Cybernoz - Cybernoz

New VMScape Spectre-BTI Attack Exploits Isolation Gaps in AMD and Intel CPUs

A novel speculative execution attack named VMSCAPE allows a malicious virtual machine (VM) to breach its security boundaries and steal sensitive data, like cryptographic keys,…

September 11, 2025 Cybernoz 3 min read

GBHackers

Attackers Abuse Kubernetes DNS to Extract Git Credentials from ArgoCD

A newly discovered attack method targeting ArgoCD and Kubernetes that could give red-teamers fresh ammo and blue-teamers fresh headaches. This technique lets an attacker abuse…

September 11, 2025 Cybernoz 3 min read

TheHackerNews

Senator Wyden Urges FTC to Probe Microsoft for Ransomware-Linked Cybersecurity Negligence

U.S. Senator Ron Wyden has called on the Federal Trade Commission (FTC) to probe Microsoft and hold it responsible for what he called “gross cybersecurity…

September 11, 2025 Cybernoz 4 min read

Bleeping Computer

Akira ransomware exploiting critical SonicWall SSLVPN bug again

The Akira ransomware gang is actively exploiting CVE-2024-40766, a year-old critical-severity access control vulnerability, to gain unauthorized access to SonicWall devices. The hackers are leverging the security…

September 11, 2025 Cybernoz 2 min read

CyberSecurityNews

What You Need to Pay Attention to Right Now

Cyber attackers constantly refine their evasion methods. That’s what makes threats, including phishing, increasingly hard to detect and investigate. Kits like Tycoon 2FA regularly evolve…

September 11, 2025 Cybernoz 3 min read

TheHackerNews

Google Pixel 10 Adds C2PA Support to Verify AI-Generated Media Authenticity

Sep 11, 2025Ravie LakshmananArtificial Intelligence / Mobile Security Google on Tuesday announced that its new Google Pixel 10 phones support the Coalition for Content Provenance…

September 11, 2025 Cybernoz 2 min read

ComputerWeekly

Chat Control: EU to decide on requirement for tech firms to scan encrypted messages

Law enforcement experts and policymakers are due to meet on 12 September to decide on proposals to require technology companies, such as Signal and WhatsApp,…

September 11, 2025 Cybernoz 6 min read

Bleeping Computer

New VMScape attack breaks guest-host isolation on AMD, Intel CPUs

A new Spectre-like attack dubbed VMScape allows a malicious virtual machine (VM) to leak cryptographic keys from an unmodified QEMU hypervisor process running on modern…

September 11, 2025 Cybernoz 3 min read

CyberSecurityNews

Threat Actors Leveraging Open-Source AdaptixC2 in Real-World Attacks

In early May 2025, security teams began observing a sudden rise in post-exploitation activity leveraging an open-source command-and-control framework known as AdaptixC2. Originally developed to…

September 11, 2025 Cybernoz 3 min read

GBHackers

CoreDNS Vulnerability Allows Attackers to Poison DNS Cache and Block Updates

A critical flaw in CoreDNS’s etcd plugin can let attackers pin DNS records in caches for years, effectively blocking legitimate updates. This vulnerability, tracked as…

September 11, 2025 Cybernoz 2 min read

HackRead

New Google AppSheet Phishing Scam Deliver Fake Trademark Notices

A phishing scam is exploiting Google’s trusted AppSheet platform to bypass email filters. Learn how hackers are using legitimate tools to trick Google Workspace users.…

September 11, 2025 Cybernoz 3 min read

CyberSecurityDive

UK cyber leader calls for shift in focus toward continuity of critical services

WASHINGTON – The head of the United Kingdom’s top cybersecurity agency called for an increased focus on ensuring the continuity of critical services during a…

September 11, 2025 Cybernoz 2 min read