Latest CyberSec News by @thecyberpicker

China-linked firms behind Silk Typhoon filed patents for cyber tools, revealing links to MSS and offensive hacking ops.

IBM found that the global average cost of a data breach has fallen by 9% compared to 2024, driven by improved detection and containment

“Who’s winning on the internet, the attackers or the defenders?” I’m asked this all the time, and I can only ever give a qualitative hand-wavy answer. But Jason Healey and Tarang Jain’s latest Lawfare piece has amassed data. The essay provides the first framework for metrics about how we are all doing collectively—and not just how an individual network is doing. Healey wrote to me in email: The work rests on three key insights: (1) defenders need a framework (based in threat, vulnerability, and consequence) to categorize the flood of potentially relevant security metrics; (2) trends are what matter, not specifics; and (3) to start, we should avoid getting bogged down in collecting data and just use what’s already being reported by amazing teams at Verizon, Cyentia, Mandiant, IBM, FBI, and so many others...

IBM’s yearly report finds that a data breach now costs U.S. organizations more than $10 million for recovery.

Companies are failing to protect their AI tools from compromise, often leading to more extensive data breaches, according to new data from IBM.

Une campagne d’arnaque aux chèques-vacances ANCV circule dans les boîtes mail des Français, en ce mois de juillet 2025. Prétextant l’expiration imminente des titres, des cybercriminels essaient de piéger leurs victimes en les redirigeant vers un site frauduleux. Ah, l’été… le temps des verres en terrasse, des clubs

A total of 396 compromised Microsoft SharePoint systems have been identified globally, affecting 145 organizations across 41 countries in the wake of the ToolShell zero-day vulnerability

A campaign targeting Russian entities leveraged social media, Microsoft Learn Challenge, Quora, and GitHub as intermediate C2 servers to deliver Cobalt Strike Beacon.

Google unveils DBSC in Chrome and new Project Zero disclosure rules to boost account and patch security.

Recent arrests slowed Scattered Spider, giving businesses a chance to study tactics and boost defenses.

SAP flaw CVE-2025-31324 exploited to deploy Auto-Color malware at U.S. chemicals firm; Linux systems targeted.

The comprehensive guidance focuses on technical recommendations for securing agentic AI applications, from development to deployment

A practical guide to protecting your most critical assets when budget, head-count, and political capital are tight.

Minnesota Gov. Tim Walz activated the state national guard to help respond to an ongoing cyberattack on the state's capital city.

Mayor Melvin Carter said during a press conference on Tuesday that the city is most concerned about the data it holds on government employees, arguing that the city does not carry much information on city residents.

Orange, France’s largest telecom provider, reported a cyberattack on one of its internal systems, impacting its operations in EU and Africa.

Minnesota Governor Tim Walz has activated the National Guard in response to a crippling cyberattack that struck the City of Saint Paul, the state's capital, on Friday.

After the initial uproar about leaked images, a researcher was able to access Tea Dating app private messages

The latest guidance on Scattered Spider from the FBI and agencies in the U.K., Canada and Australia says the cybercrime group is often looking for Snowflake data storage credentials when it picks a company to attack.

The Oregon Democrat has vowed to place a hold on the nomination to lead the agency until CISA releases the report.

Aeroflot, Russia's flag carrier, has suffered a cyberattack that resulted in the cancellation of more than 60 flights and severe delays on additional flights.

Allianz notified authorities about a data breach that exposed the information about almost all its US customers

Attacks surged in July 2025 after the threat group updated its process to combine malicious LNK files and a recycled WebDAV technique

Palo Alto, Calif., July 29, 2025, CyberNewswire — Despite the expanding use of browser extensions, the majority of enterprises and individuals still rely on labels such as “Verified” and “Chrome Featured” provided by extension stores as a security indicator. The recent Geco Colorpick case exemplifies how these certifications provide nothing more than a false sense

Phishing emails mimicking PyPI target developers to steal credentials via fake sites. Users urged to stay alert.

Wiz found a critical Base44 flaw letting attackers access private apps via public app_id. Fixed by Wix.

This week on the Lock and Code podcast, we revisit an interview with Joseph Cox about the largest FBI sting operation ever carried out.

Le 25 juillet 2025, sur le tarmac d’une base aérienne française tenue confidentielle, le nouvel avion de renseignement Archange a quitté le sol pour la première fois. Un vol inaugural qui concrétise la volonté de la France d'amplifier sa capacité à écouter, surveiller et anticiper. Avion de Renseignement à Charge

Hackers were spotted exploiting a critical SAP NetWeaver vulnerability tracked as CVE-2025-31324 to deploy the Auto-Color Linux malware in a cyberattack on a U.S.-based chemicals company.

Some of Orange’s professional and consumer services may be disrupted for a few days because of the cyber incident