Latest CyberSec News by @thecyberpicker

Microsoft, IBM and Cisco are among the vendors backing the OASIS Data Provenance Standards Technical Committee announced last week.

A report by Forescout Research points to a threat actor with ties to LockBit.

Researchers uncovered 20 malicious PyPI packages stealing cloud credentials, downloaded 14,100+ times before removal.

A large-scale Coinbase phishing attack poses as a mandatory wallet migration, tricking recipients into setting up a new wallet with a pre-generated recovery phrase controlled by attackers.

A bagpipe and drum band: SQUID transforms traditional Bagpipe and Drum Band entertainment into a multi-sensory rush of excitement, featuring high energy bagpipes, pop music influences and visually stunning percussion!

California's AG has launched an investigation into companies' collection and sale of location data, potentially violating the CCPA.

Microsoft says it partially mitigated a week-long Exchange Online outage causing delays or failures when sending or receiving email messages.

The Black Basta ransomware operation created an automated brute-forcing framework dubbed 'BRUTED' to breach edge networking devices like firewalls and VPNs.

LockBit developer Rostislav Panev extradited to U.S. after aiding ransomware group’s $500M cybercrime spree.

Cisco has patched a denial of service (DoS) vulnerability that lets attackers crash the Border Gateway Protocol (BGP) process on IOS XR routers with a single BGP update message.

Rostislav Panev, who was arrested in Israel in August 2024 on U.S. charges related to dozens of LockBit ransomware attacks, has been extradited and appeared in a New Jersey federal court, authorities said.

This is a current list of where and when I am scheduled to speak: I’m speaking at the Rossfest Symposium in Cambridge, UK, on March 25, 2025. I’m speaking at the University of Toronto’s Rotman School of Management in Toronto, Ontario, Canada, on April 3, 2025. The list is maintained on this page.

A report by Forescout Research points to a threat actor with ties to LockBit.

A shocking amount of iOS apps in Apple's App Store contained hard-coded secrets. Secrets that could lead criminals to user data.

The Cybersecurity for Rural Water Systems Act would expand USDA’s Circuit Rider Program.

GSMA introduces end-to-end encryption for RCS using MLS, enhancing security for cross-platform messaging.

US authorities have extradited Rostislav Panev on charges of being a developer of the notorious LockBit ransomware

A dual Russian-Israeli national, suspected of being a key developer for the LockBit ransomware operation, has been extradited to the United States to face charges.

This week in cybersecurity from the editors at Cybercrime Magazine

AI is revolutionizing how we detect and respond to threats, enhancing the capacity to protect sensitive data and systems from malicious actors.

Andelyn Biosciences enforced 2,700 security policies in weeks, achieving Zero Trust without network redesign.

Join cybersecurity expert Joseph Carson for a live demo revealing how ransomware attacks unfold—and how to stop them.

Barracuda observed threat actors impersonating the Clop ransomware group via email to extort payments, claiming to have exfiltrated sensitive data

There is a new botnet that is infecting TP-Link routers: The botnet can lead to command injection which then makes remote code execution (RCE) possible so that the malware can spread itself across the internet automatically. This high severity security flaw (tracked as CVE-2023-1389) has also been used to spread other malware families as far back as April 2023 when it was used in the Mirai botnet malware attacks. The flaw also linked to the Condi and AndroxGh0st malware attacks. […] Of the thousands of infected devices, the majority of them are concentrated in Brazil, Poland, the United Kingdom, Bulgaria and Turkey; with the botnet targeting manufacturing, medical/healthcare, services and technology organizations in the United States, Australia, China and Mexico...

Sir Jeremy Fleming spoke during Palo Alto Networks’ Ignite event in London on March 13

MassJacker clipper malware hijacks cryptocurrency transactions, targeting piracy users via Pesktop[.]com, with attackers linked to 778K+ wallet addres

OBSCURE#BAT malware exploits fake CAPTCHA pages and malvertising to deploy rootkit r77, evading detection via registry modifications and AMSI patching