Latest CyberSec News by @thecyberpicker

PJobRAT malware targeted Taiwanese Android users via fake chat apps from Jan 2023 to Oct 2024, enabling deep surveillance and remote control.

A malevolent mutation of the widely used nginx web server facilitates Adversary-in-the-Middle action, but there’s hope

Mozilla patched CVE-2025-2857 in Firefox after Chrome’s exploited zero-day revealed similar IPC flaws.

Twelve npm packages hijacked via compromised maintainer accounts to exfiltrate secrets using obfuscated scripts.

Cary, NC, Mar. 27, 2025, CyberNewswire -- INE, a global leader in networking and cybersecurity training and certifications, is proud to announce it is the recipient of twelve badges in G2’s Spring 2025 Report, including Grid Leader for Cybersecurity Professional Development, Online Course Providers, and Technical Skills Development, which highlight INE’s superior performance relative to

The legacy domain for Microsoft Stream was hijacked to show a fake Amazon site promoting a Thailand casino, causing all SharePoint sites with old embedded videos to display it as spam.

U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds Google Chromium Mojo flaw to its Known Exploited Vulnerabilities catalog.

The lawsuit asks the court to declare the president’s actions unlawful and affirm Bedoya and Slaughter’s statutory rights to serve out the remainder of their seven-year terms.

Ten npm packages were suddenly updated with malicious code yesterday to steal environment variables and other sensitive data from developers' systems.

Some browser extension permissions are too broad, and owners can quickly repurpose pre-approved capabilities for malicious intent, a security researcher told CyberScoop.

​​Microsoft has released the KB5053656 preview cumulative update for Windows 11 24H2 with 38 changes, including real-time translation on AMD and Intel-powered Copilot+ PCs and fixes for authentication and blue-screen issues.

A China-linked cyberespionage group known as 'FamousSparrow' was observed using a new modular version of its signature backdoor 'SparrowDoor' against a US-based trade organization.

In this blog post, Joe covers the very basics of money laundering, how it facilitates ransomware cartels, and what the regulatory future holds for cybercrime.

​In May, Microsoft plans to roll out a new Windows scheduled task that launches automatically to help Microsoft Office apps load faster.

Learn how the U.S. Department of Labor enhanced security and modernized authentication with Microsoft Entra ID.

Morphing Meerkat’s phishing kit mimics 114 brands by reading DNS MX records to tailor fake logins.

A new report sheds light on the most targeted WordPress plugin vulnerabilities hackers used in the first quarter of 2025 to compromise sites.

Researchers from CloudSEK are analyzing a data sample from a threat actor that claimed a massive breach involving 6 million records.

KubeSphere 3.4.0 - Insecure Direct Object Reference (IDOR). CVE-2024-46528 . webapps exploit for Multiple platform

Many successful phishing attacks result in a financial loss or malware infection. But falling for some phishing scams, like those currently targeting Russians searching online for organizations that are fighting the Kremlin war machine, can cost you your freedom or…

Ukraine’s state railway operator, Ukrzaliznytsia, has resumed online ticket sales after a cyberattack brought down its systems earlier in the week.

Newly identified CoffeeLoader uses multiple evasion techniques and persistence mechanisms to deploy payloads and bypass endpoint security

X2CRM 8.5 - Stored Cross-Site Scripting (XSS). CVE-2024-48120 . webapps exploit for PHP platform

PJobRAT malware targets Taiwan Android users, stealing data through fake messaging platforms

CSPT Resources

Custom tool developed by RansomHub, dubbed “EDRKillShifter,” is used by several other rival ransomware gangs.

MoziloCMS 3.0 - Remote Code Execution (RCE). CVE-2024-44871 . webapps exploit for PHP platform

A man didn't just have his ID stolen, identity theft ruined his life and robbed him of a promising future.

Russian authorities said they arrested three people and seized hardware in an operation against Mamont malware, which specializes in stealing money from Android device users.

Agent authentication & Model Context Protocol Security, k8s for pentesters, a critical look at "state of cloud security" reports