Latest CyberSec News by @thecyberpicker

ISACA identified factors such as heavy workload and long hours as the primary causes of stress, while there has been high turnover of IT professionals in the past two years

Competing agencies and districts are another hurdle for prosecutions, an investigator said in a recent speech.

Silk Typhoon is a Chinese state actor focused on espionage campaigns targeting a wide range of industries in the US and throughout the world. In recent months, Silk Typhoon has shifted to performing IT supply chain attacks to gain access to targets. In this blog, we provide an overview of the threat actor along with insight into their recent activity as well as their longstanding tactics, techniques, and procedures (TTPs), including a persistent interest in the exploitation of zero-day vulnerabilities in various public-facing appliances and moving from on-premises to cloud environments.

New SANS Institute research finds that 50% of global organizations were hit by an OT security incident in the past year

To protect SaaS applications, organizations must adopt best practices like access controls, threat monitoring, and security posture management. Learn how to stay secure.

!exploitable Episode Two - Enter the Matrix

Attackers blackmail YouTubers with complaints and account blocking threats, forcing them to distribute a miner disguised as a bypass tool.

Australia issued a detailed policy framework for government entities as it bans using Kaspersky products on authorized systems.

Meta recently fired 20 employees after investigations about internal information leaks, hinting at a rise in the count in the coming days.

Over 49,000 misconfigured AMS installed globally expose sensitive employee and access data, risking critical buildings.

As Skype retires starting May 2025, Microsoft requires all Skype users to switch to Teams or any alternative app to continue their chats.

Auto-Color malware is a potent Linux backdoor that already attacked universities and government systems in North America and Asia.

GuidePoint Security has received reports of multiple organizations receiving ransom letters in the mail

The Polish space agency POLSA announced it has disconnected its network from the internet following a cyberattack.

Attackers are using typosquatted Go packages to deploy malware on Linux and macOS, targeting financial developers.

U.S. CISA adds Linux kernel and VMware ESXi and Workstation flaws to its Known Exploited Vulnerabilities catalog.

Scammers are impersonating the BianLian ransomware gang in fake ransom notes sent to US companies via snail mail through the United States Postal Service.

Broadcom has addressed three VMware zero-day vulnerabilities in ESX products that are actively exploited in the wild.

Boston and Tel Aviv, Mar. 4, 2025, CyberNewswire -- Hunters, the leader in next-generation SIEM, today announced Pathfinder AI, a major step toward a more AI-driven SOC. Building on Copilot AI, which is already transforming SOC workflows with LLM-powered investigation guidance, Hunters is introducing its Agentic AI vision, designed to autonomously enhance detection, investigation, and response.

New research has uncovered further links between the Black Basta and Cactus ransomware gangs, with members of both groups utilizing the same social engineering attacks and the BackConnect proxy malware for post-exploitation access to corporate networks.

A pair of cyber-focused bills tied to the National Telecommunications and Information Administration advanced out of a House committee Tuesday.

Phishers are once again using the Docusign API to send out fake documents, this time looking as if they come from PayPal.

A new botnet malware named 'Eleven11bot' has infected over 86,000 IoT devices, primarily security cameras and network video recorders (NVRs), to conduct DDoS attacks.

Discover how Microsoft secures AI models on Azure AI Foundry, ensuring robust security and trustworthy deployments for your AI systems.

Experts from multiple blockchain security companies said Monday that the hackers were able to move all of the stolen ETH coins to new addresses — the first step taken before the funds can be laundered further.

Cisco warned customers today of a vulnerability in Webex for BroadWorks that could let unauthenticated attackers access credentials remotely.

Boston and Tel Aviv, United States, 4th March 2025, CyberNewsWire

Google has announced an increased rollout of new AI-powered scam detection features on Android to help protect users from increasingly sophisticated phone and text social engineering scams.

L’Agence spatiale polonaise (POLSA) a subi une cyberattaque, forçant la déconnexion de ses systèmes. La Pologne, cible croissante des hackers pro-russes, voit ses infrastructures stratégiques menacées. L'agence spatiale polonaise (POLSA) a été victime d'une cyberattaque le 2 mars 2025. L'ampleur de l'attaque a poussé

The Iran-based administrator behind a darknet marketplace was sanctioned by the Treasury Department on Tuesday, one year after the platform was taken down in a law enforcement operation.