DevSecOps | HAHWUL
Roadmap for everyone who wants DevSecOps DevSecOps is a culture and practice that aims to integrate security into every phase of the software development lifecycle…
Author: Cybernoz
Week in review: Google fixes exploited Chrome zero-day, Patch Tuesday forecast
Here’s an overview of some of last week’s most interesting news, articles, interviews and videos: June 2025 Patch Tuesday forecast: Second time is the charm?Microsoft…
Malicious npm packages posing as utilities delete project directories
Two malicious packages have been discovered in the npm JavaScript package index, which masquerades as useful utilities but, in reality, are destructive data wipers that…
Supply chain attack hits Gluestack NPM packages with 960K weekly downloads
A significant supply chain attack hit NPM after 16 popular Gluestack ‘react-native-aria’ packages with over 950,000 weekly downloads were compromised to include malicious code that acts…
Over 20 Malicious Apps on Google Play Target Users for Seed Phrases
A recent investigation by threat intelligence firm Cyble has spotted a campaign targeting cryptocurrency users through the Google Play Store with more than 20 malicious…
Experts found 4 billion user records online, the largest known leak of Chinese personal data from a single source
Experts found 4 billion user records online, the largest known leak of Chinese personal data from a single source Pierluigi Paganini June 07, 2025 Over…
Kali GPT- AI Assistant That Transforms Penetration Testing on Kali Linux
Kali GPT, a specialized AI model built on GPT-4 architecture, has been specifically developed to integrate seamlessly with Kali Linux, offering unprecedented support for offensive…
The Mystery of iPhone Crashes That Apple Denies Are Linked to Chinese Hacking
All of that would represent a serious threat to national security. Except that, strangely, Apple flatly denies it happened. “We strongly disagree with the claims…
New Rust Based InfoStealer Extracts Sensitive Data from Chromium-based Browsers
A sophisticated new information-stealing malware written in the Rust programming language has emerged, demonstrating advanced capabilities to extract sensitive data from both Chromium-based and Gecko-based…
Hackers Using New ClickFix Technique To Exploits Human Error Via Fake Prompts
Cybersecurity researchers have identified a sophisticated new social engineering campaign that exploits fundamental human trust in everyday computer interactions. The ClickFix technique, which has been…
Hundreds of GitHub Malware Repos Targeting Novice Cybercriminals Linked to Single User
A sophisticated malware distribution campaign has weaponized over 140 GitHub repositories to target inexperienced cybercriminals and gaming cheat users, representing one of the largest documented…
Attackers exploit Fortinet flaws to deploy Qilin ransomware
Attackers exploit Fortinet flaws to deploy Qilin ransomware Pierluigi Paganini June 06, 2025 Qilin ransomware now exploits Fortinet vulnerabilities to achieve remote code execution on…