Latest CyberSec News by @thecyberpicker

Ce sont encore des dizaines de noms de domaine qui ont été bloqués lors du match PSG-OM, pour empêcher les pirates d'accéder à des retransmissions illicites. Des actions organisées de façon à ennuyer au maximum les resquilleurs, mais qui sont jugées encore trop insuffisantes par les titulaires de droits. La lutte

Bitsight reveals that UK companies are more exposed to cyber risk than global peers via their digital supply chains

Apparu pour la première fois en 2021, le gang de ransomware derrière Medusa a déjà fait plus de 300 victimes dans plusieurs secteurs...-Cybersécurité

Microsoft warns of StilachiRAT, a stealthy remote access trojan that steals credentials, crypto wallets, and system data while evading forensic detect

A ransomware-as-a-service (RaaS) operation called 'BlackLock' has emerged as one of the more active ransomware operations of 2025.

The latest smishing scam follows a familiar process as ones the industry has seen over the past decade.

GitHub was forced to take action this weekend to help users after a threat actor compromised a popular open source package used by more than 23,000 organizations.

defcontrainings

Threat actors began exploiting a recently disclosed Apache Tomcat vulnerability immediately after the release of a PoC exploit code.

French authorities have allowed Pavel Durov, Telegram's CEO and founder, to temporarily leave the country while criminal activity on the messaging platform is still under investigation.

Frankfurt, Germany, Mar. 17, 2025, CyberNewswire -- Cyberattacks are no longer an abstract threat - they dominate risk planning for companies worldwide. The latest Link11 European Cyber Report shows an alarming trend: the number of DDoS attacks has more than doubled, and they are shorter, more targeted, and more technically sophisticated. Organizations that do not

​Microsoft has discovered a new remote access trojan (RAT) that employs "sophisticated techniques" to avoid detection, ensure persistence, and extract sensitive information data.

OKX Web3 has decided to suspend its DEX aggregator services to implement security upgrades following reports of abuse by the notorious North Korean Lazarus hackers, who recently conducted a $1.5 billion crypto heist.

Microsoft Incident Response uncovered a novel remote access trojan (RAT) named StilachiRAT, which demonstrates sophisticated techniques to evade detection, persist in the target environment, and exfiltrate sensitive data. This blog primarily focuses on analysis of the WWStartupCtrl64.dll module that contains the RAT capabilities and summarizes the malware’s key behaviors, capabilities, and the potential risk posed to systems and users.

The filing was part of a case brought by state attorneys general seeking to block DOGE access to sensitive information.

Apache Tomcat flaw CVE-2025-24813 is under active exploitation, enabling remote code execution via PUT requests.

The incident highlights ongoing security concerns in the software supply chain.

From March 17, Ofcom will enforce rules requiring tech platforms operating in the UK to remove illegal content, including child abuse material

Threat actors exploit Cascading Style Sheets (CSS) to bypass spam filters and detection engines, and track users’ actions and preferences.

Cloudflare introduces E2E post-quantum cryptography, enhancing security against quantum threats

DarkAtlas researchers have uncovered a direct link between BlackLock and the Eldorado ransomware group, confirming a rebranded identity of the notorious threat actor

The ransomware gang developed an automated framework to guess weak and reused passwords on VPNs and firewalls.

The FBI has warned about free file converters that are up to no good and can lead to ransomware and identity theft.

New paper: “GPU Assisted Brute Force Cryptanalysis of GPRS, GSM, RFID, and TETRA: Brute Force Cryptanalysis of KASUMI, SPECK, and TEA3.” Abstract: Key lengths in symmetric cryptography are determined with respect to the brute force attacks with current technology. While nowadays at least 128-bit keys are recommended, there are many standards and real-world applications that use shorter keys. In order to estimate the actual threat imposed by using those short keys, precise estimates for attacks are crucial. In this work we provide optimized implementations of several widely used algorithms on GPUs, leading to interesting insights on the cost of brute force attacks on several real-word applications...

A supply chain attack on the widely used 'tj-actions/changed-files' GitHub Action, used by 23,000 repositories, potentially allowed threat actors to steal CI/CD secrets from GitHub Actions build logs.

Two vulnerabilities impacting Fortinet products are being exploited by a new ransomware operation with ties to the LockBit ransomware group.

A bipartisan delegation of US Congresspeople and Senators has asked the hearing between the UK government and Apple to be made public

The browser in the middle technique can enable compromises, especially if defenses and MFA aren't properly implemented.

Discover the key differences between Tor vs VPN. Learn about their benefits, drawbacks, and use cases to enhance your online privacy and security.

Defend against APTs with threat intelligence, proactive threat hunting, multilayered security, and offensive security exercises to detect and mitigate attacks.