Google Cloud & Cloudflare Missed 3-Year Phishing Campaign
An industrial-scale phishing campaign exploiting Google Cloud and Cloudflare infrastructure operated in plain sight for more than three years, targeting Fortune 500 companies and siphoning…
Author: Cybernoz
Jaguar Land Rover Cyberattack Disrupts Global Operations
Jaguar Land Rover (JLR), the UK’s top luxury automaker, has confirmed a serious cyberattack that has disrupted its global IT infrastructure, affecting production lines, retail…
Jaguar Land Rover shuts down systems after cyberattack
Jaguar Land Rover shuts down systems after cyberattack, no evidence of customer data theft Pierluigi Paganini September 03, 2025 Jaguar Land Rover shut down systems…
Android Security Update – Patch for 0-Day Vulnerabilities Actively Exploited in Attack
In response to the discovery of actively exploited 0-day vulnerabilities, Google has released its September 2025 Android Security Bulletin, rolling out patch level 2025-09-05 to…
BruteForceAI Tool Automates Login Page Detection and Attacks
A cutting-edge penetration testing tool called BruteForceAI has arrived, bringing automation and artificial intelligence to the art of login page detection and brute-force attacks. Designed for security…
Cloudflare Blocks Record-Breaking 11.5 Tbps DDoS Attack
Sep 03, 2025Ravie LakshmananThreat Intelligence / Network Security Cloudflare on Tuesday said it automatically mitigated a record-setting volumetric distributed denial-of-service (DDoS) attack that peaked at…
CISA Warns of WhatsApp 0-Day Vulnerability Exploited in Attacks
CISA has issued an urgent advisory concerning a newly disclosed zero-day vulnerability in Meta Platforms’ WhatsApp messaging service (CVE-2025-55177). This flaw, categorized under CWE-863: Incorrect…
New TinyLoader Malware Attacking Windows Users Via Network Shares and Fake Shortcuts Files
A stealthy new malware loader dubbed TinyLoader has begun proliferating across Windows environments, exploiting network shares and deceptive shortcut files to compromise systems worldwide. First…
IIS WebDeploy RCE Vulnerability Gets Public PoC
A newly disclosed remote code execution (RCE) vulnerability in Microsoft’s IIS Web Deploy toolchain has captured industry attention after the release of a public proof-of-concept.…
Hacker Collective Threatens Google With Data Leak Ultimatum
A hacker collective identifying itself as the Scattered LapSus Hunters has issued a direct threat to Google, demanding the termination of two of the company’s…
Australian CIOs surge ahead in AI adoption
New data from an OpenText–Ponemon study of nearly 1,900 global CIOs and IT security leaders highlight while AI adoption is surging, the governance and security…
Hackers Leverage Hexstrike-AI Tool to Exploit Zero Day Vulnerabilities Within 10 Minutes
Threat actors are rapidly weaponizing Hexstrike-AI, a recently released AI-powered offensive security framework, to scan for and exploit zero-day CVEs in under ten minutes. Originally…