Latest CyberSec News by @thecyberpicker

Latest CyberSec News by @thecyberpicker

30533 bookmarks
Custom sorting
Germany fines Vodafone $51 million for privacy, security breaches
Germany fines Vodafone $51 million for privacy, security breaches
The German data protection authority (BfDI) has fined Vodafone GmbH, the telecommunications company's German subsidiary, €45 million ($51.4 million) for privacy and security violations.
·bleepingcomputer.com·
Germany fines Vodafone $51 million for privacy, security breaches
Exploiting Trusted AI: GPTs in Cyberattacks | CSA
Exploiting Trusted AI: GPTs in Cyberattacks | CSA
Discover how attackers manipulate GPTs through data poisoning, jailbreaks, and prompt injections, turning trusted AI tools into cyber threats.
·cloudsecurityalliance.org·
Exploiting Trusted AI: GPTs in Cyberattacks | CSA
Ransomware hiding in fake AI, business tools
Ransomware hiding in fake AI, business tools
Ransomware was discovered by security researchers in fake installers posing as Chat GPT, Nova Leads, and InVideo AI.
·malwarebytes.com·
Ransomware hiding in fake AI, business tools
IT threat evolution in Q1 2025. Mobile statistics
IT threat evolution in Q1 2025. Mobile statistics
The number of attacks on mobile devices involving malware, adware, or unwanted apps saw a significant increase in the first quarter.
·securelist.com·
IT threat evolution in Q1 2025. Mobile statistics
IT threat evolution in Q1 2025. Non-mobile statistics
IT threat evolution in Q1 2025. Non-mobile statistics
The report presents statistics for Windows, macOS, IoT, and other threats, including ransomware, miners, local and web-based threats, for Q1 2025.
·securelist.com·
IT threat evolution in Q1 2025. Non-mobile statistics
Des cybercriminels détournent Salesforce pour infiltrer des entreprises européennes et américaines
Des cybercriminels détournent Salesforce pour infiltrer des entreprises européennes et américaines
Google Threat Intelligence alerte sur une campagne de cyberattaques inédite visant les entreprises européennes et américaines. Leur arme ? Une version frauduleuse de Data Loader, l’outil officiel de Salesforce, pour voler des données et orchestrer des extorsions. Explications. C’est une opération savamment
·numerama.com·
Des cybercriminels détournent Salesforce pour infiltrer des entreprises européennes et américaines
ViLE gang members sentenced for extortion, police portal breach
ViLE gang members sentenced for extortion, police portal breach
Two members of a group of cybercriminals named ViLE were sentenced this week for hacking into a federal law enforcement web portal in an extortion scheme.
·bleepingcomputer.com·
ViLE gang members sentenced for extortion, police portal breach
Évidemment, les VPN s’arrachent après la fermeture de PornHub en France
Évidemment, les VPN s’arrachent après la fermeture de PornHub en France
Les VPN seront-ils les grands gagnants de la lutte entre les sites pornographiques et le gouvernement français pour le contrôle de l'âge ? Peut-être. En tout cas, les internautes ne s'y trompent pas et les abonnements aux VPN augmentent. Le bras de fer entre les sites pornographiques et le gouvernement français
·numerama.com·
Évidemment, les VPN s’arrachent après la fermeture de PornHub en France
US offers $10M for tips on state hackers tied to RedLine malware
US offers $10M for tips on state hackers tied to RedLine malware
The U.S. Department of State has announced a reward of up to $10 million for any information on government-sponsored hackers with ties to the RedLine infostealer malware operation and its suspected creator, Russian national Maxim Alexandrovich Rudometov.
·bleepingcomputer.com·
US offers $10M for tips on state hackers tied to RedLine malware
Vibe coding is here to stay. Can it ever be secure? | CyberScoop
Vibe coding is here to stay. Can it ever be secure? | CyberScoop
Multiple studies show that AI-generated code is remarkably insecure. Yet experts tell CyberScoop it's up to industry to figure out a way to limit the issues the technology introduces.
·cyberscoop.com·
Vibe coding is here to stay. Can it ever be secure? | CyberScoop
The Dawn of the Fractional Chief AI Safety Officer | CSA
The Dawn of the Fractional Chief AI Safety Officer | CSA
With many organizations rapidly adopting AI, the Fractional Chief AI Safety Officer (CAISO) is becoming necessary for organizations of all sizes to consider.
