Hackers using fake summonses in attacks on Ukraine's defense sector
Hackers have been sending fake summons emails purportedly from Ukrainian courts to target the country’s military and defense, cyber authorities have found.
Latest CyberSec News by @thecyberpicker
Weight loss scams, or why ‘Jodie Foster’ wants me to lose weight
Weight loss scams prey on insecurities, and scammers are abusing celebrities and fake news sites to deceive people.
National Bank of Canada online systems down due to 'technical issue'
National Bank of Canada (Banque Nationale du Canada), the sixth largest commercial bank of Canada is currently experiencing a widespread service outage affecting its online banking and mobile app platforms.
WWBN, MedDream, Eclipse vulnerabilities
Cisco Talos’ Vulnerability Discovery & Research team recently disclosed seven vulnerabilities in WWBN AVideo, four in MedDream, and one in an Eclipse ThreadX module.
The vulnerabilities mentioned in this blog post have been patched by their respective vendors, all in adherence to Cisco’s third-party vulnerability disclosure policy.   Â
For Snort coverage that can detect the exploitation of these vulnerabilities, download the latest rule sets from Snort.org, and our latest Vulnerability Advisor
SpyCloud Enhances Investigations Solution with AI-Powered Insights – Revolutionizing Insider Threat and Cybercrime Analysis
Austin, TX, USA, 6th August 2025, CyberNewsWire
#BHUSA: Exploring the Top Cyber Threats Facing Agentic AI Systems
During the pre-Black Hat AI Summit, Sean Morgan, Protect AI’s Chief Architect, highlighted the three most prominent security risks of using AI agents
Perplexity AI ignores no-crawling rules on websites, crawls them anyway
Perplexity ignores robots.txt files on websites that say they do no want to be crawled.
Attackers Are Targeting Critical Apex One Vulnerabilities, Trend Micro Warns
Trend Micro has released a temporary fix for the flaws, which enable remote code execution on on-prem Apex One machines
#BHUSA: Malware Complexity Jumps 127% in Six Months
Adversaries are prioritizing stealth over scale, according to OPSWAT’s latest Threat Landscape Report
.jpeg?width=350&height=&ar=16:9&mode=crop&format=avif&dpr=2)
Identity Security Lessons from the Treasury Incident | CSA
The Treasury Department breach highlights the persistent risks organizations face with identity security. Learn how to better protect your sensitive systems.
ReVault flaws let hackers bypass Windows login on Dell laptops
ControlVault3 firmware vulnerabilities impacting over 100 Dell laptop models can allow attackers to bypass Windows login and install malware that persists across system reinstalls.
Ingénieurs licenciés et perquisitions : le secret des puces 2 nm de TSMC est-il encore bien gardé ?
Les autorités taïwanaises ont annoncé le 5 août avoir arrêté plusieurs employés et ex-salariés du constructeur de semi-conducteurs TSMC. Ils sont soupçonnés d’avoir dérobé des secrets technologiques et industriels liés à la fabrication des puces d'une finesse de gravure de 2 nanomètres, fleuron absolu du géant
Who Got Arrested in the Raid on the XSS Crime Forum?
On July 22, 2025, the European police agency Europol said a long-running investigation led by the French Police resulted in the arrest of a 38-year-old administrator of XSS, a Russian-language cybercrime forum with more than 50,000 members. The action has triggered…
The Growing Impact Of AI And Quantum On Cybersecurity
This week in cybersecurity from the editors at Cybercrime Magazine
WhatsApp adds new security feature to protect against scams
WhatsApp is introducing a new security feature that will help users spot potential scams when they are being added to a group chat by someone not in their contact list.
Microsoft Launches Project Ire to Autonomously Classify Malware Using AI Tools
Microsoft unveils AI system Project Ire to automate malware detection, reducing analyst workload and boosting accuracy.
AI Slashes Workloads for vCISOs by 68% as SMBs Demand More – New Report Reveals
vCISO adoption surged 319% in one year as SMB demand and AI integration transform cybersecurity delivery.
.jpeg?width=350&height=&ar=16:9&mode=crop&format=avif&dpr=2)
Hypervisors & SOC 2 | Virtualization Security | CSA
Hypervisors have demonstrated the potential for widespread outages and data loss. SOC 2 offers a robust compliance framework to address these risks.
Dashlane Free était infernal à utiliser, mais ce n’était pas encore le pire
C'est la fin de l'aventure pour Dashlane Free. Le gestionnaire de mots de passe annonce l'arrêt prochain de sa formule gratuite, qui était devenue vraiment très contrariante à l'emploi depuis deux ans. Il est temps de passer à la formule payante, ou d'aller voir ailleurs. C'était à l'automne 2023. Dashlane, l'un des
Ransomware Actors Expand Tactics Beyond Encryption and Exfiltration
Ransomware actors deploy a range of activities to make it harder for victims to recover and increase the consequences of not paying demands
Trend Micro Confirms Active Exploitation of Critical Apex One Flaws in On-Premise Systems
Trend Micro flaws let attackers run code remotely on Apex One systems; on-premise users must apply fixes now.
Trend Micro warns of Apex One zero-day exploited in attacks
Trend Micro has warned customers to immediately secure their systems against an actively exploited remote code execution vulnerability in its Apex One endpoint security platform.
https://securelist.com/av-killer-exploiting-throttlestop-sys/117026/
NCSC Updates Cyber Assessment Framework to Build UK CNI Resilience
The UK’s National Cyber Security Centre has released the Cyber Assessment Framework 4.0
Chanel and Pandora Breached as Salesforce Campaign Continues
Chanel and Pandora have revealed data breaches reportedly linked to attacks on their Salesforce instances
Microsoft pays record $17 million in bounties over the last 12 months
​Microsoft paid a record $17 million this year to 344 security researchers across 59 countries through its bug bounty program.
CERT-UA Warns of HTA-Delivered C# Malware Attacks Using Court Summons Lures
Ukraine’s CERT-UA warns of UAC-0099 and Gamaredon phishing attacks using custom malware and social lures.
Dashlane Free était infernal à utiliser. Il va être inutilisable tout court désormais
C'est la fin de l'aventure pour Dashlane Free. Le gestionnaire de mots de passe annonce l'arrêt prochain de sa formule gratuite, qui était devenue vraiment très contrariante à l'emploi depuis deux ans. Il est temps de passer à la formule payante, ou d'aller voir ailleurs. C'était à l'automne 2023. Dashlane, l'un des
Anthropic Restrict Claude API Access To OpenAI Engineers
Anthropic restricted OpenAI from using Claude for vibe coding, still allowing them to use Claude APIs for benchmarking, progress evaluations.
CISA Adds 3 D-Link Router Flaws to KEV Catalog After Active Exploitation Reports
CISA adds 3 D-Link router flaws to KEV catalog after confirmed exploits, urging action from agencies.