OrBit Rootkit Targets Linux to Steal SSH and Sudo Credentials
Hackers are continuing to abuse a stealthy Linux rootkit known as OrBit to harvest SSH and sudo credentials, with new research showing the threat has…
Author: Cybernoz
Windows Zero-Days Expose BitLocker Bypasses And CTFMON Privilege Escalation
An anonymous cybersecurity researcher who disclosed three Microsoft Defender vulnerabilities has returned with two more zero-days involving a BitLocker bypass and a privilege escalation impacting…
AI-driven surveillance growth reshapes data infrastructure in UAE
As artificial intelligence (AI) reshapes the role of surveillance and operational monitoring across the Middle East, data infrastructure providers are increasingly positioning storage as a…
Pwn2Own Berlin 2026, Day Three: DEVCORE Crowned Master of Pwn, $1.298 Million Total
Pwn2Own Berlin 2026, Day Three: DEVCORE Crowned Master of Pwn, $1.298 Million Total Pierluigi Paganini May 17, 2026 Pwn2Own Berlin 2026 ended with 47 zero-days…
2026 CSO Award winners showcase business-enabling cyber innovation
K&N Engineering shifts left for greater cloud security Organization: K&N EngineeringProject: Code to Cloud Security TransformationSecurity leader: Iqbal Rana, CIO Manufacturing company K&N Engineering manages…
Do You Have a Security Hygiene Checklist in Place?
As a managed service provider (MSP), you’re the backbone of your customer’s cyber infrastructure. Your team knows what it takes to run operations smoothly: a…
Microsoft rejects critical Azure vulnerability report, no CVE issued
A security researcher claims Microsoft quietly fixed an Azure Backup for AKS vulnerability after rejecting his report, and blocking a CVE from being issued. The researcher’s…
Critical Linux Kernel Flaw ‘ssh-keysign-pwn’ Exposes SSH Keys and Shadow Passwords
A newly disclosed Linux kernel vulnerability is raising serious concerns across the security community, as it allows attackers to access highly sensitive data, including SSH…
PraisonAI Vulnerability Actively Exploited Within Hours of Being Made Public
A high-severity vulnerability in PraisonAI is drawing urgent attention after security researchers observed exploitation attempts within hours of public disclosure. The flaw, tracked as CVE-2026-44338…
How AI Hallucinations Are Creating Real Security Risks
AI hallucinations are introducing serious security risks into critical infrastructure decision-making by exploiting human trust through highly confident yet incorrect outputs. When an AI model…
AI threats push Middle East CISOs towards identity-first security
Cyber security leaders in the Middle East are adjusting to a new reality where artificial intelligence (AI) is sharpening attacks even as it strengthens defences.…
U.S. CISA adds a flaw in Microsoft Exchange Server to its Known Exploited Vulnerabilities catalog
U.S. CISA adds a flaw in Microsoft Exchange Server to its Known Exploited Vulnerabilities catalog Pierluigi Paganini May 16, 2026 The U.S. Cybersecurity and Infrastructure…