Trojanized RVTools push Bumblebee malware in SEO poisoning campaign
Update 5/20/25 4:40 PM EST: In response to our questions about the attack, Dell states that the malicious RVTools installer was not distributed from its sites but…
Author: Cybernoz
One-Third of Cyber Attacks Use Advanced Tactics to Steal Login Credentials
IBM X-Force’s 2024 cybersecurity report, nearly one-third of cyber intrusions now rely on identity-based attacks, exploiting valid login credentials to breach systems. This alarming trend,…
PureRAT Malware Spikes 4x in 2025, Deploying PureLogs to Target Russian Firms
May 21, 2025Ravie LakshmananMalware / Windows Security Russian organizations have become the target of a phishing campaign that distributes malware called PureRAT, according to new…
UK Fraud Bill targets benefit claimants for mass surveillance
Earlier this month the House of Lords had its first debate on the Public Authorities (Fraud, Error and Recovery) Bill. The Bill aims to reduce…
Active Directory DMSA Attack Detailed By Researchers
The delegated Managed Service Account (dMSA) feature was introduced in Windows Server 2025 as a secure replacement for legacy service accounts and to prevent credential…
Coinbase Says Rogue Contractor Data Breach Affects 69,461 Users
When Coinbase said last week that it had refused to pay a $20 million ransom tied to an insider leak, the company estimated the data…
Coinbase data breach impacted 69,461 individuals
Coinbase data breach impacted 69,461 individuals Pierluigi Paganini May 21, 2025 Cryptocurrency exchange Coinbase announced that the recent data breach exposed data belonging to 69,461…
European Union sanctions Stark Industries for enabling cyberattacks
The European Union has imposed strict sanctions against web-hosting provider Stark Industries and the two individuals running it, CEO Iurie Neculiti and owner Ivan Neculiti,…
VanHelsing Ransomware Builder Exposed on Hacker Forums
The cybersecurity landscape reveal that the VanHelsing ransomware operation has experienced a significant security breach with its source code being leaked publicly. According to security…
KrebsOnSecurity Hit with 6.3 Tbps DDoS Attack via Aisuru Botnet
KrebsOnSecurity, the well-known cybersecurity blog run by investigative journalist Brian Krebs, was recently hit by a massive distributed denial-of-service (DDoS) attack that peaked at 6.3…
Data-stealing VS Code extensions removed from official Marketplace
Developers who specialize in writing smart (primarily Ethereum) contracts using the Solidity programming language have been targeted via malicious VS Code extensions that install malware…
Securing CI/CD workflows with Wazuh
Continuous Integration and Continuous Delivery/Deployment (CI/CD) refers to practices that automate how code is developed and released to different environments. CI/CD pipelines are fundamental in…