Latest CyberSec News by @thecyberpicker

Latest CyberSec News by @thecyberpicker

30551 bookmarks
Custom sorting
Hackers exploited Windows WebDav zero-day to drop malware
Hackers exploited Windows WebDav zero-day to drop malware
An APT hacking group known as 'Stealth Falcon' exploited a Windows WebDav RCE vulnerability in zero-day attacks since March 2025 against defense and government organizations in Turkey, Qatar, Egypt, and Yemen.
·bleepingcomputer.com·
Hackers exploited Windows WebDav zero-day to drop malware
Brute-force attacks target Apache Tomcat management panels
Brute-force attacks target Apache Tomcat management panels
A coordinated campaign of brute-force attacks using hundreds of unique IP addresses targets Apache Tomcat Manager interfaces exposed online.
·bleepingcomputer.com·
Brute-force attacks target Apache Tomcat management panels
Operation Secure disrupts global infostealer malware operations
Operation Secure disrupts global infostealer malware operations
An international law enforcement action codenamed "Operation Secure" targeted infostealer malware infrastructure in a massive crackdown across 26 countries, resulting in 32 arrests, data seizures, and server takedowns.
·bleepingcomputer.com·
Operation Secure disrupts global infostealer malware operations
Microsoft fixes unreachable Windows Server domain controllers
Microsoft fixes unreachable Windows Server domain controllers
Microsoft has resolved a known issue that caused some Windows Server 2025 domain controllers to become unreachable after a restart and triggered app or service failures.
·bleepingcomputer.com·
Microsoft fixes unreachable Windows Server domain controllers
Valid-AI-ted: A Step Towards Real-Time Cloud Assurance | CSA
Valid-AI-ted: A Step Towards Real-Time Cloud Assurance | CSA
The Cloud Security Alliance has launched Valid-AI-ted, an AI-assisted quality check for STAR assessments. CEO Jim Reavis shares the background of this new tool.
·cloudsecurityalliance.org·
Valid-AI-ted: A Step Towards Real-Time Cloud Assurance | CSA
Hands-On Skills Now Key to Landing Your First Cyber Role
Hands-On Skills Now Key to Landing Your First Cyber Role
An ISC2 study found that 90% of security hiring managers would consider entry-level candidates with only previous IT work experience
·infosecurity-magazine.com·
Hands-On Skills Now Key to Landing Your First Cyber Role
Toxic trend: Another malware threat targets DeepSeek
Toxic trend: Another malware threat targets DeepSeek
Kaspersky GReAT experts discovered a new malicious implant: BrowserVenom. It enables a proxy in browsers like Chrome and Mozilla and spreads through a DeepSeek-mimicking phishing website.
·securelist.com·
Toxic trend: Another malware threat targets DeepSeek
Patch Tuesday, June 2025 Edition
Patch Tuesday, June 2025 Edition
Microsoft today released security updates to fix at least 67 vulnerabilities in its Windows operating systems and software. Redmond warns that one of the flaws is already under active attack, and that software blueprints showing how to exploit a pervasive…
·krebsonsecurity.com·
Patch Tuesday, June 2025 Edition