Latest CyberSec News by @thecyberpicker

The Qilin ransomware operation has recently joined attacks exploiting two Fortinet vulnerabilities that allow bypassing authentication on vulnerable devices and executing malicious code remotely.

The ransomware group combines IT vendor impersonation and phishing frameworks like Evilginx to breach its targets

Cybercriminals are abusing the hospitality industry and its booking platforms to defraud the travelers that visit them

TV streaming devices, digital projectors and other IoT devices are being infected with BadBox 2.0 malware after the original campaign was stifled by German law enforcement.

Relying solely on perimeter defenses for data security is no longer sufficient against modern cyber threats. The Zero Trust model addresses this challenge.

Indian call centers defraud Japanese victims via fake tech support, leading to arrests and global cybercrime crackdown.

Blocking access to public AI applications is not enough to stop employees from putting data at risk

The Ohio-based Kettering Health system said a recent cyberattack was by the Interlock ransomware gang, which had claimed to steal troves of data from the organization.

The U.S. government wants to confiscate millions of dollars in funds tied to illegal employment of North Korean IT workers at American companies.

This week in cybersecurity from the editors at Cybercrime Magazine

IT teams likely struggle to get employees to react to announcements about system upgrades. How do you make sure your messages don’t end up in the digital void?

Experts at Infosecurity Europe 2025 highlighted a range of major industry trends, from advanced social engineering techniques to vulnerability exploits

AEV automates continuous attack simulations for organizations, helping prioritize exploitable risks and improve cyber resilience.

A l'occasion de sa grande messe annuelle, le cloud de Dassault Systèmes a dévoilé une série d'annonces - intégration de Mistral AI sur sa...-Intelligence artificielle

Kaspersky GReAT experts describe the new features of a Mirai variant: the latest botnet infections target TBK DVR devices with CVE-2024-3721.

PathWiper malware hit Ukraine’s critical systems in 2025, wiping data via admin console access and worsening conflict-driven cyberattacks.

Law enforcement authorities from over a dozen countries have arrested 20 suspects in an international operation targeting the production and distribution of child sexual abuse material.

Fake Gitcode and DocuSign sites are tricking users into running PowerShell scripts that install NetSupport RAT.

Several popular Chrome extensions send sensitive user data over unencrypted HTTP, exposing millions to interception and privacy risks.

Google's AI advancement is not slowing down, and we might be getting yet another powerful model codenamed "Gemini Kingfall."

OpenAI is planning to ship an update to ChatGPT that will turn on the new o3 Pro model, which has more compute to think harder.

Authorities said they froze and seized the allegedly illegally obtained funds when North Korean nationals attempted to launder money linked to the long-running conspiracy.

Ukraine has seen nearly one-fifth of its Internet space come under Russian control or sold to Internet address brokers since February 2022, a new study finds. The analysis indicates large chunks of Ukrainian Internet address space are now in the…

The FBI is warning that the BADBOX 2.0 malware campaign has infected over 1 million home Internet-connected devices, converting consumer electronics into residential proxies that are used for malicious activity.

U.S. CISA adds a Google Chromium V8 vulnerability (CVE-2025-5419) to its Known Exploited Vulnerabilities catalog.

In this week's newsletter, Martin emphasizes that awareness, basic cyber hygiene and preparation are essential for everyone, and highlights Talos' discovery of the new PathWiper malware.

Sean Cairncross said his managerial experience has prepared him well to lead a relatively new White House cyber unit.

2017 ransomware attack on shipping company A P Moller Maersk marked a turning point for the cybersecurity industry, according to its former CISO Adam Banks

The nominee, who doesn’t have as much cyber experience as his predecessors, also touted his credentials and views on current threats during his Senate confirmation hearing.

Meet the minds behind how Microsoft prioritizes cybersecurity across every team and employee.