Kali Linux 2025.3 brings improved virtual machine tooling, 10 new tools
OffSec has released Kali Linux 2025.3, the most up-to-date version of its popular penetration testing and digital forensics platform. What’s new in Kali Linux 2025.3…
Author: Cybernoz
The Clock Starts Ticking, As India’s Privacy Regime Shapes-Up
By Mandar Patil, Founding Member and SVP – Global Sales and Customer Success, Cyble At 02:17 a.m., the SOC phone lights up—an unfamiliar domain has…
SonicWall Updates SMA 100 Appliances to Remove Overstep Malware
SonicWall has released a fresh software update for its SMA 100 appliances to help users remove the Overstep malware deployed in a recent campaign. As…
CISA Warns of Google Chrome 0-Day Vulnerability Exploited in Attacks
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has issued a warning about a high-severity zero-day vulnerability in Google Chrome that is being actively exploited…
North Korean IT Worker Gains Access to Organization’s Network Through Innocent Job Application
In today’s complex threat landscape, adversaries increasingly favor “malware-less” intrusion methods that slip past traditional defenses. One particularly insidious scheme involves North Korean operatives posing…
Authorities Shutter €100M Crypto-Fraud Ring In Europe
European authorities have shut down a crypto-fraud ring that had amassed more than €100 million (approximately $107 million) by duping individuals across the continent. Eurojust,…
Libraesva Email Security Gateway Vulnerability Exploited by Nation-State Hackers
Libraesva has addressed a vulnerability in its integrated email security platform that has been exploited in the wild. Tracked as CVE-2025-59689 (CVSS score of 6.1),…
CISA Warns of Shai-Hulud Self-Replicating Worm Compromised 500+ Packages in npm Registry
CISA has issued an urgent security Alert in response to a large-scale software supply chain attack on npmjs.com, the world’s largest JavaScript package registry. A…
Hackers Exploit Pandoc CVE-2025-51591 to Target AWS IMDS and Steal EC2 IAM Credentials
Cloud security company Wiz has revealed that it uncovered in-the-wild exploitation of a security flaw in a Linux utility called Pandoc as part of attacks…
Jaguar Land Rover Factory Reopening Delayed After Cyber Attack
Jaguar Land Rover (JLR) has announced a further delay to the reopening of its production lines following a sophisticated cyber attack. The pause in manufacturing…
APIs and hardware are under attack, and the numbers don’t look good
Attackers have a new favorite playground, and it’s not where many security teams are looking. According to fresh data from Bugcrowd, vulnerabilities in hardware and…
State-Sponsored Hackers Exploiting Libraesva Email Security Gateway Vulnerability
Sep 24, 2025Ravie LakshmananVulnerability / Email Security Libraesva has released a security update to address a vulnerability in its Email Security Gateway (ESG) solution that…