Ransomware Canaries: A 2022 Update
Ransomware has been around for decades, but some variants have evolved to become more advanced—finding new ways to spread, evade detection, encrypt files and even…
Author: Cybernoz
KnowledgeDeliver flaw exploited as a zero-day to install web shells
Hackers exploited a critical zero-day vulnerability in a server running the KnowledgeDeliver learning management system (LMS) to deploy the Godzilla web shell. The flaw is…
Multiple Angular Language Service Extension Vulnerabilities Enable RCE Attacks
A set of high-severity vulnerabilities has been identified in the Angular Language Service Visual Studio Code extension (Angular.ng-template), potentially exposing developers to remote code execution…
Internet Starts to Return in Iran After 3-Month Blackout
After more than 2,000 hours of government-imposed connectivity blackouts, there were signs on Tuesday that Iran’s internet is coming back—at least at very low levels.…
Quasar RAT Hits Developers With Fileless Linux Attacks
Quasar Linux (QLNX) is a new, stealthy Linux Remote Access Trojan that quietly turns developer and DevOps workstations into high‑value beachheads for software supply‑chain attacks,…
Trojanized Gemini and Claude Installers Target Developers Via SEO Poisoning
Cybercriminals are using fake websites for popular Artificial Intelligence (AI) tools to trick software developers into downloading data-stealing malware. The issue was first spotted on…
Chinese phishing gangs grow into a force to be reckoned with
Chinese-language phishing-as-a-service (PhaaS) communities are expanding in an area historically dominated by Russian-speaking cybercriminal groups. The Google Threat Intelligence Group (GTIG) analyzed a dozen active…
700+ education and tech websites hijacked in huge ClickFix malware campaign
Attackers are abusing a critical Ghost Content Management System (CMS) vulnerability to hijack more than 700 legitimate websites and inject a fake Cloudflare verification step…
MuddyWater Uses DLL Side-Loading in Espionage Campaign Targeting 9 Countries
The Iranian hacking group known as MuddyWater has been linked to a new campaign affecting at least nine organizations across nine countries on four continents…
Sir Alan Bates questions UK government commitment to Post Office criminal investigation
The national investigation into crimes committed during the Post Office scandal could be drawn out for a further five years unless it “urgently” receives “additional and…
Megalodon GitHub Supply Chain Attack Hits 5,500+ Repos
A large-scale software supply chain attack dubbed “Megalodon” has compromised more than 5,500 repositories on GitHub, raising fresh concerns about the growing abuse of automated…
Another serious Linux local privesc bug surfaces
Cyber security vendor Qualys has found a logic bug in the Linux kernel which, if exploited, can be abused to escalate standard user privileges to…