Latest CyberSec News by @thecyberpicker

U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds Citrix NetScaler flaw to its Known Exploited Vulnerabilities catalog.

Federal officials said businesses should carefully verify the identities of remote employees to avoid falling prey to similar scams.

U.S. authorities on Monday unsealed indictments, seized financial accounts and made an arrest in the latest attempt to crack down on North Korean remote IT workers.

The Berlin Commissioner for Data Protection has formally requested Google and Apple to remove the DeepSeek AI application from the application stores due to GDPR violations.

Agents with the Federal Bureau of Investigation (FBI) briefed Capitol Hill staff recently on hardening the security of their mobile devices, after a contacts list stolen from the personal phone of the White House Chief of Staff Susie Wiles was…

This week on the Lock and Code podcast, we speak with Becky Holmes about how she tricks, angers, and jabs at romance scammers online.

Palo Alto, Calif., Jun. 30, 2025, CyberNewswire--Every security practitioner knows that employees are the weakest link in an organization, but this is no longer the case. SquareX’s research reveals that Browser AI Agents are more likely to fall prey to cyberattacks than employees, making them the new weakest link that enterprise security teams need to

U.S. issues warning on potential Iranian cyber-attacks, urging stronger protections for critical infrastructure and defense sectors.

Des groupes de hackers nord-coréens exploitent ChatGPT pour industrialiser le vol de cryptomonnaies. Selon la Korea Internet & Security Agency (KISA), ces organisations liées à Pyongyang ont intégré l’IA d’OpenAI à leur arsenal, ciblant systématiquement les comptes dépassant 200 dollars. Lors d'une conférence tenue à

A €460m cryptocurrency fraud scheme has been disrupted by authorities, leading to five arrests in Spain

Microsoft says its Defender for Office 365 cloud-based email security suite will now automatically detect and block email bombing attacks.

The government in Switzerland is informing that sensitive information from various federal offices has been impacted by a ransomware attack at the third-party organization Radix.

Europol dismantled a crypto fraud syndicate laundering $540M from 5,000 victims worldwide.

Ahold Delhaize has confirmed a cyber-attack exposed personal data of over 2.2 million individuals in the US

US Defense Industrial Base (DIB) companies are “at increased risk” of cyber-attacks from Iran-aligned hacking groups

Trustwave links Blind Eagle cybercrime group to Proton66 hosting, targeting Colombian banks with VBS and RATs.

Companies should disconnect operational technology from the internet and enforce strong protections for user accounts, a joint alert from CISA, the FBI, NSA and DoD said.

Microsoft has confirmed a new known issue causing delivery delays for June 2025 Windows security updates due to an incorrect metadata timestamp.

Protection relays are prime targets for cyber-physical attacks targeting substation automation systems and grid management systems.

The Canadian government has ordered Hikvision's subsidiary in the country to cease all operations following a review that determined them to pose a national security risk.

The incident, one of the largest breaches reported to federal regulators this year, came after a cybercriminal accessed data on the company’s computer systems over the winter.

This week in cybersecurity from the editors at Cybercrime Magazine

Sarcoma, a recently emerged cybercrime group, was responsible for a data breach of Swiss health nonprofit Radix, according to a statement by the Zurich-based organization.

Explore OWASP’s new NHI Top 10 list, designed to standardize non-human identity security and help teams manage these critical threats.

Spanish authorities have arrested five individuals in Madrid and the Canary Islands, suspected of laundering $540 million (€460 million) from illegal cryptocurrency investment schemes and defrauding more than 5,000 victims.

The Federal Bureau of Investigation (FBI) has warned Americans of cybercriminals impersonating health fraud investigators to steal their sensitive information.

A U.K. man is serving a seven-month jail term because he changed access credentials and did other damage to his employer's systems after he was suspended from the job.

Denmark plans to let citizens copyright their face, body, and voice to combat deepfakes under a new law strengthening personal digital rights

The ban on Hikvision products follows a national security review under the Investment Canada Act