BAS Is the Power Behind Real Defense
Security doesn’t fail at the point of breach. It fails at the point of impact. That line set the tone for this year’s Picus Breach…
Author: Cybernoz
Equinix acquires DC01UK’s mega-datacentre site in Hertfordshire and plots £3.9bn investment
DC01UK has confirmed that colocation giant Equinix has acquired the 85-acre plot of green belt land in Hertfordshire it secured planning permission for transforming into…
Vinomofo Failed To Protect Customer Data: Privacy Watchdog
Australia’s Privacy Commissioner Carly Kind has issued a determination against online wine wholesaler Vinomofo Pty Ltd, finding the company interfered with the privacy of almost…
Microsoft promises more Copilot features in Microsoft 365 companion apps
Microsoft 365 companion apps will be getting more Copilot features in the coming weeks. Right now, Copilot works only inside two companion apps, People and Files. In…
Microsoft Windows Cloud Files Minifilter Privilege Escalation Vulnerability Exploited
Microsoft has patched a critical race condition vulnerability in its Windows Cloud Files Minifilter driver, known as CVE-2025-55680, which enables local attackers to escalate privileges…
Chrome 142 Update Patches 20 Security Flaws Enabling Code Execution
Google has released Chrome version 142 to the stable channel, addressing multiple critical security vulnerabilities that could allow attackers to execute malicious code on affected…
Aembit Introduces Identity and Access Management for Agentic AI – Hackread – Cybersecurity News, Data Breaches, Tech, AI, Crypto and More
Silver Spring, USA/ Maryland, October 30th, 2025, CyberNewsWire The new capabilities, anchored by Blended Identity and the MCP Identity Gateway, give enterprises a secure and…
Ex-Defense contractor exec pleads guilty to selling cyber exploits to Russia
Ex-Defense contractor exec pleads guilty to selling cyber exploits to Russia Pierluigi Paganini October 30, 2025 Former US defense contractor exec Peter Williams pled guilty…
New Attack Combines Ghost SPNs and Kerberos Reflection to Elevate Privileges on SMB Servers
A sophisticated privilege escalation vulnerability in Windows SMB servers, leveraging Ghost Service Principal Names (SPNs) and Kerberos authentication reflection to achieve remote SYSTEM-level access. Microsoft…
700+ Android Apps Harvest Banking Login Details
A sophisticated cybercrime campaign leveraging Near Field Communication technology has exploded across multiple continents, with researchers at zLabs identifying over 760 malicious Android applications designed…
PhantomRaven Malware Found in 126 npm Packages Stealing GitHub Tokens From Devs
Oct 30, 2025Ravie LakshmananDevSecOps / Software Security Cybersecurity researchers have uncovered yet another active software supply chain attack campaign targeting the npm registry with over…
PhantomRaven Attack Involves 126 Malicious npm Packages with Over 86,000 Downloads Hiding Malicious Code
A sophisticated malware campaign targeting developers has been operating since August 2025, deploying 126 malicious npm packages that have collectively accumulated over 86,000 downloads. The…