Play ransomware affiliate leveraged zero-day to deploy malware
Play ransomware affiliate leveraged zero-day to deploy malware Pierluigi Paganini May 07, 2025 The Play ransomware gang exploited a high-severity Windows Common Log File System flaw…
Author: Cybernoz
CoGUI phishing platform sent 580 million emails to steal credentials
A new phishing kit named ‘CoGUI’ sent over 580 million emails to targets between January and April 2025, aiming to steal account credentials and payment…
Critical Open Source Easyjson Library Under Full Control of Russian Company
A critical security revelation has sent shockwaves through the cybersecurity community as researchers uncovered that easyjson, a widely adopted open-source Go package central to JSON…
Rio Tinto unifies HR and IT services into ServiceNow
Rio Tinto has overhauled its human resources and IT service delivery by launching a unified Employee Centre built on ServiceNow. Over three years, the ASX-listed…
PowerSchool hacker now extorting individual school districts
PowerSchool is warning that the hacker behind its December cyberattack is now individually extorting schools, threatening to release the previously stolen student and teacher data if a ransom…
UK critical systems at risk from ‘digital divide’ created by AI threats
A divide will emerge over the next two years between organisations that can keep pace with cyber threats enabled by artificial intelligence (AI) and those…
DDoS-for-Hire Empire Dismantled As Poland Arrests 4 Admins
In a coordinated international operation dubbed “PowerOFF,” law enforcement agencies from Poland, the United States, Europol, and several other countries have dismantled a major DDoS-for-hire…
The Trump Administration Sure Is Having Trouble Keeping Its Comms Private
In the wake of SignalGate, a knockoff version of Signal used by a high-ranking member of the Trump Administration was hacked. Today on Uncanny Valley,…
UK at risk of Russian cyber and physical attacks as Ukraine seeks peace deal
The UK is at risk of Russian cyber and physical sabotage attacks as Ukraine moves closer towards a peace settlement, the UK’s cyber chief has…
Six DDoS sites seized in multi-national law enforcement operation
Authorities in Poland have arrested four people accused of administrating and selling access to distributed denial of service (DDoS) services, according to a press release…
CISA warns of hackers targeting critical oil infrastructure
CISA warned critical infrastructure organizations of “unsophisticated” threat actors actively targeting the U.S. oil and natural gas sectors. While these attacks use very basic tactics to compromise their targets’…
Russian Company Gains Full Control Over Critical Open Source Easyjson Library
A startling discovery by Hunted Labs has brought to light a potential security risk lurking within the heart of the cloud-native ecosystem. The open source…