Latest CyberSec News by @thecyberpicker

The Chinese state-backed espionage group started targeting third-party IT services in late 2024, Microsoft researchers said.

A newly devised "polymorphic" attack allows malicious Chrome extensions to morph into browser extensions, including password managers, crypto wallets, and banking apps, to steal sensitive information.

Removing 24 malicious apps from the Google Play store and silencing some servers has almost halved the BadBox botnet.

With numerous CNAPP vendors to choose from, it can be a challenge for mid-sized enterprises. Learn the six factors for finding optimal cloud-native protection.

This week in cybersecurity from the editors at Cybercrime Magazine

Ransomware criminals are on the hunt for prime targets that can yield bigger payouts, according to cyber risk management firm Resilience.

En un an, Google a reçu 258 plaintes concernant l’utilisation de son modèle d'IA générative, Gemini, par des entités terroristes. 86 autres...-IA générative

AI-powered cybersecurity catches hackers like a comedy sketch—predictable, absurd, and always one step ahead. Learn how data and risk quantification expose threats.

Medusa ransomware surged 42% in 2024, claiming nearly 400 victims. Spearwing exploits Microsoft flaws to breach networks

EncryptHub expands phishing and ransomware tactics, leveraging PPI services, trojanized apps, and EncryptRAT to target high-value victims.

Elastic patched a critical Kibana flaw (CVE-2025-25012, CVSS 9.9) enabling arbitrary code execution. Update to version 8.17.3 now.

Cisco Talos has discovered an active exploitation of CVE-2024-4577 by an attacker in order to gain access to the victim's machines and carry out post-exploitation activities.

Layoffs and cutbacks have been cited as major factors in a significant drop in job satisfaction among women working in cybersecurity, according to ISC2

Interesting article—with photos!—of the US/UK “Combined Cipher Machine” from WWII.

Attack graphs provide continuous visibility into attack paths, enabling proactive threat detection and risk mitigation.

Merchants outraged as PCI-SSC changes compliance criteria just weeks before the new regulation comes into effect.

Enisa identifies six sectors that it says must improve on NIS2 compliance

Over 1,000 WordPress sites infected with JavaScript backdoors, enabling persistent access and malware deployment.

The DoJ has charged Chinese government and i-Soon employees for a series of for-profit data theft campaigns

China-linked Lotus Blossom APT targets governments and industries in Asian countries with new Sagerunex backdoor variants.

U.S. charges 12 Chinese nationals in a cyber espionage case linked to PRC’s MPS, MSS, and APT27.

The organization also lost years of wildlife conservation research as a result of the January 2024 cyber incident.

Microsoft warns that China-backed Silk Typhoon behind US Treasury hack, targets global IT supply chains, using IT firms.

A flurry of unsealed indictments reveal China’s alleged well-coordinated effort to use a hacker-for-hire ecosystem to conduct espionage while obscuring the government’s direct involvement.

The Electronic Frontier Foundation (EFF) has released a free, open-source tool named Rayhunter that is designed to detect cell-site simulators (CSS), also known as IMSI catchers or Stingrays.

Research from Graphika details how a range of online communities are creating AI personalities that can blur reality for lonely individuals, particularly teenagers.

Ransomware groups last year achieved lateral movement within an average of 48 minutes after gaining initial access to targeted environments, threat intelligence experts said.

Microsoft warns that Chinese cyber-espionage threat group 'Silk Typhoon' has shifted its tactics, now targeting remote management tools and cloud services in supply chain attacks that give them access to downstream customers.