Author: Cybernoz

AI Assistant Jailbreaked to Reveal its System Prompts
23
Jan
2025

AI Assistant Jailbreaked to Reveal its System Prompts

Anonymous tinkerer claims to have bypassed an AI assistant’s safeguards to uncover its highly confidential system prompt—the underlying instructions shaping…

Naveen Goud
23
Jan
2025

Bashe Ransomware strikes ICICI Bank

A relatively unknown ransomware group named Bashe, potentially linked to the infamous LockBit gang, has launched a cyberattack on ICICI…

DigitalOcean Per-Bucket Access Keys boosts object storage security
23
Jan
2025

DigitalOcean Per-Bucket Access Keys boosts object storage security

DigitalOcean announced Per-Bucket Access Keys for DigitalOcean Spaces, its S3-compatible object storage service. This feature provides customers with identity-based, bucket-level…

BC Malware
23
Jan
2025

QakBot-Linked BC Malware Adds Enhanced DNS Tunneling and Remote Access Features

Jan 23, 2025Ravie LakshmananMalware / Threat Intelligence Cybersecurity researchers have disclosed details of a new BackConnect (BC) malware that has…

Open-Source ClamAV Releases Critical Security Patch Updates – What’s Inside!
23
Jan
2025

Open-Source ClamAV Releases Critical Security Patch Updates – What’s Inside!

The ClamAV team has announced the release of security patch updates for ClamAV versions 1.4.2 and 1.0.8. These updates address…

SonicWall SMA appliances exploited in zero-day attacks (CVE-2025-23006)
23
Jan
2025

SonicWall SMA appliances exploited in zero-day attacks (CVE-2025-23006)

A critical zero-day vulnerability (CVE-2025-23006) affecting SonicWall Secure Mobile Access (SMA) 1000 Series appliances is being exploited by attackers. “We…

New Cookie Sandwich Technique Let Attackers Bypass HttpOnly Flag On Servers
23
Jan
2025

New Cookie Sandwich Technique Let Attackers Bypass HttpOnly Flag On Servers

A newly discovered attack technique, dubbed the “cookie sandwich,” enables attackers to bypass the HttpOnly flag on certain servers, exposing…

Open-Source ClamAV Releases Security Update for Buffer Overflow Vulnerability
23
Jan
2025

Open-Source ClamAV Releases Security Update for Buffer Overflow Vulnerability

ClamAV, a widely used open-source antivirus software, has released security patch updates to address a critical buffer overflow vulnerability (CVE-2025-20128)….

Cisco addresses a critical privilege escalation bug in Meeting Management
23
Jan
2025

Cisco addresses a critical privilege escalation bug in Meeting Management

Cisco addresses a critical privilege escalation bug in Meeting Management Pierluigi Paganini January 23, 2025 Cisco addressed a critical flaw…

New Supply Chain Attack Targeting Chrome Extensions To Inject Malicious Code
23
Jan
2025

New Supply Chain Attack Targeting Chrome Extensions To Inject Malicious Code

A sophisticated supply chain attack targeting Chrome browser extensions has compromised at least 35 Chrome extensions, potentially exposing over 2.6…

Rails Apps Arbitrary File Write Vulnerability Let Attackers Execute Code Remotely
23
Jan
2025

Rails Apps Arbitrary File Write Vulnerability Let Attackers Execute Code Remotely

A newly exposed vulnerability in Ruby on Rails applications allows attackers to achieve Remote Code Execution (RCE) through a flaw…

Bitsight Instant Insights accelerates vendor risk assessments
23
Jan
2025

Bitsight Instant Insights accelerates vendor risk assessments

Bitsight unveiled Instant Insights, a new offering from the Bitsight IQ suite of AI-based capabilities. The new feature leverages generative…