Latest CyberSec News by @thecyberpicker

The battle to fight misinformation continues.

SonicWall urges customers to patch SMA 100 series appliances against a critical authenticated arbitrary file upload vulnerability that can let attackers gain remote code execution.

Storm-2603 exploits SharePoint flaws to deploy Warlock ransomware, affecting 400+ victims. Microsoft urges mitigation.

Le régulateur des télécoms propose de faire évoluer la tactique contre les appels frauduleux, avec la mise en place d'un numéro générique un peu particulier. En effet, malgré le récent mécanisme d'authentification du numéro d'appelant, des usurpations continuent d'avoir lieu. Dans un avenir proche, votre écran de

En juillet 2025, l’Université russe de la Haute École d’Économie (HSE), l’une des institutions les plus prestigieuses du pays, a officiellement lancé un master consacré à la « conformité internationale ». Un terme vaste qui englobe également le contournement des sanctions occidentales. Deux ans pour former la

A Chinese hacking group is deploying Warlock ransomware on Microsoft SharePoint servers vulnerable to widespread attacks targeting the recently patched ToolShell zero-day exploit chain.

Wiz believes the active campaign is part of a broader crypto-scam infrastructure, which uses a wide range of exploitation techniques

En Grande-Bretagne, la saga de la société de transport KNP restera dans les annales comme l’un des plus retentissants effondrements industriels causés par une cyberattaque. Victime d’un ransomware en 2023, cette entreprise historique, fondée il y a 158 ans, a été précipitée dans la faillite à cause d’un mot de passe

U.S. CISA adds CrushFTP, Google Chromium, and SysAid flaws to its Known Exploited Vulnerabilities catalog.

XSS.is admin arrested in Kyiv after years enabling cybercrime; Europol disrupts major forum of 50K users.

Malware hidden in WordPress mu-plugins grants attackers full access and admin control, putting websites and users at serious risk.

Brave Software says its privacy-focused browser will block Microsoft's Windows Recall from capturing screenshots of Brave windows by default to protect users' privacy.

U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds Microsoft SharePoint flaws to its Known Exploited Vulnerabilities catalog.

Sophos addressed five Sophos Firewall vulnerabilities that could allow remote attackers to execute arbitrary code.

CISA is responding to potential compromises at federal agencies and various state and local entities.

The attack, linked to Scattered Spider, disrupted production of household cleaners and other goods.

It remains unclear how federal agencies depleted by layoffs will be able to implement the strategy’s ambitious vision, which includes an ISAC dedicated to AI.

Mimo exploits Craft, Magento, and Docker systems with crypto miners and proxyware to maximize profit.

It also builds on previous efforts to promote “secure by design” principles in AI systems and tools.

Proton has launched a new tool called Lumo, offering a privacy-first AI assistant that does not log user conversations and doesn't use their prompts for training.

Privacy services provider Proton introduced a privacy-first chatbot called Lumo. We had to take a look at it.

OpenAI is rolling out a new "personality" feature on the ChatGPT web app. This allows you to choose between multiple personalities, such as "Robot."

Clorox is suing IT giant Cognizant for gross negligence, alleging it enabled a massive August 2023 cyberattack by resetting an employee's password for a hacker without first verifying their identity.

According to a new report by blockchain intelligence firm TRM Labs, Kyrgyz-registered exchanges have repeatedly been used by sanctioned Russian entities.

Unknown threat actors have breached the National Nuclear Security Administration's network in attacks exploiting a recently patched Microsoft SharePoint zero-day vulnerability chain.

The popular NPM package 'is' has been compromised in a supply chain attack that injected backdoor malware, giving attackers full access to compromised devices.

The CyberSentry program remains operational, according to CISA, with analysts outside the lab continuing to review sensor data.

The software defects, which have a maximum-severity rating, do not require authentication and allow remote attackers to execute code arbitrarily on the underlying system.

Officials accuse the unnamed suspect of running XSS.is, a key and long-running marketplace with more than 50,000 registered users. The suspect allegedly made more than $8.2 million.