The First Federal Cybersecurity Disaster of Trump 2.0 Has Arrived
The second Trump administration has its first federal cybersecurity debacle to deal with. A breach of the United States federal judiciary’s electronic case filing system,…
Author: Cybernoz
Splunk Publishes Defender’s Guide to Spot ESXi Ransomware Early
Splunk has released a comprehensive defender’s guide aimed at helping cybersecurity teams detect and prevent ransomware attacks targeting ESXi infrastructure before they can cause widespread…
Vulnerabilities in MSP-friendly RMM solution exploited in the wild (CVE-2025-8875, CVE-2025-8876)
Two vulnerabilities (CVE-2025-8875, CVE-2025-8876) in N-central, a remote monitoring and management (RMM) solution by N-able that’s popular with managed service providers, are being exploited by…
Simple Steps for Attack Surface Reduction
Aug 14, 2025The Hacker NewsEndpoint Security / Application Security Story teaser text: Cybersecurity leaders face mounting pressure to stop attacks before they start, and the…
ShinyHunters Possibly Collaborates With Scattered Spider in Salesforce Attack Campaigns
The notorious ShinyHunters cybercriminal group has emerged from a year-long hiatus with a sophisticated new wave of attacks targeting Salesforce platforms across major organizations, including…
Attackers Need Just One Vulnerability to Own Your Rooted Android
Android privilege escalation has been transformed by rooting frameworks such as KernelSU, APatch, and SKRoot, which use advanced kernel patching techniques to enable unauthorized code…
Flaw in Older Version of Android Rooting Tool KernelSU Allows Full Device Takeover
Zimperium’s zLabs team uncovers a critical security flaw in the popular Android rooting tool, KernelSU v0.5.7. Learn how this vulnerability could allow attackers to gain…
U.S. CISA adds N-able N-Central flaws to its Known Exploited Vulnerabilities catalog
U.S. CISA adds N-able N-Central flaws to its Known Exploited Vulnerabilities catalog Pierluigi Paganini August 14, 2025 U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds…
CISA warns of N-able N-central flaws exploited in zero-day attacks
CISA warned on Wednesday that attackers are actively exploiting two security vulnerabilities in N‑able’s N-central remote monitoring and management (RMM) platform. N-central is commonly used…
Critical WordPress Plugin Vulnerability Exposes 70,000+ Sites to RCE Attacks
A critical security vulnerability has been discovered in the popular “Database for Contact Form 7, WPforms, Elementor forms” WordPress plugin, potentially exposing over 70,000 websites…
Zoom patches critical Windows flaw allowing privilege escalation
Zoom patches critical Windows flaw allowing privilege escalation Pierluigi Paganini August 14, 2025 Zoom fixed a critical Windows client flaw (CVE-2025-49457, CVSS 9.6) involving an…
CISA Warns of N-able N-Central Deserialization and Injection Vulnerability Exploited in Attacks
CISA has issued urgent warnings regarding two critical security vulnerabilities in N-able N-Central remote monitoring and management (RMM) software that threat actors are actively exploiting. …