Weaponized PyPI Package Targets Developers to Steal Source Code
Security researchers at RL have discovered a malicious Python package called “solana-token” on PyPI that is intended to prey on developers working with the Solana…
Author: Cybernoz
Continuous CVE Practice Closes Critical Gap Between Vulnerability Alerts and Effective Defense
Cary, North Carolina, May 14th, 2025, CyberNewsWire INE Security, a global leader in hands-on cybersecurity training and certifications, today highlighted how ongoing real-world practice with…
INE Security Alert: Continuous CVE Practice Closes Critical Gap Between Vulnerability Alerts and Effective Defense
Cary, North Carolina, May 14th, 2025, CyberNewsWire INE Security, a global leader in hands-on cybersecurity training and certifications, today highlighted how ongoing real-world practice with…
Roundtable: Why did customers sail away from VMware?
Hyper-converged infrastructure pioneer Nutanix is among a number of suppliers that smell blood in the water when it comes to VMware and its customers following…
CVE Foundation eyes year-end launch following 11th-hour rescue of MITRE program
In late March, the nonprofit research organization MITRE celebrated the 25th anniversary of the Common Vulnerability and Exposures (CVE) program, a widely hailed scientific achievement…
Google Threat Intelligence Launches Actionable Technique To Hunt for Malicious .Desktop Files
Google Threat Intelligence has launched a new blog series aimed at empowering security professionals with advanced threat hunting techniques, kicking off with a deep dive…
North Korean IT Workers Are Being Exposed on a Massive Scale
The young developers are having the time of their lives. They pop open bottles of sparkling wine, eat steak dinners, play soccer together, and lounge…
Chinese Hackers Exploit SAP NetWeaver Zero-Day Vulnerability to Target Critical Infrastructure
EclecticIQ analysts have uncovered a sophisticated cyber-espionage campaign orchestrated by China-nexus nation-state Advanced Persistent Threats (APTs) targeting critical infrastructure worldwide. In April 2025, these threat…
Job Seekers Targeted as Scammers Pose as Government Agencies on WhatsApp
Scammers impersonate government agencies on WhatsApp to target job seekers with fake offers, phishing sites, and identity theft schemes, Netcraft warns. Cybersecurity firm Netcraft has…
SecuX releases Bitcoin self-managed solution for SMBs
SecuX launched hardware-based cybersecurity solution tailored for small and medium-sized businesses (SMBs). At the core is Cyber Athena, an enterprise-grade cold wallet that integrates PUF-based…
Microsoft Defender Vulnerability Allows Attackers to Elevate Privileges
A newly disclosed security flaw in Microsoft Defender for Endpoint could allow attackers with local access to elevate their privileges to SYSTEM level, potentially gaining…
Researchers Unveil New Threat-Hunting Techniques to Detect Azure Managed Identity Abuse
A group of cybersecurity specialists from Hunters, working under the prestigious Team Axon, have presented sophisticated threat-hunting techniques in a ground-breaking research paper titled “Mastering…