Android malware turns phones into malicious tap-to-pay machines
Got an Android phone? Got a tap-to-pay card? Then you’re like millions of other users now at risk from a new form of cybercrime –…
Author: Cybernoz
Linux io_uring PoC Rootkit Bypasses System Call-Based Threat Detection Tools
Apr 24, 2025Ravie LakshmananEndpoint Security / Linux Cybersecurity researchers have demonstrated a proof-of-concept (PoC) rootkit dubbed Curing that leverages a Linux asynchronous I/O mechanism called…
Data breach class action costs mount up
Organisations holding data on US citizens must do more to address gaps in their cyber security posture and respond to incidents in a timelier fashion…
The Illusion of Truth: The Risks and Responses to Deepfake Technology
Abstract In the age of information, where the line between reality and fiction is increasingly blurred, deepfake technology has emerged as a powerful tool with…
Multiple Cisco Tools at Risk from Erlang/OTP SSH Remote Code Execution Flaw
Cisco has issued a high-severity advisory (cisco-sa-erlang-otp-ssh-xyZZy) warning of a critical remote code execution (RCE) vulnerability in products using Erlang/OTP’s SSH server. The flaw, tracked…
New SessionShark Phishing Kit Bypasses MFA to Steal Office 365 Logins
SessionShark phishing kit bypasses Office 365 MFA by stealing session tokens. Experts warn of real-time attacks via fake login pages and Telegram alerts. SlashNext security…
A 60-Second Walk In The Park
24 Apr Cybercrime Magazine’s First YouTube Video: A 60-Second Walk In The Park Posted at 08:33h in Blogs by Taylor Fox This week in cybersecurity…
159 CVEs Exploited in Q1 2025 — 28.3% Within 24 Hours of Disclosure
Apr 24, 2025Ravie LakshmananVulnerability / Threat Intelligence As many as 159 CVE identifiers have been flagged as exploited in the wild in the first quarter…
Challenges persist as UK’s Cyber Security and Resilience Bill moves forward
Since the government announced in the King’s speech last year that they would bring forward a Cyber Security and Resilience Bill, much has changed. The…
Crooks exploit the death of Pope Francis
Crooks exploit the death of Pope Francis Pierluigi Paganini April 24, 2025 Crooks exploit the death of Pope Francis, using public curiosity and emotion to…
Redefining AppSec Testing with Intelligent Scan Recommendations and Asset Classification
As 9 out of 10 valuable web apps are missing testing, we’re launching new capabilities to help teams know what else, beyond core applications, is…
Commvault RCE Vulnerability Exploited—PoC Released
Enterprises and managed service providers globally are now facing urgent security concerns following the disclosure of a major pre-authenticated remote code execution (RCE) vulnerability in…