TEST

Latest CyberSec News by @thecyberpicker
U.S. CISA adds Citrix NetScaler flaw to its Known Exploited Vulnerabilities catalog
U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds Citrix NetScaler flaw to its Known Exploited Vulnerabilities catalog.
US authorities unmask North Korean IT worker schemes and their American accomplices
Federal officials said businesses should carefully verify the identities of remote employees to avoid falling prey to similar scams.
Arrest, seizures in latest U.S. operation against North Korean IT workers | CyberScoop
U.S. authorities on Monday unsealed indictments, seized financial accounts and made an arrest in the latest attempt to crack down on North Korean remote IT workers.
Germany asks Google, Apple remove DeepSeek AI from app stores
The Berlin Commissioner for Data Protection has formally requested Google and Apple to remove the DeepSeek AI application from the application stores due to GDPR violations.
Senator Chides FBI for Weak Advice on Mobile Security
Agents with the Federal Bureau of Investigation (FBI) briefed Capitol Hill staff recently on hardening the security of their mobile devices, after a contacts list stolen from the personal phone of the White House Chief of Staff Susie Wiles was…
Corpse-eating selfies, and other ways to trick scammers (Lock and Code S06E14)
This week on the Lock and Code podcast, we speak with Becky Holmes about how she tricks, angers, and jabs at romance scammers online.
News alert: SquareX research finds browser AI agents are proving riskier than human employees
Palo Alto, Calif., Jun. 30, 2025, CyberNewswire--Every security practitioner knows that employees are the weakest link in an organization, but this is no longer the case. SquareX’s research reveals that Browser AI Agents are more likely to fall prey to cyberattacks than employees, making them the new weakest link that enterprise security teams need to
U.S. Agencies Warn of Rising Iranian Cyberattacks on Defense, OT Networks, and Critical Infrastructure
U.S. issues warning on potential Iranian cyber-attacks, urging stronger protections for critical infrastructure and defense sectors.
Votre portefeuille crypto dépasse 200$ ? Des hackers nord-coréens dopés à l’IA pourraient vous courir après
Des groupes de hackers nord-coréens exploitent ChatGPT pour industrialiser le vol de cryptomonnaies. Selon la Korea Internet & Security Agency (KISA), ces organisations liées à Pyongyang ont intégré l’IA d’OpenAI à leur arsenal, ciblant systématiquement les comptes dépassant 200 dollars. Lors d'une conférence tenue à
International Taskforce Dismantles €460m Crypto Fraud Network
A €460m cryptocurrency fraud scheme has been disrupted by authorities, leading to five arrests in Spain
Microsoft Defender for Office 365 now blocks email bombing attacks
Microsoft says its Defender for Office 365 cloud-based email security suite will now automatically detect and block email bombing attacks.
Switzerland says government data stolen in ransomware attack
The government in Switzerland is informing that sensitive information from various federal offices has been impacted by a ransomware attack at the third-party organization Radix.
Europol Dismantles $540 Million Cryptocurrency Fraud Network, Arrests Five Suspects
Europol dismantled a crypto fraud syndicate laundering $540M from 5,000 victims worldwide.
Food Retailer Ahold Delhaize Discloses Data Breach Impacting 2.2 Million
Ahold Delhaize has confirmed a cyber-attack exposed personal data of over 2.2 million individuals in the US
Iranian Cyber Threats Persist Despite Ceasefire, US Intelligence Warns
US Defense Industrial Base (DIB) companies are “at increased risk” of cyber-attacks from Iran-aligned hacking groups
Blind Eagle Uses Proton66 Hosting for Phishing, RAT Deployment on Colombian Banks
Trustwave links Blind Eagle cybercrime group to Proton66 hosting, targeting Colombian banks with VBS and RATs.
US government warns of new Iran-linked cyber threats on critical infrastructure
Companies should disconnect operational technology from the internet and enforce strong protections for user accounts, a joint alert from CISA, the FBI, NSA and DoD said.
Microsoft warns of Windows update delays due to wrong timestamp
Microsoft has confirmed a new known issue causing delivery delays for June 2025 Windows security updates due to an incorrect metadata timestamp.
Protecting the Core: Securing Protection Relays in Modern Substations
Protection relays are prime targets for cyber-physical attacks targeting substation automation systems and grid management systems.
Hikvision Canada ordered to cease operations over security risks
The Canadian government has ordered Hikvision's subsidiary in the country to cease all operations following a review that determined them to pose a national security risk.
Data breach at healthcare services firm Episource affects 5.4M
The incident, one of the largest breaches reported to federal regulators this year, came after a cybercriminal accessed data on the company’s computer systems over the winter.
Building Trust in the Age of Agentic AI
This week in cybersecurity from the editors at Cybercrime Magazine
Swiss nonprofit health organization breached by Sarcoma ransomware group
Sarcoma, a recently emerged cybercrime group, was responsible for a data breach of Swiss health nonprofit Radix, according to a statement by the Zurich-based organization.
OWASP NHI Top 10: Standardize NHI Security | CSA
Explore OWASP’s new NHI Top 10 list, designed to standardize non-human identity security and help teams manage these critical threats.
Europol helps disrupt $540 million crypto investment fraud ring
Spanish authorities have arrested five individuals in Madrid and the Canary Islands, suspected of laundering $540 million (€460 million) from illegal cryptocurrency investment schemes and defrauding more than 5,000 victims.
FBI: Cybercriminals steal health data posing as fraud investigators
The Federal Bureau of Investigation (FBI) has warned Americans of cybercriminals impersonating health fraud investigators to steal their sensitive information.
'Disgruntled' British IT worker jailed for hacking employer after being suspended
A U.K. man is serving a seven-month jail term because he changed access credentials and did other damage to his employer's systems after he was suspended from the job.
Denmark moves to protect personal identity from deepfakes with new copyright law
Denmark plans to let citizens copyright their face, body, and voice to combat deepfakes under a new law strengthening personal digital rights
Canada Bans Chinese CCTV Vendor Hikvision Over National Security Concerns
The ban on Hikvision products follows a national security review under the Investment Canada Act