Supply Chain Attack Hits Rspack, Vant npm Packages with Monero Miner
KEY SUMMARY POINTS Compromised npm Packages: On December 20, 2024, attackers used a hijacked npm token to compromise popular npm...
Read more →Author: Cybernoz
Rockstar2FA Collapse Fuels Expansion of FlowerStorm Phishing-as-a-Service
Dec 23, 2024Ravie LakshmananPhishing / Cybercrime An interruption to the phishing-as-a-service (PhaaS) toolkit called Rockstar 2FA has led to a...
Read more →
Skuld Malware Using Weaponized Windows Utilities Packages To Deliver Malware
Researchers discovered a malware campaign targeting the npm ecosystem, distributing the Skuld info stealer through malicious packages disguised as legitimate...
Read more →
Italy Imposed EUR 15 million Fine to Open AI For Violating GDPR
The Italian Data Protection Authority (known as “Il Garante”) has imposed a €15 million fine on OpenAI for violations of...
Read more →
Lazarus Hackers Using New VNC Based Malware To Attack Organizations Worldwide
The Lazarus Group has recently employed a sophisticated attack, dubbed “Operation DreamJob,” to target employees in critical sectors like nuclear...
Read more →
Top 10 Cybersecurity Trends to Expect in 2025
The 2025 cybersecurity landscape is increasingly complex, driven by sophisticated cyber threats, increased regulation, and rapidly evolving technology. In 2025,...
Read more →
Big data and Google BigQuery improve cancer drug development by detecting bacteria
Developing new drugs is risky and expensive. Creating a new drug and bringing it to clinical trials can cost billions...
Read more →Top Open Source API Security Tools
The modern world relies on Application Programming Interfaces (APIs). They allow applications to communicate with each other, servers, and consumers...
Read more →
Researchers Bypass WPA3 to Acquire Network Password
Researchers have successfully bypassed the Wi-Fi Protected Access 3 (WPA3) protocol to obtain network passwords using a combination of Man-in-the-Middle...
Read more →
The Invisible Russia-Ukraine Battlefield | WIRED
Russia’s systems were “not very mobile, not very distributed,” Clark tells WIRED. Their relatively small number of big systems, Clark...
Read more →
U.S. Judge Rules Against NSO Group in WhatsApp Pegasus Spyware Case
Dec 23, 2024Ravie LakshmananSpyware / Mobile Security Meta Platforms-owned WhatsApp scored a major legal victory in its fight against Israeli...
Read more →
IBM Cognos Analytics Vulnerability Allows Malicious File Upload & Injection Attacks
IBM has released a critical security update for its Cognos Analytics software, addressing two severe vulnerabilities: CVE-2023-42017 and CVE-2024-51466. These vulnerabilities could allow...
Read more →