Author: Cybernoz

Malicious PyPi Package Mimic ChatGPT & Claude Steals Developers Data
21
Nov
2024

Malicious PyPi Package Mimic ChatGPT & Claude Steals Developers Data

Kaspersky’s Global Research and Analysis Team (GReAT) has recently uncovered a sophisticated supply chain attack targeting the Python Package Index…

Open-Source Projects
21
Nov
2024

Google’s AI-Powered OSS-Fuzz Tool Finds 26 Vulnerabilities in Open-Source Projects

Nov 21, 2024Ravie LakshmananArtificial Intelligence / Software Security Google has revealed that its AI-powered fuzzing tool, OSS-Fuzz, has been used…

Decade-old local privilege escalation bugs impacts Ubuntu needrestart package
21
Nov
2024

Decade-old local privilege escalation bugs impacts Ubuntu needrestart package

Decade-old local privilege escalation bugs impacts Ubuntu needrestart package Pierluigi Paganini November 21, 2024 Decade-old flaws in the needrestart package…

Critical Kubernetes Vulnerability Let Attackers Execute Arbitrary Commands
21
Nov
2024

Critical Kubernetes Vulnerability Let Attackers Execute Arbitrary Commands

A high-severity security vulnerability in Kubernetes has been discovered, potentially allowing attackers to execute arbitrary commands beyond container boundaries. The…

Jane Devry
21
Nov
2024

Advanced Radar Screening Key to Safer Public Spaces

The unfortunate reality is that – for the safety of the people attending – security measures are now an absolute…

Jane Devry
21
Nov
2024

SailPoint Revolutionizes Identity Security with Unified Data and AI-Powered Identity Graph

SailPoint Technologies, Inc., a recognized leader in enterprise identity security, has unveiled an ambitious new vision for the future of…

CWE top 25 most dangerous software weaknesses
21
Nov
2024

CWE top 25 most dangerous software weaknesses

The CWE list of the 25 most dangerous software weaknesses demonstrates the currently most common and impactful software flaws. Identifying…

5 Charged In Running Phishing Scheme Stealing Cryptocurrency
21
Nov
2024

5 Charged In Running Phishing Scheme Stealing Cryptocurrency

The U.S. law enforcement has unsealed criminal charges against five individuals involved in a large-scale phishing scheme targeting employees at…

macOS WorkflowKit Race Vulnerability Let Malicious Apps Intercept Shortcuts
21
Nov
2024

macOS WorkflowKit Race Vulnerability Let Malicious Apps Intercept Shortcuts

A critical vulnerability in macOS WorkflowKit, the framework underpinning Apple’s Shortcuts app, has been disclosed. This vulnerability allows malicious applications…

Helldown Ransomware Attacking VMware ESX And Linux Servers
21
Nov
2024

Helldown Ransomware Attacking VMware ESX And Linux Servers

Helldown, a new ransomware group, actively exploits vulnerabilities to breach networks, as since August 2024, they have compromised 28 victims,…

AxoSyslog: Open-source scalable security data processor
21
Nov
2024

AxoSyslog: Open-source scalable security data processor

AxoSyslog is a syslog-ng fork, created and maintained by the original creator of syslog-ng, Balazs Scheidler, and his team. “We…

Facebook Ad Accounts
21
Nov
2024

NodeStealer Malware Targets Facebook Ad Accounts, Harvesting Credit Card Data

Threat hunters are warning about an updated version of the Python-based NodeStealer that’s now equipped to extract more information from…