·cloudsecurityalliance.org·
The Dawn of the Fractional Chief AI Safety Officer | CSA
FBI: Play ransomware breached 900 victims, including critical orgs
FBI: Play ransomware breached 900 victims, including critical orgs
In an update to a joint advisory with CISA and the Australian Cyber Security Centre, the FBI said that the Play ransomware gang had breached roughly 900 organizations as of May 2025, three times the number of victims reported in October 2023.
·bleepingcomputer.com·
FBI: Play ransomware breached 900 victims, including critical orgs
Cisco warns of ISE and CCP flaws with public exploit code
Cisco warns of ISE and CCP flaws with public exploit code
Cisco has released patches to address three vulnerabilities with public exploit code in its Identity Services Engine (ISE) and Customer Collaboration Platform (CCP) solutions.
·bleepingcomputer.com·
Cisco warns of ISE and CCP flaws with public exploit code
BidenCash darknet forum taken down by US, Dutch law enforcement
BidenCash darknet forum taken down by US, Dutch law enforcement
The FBI and Dutch national police were among the law enforcement agencies that took down BidenCash, a cybercrime marketplace attributed to millions of dollars in fraud since late 2022.
·therecord.media·
BidenCash darknet forum taken down by US, Dutch law enforcement
Hacker arrested for breaching 5,000 hosting accounts to mine crypto
Hacker arrested for breaching 5,000 hosting accounts to mine crypto
The Ukrainian police arrested a 35-year-old hacker who breached 5,000 accounts at an international hosting company and used them to mine cryptocurrency, resulting in $4.5 million in damages.
·bleepingcomputer.com·
Hacker arrested for breaching 5,000 hosting accounts to mine crypto
Ukraine claims it hacked Tupolev, Russia’s strategic warplane maker
Ukraine claims it hacked Tupolev, Russia’s strategic warplane maker
The Main Intelligence Directorate (GUR) of Ukraine's Ministry of Defense claims it hacked the Russian aerospace and defense company Tupolev, which develops Russia's supersonic strategic bombers.
·bleepingcomputer.com·
Ukraine claims it hacked Tupolev, Russia’s strategic warplane maker
BidenCash carding market domains seized in international operation
BidenCash carding market domains seized in international operation
Earlier today, law enforcement seized multiple domains of BidenCash, the infamous dark web market for stolen credit cards, personal information, and SSH access.
·bleepingcomputer.com·
BidenCash carding market domains seized in international operation
Faux cheat codes : des malwares ciblent les gamers et hackers novices
Faux cheat codes : des malwares ciblent les gamers et hackers novices
Une vaste campagne malveillante cible depuis plusieurs mois les gamers, hackers amateurs et chercheurs en cybersécurité en diffusant sur GitHub des outils piégés contenant des portes dérobées. L’opération, révélée par les chercheurs de Sophos, se distingue par son ampleur et ses méthodes sophistiquées. Cheat codes
·numerama.com·
Faux cheat codes : des malwares ciblent les gamers et hackers novices
L'opération « Spiderweb » continue : l'Ukraine pirate le constructeur des avions ciblés par les drones - Numerama
L'opération « Spiderweb » continue : l'Ukraine pirate le constructeur des avions ciblés par les drones - Numerama
Quatre jours après les frappes de drones, l’Ukraine revendique une cyberattaque cette fois-ci contre le constructeur russe Tupolev. Cette entreprise est à l'origine des avions bombardiers ciblé par le renseignement ukrainien. Quatre jours après les frappes de drones de l’opération « Toile d'araignée », l’Ukraine
·numerama.com·
L'opération « Spiderweb » continue : l'Ukraine pirate le constructeur des avions ciblés par les drones - Numerama
News alert: $198K in Grants Awarded to Boost Cybersecurity Workforce in Massachusetts
News alert: $198K in Grants Awarded to Boost Cybersecurity Workforce in Massachusetts
Boston, MA, Jun. 4, 2025, – The Healey-Driscoll administration and Massachusetts Technology Collaborative’s (MassTech) MassCyberCenter awarded $198,542 to four Massachusetts-based programs focused on preparing professionals for the cybersecurity workforce. MassTech provided the funds through the Alternative Cyber Career Education (ACE) Grant Program, a statewide effort to support young adults and retrain existing professionals with alternative options to
·lastwatchdog.com·
News alert: $198K in Grants Awarded to Boost Cybersecurity Workforce in Massachusetts