Latest CyberSec News by @thecyberpicker

The Lumma infostealer infrastructure has suffered a serious blow by a coordinated action of the DOJ and Microsoft.

The Federal Trade Commission (FTC) has finalized an order requiring web hosting giant GoDaddy to secure its services to settle charges of data security failures that led to several data breaches since 2018.

This week in cybersecurity from the editors at Cybercrime Magazine

Neglected AWS resources like S3 buckets and IAM roles can become hacker entry points. Learn how to spot and secure hidden cloud vulnerabilities.

A stalkerware company that recently leaked millions of users' personal information online has taken all of its assets offline without any explanation.

The unpatched vulnerabilities, with a CVSS score of 8.6 to 10.0, can lead to remote code execution via authentication bypass

Three critical Versa Concerto flaws disclosed after 90 days allow remote code execution via reverse proxy misconfigurations.

New laws demand provable cybersecurity programs. Learn how CIS Controls and tools help meet legal, scalable standards.

UNC5221 exploited Ivanti EPMM flaws CVE-2025-4427/4428 in global attacks starting May 15, 2025, enabling remote access and data theft

Technology and innovation have transformed every part of society, including our electoral experiences. Campaigns are spending and doing more than at any other time in history. Ever-growing war chests fuel billions of voter contacts every cycle. Campaigns now have better ways of scaling outreach methods and offer volunteers and donors more efficient ways to contribute time and money. Campaign staff have adapted to vast changes in media and social media landscapes, and use data analytics to forecast voter turnout and behavior. Yet despite these unprecedented investments in mobilizing voters, overall trust in electoral health, democratic institutions, voter satisfaction, and electoral engagement has significantly declined. What might we be missing?...

52% of breaches stem from manual identity workflows in disconnected apps—causing customer loss and compliance risks.

Talos has observed exploitation of CVE-2025-0994 in the wild by UAT-6382, a Chinese-speaking threat actor, who then deployed malware payloads via TetraLoader.

​Signal has updated its Windows app to protect users' privacy by blocking Microsoft's AI-powered Recall feature from taking screenshots of their conversations.

For years, network security has revolved around the perimeter: firewalls, antivirus, endpoint controls. But as attackers grow more sophisticated — and as operations scatter to the cloud, mobile, and IoT — it’s increasingly what happens inside the network that counts. Related: The NDR evolution story Enter Network Detection and Response (NDR) — a space once

Cybercriminals are using AI-based tools to generate voice clones of the voices of senior US officials in order to scam people.

West Lothian Council confirmed that ransomware attackers have stolen personal and sensitive information held on its education network

Microsoft and Europol dismantled Lumma’s 2,300-domain C2 network after 10M infections tied to credential and crypto theft.

Cary, North Carolina, 22nd May 2025, CyberNewsWire

Law enforcers worldwide have teamed up with Microsoft to disrupt the infrastructure behind Lumma Stealer

Critical vulnerabilities in Versa Concerto that are still unpatched could allow remote attackers to bypass authentication and execute arbitrary code on affected systems.

NSA, NCSC and allies warn Western tech and logistics firms of Russian APT28 cyber-espionage threat

UK businesses should start to plan for required changes to their cybersecurity programs ahead of the Cyber Security and Resilience Bill

The Lumma infostealer malware is a popular way for hackers to steal passwords, credit cards and cryptocurrency wallets.

Anthropic is secretly working on two new models called Claude Sonnet 4 and Opus 4, which are believed to be the company's most advanced AI models.

ChatGPT's Operator, which is still in research preview, will soon become a "very useful tool," according to Jerry Tworek, VP of Research at OpenAI.

An appeals court has upheld the dismissal of a lawsuit by Jamal Khashoggi's widow against spyware maker NSO Group, citing lack of jurisdiction.

Cellcom CEO Brighid Riordan said the company has been dealing with a “cyber incident” but they “simply don’t have a lot of facts.”

A critical Samlify authentication bypass vulnerability has been discovered that allows attackers to impersonate admin users by injecting unsigned malicious assertions into legitimately signed SAML responses.

A Russian state-sponsored cyberespionage campaign attributed to APT28 (Fancy Bear/Forest Blizzard) hackers has been targeting and compromising international organizations since 2022 to disrupt aid efforts to Ukraine.

Cellcom, a regional wireless carrier based in Wisconsin, announced that a cyberattack caused a service outage it faced during the past week.