Latest CyberSec News by @thecyberpicker

Latest CyberSec News by @thecyberpicker

30533 bookmarks
Custom sorting
5 Ways Identity-based Attacks Are Breaching Retail
5 Ways Identity-based Attacks Are Breaching Retail
Major retailers like Adidas and The North Face were breached using identity-driven tactics, exposing key security gaps.
·thehackernews.com·
5 Ways Identity-based Attacks Are Breaching Retail
« Bonjour vous êtes à la maison ? », attention au scam du faux livreur de colis
« Bonjour vous êtes à la maison ? », attention au scam du faux livreur de colis
Depuis fin juin, une nouvelle vague d’arnaques au colis déferle sur les messageries des Français. Cette fois, les cybercriminels adoptent une approche plus subtile : au lieu d’envoyer immédiatement un lien frauduleux, ils engagent d’abord la conversation avec un simple SMS d’accroche : « Bonjour, vous êtes à la
·numerama.com·
« Bonjour vous êtes à la maison ? », attention au scam du faux livreur de colis
What is Identity and Access Management [2025 Guide] | CSA
What is Identity and Access Management [2025 Guide] | CSA
Get an overview of Identity and Access Management (IAM), including how it works, current IAM tools, and the limitations of IAM technology.
·cloudsecurityalliance.org·
What is Identity and Access Management [2025 Guide] | CSA
Malicious Open Source Packages Surge 188% Annually
Malicious Open Source Packages Surge 188% Annually
Sonatype’s latest Open Source Malware Index report has identified more than 16,000 malicious open source packages, representing a 188% annual increase
·infosecurity-magazine.com·
Malicious Open Source Packages Surge 188% Annually
PortSwigger at Black Hat & DEF CON 33
PortSwigger at Black Hat & DEF CON 33
PortSwigger returns to Black Hat USA and DEF CON 33 with a host of new talks, events and ways to meet PortSwigger and the creators of Burp Suite.
·portswigger.net·
PortSwigger at Black Hat & DEF CON 33
New Bert Ransomware Group Strikes Globally with Multiple Variants
New Bert Ransomware Group Strikes Globally with Multiple Variants
Trend Micro has observed the Bert ransomware group in operation since April 2025, with confirmed victims in sectors including healthcare, technology and event services
·infosecurity-magazine.com·
New Bert Ransomware Group Strikes Globally with Multiple Variants
Alleged Chinese hacker tied to Silk Typhoon arrested for cyberespionage
Alleged Chinese hacker tied to Silk Typhoon arrested for cyberespionage
A Chinese national was arrested in Milan, Italy, last week for allegedly being linked to the state-sponsored Silk Typhoon hacking group, which responsible for cyberattacks against American organizations and government agencies.
·bleepingcomputer.com·
Alleged Chinese hacker tied to Silk Typhoon arrested for cyberespionage
Public exploits released for CitrixBleed 2 NetScaler flaw, patch now
Public exploits released for CitrixBleed 2 NetScaler flaw, patch now
Researchers have released proof-of-concept (PoC) exploits for a critical Citrix NetScaler vulnerability, tracked as CVE-2025-5777 and dubbed CitrixBleed2, warning that the flaw is easily exploitable and can successfully steal user session tokens.
·bleepingcomputer.com·
Public exploits released for CitrixBleed 2 NetScaler flaw, patch now
Brazilian police arrest IT worker over $100 million cyber theft
Brazilian police arrest IT worker over $100 million cyber theft
Police in Brazil arrested an employee of C&M Software, who allegedly told them he had sold his login credentials to the hackers behind a massive theft via the PIX instant payment system.
·therecord.media·
Brazilian police arrest IT worker over $100 million cyber theft
Atomic macOS infostealer adds backdoor for persistent attacks
Atomic macOS infostealer adds backdoor for persistent attacks
Malware analyst discovered a new version of the Atomic macOS info-stealer (also known as 'AMOS') that comes with a backdoor, to attackers persistent access to compromised systems.
·bleepingcomputer.com·
Atomic macOS infostealer adds backdoor for persistent attacks
Beware of Bert: New ransomware group targets healthcare, tech firms
Beware of Bert: New ransomware group targets healthcare, tech firms
Organizations on multiple continents — particularly in the health and tech sectors — have been breached by a ransomware group calling itself Bert, according to researchers at Trend Micro.
·therecord.media·
Beware of Bert: New ransomware group targets healthcare, tech firms
'Batavia' Windows spyware campaign targets dozens of Russian orgs
'Batavia' Windows spyware campaign targets dozens of Russian orgs
A previously undocumented spyware called 'Batavia' has been targeting large industrial enterprises in Russia in a phishing email campaign that uses contract-related lures.
·bleepingcomputer.com·
'Batavia' Windows spyware campaign targets dozens of Russian orgs
Qantas is being extorted in recent data-theft cyberattack
Qantas is being extorted in recent data-theft cyberattack
Qantas has confirmed that it is now being extorted by threat actors following a cyberattack that potentially exposed the data for 6 million customers.
·bleepingcomputer.com·
Qantas is being extorted in recent data-theft cyberattack
Why Identity Automation Fails at 96% of Organizations | CSA
Why Identity Automation Fails at 96% of Organizations | CSA
When it comes to executing identity processes, 96% of organizations still rely on manual workflows. Automation is the exception rather than the standard.
·cloudsecurityalliance.org·
Why Identity Automation Fails at 96% of Organizations | CSA