New SessionShark Phishing Kit Bypasses MFA to Steal Office 365 Logins
SessionShark phishing kit bypasses Office 365 MFA by stealing session tokens. Experts warn of real-time attacks via fake login pages...
Read more →Author: Cybernoz
A 60-Second Walk In The Park
24 Apr Cybercrime Magazine’s First YouTube Video: A 60-Second Walk In The Park Posted at 08:33h in Blogs by Taylor...
Read more →
Critical Commvault RCE vulnerability fixed, PoC available (CVE-2025-34028)
If your organization is using Commvault Command Center for your data protection, backup creation, configuration and restoration needs, you should...
Read more →
159 CVEs Exploited in Q1 2025 — 28.3% Within 24 Hours of Disclosure
Apr 24, 2025Ravie LakshmananVulnerability / Threat Intelligence As many as 159 CVE identifiers have been flagged as exploited in the...
Read more →
Challenges persist as UK’s Cyber Security and Resilience Bill moves forward
Since the government announced in the King’s speech last year that they would bring forward a Cyber Security and Resilience...
Read more →
Crooks exploit the death of Pope Francis
Crooks exploit the death of Pope Francis Pierluigi Paganini April 24, 2025 Crooks exploit the death of Pope Francis, using...
Read more →
Redefining AppSec Testing with Intelligent Scan Recommendations and Asset Classification
As 9 out of 10 valuable web apps are missing testing, we’re launching new capabilities to help teams know what...
Read more →
Commvault RCE Vulnerability Exploited—PoC Released
Enterprises and managed service providers globally are now facing urgent security concerns following the disclosure of a major pre-authenticated remote...
Read more →
AVX ONE PQC Tool delivers crypto inventory, risk insights, and readiness scoring
AppViewX has announced the launch of the AVX ONE Post-Quantum Cryptography (PQC) Assessment Tool that generates a Cryptographic Bill of...
Read more →
Darcula Adds GenAI to Phishing Toolkit, Lowering the Barrier for Cybercriminals
Apr 24, 2025Ravie LakshmananPhishing / Cybercrime The threat actors behind the Darcula phishing-as-a-service (PhaaS) platform have released new updates to...
Read more →
Podcast: RSA 2025 to grapple with AI compliance, US and EU regulation
In this podcast, we talk to Mathieu Gorge, CEO of Vigitrust, about the ongoing impact of artificial intelligence (AI) on...
Read more →
DslogdRAT Malware Deployed In Ivanti Connect Secure Attacks
A new wave of attacks targeting Ivanti Connect Secure VPN devices has revealed a stealthy malware strain known as DslogdRAT,...
Read more →