Windows 0-Day Vulnerability Exploited in Wild to Deploy Play ransomware
Threat actors linked to the Play ransomware operation exploited a zero-day vulnerability in Microsoft Windows prior to its patching on April 8, 2025. The vulnerability,…
Author: Cybernoz
SysAid ITSM Vulnerabilities Enables Pre-Auth Remote Command Execution
Security researchers have disclosed a chain of critical vulnerabilities affecting SysAid ITSM’s On-Premise solution, enabling unauthenticated attackers to execute remote commands by exploiting several pre-auth…
Critical Langflow Vulnerability (CVE-2025-3248) Actively Exploited, Warns CISA
CISA warns of active exploitation of critical Langflow vulnerability (CVE-2025-3248). Critical RCE flaw allows full server takeover. Patch to version 1.3.0 now! In April 2025,…
Microsoft to say NO to passwords and to shut down Authenticator App
For years, tech companies have been advocating for a shift toward passwordless login systems, citing the reduced security risks associated with traditional passwords. Now, in…
SysAid Patches 4 Critical Flaws Enabling Pre-Auth RCE in On-Premise Version
May 07, 2025Ravie LakshmananVulnerability / IT Service Cybersecurity researchers have disclosed multiple security flaw in the on-premise version of SysAid IT support software that could…
UK hands Indian IT suppliers competitive boost in trade deal
India’s IT services companies are set to get even more competitive as the UK’s trade deal with the country exempts Indian professionals from paying National…
Unsophisticated cyber actors are targeting the U.S. Energy sector
Unsophisticated cyber actors are targeting the U.S. Energy sector Pierluigi Paganini May 07, 2025 CISA, FBI, EPA, and DoE warn of cyberattacks on the U.S.…
Researchers Simulate DPRK’s Largest Cryptocurrency Heist Through Compromised macOS Developer and AWS Pivoting
Security researchers at Elastic have recreated the intricate details of the February 21, 2025, ByBit cryptocurrency heist, where approximately 400,000 ETH-valued at over a billion…
Top 10 Cloud Security Mitigation Tactics
As businesses continue to migrate operations and data to the cloud, securing cloud environments has become more critical than ever. Cloud security threats are dynamic…
Play Ransomware Exploited Windows CVE-2025-29824 as Zero-Day to Breach U.S. Organization
Threat actors with links to the Play ransomware family exploited a recently patched security flaw in Microsoft Windows as a zero-day as part of an…
Cisco lays out plans for networking in era of quantum computing
Cisco has unveiled its plans to prepare networking for the era of quantum computing. As it officially opened its Quantum Labs in Santa Monica, the…
Microsoft Telnet 0-Click Vulnerability Threatens Networks
Security researchers have uncovered a severe vulnerability affecting the Microsoft Telnet Client, which allows remote attackers to harvest user credentials without any interaction from the…