December, 2024 - Cybernoz

Open source malware up 200% since 2023

Sonatype’s 2024 Open Source Malware Threat Report reveals that the number of malicious packages has surpassed 778,500 since tracking began in 2019. In 2024, researchers…

December 11, 2024 Cybernoz 2 min read

HelpnetSecurity

Why crisis simulations fail and how to fix them

In this Help Net Security interview, Allison Ritter, Head of Cyber Experiential Exercising at Cyberbit, shares her insights on the key differences between in-person and…

December 11, 2024 Cybernoz 8 min read

TheHackerNews

Ivanti Issues Critical Security Updates for CSA and Connect Secure Vulnerabilities

Dec 11, 2024Ravie LakshmananVulnerability / Network Security Ivanti has released security updates to address multiple critical flaws in its Cloud Services Application (CSA) and Connect…

December 11, 2024 Cybernoz 2 min read

CyberSecurityNews

Chrome Security Update, Patch for 3 High-severity Vulnerabilities

Google has released a critical security update for its Chrome browser, addressing three high-severity vulnerabilities that could potentially expose users to significant risks. The latest…

December 11, 2024 Cybernoz 2 min read

Wired

The ‘Ghost Gun’ Linked to Luigi Mangione Shows Just How Far 3D-Printed Weapons Have Come

More than a decade after the advent of the 3D-printed gun as an icon of libertarianism and a gun control nightmare, police say one of…

December 11, 2024 Cybernoz 3 min read

Krebson

Patch Tuesday, December 2024 Edition – Krebs on Security

Microsoft today released updates to plug at least 70 security holes in Windows and Windows software, including one vulnerability that is already being exploited in…

December 11, 2024 Cybernoz 2 min read

Securityaffairs

U.S. CISA adds Microsoft Windows CLFS driver flaw to its Known Exploited Vulnerabilities catalog

U.S. CISA adds Microsoft Windows CLFS driver flaw to its Known Exploited Vulnerabilities catalog Pierluigi Paganini December 11, 2024 U.S. Cybersecurity and Infrastructure Security Agency (CISA)…

December 11, 2024 Cybernoz 1 min read

DarkReading

Head Mare Targets Russian Orgs With Hidden LNK Files, Ransomware

Cyble researchers have detected a new campaign targeting Russia by the hacktivist group Head Mare that uses a disguised LNK file to hide an executable.…

December 11, 2024 Cybernoz 3 min read

Securityaffairs

Microsoft December 2024 Patch Tuesday addressed actively exploited zero-day

Microsoft December 2024 Patch Tuesday addressed actively exploited zero-day Pierluigi Paganini December 10, 2024 Microsoft December 2024 Patch Tuesday security updates addressed 71 vulnerabilities including…

December 11, 2024 Cybernoz 2 min read

ComputerWeekly

Dangerous CLFS and LDAP flaws stand out on Patch Tuesday

Microsoft has issued fixes for 71 new Common Vulnerabilities and Exposures (CVEs) to mark the final Patch Tuesday of 2025, with a solitary zero-day that…

December 11, 2024 Cybernoz 4 min read

Bleeping Computer

Wyden proposes bill to secure US telecoms after Salt Typhoon hacks

U.S. Senator Ron Wyden of Oregon announced a new bill to secure the networks of American telecommunications companies breached by Salt Typhoon Chinese state hackers…

December 11, 2024 Cybernoz 2 min read

HelpnetSecurity

Microsoft fixes exploited zero-day (CVE-2024-49138)

On December 2024 Patch Tuesday, Microsoft resolved 71 vulnerabilities in a variety of its products, including a zero-day (CVE-2024-49138) that’s been exploited by attackers in…

December 11, 2024 Cybernoz 3 min read