Huntress API Is Now in Public Beta!
In June 2021, Huntress unveiled the new Huntress Managed Security Platform, which focused on enabling continuous updates and adaptation with reduced management and procurement overhead.…
Author: Cybernoz
Max severity Cisco Secure Workload flaw gives Site Admin privileges
Cisco has released security updates to address a maximum-severity Secure Workload vulnerability that allows attackers to gain Site Admin privileges. Formerly known as Cisco Tetration,…
World Cup Phishing Campaign Nearly Triples With 203 Unique IP Addresses
A large-scale phishing campaign targeting the 2026 FIFA World Cup has grown far beyond what security researchers originally thought. What began as a documented set…
Hackers Compromise Laravel-Lang Packages via 700 GitHub Repos
A sophisticated and active supply chain attack has struck the Laravel-Lang open-source organization, compromising over 700 historical package versions across four widely used PHP localization…
LiteSpeed cPanel Plugin CVE-2026-48172 Exploited to Run Scripts as Root
Ravie LakshmananMay 23, 2026Vulnerability / Web Security A maximum-severity security vulnerability impacting LiteSpeed User-End cPanel Plugin has come under active exploitation in the wild. The…
How Huntress Protects SMBs | Huntress
There’s an interesting dynamic in the cybersecurity world: the more critical it’s become over time, the harder it’s gotten to manage. Gone are the days…
US and Canada arrest and charge suspected Kimwolf botnet admin
U.S. and Canadian authorities arrested and charged a Canadian man with operating the KimWolf distributed denial-of-service (DDoS) botnet, which infected nearly two million devices worldwide.…
Tool that Detects 117 persistence malware techniques on Windows, Linux, and macOS
PyrsistenceSniper is an advanced tool for detecting offline persistence, enabling cybersecurity analysts to identify 117 separate persistence mechanisms across Windows, Linux, and macOS platforms. Originally…
Hackers Use SEO Poisoning to Fake Gemini CLI, Claude Installers
Financially motivated threat actors are running an active campaign that impersonates Google’s Gemini CLI and Anthropic’s Claude Code, using SEO poisoning to deliver a fileless…
Packagist Supply Chain Attack Infects 8 Packages Using GitHub-Hosted Linux Malware
Ravie LakshmananMay 23, 2026Malware / DevSecOps A new “coordinated” supply chain attack campaign has impacted eight packages on Packagist including malicious code designed to run…
Could Suddenly-Great Open Source AI Crash the US Economy?
Not sure why I haven’t thought more about this, but it seems like the US now has a massive economic vulnerability from cheap, high-quality, open…
The Mechanics of Defense Evasion
Dig, if you will, the picture of you and I engaged in a stress. Being on the receiving end of defense evasion is stressful. I…