Microsoft, CrowdStrike Lead Effort to Map Threat Actor Names
Microsoft and CrowdStrike announced on Monday that they are leading an industry effort to map threat actor naming, with the goal of making it easier…
Author: Cybernoz
Google Chrome to Distrust Two Certificate Authorities Over Compliance and Conduct Issues
Jun 03, 2025Ravie LakshmananWeb Security / Digital Identity Google has revealed that it will no longer trust digital certificates issued by Chunghwa Telecom and Netlock…
Cryptojacking campaign relies on DevOps tools
Cryptojacking campaign relies on DevOps tools Pierluigi Paganini June 03, 2025 A cryptojacking campaign is targeting exposed DevOps servers like Docker and Gitea to secretly…
Multiple HPE StoreOnce Vulnerabilities Let Attackers Execute Malicious Code Remotely
Multiple security vulnerabilities in Hewlett-Packard Enterprise (HPE) StoreOnce software platform that could allow remote attackers to execute malicious code, bypass authentication mechanisms, and access sensitive…
SolarWinds Dameware Vulnerability Could Let Attackers Gain Elevated Privileges
June 3, 2025 – SolarWinds Worldwide, LLC has announced the release of Dameware 12.3.2, a critical service update focused on bug fixes, security enhancements, and…
Splunk Enterprise XSS Vulnerability Let Attackers Execute Unauthorized JavaScript Code
A significant security vulnerability in the Splunk Enterprise platform could allow low-privileged attackers to execute unauthorized JavaScript code through a reflected Cross-Site Scripting (XSS) flaw. …
Critical HPE StoreOnce Flaws Allow Remote Code Execution by Attackers
Hewlett-Packard Enterprise (HPE) has issued a critical security bulletin (HPESBST04847 rev. 1) warning users of multiple high-impact vulnerabilities in its StoreOnce Software, specifically affecting versions…
Vet: Open-source software supply chain security tool
Vet is an open source tool designed to help developers and security engineers spot risks in their software supply chains. It goes beyond traditional software…
Analysis of job vacancies shows earnings boost for AI skills
UK workers with skills in artificial intelligence (AI) appear to earn 11% more on average, even in sectors where AI is automating parts of their…
Hackers Exploit AI Tools Misconfiguration To Run Malicious AI-generated Payloads
Cybercriminals are increasingly leveraging misconfigured artificial intelligence tools to execute sophisticated attacks that generate and deploy malicious payloads automatically, marking a concerning evolution in threat…
How global collaboration is hitting cybercriminals where it hurts
In this Help Net Security interview, William Lyne, Deputy Director of UK’s National Crime Agency, discusses the cybercrime ecosystem and the threats it enables. He…
Coinbase breach linked to customer data leak in India
Cryptocurrency exchange Coinbase knew as far back as January about a customer data leak at an outsourcing company connected to a larger breach estimated to cost…