Cyber criminals would prefer businesses don’t use Okta
Cyber criminal gangs are telling their targets to stop authenticating using Okta services in what the company’s threat management team is describing as a ringing…
Author: Cybernoz
Lazarus Hackers Trick Users Into Believing Their Camera or Microphone is Blocked to Deliver PyLangGhost RAT
Cybersecurity researchers have observed a new social engineering campaign attributed to North Korea’s Lazarus Group in recent weeks that leverages fake camera and microphone errors…
Hacker Accesses Millions of IMDataCenter Records from Exposed AWS Bucket
Cybersecurity researcher Jeremiah Fowler discovered a major data leak at a Florida-based data solutions provider, IMDataCenter. The leak exposed a massive database containing personal details…
Trend Micro fixes two actively exploited Apex One RCE flaws
Trend Micro fixes two actively exploited Apex One RCE flaws Pierluigi Paganini August 06, 2025 Trend Micro patched two critical Apex One flaws (CVE-2025-54948, CVE-2025-54987)…
New Ghost Calls tactic abuses Zoom and Microsoft Teams for C2 operations
A new post-exploitation command-and-control (C2) evasion method called ‘Ghost Calls’ abuses TURN servers used by conferencing apps like Zoom and Microsoft Teams to tunnel traffic…
Google’s Salesforce Instances Hacked in Ongoing Attack
Google has confirmed that one of its corporate Salesforce instances was compromised in June by the threat group tracked as UNC6040. This incident is part…
Fake Antivirus App Delivers LunaSpy Malware to Android Devices
A sophisticated cybercrime campaign has been discovered targeting Android users through fake antivirus applications that actually deliver LunaSpy spyware to victims’ devices. Security researchers have…
NCSC updates CNI Cyber Assessment Framework
The UK’s National Cyber Security Centre (NCSC) has rolled out a series of updates to its Cyber Assessment Framework (CAF) aimed at assisting operators of…
WhatsApp cracks down on 6.8M scam accounts in global takedown
WhatsApp cracks down on 6.8M scam accounts in global takedown Pierluigi Paganini August 06, 2025 WhatsApp removed 6.8M accounts linked to global scam centers, mainly…
CISA’s relationship with industry needs work to reestablish trust, experts say
LAS VEGAS — Collaboration between agencies like the Cybersecurity and Infrastructure Security Agency (CISA) and private industry remains essential to build resilience and combat sophisticated cyber…
Hacker extradited to US for stealing $3.3 million from taxpayers
Nigerian national Chukwuemeka Victor Amachukwu has been extradited from France to the U.S. to face charges of hacking, fraud, and identity theft for suspected spearphishing…
Mustang Panda Attacking Windows Users With ToneShell Malware Mimic as Google Chrome
A sophisticated new cyber campaign has emerged targeting Windows users through a deceptive malware variant known as ToneShell, which masquerades as the legitimate Google Chrome…