Latest CyberSec News by @thecyberpicker

Tips on what to do if you find a mop of squid eggs. As usual, you can also use this squid post to talk about the security stories in the news that I haven’t covered. Blog moderation policy.

Third-party antivirus software will no longer have access to the Windows kernel as Microsoft rolls out changes to reduce IT downtime from unexpected crashes or disruptions.

Pig butchering scams were the most common activity carried out at the facilities identified in the Amnesty International investigation.

Threat actors are adopting Rust for malware development. RIFT, an open-source tool, helps reverse engineers analyze Rust malware, solving challenges in the security industry.

The aviation industry has seemingly become the latest target of Scattered Spider, a sophisticated cybercriminal group that has shifted its focus from retail and insurance companies to airlines in what cybersecurity experts describe as a coordinated campaign against the sector.

An Open VSX Registry bug could let attackers hijack the VS Code extension hub, exposing millions of developers to supply chain attacks.

APIs have become the digital glue of the enterprise — and attackers know it. Related: API security - the big picture In this debut edition of the Last Watchdog Strategic Reel (LWSR), A10 Networks’ Field CISO Jamison Utter cuts through the noise from RSAC 2025 with a sharp breakdown of today’s API threatscape. From 15,000

Hackers associated with Scattered Spider tactics have expanded their targeting to the aviation and transportation industries after previously attacking insurance and retail sectors

A study of over 467,000 building management systems across 500 organizations found that 2% of all devices essential to business operations had the highest level of risk exposure.

China-linked hackers use compromised SOHO devices in espionage campaign, targeting Taiwan, the U.S., and Southeast Asia.

À la suite des frappes américaines contre trois sites nucléaires iraniens le 22 juin 2025, Donald Trump n’a pas tardé à qualifier l’opération de « succès spectaculaire ». Pourtant, la diffusion d’un rapport confidentiel du renseignement militaire est rapidement venue jeter le doute sur l’ampleur réelle des dégâts

Starting June 9, 2025, Russian internet service providers (ISPs) have begun throttling access to websites and services protected by Cloudflare, an American internet giant.

The company, which supplies Whole Foods and other grocery stores nationwide, had to disable electronic ordering systems while responding to the attack earlier this month.

A critical NetScaler ADC and Gateway vulnerability dubbed "Citrix Bleed 2" (CVE-2025-5777) is now likely exploited in attacks, according to cybersecurity firm ReliaQuest, seeing an increase in suspicious sessions on Citrix devices.

A critical NetScaler ADC and Gateway vulnerability dubbed "Citrix Bleed 2" (CVE-2025-5777) is now likely exploited in attacks, according to cybersecurity firm ReliaQuest, seeing an increase in suspicious sessions on Citrix devices.

Mustang Panda malware targets Tibet and Taiwan, using spear-phishing emails and PUBLOAD for cyber espionage.

The Dutch conglomerate behind Hannaford, Stop & Shop and other major grocery brands informed state regulators of the scope of a November cyberattack that hampered online orders and leaked sensitive data.

The CCM includes Virtualization & Infrastructure Security controls about network security, virtualization technology, and the protection of other IT facilities.

A OneClik campaign, likely carried out by China-linked actor, targets energy sectors using stealthy ClickOnce and Golang backdoors.

This week in cybersecurity from the editors at Cybercrime Magazine

The US airline said that incident was affecting some of its IT systems, but flights are continuing to operate safely and as scheduled

UNFI, the biggest supplier to Whole Foods stores, reported that its income will take a hit for the quarter that ends in August because of a recent cyberattack that disrupted operations.

As India becomes a global manufacturing anchor, cybersecurity is becoming the frontline of industrial continuity. Is India ready to protect what it builds?

Le National Health Service (NHS) britannique a confirmé, le lundi 26 juin 2025, un fait tragique et inédit : la mort d’un patient, officiellement liée à une cyberattaque. Retour sur une affaire qui illustre la réalité des cybermenaces sur les infrastructures critiques. Nous sommes en juin 2024 et le groupe de

We need to talk about data integrity. Narrowly, the term refers to ensuring that data isn’t tampered with, either in transit or in storage. Manipulating account balances in bank databases, removing entries from criminal records, and murder by removing notations about allergies from medical records are all integrity attacks. More broadly, integrity refers to ensuring that data is correct and accurate from the point it is collected, through all the ways it is used, modified, transformed, and eventually deleted. Integrity-related incidents include malicious actions, but also inadvertent mistakes...

Silver Fox hackers target Chinese-speaking users with fake sites delivering Sainbox RAT and Hidden rootkit

AI SOC Analysts reduce false positives by 90%, boost SOC productivity, and tackle the global analyst shortage.

Ahold Delhaize, one of the world's largest food retail chains, is notifying over 2.2 million individuals that their personal, financial, and health information was stolen in a November ransomware attack that impacted its U.S. systems.

This new CitrixBleed lookalike flaw is being exploited in the wild to gain initial access, according to ReliaQuest