Latest CyberSec News by @thecyberpicker

This week in cybersecurity from the editors at Cybercrime Magazine

The data dump will likely shed light on LockBit’s recent activity and help law enforcement trace cryptocurrency transactions

With escalating tariffs and trade tensions reshaping global supply chains, interos.ai breaks down the new threats to financial markets, shipping and geopolitics.

DigiCert survey finds only 5% of global businesses are using post-quantum cryptography

MirrorFace deployed ROAMINGMOUSE and updated ANEL malware in March 2025 to target Japan and Taiwan's government systems

61% of orgs suffered breaches despite 43 tools; misconfigured controls + lack of validation fuel failure.

Explore key insights from auditing and implementing ISO 42001, the international standard guiding responsible AI development and risk management.

Meta has won almost $170m in damages from Israel-based NSO Group, maker of the Pegasus spyware.

SonicWall has urged its customers to patch three security vulnerabilities affecting its Secure Mobile Access (SMA) appliances, one of them tagged as exploited in attacks

The UK government is set to prioritize increasing the number of UK organizations who are Cyber Essentials certified over the coming year

A new spam campaign is targeting Brazilian users with a clever twist — abusing the free trial period of trusted remote monitoring tools and the country’s electronic invoice system to spread malicious agents.

L'arnaque aux faux techniciens fibre optique existe toujours en 2025. Nous l'avons vécue en ce début de mois de mai et elle est toujours aussi puissante pour le grand public qui ne connaît pas les prérogatives des opérateurs. L'arnaque au technicien fibre, vous connaissez ? Elle est très simple à mettre en place et

The UK government unveiled two new assessment schemes to boost confidence in the security of products and services during CYBERUK

Researchers spot in-the-wild exploits of Samsung MagicInfo despite recent patch

Organizations can start defending against deepfakes now, before efficient detectors are available

U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds GoVision device flaws to its Known Exploited Vulnerabilities catalog.

Security researchers at Aon have discovered a threat actor who bypassed SentinelOne EDR protection to deploy Babuk ransomware

Polish police arrested 4 people behind DDoS-for-hire platforms used in global attacks, offering takedowns for as little as €10.

Russia-linked COLDRIVER uses LOSTKEYS malware via ClickFix lures, targeting advisors, NGOs, and journalists.

As part of a pioneering coalition, interos.ai brings AI-powered risk intelligence to a global initiative aimed at eradicating forced labor from supply chains

Cisco fixes CVE-2025-20188, a 10.0 CVSS flaw tied to hardcoded JWT in wireless controllers, preventing root-level remote exploits.

Here is an overview of the CIS Benchmarks that the Center for Internet Security (CIS) updated or released for May 2025.

The LockBit ransomware gang has suffered a data breach after its dark web affiliate panels were defaced and replaced with a message linking to a MySQL database dump.

The large education tech vendor was hit by a cyberattack and paid a ransom in December. Now, a threat actor is attempting to extort the company’s customers with stolen data.

A Texas firm recently charged with conspiring to distribute synthetic opioids in the United States is at the center of a vast network of companies in the U.S. and Pakistan whose employees are accused of using online ads to scam…

The education tech giant said it is “aware that a threat actor has reached out to multiple school district customers in an attempt to extort them."

A major cyber insurer’s annual report lays out how hackers are trying to steal money and how its policyholders responded.

CEO George Kurtz said the decision to cut about 500 jobs was driven by internal efficiency gains from AI and multibillion-dollar opportunities in new market segments.

The attack temporarily disrupted services at the airline, which is investigating whether information was stolen.

The Play ransomware gang exploited a high-severity Windows Common Log File System flaw in zero-day attacks to deploy malware.