Latest CyberSec News by @thecyberpicker

UNC2428 used fake Israeli defense job ads in Oct 2024 to deploy MURKYTOUR malware, says Mandiant.

Mandiant’s M-Trends report found that credential theft rose significantly in 2024, driven by the growing use of infostealers

We share data, insights and recommendations from the incident response frontlines in the latest edition of our annual report.

Android spyware hidden in Alpine Quest targets Russian military, stealing files and locations via Telegram.

This week in cybersecurity from the editors at Cybercrime Magazine

Cisco Talos discovered a sophisticated attack on critical infrastructure by ToyMaker and Cactus, using the LAGTOY backdoor to orchestrate a relentless double extortion scheme.

It’s no secret that cyber criminals go after data. What’s often overlooked is shoring up direct protection where that data typically resides: in enterprise storage systems. That’s beginning to change. Related: The data storage economy Enterprise storage security has moved to the front burner. The emerging best practice is to approach it as a core

The FBI on Wednesday said it recorded a “staggering” $16.6 billion in cybercrime losses to businesses and individuals, the highest for both figures since the hub’s establishment in 2000.

Russian threat actors exploit Microsoft OAuth since March 2025 + Target Ukraine allies + Steal 365 access.

Phishing now causes most breaches + MFA kits bypass detection + browser-based tools offer real-time defense.

AI is transforming cybersecurity defenses against Chinese threat actors. Learn why US organizations must leverage AI for faster detection and real-time response to evolving threats targeting cloud and IT infrastructure.

​Explore key cloud security challenges and strategies to protect digital assets, ensuring resilience in today's hybrid and multi-cloud environments.

The latest ITRC data finds breach volumes remained flat in Q1 but victim numbers increased 26% annually

Marks and Spencer has confirmed that it has been managing a cyber incident for the past few days which affected its contactless payments and click and collect services

Marks & Spencer (M&S) confirmed it's managing a cyber incident after multiple customer complaints surfaced on social media.

Dutch intelligence report warns of growing Russian aggression with hybrid warfare

​Microsoft has resolved a known issue causing Remote Desktop sessions to freeze on Windows Server 2025 and Windows 11 24H2 devices.

Barclays found that romance scam victims lost £8000 on average in 2024, a significant increase from the previous year

Microsoft has fixed several known issues that caused Blue Screen of Death (BSOD) and installation issues on Windows Server 2025 systems with a high core count.

Ripple’s xrpl.js npm package backdoored on April 21, exposing 135K users’ private keys to attackers.

Google scraps new third-party cookie prompt in Chrome + boosts Incognito protections + DOJ eyes Chrome breakup.

Verizon’s 2025 Data Breach Investigations Report noted a 37% increase in ransomware attacks and a 34% increase in exploited vulnerabilities.

Thousands of students, teachers and administrators had information stolen from the Baltimore City Public Schools system during a ransomware attack in February.

OpenAI’s GPT-4.1 was released without a public safety report, prompting SplxAI researchers to test its resilience against misuse.

Marks & Spencer (M&S) has disclosed that it is responding to a cyberattack over the past few days that has impacted operations, including its Click and Collect service.

An Active! Mail zero-day remote code execution vulnerability is actively exploited in attacks on large organizations in Japan.

Russia-linked phishing attacks targeting NGOs with ties to Ukraine ask victims to join a video call, and result in them gaining access to Microsoft 365 accounts,

A hacking group dubbed 'Elusive Comet' targets cryptocurrency users in social engineering attacks that exploit Zoom's remote control feature to trick users into granting them access to their machines.

Microsoft has released the optional KB5055612 preview cumulative update for Windows 10 22H2 with two changes, including a fix for a GPU paravirtualization bug in Windows Subsystem for Linux 2 (WSL2).

South Korea's largest mobile operator, SK Telecom, is warning that a malware infection allowed threat actors to access sensitive USIM-related information for customers.