Biometrics, diagnoses, and bank details exposed in major healthcare breach
NYC Health + Hospitals (NYC H+H) posted a data breach notice about a months‑long breach via a third‑party vendor that exposed highly sensitive patient and…
Author: Cybernoz
DirtyDecrypt PoC Released for Linux Kernel CVE-2026-31635 LPE Vulnerability
Proof-of-concept (PoC) exploit code has now been released for a recently patched security flaw in the Linux kernel that could allow for local privilege escalation…
Assume autonomy: Why security teams need to rethink defence at machine speed
For years, cyber security strategy has been built around a simple premise: attackers and defenders operate at roughly the same speed. Humans make decisions, tools…
7-Eleven Data Breach Exposes Franchisee Information
7-Eleven has confirmed that its internal systems were breached in April 2026, exposing personal information linked to franchisee application records. The disclosure of 7-Eleven data…
AI-Driven Cyber Risks Put Global Banks On Alert
Banks across the United States, Europe, and Japan are accelerating efforts to strengthen cybersecurity defenses after the emergence of a new artificial intelligence-powered vulnerability discovery…
Victorian bulk porting scammer gets over two years in prison
A 35-year-old man from Lynbrook, south-east Melbourne, has received a prison sentence of two years and two months, with a 12-month non-parole period, for a…
Drupal to Patch Highly Critical Vulnerability at Risk of Quick Exploitation
Drupal is warning users that it’s preparing a patch for a ‘highly critical’ vulnerability that may be exploited by threat actors shortly after its disclosure.…
Massive MENA cybercrime Operation Ramz disrupts infrastructure and arrests 201 suspects
Massive MENA cybercrime Operation Ramz disrupts infrastructure and arrests 201 suspects Pierluigi Paganini May 19, 2026 INTERPOL led Operation Ramz in MENA, resulting in 201…
Understanding the OWASP Top 10 2025 for Modern Application Security
In the world of application security, vulnerabilities are always a moving target. As modern applications keep becoming increasingly API-driven, cloud-native, and dependent on third-party services,…
Patch bypass allows hackers to exploit prior flaw in SonicWall SSL-VPN
Researchers said a wave of attacks began in February targeting firewalls that appeared to be protected. Source link
Mini Shai-Hulud returns, compromising hundreds of npm packages
A self-replicating malware campaign known as Mini Shai-Hulud has resurfaced, this time embedding itself across hundreds of npm packages. The threat actor behind it, identified…
Internet Explorer may be dead, but its ghost still runs malware
Despite Internet Explorer reaching the end of life in 2022, MSHTA is packaged by default on Windows systems and is used as a living-off-the-land (LOLBIN)…