A complete guide to exploiting advanced XXE vulnerabilities
XML External Entity (XXE) vulnerabilities are one of the most overlooked yet impactful vulnerabilities in modern web applications. Although they’ve become seemingly harder to detect…
Author: Cybernoz
Researcher Hacked Embedded Devices To Extract The Firmware
A security researcher known as newp1ayer48 has successfully demonstrated a method to extract firmware from IoT and embedded devices using direct Flash Memory dumps, providing…
New Linux Kernel Code Written in Rust Aims to Eliminate Memory Safety Bugs
The integration of Rust into the Linux kernel is a significant step forward in enhancing memory safety, a critical aspect of kernel development. This effort,…
Elon Musk blames a massive cyberattack for the X outages
Elon Musk blames a massive cyberattack for the X outages Pierluigi Paganini March 10, 2025 Elon Musk said that the global outages impacting its platform…
Apple iOS 18.4 Beta 3 Released With New Features & Enhancements
Apple has taken another step toward the official release of iOS 18.4 by seeding the third developer beta of the update to testers late on…
Threat Actors Exploit EncryptHub for Multi-Stage Malware Attacks
EncryptHub, a rising cybercriminal entity, has been under scrutiny by multiple threat intelligence teams, including Outpost24’s KrakenLabs. Recent investigations have uncovered previously unseen aspects of…
The Confluence of Innovation and Security in Modern Telecommunications
The telecom industry is at a major turning point. With 5G, IoT, and AI reshaping global connectivity, the need for scalable, secure, and smart networks…
North Korean Hackers Weaponizing ZIP Files To Execute Malicious PowerShell Scripts
Security researchers have identified a sophisticated attack campaign attributed to APT37, a North Korean state-sponsored hacking group also known as ScarCruft, Reaper, and Red Eyes.…
Ragnar Loader Used by Multiple Ransomware Groups to Bypass Detection
Ragnar Loader, a sophisticated toolkit associated with the Ragnar Locker ransomware group, has been instrumental in facilitating targeted cyberattacks on organizations since its emergence in…
Garantex Crypto Exchange Seized, Two Charged in Laundering Scheme
International law enforcement disrupts Garantex, a multi-billion-dollar cryptocurrency exchange used for money laundering. Two individuals, Aleksej Besciokov and Aleksandr Mira Serda, face charges. Learn about…
TFE Hotels recovering from cyber incident – Security
TFE Hotels, which includes the Adina, Vibe and Travelodge brands, is recovering from a “cyber incident” disclosed earlier this month, although not all backend systems…
CISA Adds 3 Ivanti Endpoint Manager Vulnerabilities to Known Exploited Vulnerabilities Catalog
Today CISA added three Ivanti Endpoint Manager (EPM) vulnerabilities CVE-2024-13159, CVE-2024-13160, and CVE-2024-13161 to its Known Exploited Vulnerabilities (KEV) catalog. These absolute path traversal flaws…