Conti ransomware group member pleads guilty, faces up to 20 years in prison
A longtime former member of Conti, a ransomware group that attacked more than 1,000 organizations globally before it disbanded in 2022, pleaded guilty to participating…
Author: Cybernoz
French government’s secure messaging system breached
In this case, it wasn’t the technology that was at fault, but a user: The intruder gained access to the system by taking over their…
Evidence at the Moment of Attack. Answers at AI Speed.
A detection fires. A container on a production Kubernetes node spawned a shell. Your SOC analyst opens the alert – but by the time they…
Attackers Abuse Trust with Indirection
Incident #2—Abusing mshta.exe & PowerShell.exe While at DattoCon 2018, our ThreatOps Team hosted a Hacking Windows Training and gave live demos at the booth. We challenged attendees…
phpBB forum fixes auth bypass bug lurking for a decade
A 10-year-old authentication bypass vulnerability discovered in the phpBB forum software allows an attacker to log in as any user, including administrators. The flaw does…
Hackers Abuse Legitimate NinjaOne RMM Software to Bypass Traditional Malware Detection
A newly documented phishing campaign is using a legitimate remote management tool to silently take over victims’ computers, without deploying a single line of traditional…
Attackers Can Exploit Microsoft Outlook and Word Flaws to Run Malicious Code
Microsoft has disclosed a set of critical remote code execution (RCE) vulnerabilities affecting Outlook and Word that could allow attackers to execute arbitrary code on…
The SpaceX Pre-IPO Market: How Crypto Rails Are Opening Synthetic Access
SpaceX is preparing for an IPO that, if priced as reported, would be the largest public debut in history. The company is targeting a valuation…
Authorities dismantle crypto laundering service that moved €336 million for cybercriminals
An international law enforcement operation has dismantled a cryptocurrency laundering service linked to ransomware groups and other cybercriminals that processed more than €336 million in…
Google Sues Chinese Smishing Network Accused of Using Gemini AI in Phishing
Ravie LakshmananJun 12, 2026Cybercrime / Artificial Intelligence Google on Friday said it’s pursuing legal action against a Chinese cybercrime network, accusing it of using its…
Oracle fixes PeopleSoft flaw exploited by ShinyHunters
Oracle has issued an out-of-band patch for a remote code execution (RCE) zero-day vulnerability affecting its PeopleSoft Enterprise PeopleTools product that is being exploited in…
Iranian Cyber Group Handala Claims Cal Water Hack
The Iran-linked threat actor Handala this week boasted to have hacked California Water Service (Cal Water), and published 5 gigabytes of data allegedly stolen from…