Cybercrime Magazine’s Radio Station Celebrates Its 4-Year Anniversary
In Jul. 2021, Newsday visited Cybercrime Magazine’s HQ and studios and ran the headline “Live from Long Island: Northport radio station rolls out round-the-clock coverage…
Author: Cybernoz
Critical Dahua Camera Flaws Enable Remote Hijack via ONVIF and File Upload Exploits
Jul 30, 2025Ravie LakshmananFirmware Security / Vulnerability Cybersecurity researchers have disclosed now-patched critical security flaws in the firmware of Dahua smart cameras that, if left…
Cyber governance practices are maturing – and reshaping leadership expectations
The UK Cyber Governance Code of Practice (CGCP), published in April by the Department for Science, Innovation and Technology, is the outcome of a collaborative…
BeyondTrust Privilege Management for Windows Vulnerability Let Attackers Escalate Privileges
A significant security vulnerability has been discovered in BeyondTrust’s Privilege Management for Windows solution, allowing local authenticated attackers to escalate their privileges to the administrator…
Lazarus Group Enhances Malware with New OtterCookie Payload Delivery Technique
The Contagious Interview campaign conducted by the Lazarus Group continues to expand its capabilities. We have observed an exponential evolution in the delivery mechanisms for…
Chinese Firms Linked to Silk Typhoon Filed 15+ Patents for Cyber Espionage Tools
Jul 30, 2025Ravie LakshmananEndpoint Security / Cyber Espionage Chinese companies linked to the state-sponsored hacking group known as Silk Typhoon (aka Hafnium) have been identified…
Lumma Password Stealer Attack Infection Chain and Its Escalation Tactics Uncovered
The cybersecurity landscape has witnessed a significant surge in information-stealing malware, with Lumma emerging as one of the most prevalent and sophisticated threats targeting Windows…
WordPress Theme Security Vulnerability Enables to Execute Arbitrary Code Remotely
A critical security vulnerability has been discovered in the popular “Alone” WordPress theme that allows unauthenticated attackers to execute arbitrary code remotely and potentially take…
TrickBot Behind More Than $724 Million in Crypto Theft and Extortion
Cybercriminals are escalating their tactics, moving beyond traditional data encryption to employ a more aggressive approach known as quadruple extortion. This alarming trend is explained…
AI and machine learning engineers earn far less in UK than in US
US software developers specialising in artificial intelligence (AI) and machine learning (ML) engineering appear to be earning significantly more than their peers in other countries,…
CISA is facing a tight CIRCIA deadline. Here’s how Sean Plankey can attempt to meet it
During a Senate Homeland Security and Governmental Affairs Committee hearing earlier this month in which lawmakers considered if Sean Plankey is fit to become director…
Global Authorities Share IoCs and TTPs of Scattered Spider Behind Major ESXi Ransomware Attacks
Joint international advisory warns of evolving social engineering tactics and new DragonForce ransomware deployment targeting commercial facilities A collaboration of international cybersecurity agencies issued an…