Latest CyberSec News by @thecyberpicker

Latest CyberSec News by @thecyberpicker

31200 bookmarks
Custom sorting
SonicWall urges admins to patch VPN flaw exploited in attacks
SonicWall urges admins to patch VPN flaw exploited in attacks
SonicWall has urged its customers to patch three security vulnerabilities affecting its Secure Mobile Access (SMA) appliances, one of them tagged as exploited in attacks
·bleepingcomputer.com·
SonicWall urges admins to patch VPN flaw exploited in attacks
UK Cyber Essentials Certification Numbers Falling Short
UK Cyber Essentials Certification Numbers Falling Short
The UK government is set to prioritize increasing the number of UK organizations who are Cyber Essentials certified over the coming year
·infosecurity-magazine.com·
UK Cyber Essentials Certification Numbers Falling Short
Spam campaign targeting Brazil abuses Remote Monitoring and Management tools
Spam campaign targeting Brazil abuses Remote Monitoring and Management tools
A new spam campaign is targeting Brazilian users with a clever twist — abusing the free trial period of trusted remote monitoring tools and the country’s electronic invoice system to spread malicious agents.
·blog.talosintelligence.com·
Spam campaign targeting Brazil abuses Remote Monitoring and Management tools
Attention à l’arnaque aux faux techniciens fibre, de vrais cambrioleurs cherchent à vous berner
Attention à l’arnaque aux faux techniciens fibre, de vrais cambrioleurs cherchent à vous berner
L'arnaque aux faux techniciens fibre optique existe toujours en 2025. Nous l'avons vécue en ce début de mois de mai et elle est toujours aussi puissante pour le grand public qui ne connaît pas les prérogatives des opérateurs. L'arnaque au technicien fibre, vous connaissez ? Elle est très simple à mettre en place et
·numerama.com·
Attention à l’arnaque aux faux techniciens fibre, de vrais cambrioleurs cherchent à vous berner
CIS Benchmarks May 2025 Update
CIS Benchmarks May 2025 Update
Here is an overview of the CIS Benchmarks that the Center for Internet Security (CIS) updated or released for May 2025.
·cisecurity.org·
CIS Benchmarks May 2025 Update
LockBit ransomware gang hacked, victim negotiations exposed
LockBit ransomware gang hacked, victim negotiations exposed
The LockBit ransomware gang has suffered a data breach after its dark web affiliate panels were defaced and replaced with a message linking to a MySQL database dump.
·bleepingcomputer.com·
LockBit ransomware gang hacked, victim negotiations exposed
PowerSchool customers hit by downstream extortion threats | CyberScoop
PowerSchool customers hit by downstream extortion threats | CyberScoop
The large education tech vendor was hit by a cyberattack and paid a ransom in December. Now, a threat actor is attempting to extort the company’s customers with stolen data.
·cyberscoop.com·
PowerSchool customers hit by downstream extortion threats | CyberScoop
Pakistani Firm Shipped Fentanyl Analogs, Scams to US
Pakistani Firm Shipped Fentanyl Analogs, Scams to US
A Texas firm recently charged with conspiring to distribute synthetic opioids in the United States is at the center of a vast network of companies in the U.S. and Pakistan whose employees are accused of using online ads to scam…
·krebsonsecurity.com·
Pakistani Firm Shipped Fentanyl Analogs, Scams to US
Hackers exploit OttoKit WordPress plugin flaw to add admin accounts
Hackers exploit OttoKit WordPress plugin flaw to add admin accounts
Hackers are exploiting a critical unauthenticated privilege escalation vulnerability in the OttoKit WordPress plugin to create rogue admin accounts on targeted sites.
·bleepingcomputer.com·
Hackers exploit OttoKit WordPress plugin flaw to add admin accounts
PowerSchool hacker now extorting individual school districts
PowerSchool hacker now extorting individual school districts
PowerSchool is warning that the hacker behind its December cyberattack is now individually extorting schools, threatening to release the previously stolen student and teacher data if a ransom is not paid.
·bleepingcomputer.com·
PowerSchool hacker now extorting individual school districts
CrowdStrike to cut 500 jobs in plan to scale business
CrowdStrike to cut 500 jobs in plan to scale business
The cybersecurity firm has faced increasing market pressures amid a scramble by rivals to consolidate enterprise customers on unified platforms.
·cybersecuritydive.com·
CrowdStrike to cut 500 jobs in plan to scale business
Unpacking the 2024 Snowflake Data Breach | CSA
Unpacking the 2024 Snowflake Data Breach | CSA
Get a technical breakdown of the 2024 Snowflake data breach, including a description of the Advanced Persistent Threat and how the breach impacted the business.
·cloudsecurityalliance.org·
Unpacking the 2024 Snowflake Data Breach | CSA