China responsible for rising cyber attacks, says NCSC
Chinese-linked hacking groups are responsible for a rising number of cyber attacks against the UK, the National Cyber Security Centre (NCSC) has confirmed. Paul Chichester,…
Author: Cybernoz
Flax Typhoon APT exploited ArcGIS server for over a year as a backdoor
Flax Typhoon APT exploited ArcGIS server for over a year as a backdoor Pierluigi Paganini October 15, 2025 China-linked cyberespionage group Flax Typhoon hijacked an…
Microsoft IIS Vulnerability Allows Unauthorized Attacker To execute Malicious Code
Microsoft has disclosed a critical remote code execution flaw in its Internet Information Services (IIS) platform, posing risks to organizations relying on Windows servers for…
Hackers Exploit Windows Remote Access Connection Manager 0-Day in Ongoing Attacks
Microsoft has confirmed active exploitation of a critical zero-day vulnerability affecting the Windows Remote Access Connection Manager, designated as CVE-2025-59230. The security flaw, disclosed on…
Netcraft launches Phone Scam Disruption to stop brand impersonation calls and texts
Netcraft unveiled a new solution to help protect organizations’ customers from scam texts and phone calls that impersonate their brand. Netcraft’s Phone Scam Disruption automates…
Two CVSS 10.0 Bugs in Red Lion RTUs Could Hand Hackers Full Industrial Control
Oct 15, 2025Ravie LakshmananVulnerability / Critical Infrastructure Cybersecurity researchers have disclosed two critical security flaws impacting Red Lion Sixnet remote terminal unit (RTU) products that,…
Unencrypted satellites expose global communications
Unencrypted satellites expose global communications Pierluigi Paganini October 15, 2025 Researchers found nearly half of geostationary satellites leak unencrypted data, exposing consumer, corporate, and military…
UEFI Shell Flaws Let Hackers Disable Secure Boot on Over 200,000 Laptops
Security researchers have uncovered critical vulnerabilities in signed UEFI shells that allow attackers to completely bypass Secure Boot protections on approximately 200,000 Framework laptops and…
Corelight unveils AWS Flow Monitoring to eliminate cloud blind spots
Corelight launched Flow Monitoring for AWS environments, expanding network visibility across cloud and on-premises ecosystems through comprehensive analysis of flow data. This new capability addresses…
Florida Sues Roku Over Children’s Data Privacy
Florida Attorney General James Uthmeier has filed a civil enforcement action against Roku, Inc. and its Florida subsidiary, accusing the streaming platform of violating the…
Windows Remote Desktop Client Vulnerability Let Attackers Execute Remote Code
Microsoft has patched a critical flaw in its Remote Desktop Client that could allow attackers to execute malicious code on victims’ systems. Disclosed on October…
Chinese Hackers Use Geo-Mapping Tool for Year-Long Persistence
The China-backed advanced persistent threat group Flax Typhoon maintained year-long access to an ArcGIS system by turning trusted software into a persistent backdoor—an attack so…