Thousands of NSW court documents downloaded in “major data breach” – Security
Thousands of “sensitive” NSW court filings have been downloaded by unknown threat actors after a breach of the NSW Online Registry website. The website provides…
Author: Cybernoz
Hive Five 208 – Nobody Cares
In partnership with I’m finally testing out Zen Browser as I mentioned a while back, and it’s been great so far! The first thing I…
Crooks DeepSeek users with fake sponsored Google ads to deliver malware
Crooks DeepSeek users with fake sponsored Google ads to deliver malware Pierluigi Paganini March 27, 2025 Cybercriminals are exploiting the popularity of DeepSeek by using…
LunarVim + Warp + Tokyo Night
Jun 04, 2024 Harmoniously Combining Warp Themes and Vim Themes Warp에서 lunarvim, lazyvim 또는 neovim에 직접 테마를 적용하여 사용하다 보면 아래와 같이 여백이 발생하게 됩니다.…
![[tl;dr sec] #272 - AI Agent Security, Kubernetes Security, ‘State of CloudSec’ Reports: Insights or Self-Owns?](https://image.cybernoz.com/wp-content/uploads/2025/03/tldr-sec-272-AI-Agent-Security-Kubernetes-Security-‘State.png)
[tl;dr sec] #272 – AI Agent Security, Kubernetes Security, ‘State of CloudSec’ Reports: Insights or Self-Owns?
Agent authentication & Model Context Protocol Security, k8s for pentesters, a critical look at “state of cloud security” reports I hope you’ve been doing well!…
As 23andMe declares bankruptcy, privacy advocates sound alarm about DNA data
Genetic testing business 23andMe filed for bankruptcy Sunday, amplifying fears from privacy advocates that the DNA records and personal information of its 15 million customers…
Mozilla warns Windows users of critical Firefox sandbox escape flaw
Mozilla has released Firefox 136.0.4 to patch a critical security vulnerability that can let attackers escape the web browser’s sandbox on Windows systems. Tracked as…
New Sophisticated Malware CoffeeLoader Bypasses Endpoint Security to Deploy Rhadamanthys Shellcode
Cybersecurity researchers have uncovered a sophisticated new malware strain targeting macOS systems, dubbed “CoffeeLoader,” which employs advanced techniques to bypass endpoint security solutions and deliver…
Unpacking Disinformation in the 2024 US Presidential Election
The 2016 U.S. presidential election is often cited as a watershed moment for digital disinformation campaigns – revealing the vulnerability of democratic processes to foreign…
Threat Actors Compromise 150,000 Websites to Promote Chinese Gambling Platforms
A large-scale cyberattack has compromised approximately 150,000 legitimate websites by injecting malicious JavaScript to redirect visitors to Chinese-language gambling platforms. The campaign, first detected in…
Next.js Middleware Flaw Lets Attackers Bypass Authorization
A recent collaborative effort by researchers Rachid Allam and Yasser Allam has exposed a critical vulnerability within the Next.js framework, a widely used JavaScript framework…
Why Healthcare Executives Should Prioritize Security Compliance
For healthcare executives, prioritizing security compliance is not just about meeting regulatory requirements but also protecting the organization’s reputation, reducing risks, and ensuring business continuity.…