New npm Malware Steals Browser Passwords via Steganographic QR Code
A novel npm package named fezbox has been uncovered by the Socket Threat Research Team as a sophisticated malware delivery mechanism that exfiltrates username and…
Author: Cybernoz
After Shai-Hulud, GitHub tightens npm publishing security
Attackers are constantly finding ways to take over accounts and push malicious packages to the npm registry, the (GitHub-operated) online repository for JavaScript and Node.js…
Jaguar Land Rover extends cyber attack-induced shutdown to October
The assembly lines at Jaguar Land Rover will continue to lay silent, after the company announced a halt in production until 1 October 2025, in…
US Secret Service dismantled covert communications network near the U.N. in New York
US Secret Service dismantled covert communications network near the U.N. in New York Pierluigi Paganini September 23, 2025 Secret Service seizes a covert communications network…
CISA says hackers breached federal agency using GeoServer exploit
CISA has revealed that attackers breached the network of an unnamed U.S. federal civilian executive branch (FCEB) agency last year after compromising an unpatched GeoServer…
Tata-Owned Jaguar Land Rover Delays Factory Reopening Following Major Cyber Attack
Jaguar Land Rover (JLR), the United Kingdom’s largest automotive manufacturer, has announced an additional delay in resuming production at its factories following a significant cyber-attack…
The Future of Travel Technology
As technology continues to advance in society, everyday necessities are becoming more accessible by the day. Electronic passports are quickly becoming the answer to modernize…
DHS Has Been Collecting US Citizens’ DNA for Years
The expansion has been driven by specific legal and bureaucratic levers. Foremost was an April 2020 Justice Department rule that revoked a long-standing waiver allowing…
Hackers Hijacking IIS Servers Using Malicious BadIIS Module to Serve Malicious Content
Leveraging a native IIS module named BadIIS, attackers manipulated search engine crawler traffic to poison search results and redirect legitimate users to scam or adult-oriented…
American Archive of Public Broadcasting allowed access to restricted media for years
A security flaw in the American Archive of Public Broadcasting (AAPB) website allowed unauthorized access to protected and private media, according to BleepingComputer. The American…
Rethinking identity in the age of AI impersonation
For decades, trust in business hinged on simple human instincts. It used to be that when we saw a familiar face or heard a trusted…
Police dismantles crypto fraud ring linked to €100 million in losses
Law enforcement authorities in Europe have arrested five suspects linked to a cryptocurrency investment fraud ring that stole over €100 million ($118 million) from more…