Latest CyberSec News by @thecyberpicker

The UK Information Commissioner's Office (ICO) has fined Advanced Computer Software Group Ltd £3.07 million over a 2022 ransomware attack that exposed the sensitive personal data of 79,404 people, including National Health Service (NHS) patients.

A business that provides IT services to numerous healthcare providers in the United Kingdom has been fined about $4 million by the country’s privacy regulator over a ransomware attack in 2022.

Tory Hunt, security expert and Have I Been Pwned owner, disclosed a phishing attack against him in a commendable display of transparency.

U.S. intelligence leaders found themselves under scrutiny from Congress for a second straight day, following revelations that military plans were discussed over Signal.

Honoring Jennifer Bisceglie, Jane Ganina and Mahnoor Khokhar for Their Exceptional Contributions to the Industry

The sanctions place the companies under a strict licensing regime meant to limit their access to foundational technology for quantum computing, cloud and AI.

Despite Oracle denying a breach of its Oracle Cloud federated SSO login servers and the theft of account data for 6 million people, BleepingComputer has confirmed with multiple companies that associated data samples shared by the threat actor are valid.

Cloud-based streaming company StreamElements confirms it suffered a data breach at a third-party service provider after a threat actor leaked samples of stolen data on a hacking forum.

FamousSparrow deployed two enhanced SparrowDoor variants and ShadowPad in July 2024 attacks, signaling active tool development.

A new cybercrime platform named 'Atlantis AIO' provides an automated credential stuffing service against 140 online platforms, including email services, e-commerce sites, banks, and VPNs.

In its 2025 Global Third-Party Breach Report, SecurityScorecard has found that 35.5% of all cyber breaches in 2024 were third-party related, up from 29% in 2023

Researchers aren’t aware of active exploitation in the wild, but they warn the risk for publicly exposed and unpatched Ingress Nginx controllers is extremely high.

The company’s devices are also randomly rebooting in connection with additional CVEs disclosed earlier this month.

Claude could be getting a ChatGPT-like Deep Research feature called Compass. You can tell Claude's Compass what you need, and the AI agent will take care of everything.

Colin Ahern sat down with Recorded Future News earlier this year to discuss New York’s efforts to protect local governments from ransomware and more.

Learn how to optimize your SIEM solution with key strategies and practices.

“EncryptHub” threat actor first began exploiting the zero-day vulnerability before it was patched earlier this month.

The explosive growth of data, the rapid adoption of AI, & an evolving threat landscape have outpaced traditional security. Legacy solutions are not enough.

230M stolen passwords met complexity requirements—and were still compromised. Passwords aren't going away for now, but there are new technologies that may increasingly replace them. Learn more from Specops Software about how to protect your passwords.

Microsoft has fixed a known issue causing some USB printers to start printing random text after installing Windows updates released since late January 2025.

A threat actor named 'RedCurl,' known for stealthy corporate espionage operations since 2018, is now using a ransomware encryptor designed to target Hyper-V virtual machines.

The Iris Experts Group

Threat actors are exploiting cloud platforms like Adobe and Dropbox to evade email gateways and steal credentials

A newly discovered malware campaign uses malicious npm packages to deploy reverse shells, compromising development environments

RedCurl deployed QWCrypt ransomware via fake CVs and ISO lures, disabling entire virtual infrastructures.

EncryptHub Exploits Windows Zero-Day to Deploy Rhadamanthys and StealC Malware | Read more hacking news on The Hacker News cybersecurity news website and learn how to protect against cyberattacks and software vulnerabilities.

Continuous Controls Monitoring (CCM) automates compliance oversight, reducing manual effort, improving accuracy, and enhancing security posture for organizations.

Most firms test security annually—configuration drift and missed gaps demand continuous testing to stay resilient.

Trojan npm package downloaded 73 times modifies 'ethers' locally, enabling persistent reverse shell access