Infostealer campaign compromises 10 npm packages, targets devs
Ten npm packages were suddenly updated with malicious code yesterday to steal environment variables and other sensitive data from developers’ systems. The campaign targeted multiple…
Author: Cybernoz
Google Releases Chrome Patch for Exploit Used in Russian Espionage Attacks
Mar 26, 2025Ravie LakshmananBrowser Security / Vulnerability Google has released out-of-band fixes to address a high-severity security flaw in its Chrome browser for Windows that…
Public Accounts Committee calls out legacy IT
The Public Accounts Committee (PAC) has urged the government to fix legacy IT issues if it wants to succeed with artificial intelligence (AI)-powered public sector…
DAFF recruiting new CIO to address ‘compounding’ IT debt – Cloud – Hardware – Networking – Security – Software
The Department of Agriculture, Fisheries and Forestry (DAFF) has begun searching for a new CIO following the departure of Mark Sawade to the Australian Taxation…
Hive Five 203 – How To Live an Epic Life
Obsidian update, I’ve started using the plus, minus, next method in my daily note. Then, use Dataview to roll that up to weekly, monthly, quarterly,…
How My Projects Fit Together
When people look at the various projects I’ve put out over the last year, they often ask which is the main one, or if they’re…
![[tl;dr sec] #256 - AI SOC Analyst, Detection Engineering, How to Ransomware in AWS](https://image.cybernoz.com/wp-content/uploads/2025/03/tldr-sec-256-AI-SOC-Analyst-Detection-Engineering-How.png)
[tl;dr sec] #256 – AI SOC Analyst, Detection Engineering, How to Ransomware in AWS
NVIDIA’s AI SOC analyst you can speak to, embracing TDD and detection as code, tips on how 2 ransomware I hope you’ve been doing well!…
Threat actors exploit zero-days faster than ever – Week in security with Tony Anscombe
The average time it takes attackers to weaponize a vulnerability, either before or after a patch is released, shrank from 63 days in 2018-2019 to…
Chinese FamousSparrow hackers deploy upgraded malware in attacks
A China-linked cyberespionage group known as ‘FamousSparrow’ was observed using a new modular version of its signature backdoor ‘SparrowDoor’ against a US-based trade organization. The activity and…
Using Automated Pentesting to Build Resilience
“A boxer derives the greatest advantage from his sparring partner…”— Epictetus, 50–135 AD Hands up. Chin tucked. Knees bent. The bell rings, and both boxers…
Military AI caught in tension between speed and control
Military planners and industry figures say artificial intelligence (AI) can unlock back-office efficiency for the UK’s armed forces and help commanders make faster, better-informed decisions,…
ASIC scopes data forensics future ahead of Nuix deal expiry – Software
The Australian Securities and Investments Commission is planning a major overhaul of its digital evidence-gathering environment, ahead of the late-2027 expiry of a $22.7 million contract…