Iran-Linked BladedFeline Hits Iraqi and Kurdish Targets with Whisper and Spearal Malware
An Iran-aligned hacking group has been attributed to a new set of cyber attacks targeting Kurdish and Iraqi government officials in early 2024. The activity…
Author: Cybernoz
Controversial Firms Cellebrite and Corellium Announce $200 Million Acquisition Deal
Israel-based forensic investigation solutions provider Cellebrite announced on Thursday an agreement to acquire US-based virtualization software firm Corellium in a $200 million deal. Cellebrite provides…
Critical Dell PowerScale Vulnerability Allows Attackers Unauthorized Access to Filesystem
Dell Technologies has issued a critical security advisory (DSA-2025-208) for its PowerScale OneFS operating system, addressing multiple vulnerabilities that could allow malicious actors to compromise…
Why Business Impact Should Lead the Security Conversation
Security teams face growing demands with more tools, more data, and higher expectations than ever. Boards approve large security budgets, yet still ask the same…
Australia’s CommBank completes migration of data to AWS in AI drive
The Commonwealth Bank of Australia (CommBank) plans to accelerate the integration of artificial intelligence (AI) into its business after completing a year-long migration of its…
Men Who Hacked Law Enforcement Database for Doxing Sentenced to Prison
The Justice Department announced on Wednesday that two men accused of breaching a law enforcement portal as part of a doxing scheme have been sentenced…
VMware NSX XSS Vulnerability Exposes Systems to Malicious Code Injection
Broadcom has issued a high-severity security advisory (VMSA-2025-0012) for VMware NSX, addressing three newly discovered stored Cross-Site Scripting (XSS) vulnerabilities: CVE-2025-22243, CVE-2025-22244, and CVE-2025-22245. These…
Fake Booking.com Emails Deliver Malware
Cofense Intelligence uncovers a surge in ClickFix email scams impersonating Booking.com, delivering RATs and info-stealers. Learn how these sophisticated attacks trick users into running malware…
Ransomware hiding in fake AI, business tools
Artificial intelligence (AI) and small business tools are being abused as smokescreens to hit unsuspecting victims with ransomware. In the masquerade campaigns discovered by Cisco…
ClickFix Attack Exploits Fake Cloudflare Turnstile to Deliver Malware
ClickFix is not a malware, but a very successful social engineering technique. It primarily relies on MFA verification fatigue and fake CAPTCHA pages to silently…
Germany fines Vodafone $51 million for privacy, security breaches
The German data protection authority (BfDI) has fined Vodafone GmbH, the telecommunications company’s German subsidiary, €45 million ($51.4 million) for privacy and security violations. “Due…
Researcher Found 6 Critical Vulnerabilities in NetMRI Allow Attackers gain Complete Admin Access
In a Rhino Security Labs, six critical vulnerabilities have been identified in Infoblox’s NetMRI network automation and configuration management solution, specifically version 7.5.4.104695 of the…