Latest CyberSec News by @thecyberpicker

Fake Gitcode and DocuSign sites are tricking users into running PowerShell scripts that install NetSupport RAT.

Several popular Chrome extensions send sensitive user data over unencrypted HTTP, exposing millions to interception and privacy risks.

Google's AI advancement is not slowing down, and we might be getting yet another powerful model codenamed "Gemini Kingfall."

OpenAI is planning to ship an update to ChatGPT that will turn on the new o3 Pro model, which has more compute to think harder.

Authorities said they froze and seized the allegedly illegally obtained funds when North Korean nationals attempted to launder money linked to the long-running conspiracy.

Ukraine has seen nearly one-fifth of its Internet space come under Russian control or sold to Internet address brokers since February 2022, a new study finds. The analysis indicates large chunks of Ukrainian Internet address space are now in the…

The FBI is warning that the BADBOX 2.0 malware campaign has infected over 1 million home Internet-connected devices, converting consumer electronics into residential proxies that are used for malicious activity.

U.S. CISA adds a Google Chromium V8 vulnerability (CVE-2025-5419) to its Known Exploited Vulnerabilities catalog.

In this week's newsletter, Martin emphasizes that awareness, basic cyber hygiene and preparation are essential for everyone, and highlights Talos' discovery of the new PathWiper malware.

Sean Cairncross said his managerial experience has prepared him well to lead a relatively new White House cyber unit.

2017 ransomware attack on shipping company A P Moller Maersk marked a turning point for the cybersecurity industry, according to its former CISO Adam Banks

The nominee, who doesn’t have as much cyber experience as his predecessors, also touted his credentials and views on current threats during his Senate confirmation hearing.

Meet the minds behind how Microsoft prioritizes cybersecurity across every team and employee.

Security professionals visiting booths scattered around a hall, eager for solutions to today’s top cybersecurity challenges to protect their resources and people. The hum of hundreds of conversations. Presenters in packed sessions sharing expertise, trends, and stories to energize attendees. Few occasions are as thrilling as a cybersecurity event, knowing that all around you are people who understand the frustrating challenges and exciting wins of working in cybersecurity. The rise in quantum computing and AI as tools used by adversaries make such events both inspiring and necessary as professionals seek new approaches and ways to manage risk and protect assets.   Join Microsoft Security at Gartner Security & Risk Management Summit, where we will showcase end-to-end security innovations and share world-class threat and regulatory intelligence to give you the advantage you need in the era of AI. This is an opportunity to learn how Microsoft’s AI-first end-to-end security platform can help you overcome the top security challenges and manage risk effectively even as high-level threats evolve.   The Summit is one of many top cybersecurity events in 2025 where security professionals like you can hear insights from Microsoft Security and interact with your peers. Microsoft Security offers AI-first, end-to-end protection for identities, endpoints, apps, and clouds, providing comprehensive security in the AI era, powered by unmatched threat intelligence. Accelerate your secure adoption of AI with ready-to-go security and governance tools built for generative AI.  We’re excited to be returning to the Gartner Security & Risk Management Summit and look forward to giving attendees several ways to connect.  We invite you to come see our innovation and engage with us. Our experts will be giving two sessions, we’ll be offering live demos in our booth (#945), and we’ll be chatting with attendees during one-on-one meetings.   Sign up for a one-on-one meeting  We’re excited to meet with conference attendees and encourage you to book a time. During these meetings, we can exchange perspectives on the latest cybersecurity threats, security best practices, and industry trends. It’s also a good time to learn more about specific Microsoft product capabilities and which features can address your organization’s unique challenges. We’re always up for sharing security strategies too. Book a one-on-one meeting with a Microsoft expert.   Propel your security efforts with Microsoft sessions  When choosing session topics for conferences, we consider several factors. What topics or trends are top of mind in the industry? What is sparking conversation with our clients? Where can we add the most value to help organizations facing modern security challenges? The Gartner Security & Risk Management is no exception and attendees can benefit from attending one – or even better, both –- of Microsoft’s two sessions at the event.  If you want to hear insights on AI news and maximize the value of Microsoft products, you won’t want to miss these sessions for insights that can help you better manage your organization’s risk: “Microsoft: Security in the Age of Agentic AI” (11:30 AM-12:00 PM on Tuesday, June 10): Hammad Rajjoub, Director, Security will explore the future of security AI agents and the human-driven way they introduce innovative security principles tailored for AI-driven enterprises. Agentic workflows are set to revolutionize security by enabling complex problem-solving, agent collaboration, and iterative learning. Hammad will also discuss the continued importance of principles like Zero Trust, least privilege, and assume breach, but share why they will be insufficient as AI reshapes enterprises and cybersecurity, requiring new principles.   “Trustwave: Unlocking Your Data Fortress: Mastering Microsoft Purview for Proactive Cybersecurity” (2:00–2:45 PM  on Wednesday, June 11): Microsoft Global Partner Solutions Architect David Branscome will share strategies for fortifying your security and maximizing ROI with Microsoft Purview, the integrated data governance and compliance solution transforming security. You’ll learn more about Purview capabilities like data classification, data loss prevention, insider risk management, and eDiscovery and hear from Purview clients on how it enables proactive data protection. Don’t let your data be the next target—empower your defense with Purview.   Connect with us at the Summit  Elevate your defenses, enhance efficiency, and empower your team to focus on the most critical threats with generative AI for cybersecurity. We’d be thrilled to meet one-on-one with you at the Gartner conference. Whether you have questions, want a personalized demo, or want to chat about how AI could impact your security, schedule a time to speak with one of our experts at the event. And stop by Booth #945 for a live demo. In the meantime, explore how AI-powered cybersecurity can transform how you protect your organization.     Hope to see you at the Gartner event!  

