The CISO’s bookshelf: 10 must-reads for security leaders
Discover essential reads for CISOs in this curated list of books covering cybersecurity leadership, risk management, zero trust, board communication, and more. Why CISOs Fail,…
Author: Cybernoz
U.S. Charges 12 Chinese Nationals In Global Hacking Scandal
The United States Department of Justice (DOJ) has taken action against a major cyber threat, opening indictments against 12 Chinese nationals, including two officers from…
41,500+ VMware ESXi Instances Vulnerable to Code Execution Attacks
Shadowserver observed that 41,500+ internet-exposed VMware ESXi hypervisors as of March 4, 2025, are vulnerable to CVE-2025-22224, a critical zero-day vulnerability actively exploited in attacks.…
Google Unveils GoStringUngarbler to Crack Go-Based Malware Encryption
Google’s FLARE team has released GoStringUngarbler, an open-source tool designed to dismantle string obfuscation in Go binaries protected by the garble compiler. This innovation addresses growing…
89% of enterprise AI usage is invisible to the organization
Organizations have zero visibility into 89% of AI usage, despite security policies according to a LayerX report. 71% of connections to GenAI tools are done…
BadBox Malware from Google Play Hacked 50,000+ Android Devices Using 24 Apps
HUMAN Security’s Satori Threat Intelligence team has uncovered a sophisticated malware operation dubbed “BADBOX 2.0” that compromised over 50,000 Android devices using 24 deceptive applications.…
Case study: NGM Group plots next steps for better agent experience – Emerging Tech
Newcastle Greater Mutual (NGM) Group plans to expand its AI capabilities in 2025, following a contact centre overhaul. The overhaul saw the group create an…
P&N Group takes “conservative” AI approach for its customer and staff experience – Emerging Tech – Financial Services
P&N Group is taking a “conservative approach” to AI applications as it evaluates the potential introduction of AI-powered agents to aid customer and staff experience.…
Vim Editor Vulnerability Exploited Via TAR Files to Trigger Code Execution
The Vim text editor vulnerability CVE-2025-27423 is a high-severity issue that allows for arbitrary code execution via malicious TAR archives. Affecting Vim versions prior to…
Apple IPT appeal against “back door” encryption order is test case for bigger targets
Apple has filed a legal appeal against a secret Home Office order to provide ‘back door’ access to its users encrypted data in a case…
Telegram Evilvideo Vulnerability Exploited to Execute Malicious Code
A critical evolution of the CVE-2024-7014 vulnerability, originally patched in July 2024, has resurfaced with updated tactics to bypass security measures. Dubbed Evilloader, this new…
Gov lays down procurement criteria for ‘Australian businesses’ – Cloud – Hardware – Software
The government has for the first time drawn up an official definition of an Australian business as part of new federal procurement guidance. To qualify…