour échapper au contrôle de l'âge sur les sites pornographiques. Une piste aussi exploitée par les mineurs, qui n'est pas ignorée par les autorités. Au Royaume-Uni, des voix s'élèvent pour obliger les VPN à participer à ce contrôle. La France, qui marche dans les pas de son voisin,

A variant of the Atomic macOS Stealer (AMOS) targets macOS users via fake support sites in malvertising campaign

Malware persistence keeps attackers in your systems long after reboots or resets. Wazuh helps detect and block hidden techniques like scheduled tasks, startup scripts, and modified system files—before they turn into long-term compromise.

This week in cybersecurity from the editors at Cybercrime Magazine