Author: Cybernoz

25
Sep
2025

Salesforce AI Agent Vulnerability Allows Let Attackers Exfiltration Sensitive Data

A critical vulnerability chain in Salesforce’s Agentforce AI platform, which could have allowed external attackers to steal sensitive CRM data….

ZendTo Flaw Lets Attackers Bypass Security Controls to Access Sensitive Data
25
Sep
2025

ZendTo Flaw Lets Attackers Bypass Security Controls to Access Sensitive Data

A critical vulnerability in the popular file-sharing tool ZendTo allows authenticated users to traverse system paths and access or modify…

Vietnamese Hackers Use Fake Copyright Notices to Spread Lone None Stealer
25
Sep
2025

Vietnamese Hackers Use Fake Copyright Notices to Spread Lone None Stealer

A Vietnamese hacking group known as Lone None is running an online scam campaign that has been active since at…

European Windows 10 users get an additional year of free security updates
25
Sep
2025

European Windows 10 users get an additional year of free security updates

Windows 10 users in the European Economic Area (EEA) will be able to receive extended security updates until October 14,…

Volvo North America disclosed a data breach following a ransomware attack on IT provider Miljödata
25
Sep
2025

Volvo North America disclosed a data breach following a ransomware attack on IT provider Miljödata

Volvo North America disclosed a data breach following a ransomware attack on IT provider Miljödata Pierluigi Paganini September 25, 2025…

Dem report concludes Department of Government Efficiency violates cybersecurity, privacy rules
25
Sep
2025

Dem report concludes Department of Government Efficiency violates cybersecurity, privacy rules

Department of Government Efficiency practices at three federal agencies “violate statutory requirements, creating unprecedented privacy and cybersecurity risks,” according to…

Cisco
25
Sep
2025

Cisco warns of ASA firewall zero-days exploited in attacks

Cisco warned customers today to patch two zero-day vulnerabilities that are actively being exploited in attacks and impact the company’s…

Hackers Leverage GitHub Notifications to Mimic as Y Combinator to Steal Funds from Wallets
25
Sep
2025

Hackers Leverage GitHub Notifications to Mimic as Y Combinator to Steal Funds from Wallets

Cybercriminals have orchestrated a sophisticated phishing campaign exploiting GitHub’s notification system to impersonate the prestigious startup accelerator Y Combinator, targeting…

When Airports Go Dark: What The Weekend’s Cyber-attacks Tell Us About Business Risk
25
Sep
2025

When Airports Go Dark: What The Weekend’s Cyber-attacks Tell Us About Business Risk

Varun Uppal, founder and CEO of Shinobi Security Over the weekend, airports across Europe were thrown into chaos after a…

Cisco IOS/XE Vulnerability Allows Unauthorized Access to Confidential Data
25
Sep
2025

Cisco IOS/XE Vulnerability Allows Unauthorized Access to Confidential Data

 Cisco released an advisory describing a high-severity vulnerability (CVE-2025-20160) in its IOS and IOS XE platforms. The flaw stems from…

Salesforce AI hack
25
Sep
2025

Salesforce AI Hack Enabled CRM Data Theft

Prompt injection and an expired domain could have been used to target Salesforce’s Agentforce platform for data theft. The attack…

Threat group linked to UK, US retail attacks now targeting insurance industry
25
Sep
2025

Cyber insurance could greatly reduce losses from diversification, mitigation measures

The cyber insurance market could reduce exposure to catastrophic risk by diversifying portfolios by geography and industry and employing mitigation…