AI-driven identity must exist in a robust compliance framework
As enterprises rush to integrate artificial intelligence‑driven identity and verification solutions, it is tempting to be swept up in their operational elegance and apparent efficiency.…
Author: Cybernoz
WaterNSW to move on generative AI
WaterNSW is seeking to make more use of generative AI in its operations with application development and customer engagement its top priorities. WaterNSW’ Leeanne Chau.…
Toy Giant Hasbro Hit by Cyberattack
Toy and game giant Hasbro on Wednesday reported being hit by a cyberattack that has disrupted some of the company’s processes. In a filing with…
Google fixes fourth actively exploited Chrome zero-day of 2026
Google fixes fourth actively exploited Chrome zero-day of 2026 Pierluigi Paganini April 01, 2026 Google fixed a new Chrome zero-day, tracked as CVE-2026-5281, in the…
Iran-linked actors target Middle Eastern city governments to undermine missile-strike responses
Hackers associated with the Iranian government are trying to make it harder for cities in Israel and the Gulf states to respond to Iranian missile…
Vim and GNU Emacs: Claude Code helpfully found zero-day exploits for both
“Opening a file in GNU Emacs can trigger arbitrary code execution through version control (git), most requiring zero user interaction beyond the file open itself.…
WhatsApp notifies hundreds of users who installed a fake app made by government spyware maker
WhatsApp says it has notified around 200 users who were tricked into installing a malicious fake version of the chat app that contained spyware. WhatsApp…
Industrialization of the Fraud Ecosystem Blog
Payment fraud no longer operates as a collection of discrete schemes run by individual threat actors. It is increasingly sustained by an industrial support ecosystem:…
Axios npm Supply Chain Attack FAQ: North Korea UNC1069
A North Korea-nexus threat actor compromised the widely used axios npm package, delivering a cross-platform remote access trojan to potentially millions of developer environments during…
New EvilTokens service fuels Microsoft device code phishing attacks
A new malicious kit called EvilTokens integrates device code phishing capabilities, allowing attackers to hijack Microsoft accounts and provide advanced features for business email compromise…
Magecart Hackers Use 100+ Domains to Hijack eStore Checkouts
Magecart Hijacks eStore Checkouts to Steal Card Data A sophisticated and long-running Magecart campaign has been quietly operating for over 24 months, infecting e-commerce websites…
Proton Launches Encrypted Video Conferencing and Unified Workspace to Take On Google and Microsoft
Swiss privacy company Proton has today announced the simultaneous launch of Proton Workspace and Proton Meet, its most significant expansion yet into the enterprise productivity…