December, 2025 - Cybernoz

New Prompt Injection Attack via Malicious MCP Servers Let Attackers Drain Resources

Security researchers have uncovered critical vulnerabilities in the Model Context Protocol (MCP) sampling feature. Revealing how malicious servers can exploit LLM-integrated applications to conduct resource…

December 9, 2025 Cybernoz 3 min read

GBHackers

New Vishing Attack Exploits Microsoft Teams and QuickAssist to Deploy .NET Malware

A sophisticated vishing campaign has emerged that combines social engineering with legitimate Microsoft tools to establish command execution chains leading to multi-stage .NET malware deployment.…

December 9, 2025 Cybernoz 3 min read

Cyber Security Ventures

Global Costs of Software Supply Chain Attacks On The Rise

09 Dec Global Costs of Software Supply Chain Attacks On The Rise Posted at 08:33h in Blogs by Taylor Fox This week in cybersecurity from…

December 9, 2025 Cybernoz 2 min read

HelpnetSecurity

New Black Kite module offers product-level insight into software supply chain vulnerabilities

Black Kite released its new Product Analysis module, which allows security teams to evaluate the risks of third-party software products at a granular level. As…

December 9, 2025 Cybernoz 2 min read

MalwareBytes

EU fines X $140m, tied to verification rules that make impostor scams easier

The European Commission slapped social networking company X with a €120 million ($140 million) fine last week for what it says was a lack of…

December 9, 2025 Cybernoz 3 min read

TheHackerNews

Google Adds Layered Defenses to Chrome to Block Indirect Prompt Injection Threats

Google on Monday announced a set of new security features in Chrome, following the company’s addition of agentic artificial intelligence (AI) capabilities to the web…

December 9, 2025 Cybernoz 4 min read

CyberSecurityNews

Google Announces 10 New AI Features for Google Chrome Powered by Gemini

Google has unveiled the most significant upgrade to Chrome in its history, integrating advanced AI capabilities powered by Gemini to transform how users browse the…

December 9, 2025 Cybernoz 3 min read

GBHackers

Akira Group Targets Hyper-V and VMware ESXi with Ransomware Exploiting Vulnerabilities

Hypervisors the invisible backbone of modern corporate IT have become the new primary battleground for ransomware groups. According to new data from Huntress, attacks targeting…

December 9, 2025 Cybernoz 2 min read

HackRead

SimpleX Chat X Account Hacked, Fake Site Promotes Crypto Wallet Scam – Hackread – Cybersecurity News, Data Breaches, Tech, AI, Crypto and More

SimpleX Chat, a privacy-first messaging platform known for avoiding user identifiers and emphasising metadata protection, confirmed that its official X (formerly Twitter) account was compromised…

December 9, 2025 Cybernoz 3 min read

HelpnetSecurity

Holly Ventures launches $33 million fund focused on early-stage cyber innovation

Holly Ventures announced the launch of its $33 million debut fund, a solo-led cybersecurity vehicle built around a simple idea that for early-stage cyber start-ups,…

December 9, 2025 Cybernoz 3 min read

TheHackerNews

How to Streamline Zero Trust Using the Shared Signals Framework

Zero Trust helps organizations shrink their attack surface and respond to threats faster, but many still struggle to implement it because their security tools don’t…

December 9, 2025 Cybernoz 6 min read

CyberSecurityNews

GhostPenguin Backdoor With Zero-Detection Attacking Linux Servers Uncovered Using AI-Automated Tools

A previously undocumented Linux backdoor named GhostPenguin has been discovered evading detection for over four months. This multi-threaded C++ malware establishes remote shell access and…

December 9, 2025 Cybernoz 2 min read