Latest CyberSec News by @thecyberpicker

AWS patched an EC2 SSM Agent flaw on March 5, 2025, preventing privilege escalation via plugin ID path traversal.

Meta warned Windows users to update the WhatsApp messaging app to the latest version to patch a vulnerability that can let attackers execute malicious code on their devices.

The Michigan-based breakfast cereal company confirmed it used Cleo as a vendor for human resources data.

China-linked threat actors last month began exploiting CVE-2025-22457, a critical stack buffer-overflow flaw.

A significant spike in exploitation attempts targeting TVT NVMS9000 DVRs has been detected, peaking on April 3, 2025, with over 2,500 unique IPs scanning for vulnerable devices.

Google’s latest Android update fixes 62 flaws, including two zero-days previously used in limited targeted attacks

NIST marks CVEs pre-2018 as “Deferred” in the NVD as agency focus shifts to managing emerging threats

Cwmbran in Wales holds the Guinness World Record for the most roundabouts—at least according to Google AI Overviews. Except that's not actually true...

Des plateformes de phishing tentent de piéger les fans après l'annonce d'une nouvelle date de concert du rapeur Jul. Ces sites, habilement conçus, imitent à la perfection les vrais portails de billetterie — au point d’alerter les internautes… des arnaques en cours. Les hackers ne ratent jamais un événement. À peine

46% des actifs européens se disent préoccupés par la dépendance aux solutions technologiques des entreprises américaines. Pourtant, ils ne sont...-Souveraineté

WhatsApp addressed a flaw, tracked as CVE-2025-30401, that could allow attackers to trick users and enable remote code execution.

Amazon Web Services (AWS) has added support for the ML-KEM post-quantum key encapsulation mechanism to AWS Key Management Service (KMS), AWS Certificate Manager (ACM), and AWS Secrets Manager, making TLS connections more secure.

A China-linked information campaign is using a network of WeChat accounts to attack Canadian Prime Minister Mark Carney ahead of the country’s upcoming federal election, authorities said.

​Learn how app cloaking enhances security by hiding private applications from the internet, reducing attack surfaces, and preventing unauthorized access.

La start-up tricolore déploie plusieurs agents capables d'automatiser une partie du travail des analystes dans les centres d'opérations de...-Cybersécurité

This week in cybersecurity from the editors at Cybercrime Magazine

From Talos' 2024 Year in Review, here are some findings from the top targeted network device vulnerabilities. We also explore how threat actors are moving away from time sensitive lures in their emails. And finally we reveal the tools that adversaries most heavily utilized last year.

Armis survey reveals that the growing threat of nation-state cyber-attacks is disrupting digital transformation

Google has issued patches for 62 vulnerabilities in Android, including two actively exploited zero-days.

Learn what third-party risk management (TPRM) entails, what staff augmentation is, and how to decide whether it’s the right solution for your TPRM needs.

CERT-UA identifies GIFTEDCROOK malware stealing browser data via phishing Excel files in attacks targeting Ukrainian institutions.

Agentic AI transforms SOCs by autonomously triaging and investigating 100% of alerts, reducing burnout and improving detection speed.

At a Congressional hearing earlier this week, Matt Blaze made the point that CALEA, the 1994 law that forces telecoms to make phone calls wiretappable, is outdated in today’s threat environment and should be rethought: In other words, while the legally-mandated CALEA capability requirements have changed little over the last three decades, the infrastructure that must implement and protect it has changed radically. This has greatly expanded the “attack surface” that must be defended to prevent unauthorized wiretaps, especially at scale. The job of the illegal eavesdropper has gotten significantly easier, with many more options and opportunities for them to exploit. Compromising our telecommunications infrastructure is now little different from performing any other kind of computer intrusion or data breach, a well-known and endemic cybersecurity problem. To put it bluntly, something like Salt Typhoon was inevitable, and will likely happen again unless significant changes are made...

The US Cybersecurity and Infrastructure Security Agency (CISA) has added CVE-2025-31161 to its Known Exploited Vulnerabilities (KEV) catalog

A l'occasion du Forum InCyber, L'Usine Digitale a eu l'occasion d'échanger avec Grégoire Germain, le CEO et co-fondateur d'HarfangLab, une...-Cybersécurité

Malicious actors are using SourceForge to distribute a miner and the ClipBanker Trojan while utilizing unconventional persistence techniques.

CrushFTP flaw CVE-2025-31161 exploited since March 30; 815 systems unpatched as agencies race to secure.

The British government has launched a new code of practice designed to boost corporate cyber governance

Sony XAV-AX5500 1.13 - Firmware Update Validation Remote Code Execution (RCE). CVE-2024-23922 . remote exploit for Multiple platform