KAWA4096 Ransomware Employs WMI Techniques to Delete Backup Snapshots
Trustwave SpiderLabs has played a crucial role in monitoring new ransomware variants in the incredibly unstable ransomware threat landscape of 2025, where dozens of new…
Author: Cybernoz
Microsoft, CISA warn of cyberattacks targeting on-premises SharePoint servers
Microsoft on Saturday warned that hackers are exploiting a critical vulnerability in SharePoint, dubbed ToolShell, to launch attacks against on-premises customers. The vulnerability, tracked as…
Livewire Vulnerability Exposes Millions of Laravel Apps to Remote Code Execution Attacks
A critical security vulnerability in Laravel’s Livewire framework has been discovered that could expose millions of web applications to remote code execution (RCE) attacks. The…
AI-Powered Cloaking Tools Help Threat Actors Hide Malicious Domains from Security Scans
Threat actors are increasingly adopting AI-powered cloaking services to obfuscate phishing domains, counterfeit e-commerce sites, and malware distribution endpoints from automated security scanners. This technique,…
Fake npm Website Used to Push Malware via Stolen Token
A phishing campaign targeting JavaScript developers has led to the compromise of several popular npm packages, including eslint-config-prettier. The breach began with an attacker tricking…
Meet the deepfake fraudster who applied to work at a deepfake specialist
Last year, security company KnowBe4 helped spark a wave of interest in fraudulent workers when it revealed extensive details of how it uncovered a rogue…
If You’re Agnostic, You’re Probably an Atheist
[ 2009-04-12 : I’ve decided to back off this specific argument of “atheist” applying to those that lack belief. The reason for this is that…
ExpressVPN bug leaked user IPs in Remote Desktop sessions
ExpressVPN has fixed a flaw in its Windows client that caused Remote Desktop Protocol (RDP) traffic to bypass the virtual private network (VPN) tunnel, exposing…
CISA Warns of Microsoft SharePoint server 0-Day RCE Vulnerability Exploited in Wild
CISA has issued an urgent warning about a critical zero-day remote code execution vulnerability affecting Microsoft SharePoint Server on-premises installations that threat actors are actively…
The Security Interviews: Jason Nurse, University of Kent
Jason Nurse, reader in cyber security at the University of Kent, firmly believes the blame for cyber weaknesses needs to shift towards how systems are…
Why You Shouldn’t Be Calling Yourself Agnostic
September 4, 2009 — After much spirited debate I have come to the conclusion that the argument presented below is much weaker than it should…
Veeam Recovery Orchestrator users locked out after MFA rollout
Veeam warned customers today that a recently released version of Recovery Orchestrator blocks Web UI logins after enabling multi-factor authentication (MFA). Veeam Recovery Orchestrator (VRO)…