Latest CyberSec News by @thecyberpicker

Iranian hacker pleads guilty to Robbinhood ransomware attacks causing $19M+ in losses, crippling U.S. cities via BYOVD and crypto laundering tactics.

China-linked APT31 hacked Czech Foreign Affairs Ministry from 2022, violating UN cyber norms.

A sprawling network of fake AI, VPN, and crypto software download sites is being used by the "Dark Partner" threat actors to conduct a crypto theft attacks worldwide.

Over 9,000 ASUS routers are compromised by a novel botnet dubbed "AyySSHush" that was also observed targeting SOHO routers from Cisco, D-Link, and Linksys.

Two NHS England trusts could see highly sensitive patient records exposed

The findings highlight the vulnerability of all critical infrastructure firms to similar attack methods.

OneDrive’s OAuth flaw grants full cloud access via vague prompts + insecure tokens = user data risk.

Prague a officiellement attribué à la Chine une cyberattaque visant son ministère des Affaires étrangères. L’Union européenne et l’OTAN affichent leur solidarité, tandis que Pékin reste silencieux. Le gouvernement tchèque a révélé, mercredi 28 mai, avoir été la cible d’une campagne de cyberespionnage orchestrée par

A spoofed Bitdefender site has been used in a malicious campaign distributing VenomRAT and other malware, according to DomainTools

Estonia said a man is suspected of unlawfully accessing a customer card database managed by Allium UPI, the parent company of the Apotheka pharmacy chain, in February 2024.

La société américaine de sécurité du cloud met la main sur Red Canary, une start-up connue pour sa solution de Managed Detection and Response...-Cybersécurité

The Czech Republic says the Chinese-backed APT31 hacking group was behind cyberattacks targeting the country's Ministry of Foreign Affairs and critical infrastructure organizations.

Apple blocked $9B in fraud since 2019, including $2B in 2024, stopping scams via fake apps and payment schemes on the App Store.

From Europe’s sweeping GDPR and EU AI Act, to California’s CCPA/CPRA, to the healthcare-specific HIPAA, AI organizations face a rapidly evolving regulatory web.

A renewed warning about toll fee scams has gone out. This time it comes from the DMVs of several US states.

This is the first time Czech authorities have officially called out a nation-state over a cyber-attack

Session hijacking now drives enterprise breaches—88% involve stolen credentials, often exploited within hours.

PumaBot hijacks Linux IoT devices via SSH brute-force, fakes Redis services, and mines crypto using stealthy rootkits.

En voulant prouver sa bonne foi dans l’affaire Bétharram, François Bayrou a publié des documents sur son site personnel… avant de dénoncer une cyberattaque qui a rendu ces preuves inaccessibles. Pourtant, des solutions existent pour éviter ce type de fiasco technique et médiatique. L’affaire Bétharram, qui secoue la

A flaw in OneDrive File Picker has exposed millions to data overreach through excessive OAuth permissions

Microsoft has introduced Windows Backup for Organizations, a new backup tool for enterprises that simplifies backups and makes the transition to Windows 11 easier.

Microsoft has introduced a new update orchestration platform built on the existing Windows Update infrastructure, which aims to unify the updating system for all apps, drivers, and system components on Windows systems.

This week in cybersecurity from the editors at Cybercrime Magazine

Hackers likely based in Vietnam advertised websites offering AI-powered video generation tools, according to Google's Mandiant unit, and then used the sites to spread infostealers and other malware.

Explore how the MCP Authorization Spec secures LLM-powered agents with OAuth 2.1 and PKCE, enabling safe, autonomous access to tools and APIs.

Russia is proposing a rule that all foreigners in Moscow install a tracking app on their phones. Using a mobile application that all foreigners will have to install on their smartphones, the Russian state will receive the following information: Residence location Fingerprint Face photograph Real-time geo-location monitoring This isn’t the first time we’ve seen this. Qatar did it in 2022 around the World Cup: “After accepting the terms of these apps, moderators will have complete control of users’ devices,” he continued. “All personal content, the ability to edit it, share it, extract it as well as data from other apps on your device is in their hands. Moderators will even have the power to unlock users’ devices remotely.” ...

Mimo exploits CVE-2025-32432 in Craft CMS days after disclosure, deploying cryptominer and proxyware for monetization.

Apple says it blocked over $9 billion in fraudulent App Store transactions over the last five years, with over $2 billion in potentially fraudulent sanctions prevented in 2024 alone.

Researchers found a fake Bitdefender site spreading the Venom RAT by tricking users into downloading it as antivirus software.