Latest CyberSec News by @thecyberpicker

Insiders bribed at Coinbase leaked customer data (<1% of users), triggering $20M extortion; funds safe.

How to build a Paved Road that improves dev productivity and security, what to do before/after a cloud breach, command & control (C2) that executes attacks using natural language

The Trump administration is facing mounting pressure to formulate a strategy for addressing supply-chain threats that endanger national security.

A stealthy fileless PowerShell attack using Remcos RAT bypassed antivirus by operating in memory

The critical vulnerability is being exploited by BianLian, RansomwEXX and a Chinese nation-state actor known as Chaya_004

En matière de protection des données, créer une sauvegarde et la mettre à jour régulièrement constitue un excellent moyen d’éviter la plupart des accidents. Du moins, pour les particuliers ou les petites structures. Car lorsque le volume de données, ou le nombre d’utilisateurs est élevé, un simple backup n’est plus

Russia-linked hackers known as APT28 mainly targeted entities in Ukraine, Bulgaria and Romania, but governments in Africa, South America and other parts of Europe were also affected.

Small businesses make up 90% of all companies worldwide and account for half of global GDP. Yet despite their importance, many lack the cybersecurity expertise and resources to fend off a rising tide of digital threats. Related: Protecting lateral networks in SMBs Rich in sensitive data and often connected to larger supply chains, small businesses

A malicious package in the Node Package Manager index uses invisible Unicode characters to hide malicious code and Google Calendar links to host the URL for the command-and-control location.

This week in cybersecurity from the editors at Cybercrime Magazine

Coinbase, a cryptocurrency exchange with over 100 million customers, has disclosed that cybercriminals working with rogue support agents stole customer data and demanded a $20 million ransom not to publish the stolen information.

A malicious package in the Node Package Manager index uses invisible Unicode characters to hide malicious code and Google Calendar links to host the URL for the command-and-control location.

Dior confirmed a data breach compromising customer personal information, discovered on May 7

Sophos X-Ops investigates what financially motivated threat actors invest their ill-gotten profits in, once the dust has settled

In the second of our five-part series, Sophos X-Ops investigates the so-called ‘white’ (legitimate) business interests of threat actors

In the third of our five-part series, Sophos X-Ops explores the more legally and ethically dubious business interests of financially motivated threat actors

In the fourth of our five-part series, Sophos X-Ops explores threat actors’ real-world criminal business interests

In the last of our five-part series, Sophos X-Ops explores the implications and opportunities arising from threat actors’ involvement in real-world industries and crimes

Cryptocurrency trading platform Coinbase said an attacker tried to extort the company for $20 million over stolen data. "We said no," Coinbase said, and instead offered that amount as a bounty.

Learn how to evaluate transparency, risks, scalability, and ethical considerations to make informed cybersecurity decisions about AI-powered tools.

Researchers discovered over 3000 Linux vulnerabilities in 2024, the most of any category

Kaspersky ICS CERT shares trends and statistics on industrial threats in Q1 2025.

The benefits of cybercrime aren't all flashy cars and watches. Sophos X-Ops researchers discovered it also fuels a far-reaching mix of ordinary, sometimes unremarkable businesses.

The voluntary cybersecurity charter asks NHS suppliers to commit to eight cybersecurity pledges, amid rising attacks on healthcare

Vulnerability exploitation rose 34% in 2025, revealing that compliance testing alone can't stop evolving threats.

Zero Trust is only as strong as its foundation. Without Kernel Runtime Integrity, your security stack may be built on compromised ground.

On April 14, Dubai’s ruler, Sheikh Mohammed bin Rashid Al Maktoum, announced that the United Arab Emirates would begin using artificial intelligence to help write its laws. A new Regulatory Intelligence Office would use the technology to “regularly suggest updates” to the law and “accelerate the issuance of legislation by up to 70%.” AI would create a “comprehensive legislative plan” spanning local and federal law and would be connected to public administration, the courts, and global policy trends. The plan was widely greeted with astonishment. This sort of AI legislating would be a global “...

Malicious npm package downloaded 2,001 times hides payload via Unicode and Google Calendar links.

APT28 exploited MDaemon zero-day CVE-2024-11182 in targeted webmail hacks across 10+ nations.

This article discusses the five business continuity and disaster recovery capabilities that businesses must have for effective ransomware defense. Lea