Latest CyberSec News by @thecyberpicker

A state-sponsored espionage campaign is targeting foreign embassies in South Korea to deploy XenoRAT malware from malicious GitHub repositories.

Hackers have stolen the personal information of 1.1 million individuals in a Salesforce data theft attack, which impacted U.S. insurance giant Allianz Life in July.

Fake Gmail security alerts are tricking users into inadvertently handing over control of their accounts to scammers. Here's what to look for.

Hackers are disguising a powerful strain of malware as a ChatGPT desktop application in preparation for ransomware attacks, Microsoft said.

Noodlophile stealer targets enterprises via copyright phishing since 2024, using Gmail, Dropbox, and Telegram for evasion.

The source code for version 3 of the ERMAC Android banking trojan has been leaked online, exposing the internals of the malware-as-a-service platform and the operator's infrastructure.

Thai police found a portable SMS blaster capable of sending barrages of scam texts inside of a Suzuki — at least the second such seizure in Bangkok in recent weeks.

Bragg Gaming Group said on Monday that it “believes that the data breach was limited to Bragg’s internal computer environment” based on its preliminary investigation.

The provisions mentioned by the president, such as banning mail-in voting and voting machines, are viewed by many experts as plainly unconstitutional.

The winning projects were competitively selected following a call for innovative proposals that address technical needs related to NIST’s research areas.

In cybersecurity, speed matters, but trust is crucial. AI must ensure both rapid response and reliable decisions to avoid errors.

PipeMagic exploits CVE-2025-29824 in Windows, enabling RansomExx attacks in Saudi Arabia and Brazil.

Over 800 N-able N-central servers remain unpatched against a pair of critical security vulnerabilities tagged as actively exploited last week.

A 26-year old in the UK who claimed to have hacked thousands of websites was sentenced to 20 months in prison after pleading guilty earlier this year.

Failure to remediate known device vulnerabilities is a rampant problem, according to a study by HP.

A recent ruling from Germany's Federal Supreme Court (BGH) has revived a legal battle over whether browser-based ad blockers infringe copyright, raising fears about a potential ban of the tools in the country.

Meta has introduced Instagram Map. How can you control what others can see about your location? An explainer.

The federal agency plans to develop guidance to organizations about various AI use cases.

A multi-stage attack delivered via USB devices has been observed installing cryptomining malware using DLL hijacking and PowerShell

An incident involving the npm package eslint-config-prettier has been uncovered spreading Scavenger RAT

Russia-based cybersecurity firm F6 said the attacks began in April and infected devices with Kinsing and XMRig malware, tools commonly used to mine the cryptocurrency Monero.

Face morphing software, which combines photos of different people into a single image, is being used to commit identity fraud.

In 2023, a threat actor launched a social engineering campaign on Retool involving smishing & credential harvesting, leading them to a one-time password token.

For years, “Zero Trust” has reshaped cybersecurity architecture — pushing organizations to move beyond the perimeter and reframe everything around identity, access control, and segmentation. Related: The Zero-Trust revolution These shifts are overdue. But as the frameworks mature, a critical blind spot remains: files. Spreadsheets, PDFs, Word docs — they flow freely across teams, vendors,

Microsoft has mitigated a known issue that caused Windows update failures when installing them from a network share using the Windows Update Standalone Installer (WUSA).

Cybersecurity isn’t breaking in one big hack—it’s bleeding out in dozens of new threats this week: NFC trojans, live exploits, state espionage.

Soosyze CMS 2.0 - Brute Force Login. CVE-2025-52392 . webapps exploit for Multiple platform

Microsoft Windows 10.0.19045 - NTLMv2 Hash Disclosure. CVE-2025-50154 . remote exploit for Windows platform