The Hidden Front: Iran, Cyber Warfare, and the Looming Threat to U.S. Critical Infrastructure
By James Hess – CEO and Co-Founder, Unknown Cyber In today’s world, military strength is no longer defined solely by missiles and troops. The digital…
Author: Cybernoz
Threat Actors Exploit ConnectWise Configuration to Create Signed Malware
Threat actors have increasingly exploited vulnerabilities and configurations in ConnectWise software to distribute signed malware, masquerading as legitimate applications. Initially observed in February 2024 with…
Linux Foundation launches Agent2Agent, a protocol that enables agentic AI interoperability
The Linux Foundation launched the Agent2Agent (A2A) project, an open protocol for secure agent-to-agent communication and collaboration. The A2A protocol is a collaborative effort launched…
Understanding DevSecOps | HAHWUL
Sharing thoughts and approaches on DevSecOps, which integrates development (Dev), security (Sec), and operations (Ops) to embed security throughout the development lifecycle. What is DevSecOps?…
Cyber insurance premiums drop for first time, new report finds
Listen to the article 3 min This audio is auto-generated. Please let us know if you have feedback. Dive Brief: Cybersecurity insurance premiums declined 2.3%…
The ‘16 billion password breach’ story is a farce
Supposed experts and mainstream media have spent the past few days hyperventilating over reports of a colossal data breach that exposed more than 16 billion…
FileFix attack weaponizes Windows File Explorer for stealthy commands
A cybersecurity researcher has developed FileFix, a variant of the ClickFix social engineering attack that tricks users into executing malicious commands via the File Explorer…
2,000+ Devices Hacked Using Weaponized Social Security Statement Themes
A sophisticated phishing campaign masquerading as official Social Security Administration (SSA) communications has successfully compromised more than 2,000 devices, according to a recent investigation. The…
TLDR* May Work for EULAs But Your Contracts?
Time is a luxury few of us can afford to waste. Decision-makers often find themselves sifting through mountains of information, juggling priorities, and racing against…
Gonjeshke Darande Hackers Pose as Activists to Infiltrate Iranian Crypto Exchange
Gonjeshke Darande, a cyber threat actor widely suspected to be an Israeli state-sponsored group masquerading as an Iranian opposition hacktivist entity, executed a devastating attack…
Hackers Target Over 70 Microsoft Exchange Servers to Steal Credentials via Keyloggers
Jun 24, 2025Ravie LakshmananVulnerability / Malware Unidentified threat actors have been observed targeting publicly exposed Microsoft Exchange servers to inject malicious code into the login…
Threat Actors Abuse ConnectWise Configuration to Build a Signed Malware
A sophisticated malware campaign has emerged that exploits legitimate ConnectWise remote access software to create validly signed malicious applications, representing a significant evolution in cybercriminal…