Latest CyberSec News by @thecyberpicker

Android malware AntiDot and GodFather target mobile users with phishing, NFC attacks, and app virtualization.

Self-service password resets (SSPR) reduce helpdesk strain—but without strong security, they can open the door to attackers. Learn why phishing-resistant MFA, context-aware verification, and risk-based detection are critical to secure SSPR implementation.

AI's rapid development underscores the need for secure foundations, Amy Herzog said Tuesday during the company's annual cybersecurity conference.

The UK’s Cyber Monitoring Centre (CMC) assessed the incident as a Category 2 systemic event, based on the significant economic impact

Humans are a weak spot that cybersecurity must compensate for. Email security tools can ensure that employees are not responsible for stopping attacks.

A Krispy Kreme spokesperson said the “vast majority of those affected are Krispy Kreme employees, members of their families, and former employees.”

Microsoft has announced plans to periodically remove legacy drivers from the Windows Update catalog to mitigate security and compatibility risks.

Insurance industry giant Aflac said it disrupted a cyberattack within hours of discovering it and is now working to determine how much data was potentially breached in the incident.

Iran TV, crypto exchange hack escalate cyber conflict with Israel. Hacktivist groups target critical infrastructure.

Oxford City Council revealed that attackers accessed data of individuals who worked on Council-administered elections between 2001 and 2022

Le Salon du Bourget ouvre ses portes au grand public ce vendredi 20 juin 2025 : l’occasion idéale de revenir sur quelques affaires d’espionnage industriel survenues lors de la précédente édition. Entre clés USB piégées, vols d'ordinateurs et espions infiltrés en agents d'entretien, les coulisses du plus grand

This week in cybersecurity from the editors at Cybercrime Magazine

Explore six key cloud security trends for 2025 and learn how to address identity risks, visibility gaps, and misaligned architectures effectively.

Around half of the world’s top 100 websites have already integrated passkey support

Good article from 404 Media on the cozy surveillance relationship between local Oregon police and ICE: In the email thread, crime analysts from several local police departments and the FBI introduced themselves to each other and made lists of surveillance tools and tactics they have access to and felt comfortable using, and in some cases offered to perform surveillance for their colleagues in other departments. The thread also includes a member of ICE’s Homeland Security Investigations (HSI) and members of Oregon’s State Police. In the thread, called the “Southern Oregon Analyst Group,” some members talked about making fake social media profiles to surveil people, and others discussed being excited to learn and try new surveillance techniques. The emails show both the wide array of surveillance tools that are available to even small police departments in the United States and also shows informal collaboration between local police departments and federal agencies, when ordinarily agencies like ICE are expected to follow their own legal processes for carrying out the surveillance...

Two local privilege escalation flaws could let attackers gain root access on systems running major Linux distributions.

Cloudflare blocks record 7.3 Tbps DDoS attack, targeting hosting provider, with 122,145 source IPs across 161 countries.

A new cybersecurity campaign has exposed 67 trojanized GitHub repositories, targeting gamers and developers with malicious Python tools.

Bridewell’s analysis of advertised UK cybersecurity roles revealed that the public sector offers one the lowest average salaries across all industries

A cyberattack pushed the German napkin firm Fasana into insolvency, worsening existing financial troubles and serving as the final blow

A new cybersecurity campaign has exposed 67 trojanized GitHub repositories, targeting gamers and developers with malicious Python tools.

A prominent expert on Russian information operations was targeted by a sophisticated spear phishing attack likely coming from Russian hackers

Microsoft Excel LTSC 2024 - Remote Code Execution (RCE). CVE-2025-47957 . local exploit for Windows platform

Ingress-NGINX 4.11.0 - Remote Code Execution (RCE). CVE-2025-1974 . remote exploit for Multiple platform

FortiOS SSL-VPN 7.4.4 - Insufficient Session Expiration & Cookie Reuse. CVE-2024-50562 . remote exploit for Multiple platform

News broke today of a "mother of all breaches," sparking wide media coverage filled with warnings and fear-mongering. However, it appears to be a compilation of previously leaked credentials stolen by infostealers, exposed in data breaches, and via credential stuffing attacks.

A new version of the Android malware "Godfather" creates isolated virtual environments on mobile devices to steal account data and transactions from legitimate banking apps.

Android malware AntiDot and GodFather target mobile users with phishing, NFC attacks, and app virtualization.

China-linked APT Typhoon has reportedly targeted satellite firm Viasat, the group has breached multiple telecom providers in the past.

North Korean hackers used deepfake Zoom calls and Telegram links to infect Mac systems at a crypto firm.