Microsoft raises Zero Day Quest bug bounties to US$5 million
Microsoft has raised the total potential rewards for its Zero Day Quest bug bounty program from US$4 million to US$5 million (A$6.18 million to A$7.73…
Author: Cybernoz
New Win-DDoS Flaws Let Attackers Turn Public Domain Controllers into DDoS Botnet via RPC, LDAP
Aug 10, 2025Ravie LakshmananVulnerability / Network Security A novel attack technique could be weaponized to rope thousands of public domain controllers (DCs) around the world…
Google confirms Salesforce CRM breach, faces extortion threat
Google confirms Salesforce CRM breach, faces extortion threat Pierluigi Paganini August 10, 2025 Google disclosed a Salesforce Customer Relationship Management (CRM) breach exposing data of…
Bouygues Telecom Hit by Cyberattack, 6.4 Million Customers Affected
A cyberattack on Bouygues Telecom exposed data for 6.4 million customers. Find out what information was compromised and what you need to do to protect…
The AI Threat: How Enterprises Can Defend Against the Next Generation of Attacks
AI is transforming the way work gets done across industries. But while it improves business efficiencies, it also arms cybercriminals with highly effective tools. These…
Researchers Reveal ReVault Attack Targeting Dell ControlVault3 Firmware in 100+ Laptop Models
Aug 09, 2025Ravie LakshmananVulnerability / Hardware Security Cybersecurity researchers have uncovered multiple security flaws in Dell’s ControlVault3 firmware and its associated Windows APIs that could…
Researchers Detail Windows EPM Poisoning Exploit Chain Leading to Domain Privilege Escalation
Aug 10, 2025Ravie LakshmananVulnerability / Endpoint Security Cybersecurity researchers have presented new findings related to a now-patched security issue in Microsoft’s Windows Remote Procedure Call…
Telcom Security: The Intersection of Critical Infrastructure
Telecommunications service providers (TSP) are foundational to the functioning of our modern technical society, serving as the conduit through which many critical infrastructure sectors maintain…
AgentFlayer 0-click exploit abuses ChatGPT Connectors to Steal 3rd-party app data
AgentFlayer is a critical vulnerability in ChatGPT Connectors. Learn how this zero-click attack uses indirect prompt injection to secretly steal sensitive data from your connected…
How to Protect Yourself From Portable Point-of-Sale Scams
Considering the widespread use of contactless payment systems, it’s no surprise that portable point-of-sale thefts are making a comeback. This type of robbery is enjoying…
SECURITY AFFAIRS MALWARE NEWSLETTER ROUND 57
Security Affairs Malware newsletter includes a collection of the best articles and research on malware in the international landscape Malware Newsletter Arctic Wolf Observes July…
Linux-based Lenovo webcam bugs enable BadUSB attacks
BadCam: Linux-based Lenovo webcam bugs enable BadUSB attacks Pierluigi Paganini August 10, 2025 Lenovo webcam flaws, dubbed BadCam, let attackers turn them into BadUSB devices…