Author: Cybernoz

VSCode
26
Feb
2025

VSCode extensions with 9 million installs pulled over security risks

Microsoft has removed two popular VSCode extensions, ‘Material Theme – Free’ and  ‘Material Theme Icons – Free,’ from the Visual…

Threat Actors Exploit DeepSeek Craze to Distribute Vidar Stealer Malware
26
Feb
2025

Threat Actors Exploit DeepSeek Craze to Distribute Vidar Stealer Malware

In a concerning new development, cybercriminals are exploiting the widespread popularity of the recently launched DeepSeek AI chatbot to distribute…

Nearly 3K Ivanti Connect Secure instances vulnerable to critical flaw
26
Feb
2025

Nearly 3K Ivanti Connect Secure instances vulnerable to critical flaw

Dive Brief: Approximately 2,850 IP addresses are vulnerable to CVE-2025-22467, a critical stack buffer-overflow vulnerability that affects Ivanti Connect Secure…

ChatGPT
26
Feb
2025

OpenAI’s GPT 4.5 spotted in Android beta, launch imminent

OpenAI’s newest model, GPT-4.5, is coming sooner than we expected. A new reference has been spotted on ChatGPT’s Android app…

Ransomware Group Data-Leak Sites Increasing as Six New Groups Emerge
26
Feb
2025

Ransomware Group Data-Leak Sites Increasing as Six New Groups Emerge

The cybersecurity landscape has witnessed a significant uptick in ransomware activity, with six new data-leak sites (DLSs) linked to emerging…

KEV Catalog
26
Feb
2025

CISA Adds Microsoft and Zimbra Flaws to KEV Catalog Amid Active Exploitation

Feb 26, 2025Ravie LakshmananEnterprise Security / Vulnerability The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Tuesday placed two security…

Lord Holmes warns of increasingly ‘urgent’ need to regulate AI
26
Feb
2025

Lord Holmes warns of increasingly ‘urgent’ need to regulate AI

The UK government must “urgently” legislate on artificial intelligence (AI) given the clearly negative impacts it is already having on…

State-linked threat groups collaborating with hacktivists, other actors to target infrastructure
26
Feb
2025

State-linked threat groups collaborating with hacktivists, other actors to target infrastructure

Critical infrastructure providers are under threat of more frequent and sophisticated attacks as state-linked threat groups are increasingly collaborating with…

Specops logo with a Active Directory symbol
26
Feb
2025

Five best practices for securing Active Directory service accounts

Windows Active Directory (AD) service accounts are prime cyber-attack targets due to their elevated privileges and automated/continuous access to important…

Researchers Uncover $1.4B in Sensitive Data Tied to ByBit Hack by Lazarus Group
26
Feb
2025

Researchers Uncover $1.4B in Sensitive Data Tied to ByBit Hack by Lazarus Group

In a significant breakthrough, cybersecurity firm Silent Push has uncovered sensitive infrastructure tied to the Lazarus Group, a North Korean…

Hackers Exploited Krpano Framework Flaw to Inject Spam Ads on 350+ Websites
26
Feb
2025

Hackers Exploited Krpano Framework Flaw to Inject Spam Ads on 350+ Websites

A cross-site scripting (XSS) vulnerability in a virtual tour framework has been weaponized by malicious actors to inject malicious scripts…

IoT and SaaS will underpin government legislation introduced to protect rivers
26
Feb
2025

IoT and SaaS will underpin government legislation introduced to protect rivers

The use of internet of things (IoT) technology, combined with a software as a service (SaaS) platform, will help water…