The Hidden Risks Lurking in Your Business Logic
Modern organizations are becoming increasingly reliant on agentic AI, and for good reason: AI agents can dramatically improve efficiency and automate mission-critical functions like customer…
Author: Cybernoz
DrayTek routers face active exploitation of older vulnerabilities
Dive Brief: Researchers warn that three older vulnerabilities in DrayTek routers have been actively exploited in recent weeks, which coincides with widespread reports of devices…
Intelligence chiefs insist Signal chat was a simple mistake
U.S. intelligence leaders found themselves under intensified scrutiny from Congress for a second straight day, following revelations that significant military plans were discussed over text…
Zero-click exploit abusing Firefox and Windows zero days
The backdoor can execute commands and lets attackers download additional modules onto the victim’s machine, ESET research finds 26 Nov 2024 ESET researchers have uncovered…
Operation Red Card – 300+ Cyber Criminals Arrested Linking to Multiple Hacking Activities
INTERPOL led a multi-national law enforcement operation dubbed “Operation Red Card,” which has resulted in the arrest of over 300 suspected cyber criminals. Operation Red…
Protecting your personal information from data brokers
How aware are you that your personal information could be bought and sold without your consent—and that there are companies whose entire business model revolves…
Why I am challenging Yvette Cooper’s ‘secret back door’ order against Apple’s encryption
Security is hard. It’s even harder now that, apparently, the UK Government has secretly ordered Apple to reduce the security of its services. That’s why…
Critical Apache Tomcat RCE vulnerability exploited
Dive Brief: Researchers from GreyNoise on Thursday reported active exploitation of CVE-2025-24813, a critical remote code execution vulnerability in Apache Tomcat web server software. The path…
A new chapter in UEFI threats
ESET researchers make a discovery that signals a shift on the UEFI threat landscape and underscores the need for vigilance against future threats 27 Nov…
Hackers Using Fake Semrush Ads to Steal Google Accounts Login Credentials
A sophisticated phishing campaign targeting Google account credentials through fake Semrush advertisements has emerged, posing a significant threat to digital marketers and SEO professionals. Cybercriminals…
North Korea establish Military Cyber Center to conduct espionage
In recent years, intelligence agencies in Western countries have reached a troubling conclusion: North Korea, led by Kim Jong Un, has been orchestrating cyber-attacks to…
3 Victims, $5K Entry Fee, Multi-OS, and Double Extortion Tactics
Mar 24, 2025Ravie LakshmananMalware / Ransomware A ransomware-as-a-service (RaaS) operation called VanHelsing has already claimed three victims since it launched on March 7, 2025. “The…