Oracle Cloud Was Hacked — But They Didn’t Tell You Everything
Oracle has privately acknowledged to select customers that it suffered a security breach impacting its legacy Oracle Cloud infrastructure (Gen 1, aka Oracle Cloud Classic).…
Author: Cybernoz
Qilin Operators Imitate ScreenConnect Login Page to Deploy Ransomware and Gain Admin Access
In a recent cyberattack attributed to the Qilin ransomware group, threat actors successfully compromised a Managed Service Provider (MSP) by mimicking the login page of…
Hacker Claims Twilio’s SendGrid Data Breach, Selling 848,000 Records
A hacker using the alias Satanic is claiming responsibility for what could be a major breach involving SendGrid, a cloud-based email delivery platform owned by…
How To Advance In InfoSec: Don’t Study, Do.
I’ve been thinking a lot about how to get to the next level in my field of information security, and I’ve come to a pretty…
International intelligence agencies raise the alarm on fast flux
International intelligence and cybersecurity agencies jointly issued a warning Thursday about “fast flux,” an advanced technique used by cybercriminals and state-sponsored actors to evade detection…
Hunters International Linked to Hive Ransomware in Attacks on Windows, Linux, and ESXi Systems
Hunters International, a ransomware group suspected to be a rebrand of the infamous Hive ransomware, has been linked to widespread attacks targeting Windows, Linux, FreeBSD,…
Microsoft Warns of Tax-Themed Email Attacks Using PDFs and QR Codes to Deliver Malware
Microsoft is warning of several phishing campaigns that are leveraging tax-related themes to deploy malware and steal credentials. “These campaigns notably use redirection methods such…
What Mail Server Do The Big Universities Use?
Ever wonder what mail servers people run? I found myself wondering what the top universities used, so I wrote a lame little script to go…
UAC-0219 Hackers Leverage WRECKSTEEL PowerShell Stealer to Extract Data from Computers
In a concerning development, CERT-UA, Ukraine’s Computer Emergency Response Team, has reported a series of cyberattacks attributed to the hacker group identified as UAC-0219. These…
Ivanti VPN customers targeted via unrecognized RCE vulnerability (CVE-2025-22457)
A suspected Chinese APT group has exploited CVE-2025-22457 – a buffer overflow bug that was previously thought not to be exploitable – to compromise appliances…
Outsourcing And The Future Of I.T.
If I’m reading this right, he’s saying exactly what my friends and I have been talking about for a couple of years now. Essentially, before…
Ivanti patches Connect Secure zero-day exploited since mid-March
Ivanti has released security updates to patch a critical Connect Secure remote code execution vulnerability exploited by a China-linked espionage actor to deploy malware since…