Latest CyberSec News by @thecyberpicker

Email attacks on financial services rose 25% year-over-year. Learn why FinServ is a top target and how threat actors exploit trust to deceive employees.

CrossC2-enabled attacks from Sept–Dec 2024 target Linux, overlap with ransomware, bypass EDR for stealth.

Staff were alerted to the data breach on Monday, as CBC News reported based on an internal email that explained the threat actor had accessed a database “containing information used to manage computers and mobile devices.”

Ransomware and infostealers are winning on stealth, not encryption. Picus Blue Report 2025 reveals just 3% of data exfiltration attempts are stopped. Find and fix your biggest exposure gaps before they're exploited.

Threat actors are leveraging a Unicode character to make phishing links appear like legitimate Booking.com links in a new campaign distributing malware. The attack makes use of the Japanese hiragana character, ん, which can, on some systems, appear as a forward slash and make a phishing URL appear realistic to a person at first.

“Telegram and WhatsApp have become the main voice services used for deceit and extortion and for involving Russian citizens in sabotage and terrorist activities,” the country's telecom regulator said in announcing new restrictions.

The Bureau’s Internet Crime Complaint Center has provided a list of indicators for potential cryptocurrency scam victims to avoid a double whammy

Identity documents of guests at 10 hotels in Italy appear to have been posted by a cybercriminal for sale on the dark web, authorities said.

The House of Commons of Canada is currently investigating a data breach after a threat actor reportedly stole employee information in a cyberattack on Friday.

Scammers are sending out fake Netflix job offers to get control of Facebook accounts.

This week in cybersecurity from the editors at Cybercrime Magazine

Abnormal AI said gaining access to such accounts provides opportunities for sophisticated fraud schemes that impersonate officials

EASM and DRP tools automate asset discovery and threat monitoring, reducing breach risk from hidden digital exposures.

Here’s an interesting story about a failure being introduced by LLM-written code. Specifically, the LLM was doing some code refactoring, and when it moved a chunk of code from one file to another it changed a “break” to a “continue.” That turned an error logging statement into an infinite loop, which crashed the system. This is an integrity failure. Specifically, it’s a failure of processing integrity. And while we can think of particular patches that alleviate this exact failure, the larger problem is much harder to solve. Davi Ottenheimer ...

OpenAI is building an agentic future with its upcoming Chromium-based browser and a new leak confirms GPT Agent integration.

Blocking unknown apps and enforcing MFA reduce ransomware risk and credential theft across enterprise networks.

Fortinet reveals details of a new critical-rated vulnerability in FortiSIEM circulating in the wild

The UK government has announced 10 new live facial recognition police vans to be deployed around the country

​CISA warned on Wednesday that attackers are actively exploiting two security vulnerabilities in N‑able's N-central remote monitoring and management (RMM) platform.

U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds N-able N-Central flaws to its Known Exploited Vulnerabilities catalog.

Zoom fixed a critical Windows client flaw (CVE-2025-49457) involving an untrusted search path that could enable privilege escalation.

Microsoft has resolved a known issue preventing the August 2025 Windows 11 24H2 cumulative update from being delivered via Windows Server Update Services (WSUS).

Google now requires crypto app licenses in 15 regions to boost compliance, as FBI flags $9.9M scam losses.

CISA warns of active N-able N-central flaws; agencies must patch by Aug 20 to avoid exploitation.

Google Gemini's one of the most powerful features is Deep Research, but up until now, it has been strictly limited to the Gemini interface. This could change soon.

U.S. CISA adds Microsoft Internet Explorer, Microsoft Office Excel, and WinRAR flaws to its Known Exploited Vulnerabilities catalog.

This guidance outlines how OT owners and operators can create and maintain an asset inventory and OT taxonomy, to protect their most vital assets. It includes steps for defining scope and objectives for the inventory, identifying assets, collecting attributes, creating a taxonomy, managing data, and implementing asset life cycle management.

OpenAI is slowly addressing all concerns around GPT-5, including rate limits and now its personality, which has been criticized for being less affirmative.

Russia is restricting calls on the WhatsApp and Telegram messaging apps in what it says is a bid to counter criminal activity, but that WhatsApp contends is a response to its defiance of government efforts to violate user communication rights.

The US court filing system, which houses court records and sealed filings, was reportedly hacked by Russians seeking sensitive documents.