NK’s Famous Chollima Use BeaverTail and OtterCookie Malware in Job Scam
The North Korea-aligned hacking group Famous Chollima is once again exploiting the job market, using fake job offers to trick victims into installing malicious software…
Author: Cybernoz
“Perfect” Adobe Experience Manager vulnerability is being exploited (CVE-2025-54253)
CISA has added CVE-2025-54253, a misconfiguration vulnerability in Adobe Experience Manager (AEM) Forms on Java Enterprise Edition (JEE), to its Known Exploited Vulnerabilities catalog, thus…
LinkPro Linux Rootkit Uses eBPF to Hide and Activates via Magic TCP Packets
Oct 16, 2025Ravie LakshmananVulnerability / Malware An investigation into the compromise of an Amazon Web Services (AWS)-hosted infrastructure has led to the discovery of a…
The Future of Preemptive Cyber Defense
For years, managed security service providers (MSSPs) followed a simple philosophy: that breaches were inevitable, and the best defense against them was rapid detection and…
Mysterious Elephant APT Hackers Infiltrate Organization to Steal Sensitive Information
In recent months, a new advanced persistent threat (APT) group known as Mysterious Elephant has emerged as a formidable adversary targeting government and diplomatic institutions…
New Phishing Technique Targets Users via Basic Auth URLs
Netcraft recently uncovered a suspicious URL targeting GMO Aozora Bank, a Japanese financial institution. The URL leveraged a legacy web technique—Basic Authentication URL formatting—to visually…
Hackers Abuse Blockchain Smart Contracts to Spread Malware via Infected WordPress Sites
A financially motivated threat actor codenamed UNC5142 has been observed abusing blockchain smart contracts as a way to facilitate the distribution of information stealers such…
Why we should all be worried about the AI bubble
It’s becoming clearer that we are in a perilous financial situation globally. Fears over an “AI bubble” are being cited by the Bank of England,…
Auto sector faces historic cyber threats to business continuity
In recent years, cybersecurity experts have warned that critical industry sectors were at higher risk of potentially catastrophic attacks if they were targeted by sophisticated…
Office 2016 and Office 2019 have reach end of support
Microsoft reminded customers this week that Office 2016 and Office 2019 have reached the end of extended support on October 14, 2025. According to the…
North Korean Hackers Using Malicious Scripts Combining BeaverTail and OtterCookie for Keylogging
A new information-stealer has emerged targeting job seekers with a trojanized Node.js application named Chessfi. Delivered via a modified npm package hosted on the official…
Hackers Infiltrate Organization to Steal Sensitive Data
In a recently uncovered campaign, the Mysterious Elephant advanced persistent threat (APT) group has executed a sophisticated series of intrusions against government and foreign policy…