Commvault users told to patch two RCE exploit chains
Data backup and replication specialist Commvault has issued patches covering off four vulnerabilities in its core software product that, left unaddressed, could be combined to…
Author: Cybernoz
Pharmaceutical firm Inotiv investigating ransomware attack that disrupted operations
The pharmaceutical and biotechnology company Inotiv Inc. is investigating a cyberattack that led to hackers encrypting the firm’s data, it said in a filing on…
Why email security needs its EDR moment to move beyond prevention
Security leaders today are rethinking email security, not because traditional methods have failed outright, but because the threat landscape and business needs have evolved beyond…
Phone Searches at the US Border Hit a Record High
United States Custom and Border Protection officials have sweeping powers to search anyone’s phone when they are entering the country—including US citizens. Newly released figures…
Threat Actors Exploit GenAI Platforms to Craft Sophisticated and Realistic Phishing Attacks
The proliferation of generative AI (GenAI) platforms has revolutionized web-based services, enabling rapid code assistance, natural language processing, chatbot deployment, and automated site construction. However,…
Jack of all managed security services, or master of none?
If you crank up the Wayback Machine and load the websites of today’s biggest managed security service providers (MSSPs), you’ll get a neat reminder of…
Russian cyber group exploits seven-year-old network vulnerabilities for long-term espionage
A Russian state-sponsored espionage group has been systematically compromising network devices worldwide for over a decade, exploiting a seven-year-old vulnerability to steal sensitive data and…
Hackers steal Microsoft logins using legitimate ADFS redirects
Hackers are using a novel technique that combines legitimate office.com links with Active Directory Federation Services (ADFS) to redirect users to a phishing page that steals…
Link11 Highlights Growing Cybersecurity Risks and Introduces Integrated WAAP Protection Platform
Link11, a Germany-based global IT security provider, has released insights into the evolving cybersecurity threat landscape and announced the capabilities of its Web Application and…
Kubernetes Capsule Vulnerability Enables Attackers to Inject Arbitrary Labels
Security researchers have disclosed a critical vulnerability in Kubernetes Capsule v0.10.3 and earlier versions that allows authenticated tenant users to inject arbitrary labels into system…
Fake Antivirus App Spreads Android Malware to Spy on Russian Users
Doctor Web warns of Android.Backdoor.916.origin, a fake antivirus app that spies on Russian users by stealing data, streaming audio and video. Cybersecurity researchers at Doctor…
Is it time to build an AI factory?
The digital skyline will be dominated by factories, artificial intelligence (AI) factories. That is if you believe the hype – but what is an AI…