Secrecy (Obscurity) is a Valid Security Layer
Good Obscurity vs. Bad Obscurity > Camouflage > OPSEC > An SSH Example > Reducing Impact or Probability > Summary > Many of us are…
Author: Cybernoz
Scavenger Malware Hijacks Popular npm Packages to Attack Developers
A sophisticated supply chain attack targeting JavaScript developers emerged on Friday, July 18th, 2025, when cybercriminals compromised multiple popular npm packages to distribute the newly…
One of Life’s Harshest Realities
There are many harsh things about life. The one people grapple with most is death, of course, but I see another that’s worse in many…
Anglicare Sydney starts using AI in HR operations
Anglicare Sydney is starting to use artificial intelligence in its human resources operations, with initial applications in the areas of recruitment, onboarding and job coaching.…
One of Life’s Harshest Realities
There are many harsh things about life. The one people grapple with most is death, of course, but I see another that’s worse in many…
Gov quietly launches onshore instance of GPT-4o for APS
The federal government has quietly launched a sovereign-hosted instance of OpenAI’s GPT-4o for use by the Australian Public Service (APS). The multimodal large language model…
Lumma infostealer malware returns after law enforcement disruption
The Lumma infostealer malware operation is gradually resuming activities following a massive law enforcement operation in May, which resulted in the seizure of 2,300 domains…
Coyote Trojan First to Use Microsoft UI Automation in Bank Attacks
A new version of the Coyote banking trojan has been spotted, and what’s noticeable about it is not just who it’s targeting, but how it’s…
Contract lapse leaves critical infrastructure cybersecurity sensor data unanalyzed at national lab
Data from sensors that detect threats in critical infrastructure networks is sitting unanalyzed after a government contract expired this weekend, raising risks for operational technology,…
Iran’s Cyber Actors Attacking Global Airlines to Exfiltrate Sensitive Data
The breach of Tehran-based security contractor Amnban has ripped the cover off a multi-year espionage program that quietly burrowed into airline reservation systems across Africa,…
CISA, FBI Issue Interlock Ransomware Warning
The FBI and the U.S. Cybersecurity and Infrastructure Security Agency (CISA) issued an advisory today warning of the growing threat of Interlock ransomware. The Interlock…
Microsoft knew of SharePoint security flaw in May, initial patch ineffective
A security patch released by Microsoft earlier this month failed to fully fix a critical flaw in the company’s SharePoint server software that was identified…