Designing a security-focused Windows Service? Learn more from ThreatLocker about the core components for real-time monitoring, threat detection, and system hardening to defend against malware and ransomware.

Hackers are actively exploiting CVE-2025-49113, a critical vulnerability in the widely used Roundcube open-source webmail application that allows remote execution.

A threat actor has re-released data from a 2021 AT&T breach affecting 70 million customers, this time combining previously separate files to directly link Social Security numbers and birth dates to individual users.

Une étude exploratoire de la Cnil met en évidence les bénéfices financiers issus de l'obligation de notification des violations de données....-Cybersécurité

The group has been operating since at least 2017, initially breaching systems belonging to the Kurdistan Regional Government and have expanded their reach to the Central Government of Iraq as well as a telecommunications provider in Uzbekistan.

Several popular Chrome extensions send sensitive user data over unencrypted HTTP, exposing millions to interception and privacy risks.

Apache Tomcat 10.1.39 - Denial of Service (DoS). CVE-2025-31650 . remote exploit for Multiple platform

Engagement with ransomware actors doesn’t necessarily mean payment; it’s about getting the best outcomes, a leading negotiator had argued

During Infosecurity Europe 2025, Nick Woodcraft, from the UK Government, shared his experience in implementing measures to protect domains within the .gov.uk DNS namespace

Grandstream GSD3710 1.0.11.13 - Stack Overflow. CVE-2022-2025 . remote exploit for Multiple platform

Ransomware is surging in education, exploiting hypervisor flaws and weak defenses. Learn how institutions can protect their virtual infrastructure.

Microsoft Windows Server 2025 JScript Engine - Remote Code Execution (RCE). CVE-2025-30397 . remote exploit for Windows platform

CloudClassroom PHP Project 1.0 - SQL Injection. CVE-2025-45542 . webapps exploit for PHP platform

ABB Cylon Aspect 3.08.04 DeploySource - Remote Code Execution (RCE). CVE-n/a . remote exploit for Multiple platform

macOS LaunchDaemon iOS 17.2 - Privilege Escalation. CVE-2025-24085 . local exploit for macOS platform

The suspect, a native of the central Ukrainian city of Poltava, had been conducting cyberattacks since at least 2018, police said.