North Korea led the world in nation-state hacking in Q2 and Q3
Dive Brief: Hackers affiliated with the North Korean government accounted for a plurality of nation-state cyberattacks between April and September, according to a threat report…
Author: Cybernoz
New Fileless Remcos Attacks Bypassing EDRs Malicious Code into RMClient
Remcos, a commercial remote access tool marketed as legitimate surveillance software, has become the leading infostealer in malware campaigns during the third quarter of 2025,…
Vault Viper Exploits Online Gambling Websites Using Custom Browser to Install Malicious Program
A major cybersecurity investigation has uncovered a sophisticated criminal operation called Vault Viper that exploits online gambling platforms to distribute a malicious custom browser with…
Protecting And Managing Unstructured Data At Scale
“We’re facing what can feel like an impossible challenge: Cutting spend while unstructured data continues to grow, reducing risk from ransomware, while enabling high performance…
Why Executives and Practitioners See Risk Differently
Oct 24, 2025The Hacker NewsCyber Resilience / Data Protection Does your organization suffer from a cybersecurity perception gap? Findings from the Bitdefender 2025 Cybersecurity Assessment…
North Korean Hackers Deploy “Drone” Malware In Targeting Of European UAV Manufacturers
The name said it all: DroneEXEHijackingLoader.dll. That internal file name, buried in malicious code delivered to three European defense contractors, revealed what security researchers now…
Summoning Team won Master of Pwn as Pwn2Own Ireland Rewards $1,024,750
Summoning Team won Master of Pwn as Pwn2Own Ireland Rewards $1,024,750 Pierluigi Paganini October 24, 2025 The Pwn2Own Ireland hacking contest awarded a total $1,024,750…
Shifting from reactive to proactive: Cyber resilience amid nation-state espionage
In recent years, the cybersecurity industry has made significant strides in securing endpoints with advanced Endpoint Detection and Response (EDR) solutions, and we have been…
New PhantomCaptcha RAT Weaponized PDFs to Deliver Malware Using ‘ClickFix’-Style Cloudflare Captcha Pages
A sophisticated spearphishing campaign has emerged targeting humanitarian organizations and Ukrainian government agencies, leveraging weaponized PDF attachments and fake Cloudflare verification pages to distribute a…
New PDF Tool Detects Malicious Files Using PDF Object Hashing
Proofpoint has released a new open-source tool called PDF Object Hashing that helps security teams detect and track malicious files distributed as PDFs. The tool…
Microsoft releases urgent fix for actively exploited WSUS vulnerability (CVE-2025-59287)
Microsoft has released an out-of-band security update that “comprehensively address” CVE-2025-59287, a remote code execution vulnerability in the Windows Server Update Services (WSUS) that is…
Microsoft Fixes Critical WSUS RCE Flaw CVE-2025-59287
Microsoft has released an urgent out-of-band security update to address a severe remote code execution (RCE) vulnerability in Windows Server Update Services (WSUS). The flaw,…