Latest CyberSec News by @thecyberpicker

Latest CyberSec News by @thecyberpicker

30531 bookmarks
Custom sorting
US sanctions North Korean firm, nationals behind IT worker schemes
US sanctions North Korean firm, nationals behind IT worker schemes
The U.S. Department of the Treasury's Office of Foreign Assets Control (OFAC) has sanctioned three North Korean nationals and a company for supporting fraudulent IT worker schemes that generated illicit revenue for the Democratic People's Republic of Korea (DPRK) government.
·bleepingcomputer.com·
US sanctions North Korean firm, nationals behind IT worker schemes
Arizona woman sentenced to 8.5 years for running North Korean laptop farm
Arizona woman sentenced to 8.5 years for running North Korean laptop farm
Prosecutors said Chapman helped the North Korean IT workers obtain jobs at 309 companies, including a major television network, a car maker, a media company, a Silicon Valley technology company and more.
·therecord.media·
Arizona woman sentenced to 8.5 years for running North Korean laptop farm
« Il reste 24 heures à Naval Group pour me contacter », un hacker menace le géant français de la construction militaire
« Il reste 24 heures à Naval Group pour me contacter », un hacker menace le géant français de la construction militaire
Depuis le 23 juillet 2025, un cybercriminel prétend avoir en sa possession des documents secret défense appartenant à Naval Group. À moins de 24 heures de l'échéance fixée par le corbeau virtuel, le leader européen du naval de défense confirme avoir détecté un potentiel incident, mais précise qu’une enquête est en
·numerama.com·
« Il reste 24 heures à Naval Group pour me contacter », un hacker menace le géant français de la construction militaire
Subliminal Learning in AIs - Schneier on Security
Subliminal Learning in AIs - Schneier on Security
Today’s freaky LLM behavior: We study subliminal learning, a surprising phenomenon where language models learn traits from model-generated data that is semantically unrelated to those traits. For example, a “student” model learns to prefer owls when trained on sequences of numbers generated by a “teacher” model that prefers owls. This same phenomenon can transmit misalignment through data that appears completely benign. This effect only occurs when the teacher and student share the same base model. Interesting security implications. I am more convinced than ever that we need serious research into ...
·schneier.com·
Subliminal Learning in AIs - Schneier on Security
Prolonged Chinese Cyber Espionage Campaign Targets VMware Appliances
Prolonged Chinese Cyber Espionage Campaign Targets VMware Appliances
Sygnia observed Chinese cyber campaign dubbed Fire Ant deploying sophisticated techniques to gain full compromise of victim environments, discovering isolated assets
·infosecurity-magazine.com·
Prolonged Chinese Cyber Espionage Campaign Targets VMware Appliances
Woman gets 8 years for aiding North Koreans infiltrate 300 US firms
Woman gets 8 years for aiding North Koreans infiltrate 300 US firms
Christina Marie Chapman, a 50-year-old woman from Arizona, was sentenced to 102 months in prison after pleading guilty to her involvement in a scheme that enabled North Korean IT workers to infiltrate 309 U.S. companies.
·bleepingcomputer.com·
Woman gets 8 years for aiding North Koreans infiltrate 300 US firms
BlackSuit ransomware gang’s darknet websites seized by police
BlackSuit ransomware gang’s darknet websites seized by police
The BlackSuit gang, which is believed to have been operational since April/May 2023, was a private ransomware group that did not license its tooling to other criminals like ransomware-as-a-service (RaaS) schemes.
·therecord.media·
BlackSuit ransomware gang’s darknet websites seized by police
Overcoming Risks from Chinese GenAI Tool Usage
Overcoming Risks from Chinese GenAI Tool Usage
China-based GenAI tools used by 1,059 employees exposed sensitive enterprise data, raising global compliance concerns.
·thehackernews.com·
Overcoming Risks from Chinese GenAI Tool Usage
Microsoft lifts Windows 11 update block for Easy Anti-Cheat users
Microsoft lifts Windows 11 update block for Easy Anti-Cheat users
Microsoft has removed a compatibility hold that prevented some Easy Anti-Cheat users from installing the Windows 11 2024 Update because of a known issue that triggers restarts with blue screen of death (BSOD) errors.
·bleepingcomputer.com·
Microsoft lifts Windows 11 update block for Easy Anti-Cheat users
New Chaos Ransomware Emerges, Launches Wave of Attacks
New Chaos Ransomware Emerges, Launches Wave of Attacks
Cisco Talos warned that the Chaos group, thought to be formed of former BlackSuit members, has launched a wave of attacks targeted a variety of sectors
·infosecurity-magazine.com·
New Chaos Ransomware Emerges, Launches Wave of Attacks
Les Français pensent être nuls en cybersécurité… et ils n’ont pas tort
Les Français pensent être nuls en cybersécurité… et ils n’ont pas tort
Près d’un salarié français sur deux a déjà été victime d’une cyberattaque réussie : voilà le constat que dresse KnowBe4 dans un rapport publié le 24 juillet 2025. Selon la société de cybersécurité américaine, les Français se sentiraient moins armés que d'autres salariés dans le monde face au cybermenaces. Ils sont
·numerama.com·
Les Français pensent être nuls en cybersécurité… et ils n’ont pas tort
Mitel patches critical MiVoice MX-ONE Auth bypass flaw
Mitel patches critical MiVoice MX-ONE Auth bypass flaw
Mitel addressed a critical MiVoice MX-ONE flaw that could allow an unauthenticated attacker to conduct an authentication bypass attack.
·securityaffairs.com·
Mitel patches critical MiVoice MX-ONE Auth bypass flaw
US hits senior North Korean officials with sanctions, $3 million bounties
US hits senior North Korean officials with sanctions, $3 million bounties
Kim Se Un, Jo Kyong Hun and Myong Chol Min are accused of helping North Korea evade U.S. and United Nations sanctions through an IT worker plot that involved tricking companies into hiring North Koreans using stolen identities.
·therecord.media·
US hits senior North Korean officials with sanctions, $3 million bounties
BlackSuit ransomware leak sites seized in Operation Checkmate
BlackSuit ransomware leak sites seized in Operation Checkmate
Law enforcement has seized the dark web leak sites of the BlackSuit ransomware operation, which has targeted and breached the networks of hundreds of organizations worldwide over the past several years.
·bleepingcomputer.com·
BlackSuit ransomware leak sites seized in Operation Checkmate
New Koske Linux malware hides in cute panda images
New Koske Linux malware hides in cute panda images
A new Linux malware named Koske may have been developed with artificial intelligence and is using seemingly benign JPEG images of panda bears to deploy malware directly into system memory.
·bleepingcomputer.com·
New Koske Linux malware hides in cute panda images
BRB, pausing for a "Sanctuary Moon" marathon
BRB, pausing for a "Sanctuary Moon" marathon
Get to know the real people behind cybersecurity’s front lines. In this week’s newsletter, sci-fi meets reality, humanity powers technology and a few surprises are waiting to be discovered.
·blog.talosintelligence.com·
BRB, pausing for a "Sanctuary Moon" marathon
Phishers Target Aviation Execs to Scam Customers
Phishers Target Aviation Execs to Scam Customers
KrebsOnSecurity recently heard from a reader whose boss's email account got phished and was used to trick one of the company's customers into sending a large payment to scammers. An investigation into the attacker's infrastructure points to a long-running Nigerian…
·krebsonsecurity.com·
Phishers Target Aviation Execs to Scam Customers