Latest CyberSec News by @thecyberpicker

OpenAI banned ChatGPT accounts tied to Russian, Chinese, and Iranian hackers using AI for malware and influence campaigns.

The Football Australia 2024 breach resulted from developers misconfiguring their AWS S3 buckets (an example of Misconfiguration and Inadequate Change Control).

OpenAI annonce avoir identifié et fermé les comptes ChatGPT de plusieurs groupes liés à des puissances étrangères. L’outil d’IA générative servait à orchestrer des opérations d’influence et de désinformation sur les réseaux sociaux. Leur objectif est clair : polariser les débats publics, diffuser des contenus

A cyberattack on London hospitals last year led to the depletion of stocks of crucial O-type blood, and the U.K.'s National Health Service is calling for a nationwide effort to shore up supplies.

In 2024, dormant accounts, unmanaged SaaS access, and GenAI permissions expose enterprises to data breaches and insider threats.

This week’s recap tracks how trust is being quietly exploited at scale.

Congress and federal agencies can take some simple steps to better protect open-source software, writes Chainguard CEO Dan Lorenc.

Researchers have discovered a new way to covertly track Android users. Both Meta and Yandex were using it, but have suddenly stopped now that they have been caught. The details are interesting, and worth reading in detail: >Tracking code that Meta and Russia-based Yandex embed into millions of websites is de-anonymizing visitors by abusing legitimate Internet protocols, causing Chrome and other browsers to surreptitiously send unique identifiers to native apps installed on a device, researchers have discovered. Google says it’s investigating the abuse, which allows Meta and Yandex to convert ephemeral web identifiers into persistent mobile app user identities...

A new Trump Executive Order limits the use of cybersecurity-related sanctions only against foreign malicious actors

Agentic AI is transforming automation and identity. Learn how to secure these autonomous systems before they reshape your attack surface.

The security firm said the operatives who tried to breach it turned out to be responsible for cyberattacks on dozens of critical infrastructure organizations worldwide.

A new variant of the Mirai botnet exploits CVE-2024-3721 to target DVR systems, using a new infection method.

According to Kaspersky, Librarian Ghouls APT continues its series of attacks on Russian entities. A detailed analysis of a malicious campaign utilizing RAR archives and BAT scripts.

The Justice Department has filed a civil forfeiture complaint alleging North Korean IT workers amassed $7m+

The FBI says mainly Chinese-made IoT devices pose a threat from Badbox 2.0 malware

Cyber threats like ransomware and malware are rising fast, hitting firms like Frederick Health and Marks & Spencer. Defense needs layers, adaptability and vigilance.

A list of topics we covered in the week of June 1 to June 7 of 2025

OpenAI banned ChatGPT accounts tied to Russian, Chinese, and Iranian hackers using AI for malware and influence campaigns.

Microsoft Windows 11 Version 24H2 Cross Device Service - Elevation of Privilege. CVE-2025-24076 . local exploit for Windows platform

ProSSHD 1.2 20090726 - Denial of Service (DoS). CVE-2024-0725 . remote exploit for Windows platform

TightVNC 2.8.83 - Control Pipe Manipulation. CVE-2024-42049 . local exploit for Multiple platform

Laravel Pulse 1.3.1 - Arbitrary Code Injection. CVE-2024-55661 . webapps exploit for PHP platform

A new variant of the Mirai malware botnet is exploiting a command injection vulnerability in TBK DVR-4104 and DVR-4216 digital video recording devices to hijack them.

A phishing campaign infects 722 users with malicious browser extensions in Latin America to steal bank login data.

Supply chain attack infects 16 GlueStack npm packages used by 1M weekly users, enabling malware that steals data and controls systems.

Au programme, des techniques comme le « Peel Chain », des mixeurs ou encore des services d'échange opaques. Ce 4 mars, Ben Zhou, le P-DG de la plateforme d'échange Bybit, a une mauvaise nouvelle à annoncer sur le réseau social X. Un peu plus de dix jours après le spectaculaire piratage de l'échangeur, un hack

Avoir un VPN pour se rendre sur Internet s'est largement démocratisé, grâce notamment à des campagnes marketing intensives de la part des fournisseurs. Mais quels sont les meilleurs VPN du moment au meilleur rapport qualité-prix ? Les VPN sont de plus en plus utilisés pour surfer l'esprit tranquille sur vos appareils

A phishing campaign infects 722 users with malicious browser extensions in Latin America to steal bank login data.

Two malicious packages have been discovered in the npm JavaScript package index, which masquerades as useful utilities but, in reality, are destructive data wipers that delete entire application directories.

A significant supply chain attack hit NPM after 15 popular Gluestack packages with over 950,000 weekly downloads were compromised to include malicious code that acts as a remote access trojan (RAT).