Malicious Chrome extensions with 1.7M installs found on Web Store
Almost a dozen malicious extensions with 1.7 million downloads in Google’s Chrome Web Store could track users, steal browser activity, and redirect to potentially unsafe…
Author: Cybernoz
CISA Warns of Zimbra Collaboration Suite (ZCS) Vulnerability Exploited in Attacks
CISA has issued an urgent warning regarding a critical vulnerability in Synacor’s Zimbra Collaboration Suite (ZCS) that is being actively exploited in cyberattacks. The vulnerability,…
MediaTek July 2025 Security Update Addresses Multiple Chipset Vulnerabilities
MediaTek has released a comprehensive security bulletin addressing 16 critical vulnerabilities across its extensive chipset portfolio, including smartphone, tablet, AIoT, smart display, smart platform, OTT, computer vision,…
Malicious Pull Request Targets 6,000+ Developers via Vulnerable Ethcode VS Code Extension
Cybersecurity researchers have flagged a supply chain attack targeting a Microsoft Visual Studio Code (VS Code) extension called Ethcode that has been installed a little…
Interview: Steve Riley, head of IT operations and service management, Mercedes-AMG Petronas F1
Steve Riley, head of IT operations and service management at Mercedes-AMG Petronas F1 Team, reflects on a job well done. Having worked for the racing…
U.S. CISA adds MRLG, PHPMailer, Rails Ruby on Rails, and Synacor Zimbra Collaboration Suite flaws to its Known Exploited Vulnerabilities catalog
U.S. CISA adds MRLG, PHPMailer, Rails Ruby on Rails, and Synacor Zimbra Collaboration Suite flaws to its Known Exploited Vulnerabilities catalog Pierluigi Paganini July 08,…
Overcoming Technical Barriers in Desktop and Application Virtualization
As organizations increasingly embrace remote and hybrid work, desktop and application virtualization have become essential strategies for ensuring flexibility, scalability, and security. However, implementing these…
macOS SMBClient Vulnerability Allows Remote Code Execution and Kernel Crash
Multiple vulnerabilities in macOS SMBClient that could allow attackers to execute arbitrary code remotely and crash systems. The vulnerabilities affecting the SMB filesystem client used…
CISA Alerts on Active Exploit of Ruby on Rails Path Traversal Flaw
The Cybersecurity and Infrastructure Security Agency (CISA) has issued an urgent alert regarding the active exploitation of a critical path traversal vulnerability in Ruby on…
No thanks: Google lets its Gemini AI access your apps, including messages
If you’re an Android user, you’ll need to take action if you don’t want Google’s Gemini AI to have access to your apps. That’s because,…
What’s the latest with retail mobile apps?
There’s an app for that. No, it’s not 2009 all over again when Apple used that slogan to promote its iPhone 3G. And it’s not…
Hackers Use ClickFix Technique to Deploy NetSupport RAT via Compromised WordPress Sites
Security researchers have uncovered a sophisticated cyberattack campaign leveraging compromised WordPress websites to distribute the NetSupport Remote Access Trojan through an innovative social engineering method…