Author: Cybernoz

Critical Apache Roller Vulnerability
15
Apr
2025

Critical Apache Roller Vulnerability (CVSS 10.0) Enables Unauthorized Session Persistence

Apr 15, 2025Ravie LakshmananVulnerability / Software Security A critical security vulnerability has been disclosed in the Apache Roller open-source, Java-based…

UK challenger bank targets US’s mid-tier banking sector with tech platform
15
Apr
2025

UK challenger bank targets US’s mid-tier banking sector with tech platform

Starling Bank has created a US subsidiary where it will target mid-sized banks with its banking software as a service…

Segmented Web Browsing Will Be the DMZ of the 2010’s
15
Apr
2025

Segmented Web Browsing Will Be the DMZ of the 2010’s

The recent AURORA attack is about to change how the web browser is handled within the enterprise. This sort of…

Hertz says personal data breached in connection with Cleo file-transfer flaws
15
Apr
2025

Hertz says personal data breached in connection with Cleo file-transfer flaws

Hertz Corp. confirmed a threat actor gained access to sensitive personal data in a breach linked to vulnerabilities in Cleo…

Derek B. Johnson
15
Apr
2025

Chinese espionage group leans on open-source tools to mask intrusions

A Chinese state-sponsored hacking group has been observed using recently released open-source offensive security tools and other tactics in an…

Microsoft Exchange
15
Apr
2025

Exchange 2016 and 2019 reach end of support in six months

​Microsoft warned that Exchange 2016 and Exchange 2019 will reach the end of support six months from now, on October…

Microsoft Asks Windows 11 Users Not to Delete Mysterious “inetpub” Folder
15
Apr
2025

Microsoft Asks Windows 11 Users Not to Delete Mysterious “inetpub” Folder

A seemingly empty folder appearing on Windows systems after recent security updates has raised concerns among users, but Microsoft confirms…

Why Securing Prompts Will Never Be Enough: The GitHub Copilot Case
15
Apr
2025

Why Securing Prompts Will Never Be Enough: The GitHub Copilot Case

We’ve spent months analyzing how AI-powered coding assistants like GitHub Copilot handle security risks. The results? Disturbing. The Hidden Risks…

New 'Waiting Thread Hijacking' Malware Technique Evades Modern Security Measures
15
Apr
2025

New ‘Waiting Thread Hijacking’ Malware Technique Evades Modern Security Measures

Security researchers have unveiled a new malware process injection technique dubbed “Waiting Thread Hijacking” (WTH), designed to execute malicious code…

Print Friendly, PDF & Email
15
Apr
2025

Is your edge and border defence tech vulnerable, and what to do about it

Following a number of recent high-profile events, edge and border defence technologies such as firewalls, VPN gateways and intrusion prevention…

Hertz data breach: Customers in US, EU, UK, Australia and Canada affected
15
Apr
2025

Hertz data breach: Customers in US, EU, UK, Australia and Canada affected

American car rental company Hertz has suffered a data breach linked to last year’s exploitation of Cleo zero-day vulnerabilities by…

The brand name "Hertz" written in black, italicized, against a yellow backdrop
15
Apr
2025

Hertz data breach caused by CL0P ransomware attack on vendor

The Hertz Corporation, on behalf of Hertz, Dollar, and Thrifty brands, is sending breach notifications to customers who may have…