CISA MAR On Malware Targeting Ivanti EPMM
The Cybersecurity and Infrastructure Security Agency (CISA) released a Malware Analysis Report (MAR), highlighting a new attack trend targeting Ivanti Endpoint Manager Mobile (EPMM) systems.…
Author: Cybernoz
New iOS Video Injection Tool Bypasses Biometric Verification with Jailbroken iPhones
A sophisticated new attack tool targeting jailbroken iOS devices has emerged, representing a significant escalation in digital identity fraud capabilities. The discovery by iProov’s threat…
Cloudflare Confirms API Outage Caused by React useEffect Overload Issue
Cloudflare experienced a significant outage on September 12, 2025, affecting its Tenant Service API, multiple APIs, and the Cloudflare Dashboard. The company has confirmed that…
LLMs can boost cybersecurity decisions, but not for everyone
LLMs are moving fast from experimentation to daily use in cybersecurity. Teams are starting to use them to sort through threat intelligence, guide incident response,…
Researchers believe Gamaredon and Turla threat groups are collaborating
ESET Research has discovered evidence of collaboration between the Gamaredon and Turla threat groups. Both groups are linked to Russia’s primary intelligence agency, the FSB,…
The unseen side of malware and how to find it
Security teams rely on threat reports to understand what’s out there and to keep their organizations safe. But a new report shows that these reports…
New infosec products of the week: September 19, 2025
Here’s a look at the most interesting products from the past week, featuring releases from Absolute Security, Catchpoint, Nagomi Security, Neon Cyber, and QuSecure. Absolute…
SolarWinds Releases Advisory on Salesloft Drift Security Incident
SolarWinds has released an advisory regarding a security incident involving the Salesloft Drift integration for Salesforce, which led to unauthorized data access. The company confirmed…
Google adds Gemini to Chrome browser after avoiding antitrust breakup
Google will integrate Gemini into its Chrome browser for users in the US just weeks after a federal judge spared the company from a forced…
University of Sydney hunts for permanent CISO
The University of Sydney has kicked off recruitment for a permanent chief information security officer following the departure of Steven Bennett earlier this year. Since Bennett’s…
Radware uncovers zero-click attack on ChatGPT
ShadowLeak: Radware Uncovers Zero-Click Attack on ChatGPT Pierluigi Paganini September 18, 2025 Radware discovered a server-side data theft attack, dubbed ShadowLeak, targeting ChatGPT. OpenAI patched…
These Are the 15 New York Officials ICE and NYPD Arrested in Manhattan
The problems echo a broader pattern across the country, where watchdogs and courts have flagged overcrowding, poor sanitation, and blocked access to counsel in ICE…