Latest CyberSec News by @thecyberpicker

Docker malware fakes Teneo node heartbeats to earn crypto + 63-layer obfuscation hides the code.

La célèbre chaîne de magasins britannique a confirmé gérer un “cyberincident”, créant d'importantes perturbations de paiement et sur les délais...-Cybersécurité

The recommended Ripple cryptocurrency NPM JavaScript library named "xrpl.js" was compromised to steal XRP wallet seeds and private keys and transfer them to an attacker-controlled server, allowing threat actors to steal all the funds stored in the wallets.

Android phones will soon reboot themselves after sitting idle for three days. iPhones have had this feature for a while; it’s nice to see Google add it to their phones.

The company incurred a material amount of nonrecurring expenses during Q1 related to potential notification requirements.

In the race to scale generative AI capabilities, executives plan to increase foundational technology investments, according to Broadridge.

The tech giant has released its second Secure Future Initiative (SFI) progress report, showcasing its ongoing efforts to improve cybersecurity

A new malware campaign utilizing NFC-relay techniques has been identified carrying out unauthorized transactions through POS systems and ATMs

A proof-of-concept attack called "Cookie-Bite" uses a browser extension to steal browser session cookies from Azure Entra ID to bypass multi-factor authentication (MFA) protections and maintain access to cloud services like Microsoft 365, Outlook, and Teams.

Firefox ESR 115.11 - PDF.js Arbitrary JavaScript execution. CVE-2024-4367 . remote exploit for Multiple platform

Billbug, a China-linked espionage group, has been observed targeting critical sectors in Southeast Asia with new tools

In a statement filed to London’s stock exchange on Tuesday afternoon, the company said it made “some minor, temporary changes to our store operations” as soon as it became aware of the incident.

Microsoft Windows 11 - Kernel Privilege Escalation. CVE-2024-21338 . local exploit for Windows platform

WordPress Core 6.2 - Directory Traversal. CVE-2023-2745 . webapps exploit for PHP platform

The Data Security and Privacy domain of the Cloud Controls Matrix addresses critical areas of the data lifecycle, like data classification and data disposal.

tar-fs 3.0.0 - Arbitrary File Write/Overwrite. CVE-2024-12905 . local exploit for Linux platform

Microsoft Windows 11 23h2 - CLFS.sys Elevation of Privilege. CVE-2024-49138 . local exploit for Windows platform

OpenSSH server (sshd) 9.8p1 - Race Condition. CVE-2024-6387 . remote exploit for Linux platform

Infostealers fueled the staying power of identity-based attacks, increasing 84% on a weekly average last year, according to IBM X-Force.

Companies have been urging CISA to scale back its software security pressure campaign. Two new resignations from the agency could accelerate that shift.

code-projects Online Exam Mastering System 1.0 - Reflected Cross-Site Scripting (XSS). CVE-2025-28121 . remote exploit for PHP platform

WonderCMS 3.4.2 - Remote Code Execution (RCE). CVE-2023-41425 . remote exploit for PHP platform

Darktrace and Cado said the new campaign highlights a shift towards alternative methods of mining cryptocurrencies

GCP’s ConfusedComposer flaw let attackers escalate privileges via PyPI packages; patched by Google on April 13.

A new study by the Ponemon Institute points to a concerning use of AI: deepfake attacks are on the rise and are taking a financial and reputational toll on companies and their executives. Related: Tools to fight deepfakes Deepfake Deception: How AI Harms the Fortunes and Reputations of Executives and Corporations details the results of a

All Google accounts could end up compromised by a clever replay attack on Gmail users abusing Google infrastructure.

DieNet is a hacktivist group that's claimed DDoS attacks against U.S. critical infrastructure. Read on to learn its ideology and attack activity.

While investigating an incident, we discovered a sophisticated new backdoor targeting Russian organizations by impersonating secure networking software updates.

​Explore how healthcare organizations can safeguard patient care by addressing cyber risks through modernization and resilient security strategies.

This week in cybersecurity from the editors at Cybercrime Magazine