AI Security for Low/No-Code and Vibe Coded Applications
Companies want results fast, and low/no-code (LCNC) and Vibe Coding platforms promise just that: rapid application development with either no coding or AI-generated coding. LCNC…
Author: Cybernoz
Pure Crypter Uses Multiple Evasion Methods to Bypass Windows 11 24H2 Security Features
Pure Crypter, a well-known malware-as-a-service (MaaS) loader, has been recognized as a crucial tool for threat actors targeting Windows-based systems in a thorough technical research…
Threat Actor Claims TikTok Breach, Puts 428 Million Records Up for Sale
A newly emerged threat actor, going by the alias “Often9,” has posted on a prominent cybercrime and database trading forum, claiming to possess 428 million…
The Global Cybercrime Industry As A Country
To understand the magnitude of the modern cybersecurity threat, it’s instructive to think of the global cybercrime industry as a country. In its ‘2025 Official…
Using AI to outsmart AI-driven phishing scams
Phishing scams used to be filled with awkward wording and obvious grammar mistakes. Not anymore. AI is now making it harder to distinguish what is…
China-Linked Hackers Exploit SAP and SQL Server Flaws in Attacks Across Asia and Brazil
May 30, 2025Ravie LakshmananVulnerability / Threat Intelligence The China-linked threat actor behind the recent in-the-wild exploitation of a critical security flaw in SAP NetWeaver has…
How cyber security professionals are leveraging AWS tools
With millions of businesses now using Amazon Web Services (AWS) for their cloud computing needs, it’s become a vital consideration for IT security teams and…
Apache InLong CVE-2025-27522 Exposes RCE Attacks
A newly disclosed vulnerability, tracked as CVE-2025-27522, has been discovered in Apache InLong, a widely used real-time data streaming platform. The Apache InLong vulnerability introduces…
Chinese Hacking Group APT41 Exploits Google Calendar to Target Governments
Chinese state-sponsored threat actor APT41 has targeted government entities with malware that uses Google Calendar for command-and-control (C&C), Google warns. Also tracked as Barium, Winnti,…
US Treasury sanctioned the firm Funnull Technology as major cyber scam facilitator
US Treasury sanctioned the firm Funnull Technology as major cyber scam facilitator Pierluigi Paganini May 30, 2025 The U.S. sanctioned Funnull Technology and Liu Lizhi…
PortSwigger Honored with the King’s Award for Enterprise in International Trade
Amelia Coen | 30 May 2025 at 09:38 UTC We’re proud to announce that PortSwigger has been awarded the prestigious King’s Award for Enterprise in…
Microsoft Begins Authenticator Password Phase-Out This Weekend
This weekend, Microsoft will start turning off password management functionality in its Authenticator app. If you use the app, from June 1, 2025, you will…