Latest CyberSec News by @thecyberpicker

La plateforme de cryptomonnaies Bybit a été victime d'un hack historique, conduisant à un vol de 1,46 milliard de dollars en Ethereum, attribué au Group Lazarus. Son PDG s'est voulu rassurant sur la solvabilité future. C'est un vendredi noir pour la plateforme de cryptomonnaies Bybit. Dans un communiqué publié sur X

Bybit suffered a record $1.46B crypto theft in a sophisticated attack, linked to North Korea’s Lazarus Group.

OpenAI banned accounts using ChatGPT for AI-powered surveillance and influence campaigns linked to China, Iran, and North Korea.

A request for information from GOP leaders on the House Energy and Commerce Committee is Congress’ latest attempt to push comprehensive data privacy standards.

One of 2024's most active ransomware outfits has been asleep through early 2025, thanks to reality-show-style, behind-the-scenes drama.

A 450-million-year-old squid fossil was dug up in upstate New York. Blog moderation policy.

Google continues its rollout of gradually disabling uBlock Origin and other Manifest V2-based extensions in the Chrome web browser as part of its efforts to push users to Manifest V3-based extensions.

Apple’s choice has caused some U.S. encryption defenders to worry about how the company may respond to similar requests from other governments.

The cryptocurrency exchange Bybit was hacked for more than $1.4 billion worth of Ethereum on Friday in what cybersecurity experts are calling the largest-ever theft targeting a cryptocurrency platform.

In addition to using CVE-2018-0171 and other Cisco bugs to break into telecom networks, the China-sponsored APT is also using using stolen login credentials for initial access.

An Android malware app called SpyLend has been downloaded over 100,000 times from Google Play, where it masqueraded as a financial tool but became a predatory loan app for those in India.

Le logiciel espion Pegasus était jusqu'à présent surtout utilisé pour cibler des personnalités politiques, militants et journalistes. La...-Cybersécurité

Une cyberattaque spectaculaire plonge les États-Unis dans le chaos : c’est le point de départ de Zero Day, la nouvelle mini-série de Netflix avec Robert De Niro. Mais un tel scénario pourrait-il vraiment se produire ? Un expert en cybersécurité de la société Nomios nous répond. La cyberattaque du siècle débarque sur

The eyewear retailer Warby Parker was hit with a $1.5 million fine by the Department of Health and Human Services on Thursday following a credential stuffing attack in 2018 that compromised the personal information of nearly 200,000 people.

Cryptocurrency exchange Bybit revealed today that an unknown attacker stole over $1.46 billion worth of cryptocurrency from one of its ETH cold wallets.

Maintaining compliance requires continuous monitoring, clear policies, and proactive risk management. Avoid last-minute fixes and manual processes to prevent compliance failures.

Leaked TopSec work logs expose China’s censorship infrastructure, linking the firm to state-backed content monitoring projects

Apple removes iCloud Advanced Data Protection in the UK after government demands access, raising privacy concerns.

Estonia and Monaco back up their citizens' information to a data center in Luxembourg, while Singapore looks to India as its safe haven for data. But geopolitical challenges remain.

Ross Foard, a former CISA employee, is being falsely identified as Leland Dudek, acting head of the Social Security Administration.

Cryptocurrency exchange Bybit revealed today that an unknown attacker stole over $1.46 billion worth of cryptocurrency from one of its ETH cold wallets.

AI-generated misinformation is rising, with 1,150 fake news sites identified. Deepfakes, voice cloning, and LLM-driven deception threaten elections an

The U.S. market is expected to exceed $2 trillion for the first time, with financial services and insurance leading the charge, the analyst firm said.

The China-backed hackers used compromised credentials to gain initial access to Cisco devices.

The U.S. Cybersecurity & Infrastructure Security Agency (CISA) warns that a Craft CMS remote code execution flaw is being exploited in attacks.

Healthcare security is failing patients time and again. This week DM Clinical Research and Helath Net Federal Services take the spotlight

Interesting research: “How to Securely Implement Cryptography in Deep Neural Networks.” Abstract: The wide adoption of deep neural networks (DNNs) raises the question of how can we equip them with a desired cryptographic functionality (e.g, to decrypt an encrypted input, to verify that this input is authorized, or to hide a secure watermark in the output). The problem is that cryptographic primitives are typically designed to run on digital computers that use Boolean gates to map sequences of bits to sequences of bits, whereas DNNs are a special type of analog computer that uses linear mappings and ReLUs to map vectors of real numbers to vectors of real numbers. This discrepancy between the discrete and continuous computational models raises the question of what is the best way to implement standard cryptographic primitives as DNNs, and whether DNN implementations of secure cryptosystems remain secure in the new setting, in which an attacker can ask the DNN to process a message whose “bits” are arbitrary real numbers...

Avis de tempête dans le secteur du cloud : ces environnements sont de plus en plus la cible d'attaquants cherchant à compromettre...-Club Data Protection