Cache Timing Techniques Used to Bypass Windows 11 KASLR and Reveal Kernel Base
Cache timing side-channel attacks have been used to circumvent Kernel Address Space Layout Randomization (KASLR) on fully updated Windows 11 PCs, which is a startling…
Author: Cybernoz
Delta Air Lines can sue CrowdStrike over computer outage
Delta Air Lines can pursue much of its lawsuit seeking to hold CrowdStrike liable for a massive computer outage last July that caused the carrier…
Fake KeePass password manager leads to ESXi ransomware attack
Threat actors have been distributing trojanized versions of the KeePass password manager for at least eight months to install Cobalt Strike beacons, steal credentials, and…
Chinese APT Hackers Target Organizations Using Korplug Loaders and Malicious USB Drives
Advanced persistent threat (APT) groups with ties to China have become persistent players in the cyber espionage landscape, with a special emphasis on European governmental…
QBE Insurance Group’s CSO moves to Microsoft
QBE Insurance Group’s chief security officer Andrew Dell has left after over six-and-a-half years at the firm, and has since taken up a role at…
New Phishing Attack Poses as Zoom Meeting Invites to Steal Login Credentials
A newly identified phishing campaign is targeting unsuspecting users by masquerading as urgent Zoom meeting invitations from colleagues. This deceptive tactic leverages the familiarity and…
Serviceaide Leak Exposes Records of 500,000 Catholic Health Patients
A misconfigured database at enterprise IT provider Serviceaide has exposed sensitive health and personal information belonging to approximately 500,000 (483,126) patients linked to Catholic Health,…
TPG Telecom restructure brings cloud and security together
TPG Telecom has brought its internal security and cloud capabilities together under a single function, with general manager of technology security Lee Barney’s role impacted…
Hackers earn $1,078,750 for 28 zero-days at Pwn2Own Berlin
The Pwn2Own Berlin 2025 hacking competition has concluded, with security researchers earning $1,078,750 after exploiting 29 zero-day vulnerabilities and encountering some bug collisions. Throughout the…
New Hannibal Stealer Uses Stealth and Obfuscation to Evade Detection
A newly identified piece of malware, dubbed the “Hannibal Stealer,” has emerged as a significant cybersecurity threat due to its advanced stealth mechanisms and obfuscation…
NHS Charter Urges Vendors To Improve Cybersecurity
The UK’s National Health Service (NHS) is asking its IT suppliers to commit to better cybersecurity by signing a public charter. In a May 15…
O2 UK patches bug leaking mobile user location from call metadata
A flaw in O2 UK’s implementation of VoLTE and WiFi Calling technologies could allow anyone to expose the general location of a person and other…