Latest CyberSec News by @thecyberpicker

A massive spike in brute-force attacks targeted Fortinet SSL VPNs earlier this month, followed by a switch to FortiManager, marked a deliberate shift in targeting that has historically preceded new vulnerability disclosures.

The guidance includes specific examples for three critical infrastructure sectors that held workshops with CISA.

Officials reiterated their belief that hackers were not exploiting the flaw, but nonetheless urged users to immediately check their systems.

In the August 2025 patch Tuesday round Microsoft fixed a total of 111 Microsoft vulnerabilities, some of which are very important.

A critical RCE vulnerability in Erlang’s OTP SSH daemon has been identified that allows unauthenticated command execution

Researchers at Horizon3.ai discovered the flaw after flagging unusual behavior in a customer environment.

AI-powered trading platforms have been observed exploiting deepfake technology to trick investors with fake endorsements

Zoom and Xerox patched critical flaws enabling privilege escalation and RCE, risking corporate network compromise.

Four related algorithms are now ready for use to protect data created and transmitted by the Internet of Things and other electronics.

Plankey combines strategic vision, operational experience, and a strong commitment to public service — qualities essential for this role. He served as principal deputy assistant secretary at the Department of Energy’s Office of Cybersecurity, Energy Security, and Emergency Response, where he played a key role in safeguarding the nation’s critical energy infrastructure from cyber threats. His work there gave him direct experience managing risk at the intersection of digital and physical security.

Microsoft will remove PowerShell 2.0 from Windows starting in August, eight years after announcing its deprecation and keeping it around as an optional feature.

Why do manual identity workflows continue to exist, when the consequences of getting them wrong are so serious and when automation is increasingly common?

RomCom hackers group exploited the WinRAR zero-day in spearphishing attacks to deliver backdoors. WinRAR fixed the flaw with v.7.13.

The personal data of almost 145,000 people who were registered in Manpower’s systems was compromised

Microsoft has asked customers this week to disregard incorrect CertificateServicesClient (CertEnroll) errors that appear after installing the July 2025 preview update and subsequent Windows 11 24H2 updates.

This week in cybersecurity from the editors at Cybercrime Magazine

The countdown is on for security teams still managing digital certificates with spreadsheets and manual workarounds. Related: Preparing for the quantum future Starting in 2026, TLS certificate lifespans will begin dropping sharply — from 398 days to just 47 by 2029. That shift isn’t just a technical nuance. It’s a foundational disruption to how enterprises

AI SOC Agents cut incident dwell time by automating triage and investigations, improving security outcomes.

CVE-2025-25256 in FortiSIEM scored 9.8 CVSS; active exploit found, prompting urgent patching. (

What is the CCNP Security certification? Why should you consider taking it to level up in your cyber security career? Read this article to learn more.

One of the few things many disliked about ChatGPT was the confusing number of models. OpenAI claimed GPT-5 would fix this, but it seems to have made it worse.

The flexibility and scalability of virtualization comes with significant risks if security and management practices are not modernized accordingly.

Mayor of St. Paul, Minnesota, Melvin Carter, confirmed that employee data was published online by the Interlock ransomware gang

The NSA and GCHQ have jointly published a history of World War II SIGINT: “Secret Messengers: Disseminating SIGINT in the Second World War.” This is the story of the British SLUs (Special Liaison Units) and the American SSOs (Special Security Officers).

AI-driven deepfakes, bots, and synthetic identities overwhelm legacy defenses, making identity the key to stopping breaches.

Plague is a PAM-based Linux backdoor malware that evades detection, establishes persistent SSH access, and steals data.

Cloudflare found Perplexity using undeclared crawlers and generic browsers for scraping data, even when websites disallow crawlers.

The US Department of Justice has announced the seizure of domains, servers and $1m in proceeds from the BlackSuit ransomware group

Microsoft fixed 111 vulnerabilities, including a Windows Kerberos zero-day enabling full AD compromise via BadSuccessor.

Common tactics in phishing and scams in 2025: learn about the use of AI and deepfakes, phishing via Telegram, Google Translate and Blob URLs, biometric data theft, and more.