Palo Alto Networks warns hackers attempting to exploit a file read flaw in firewalls
Dive Brief: Palo Alto Networks warned that threat actors are working to exploit an authenticated file read vulnerability in its firewalls in an attack chain…
Author: Cybernoz
16 Extensions Infect Over 3.2 Million Users
A recent cybersecurity investigation has uncovered a cluster of 16 malicious Chrome extensions that have compromised at least 3.2 million users. These extensions, which include…
Botnet of 130K Devices Targets Microsoft 365 in Password-Spraying Attack
A new botnet-powered cyber attack is putting Microsoft 365 users at risk. Security researchers at SecurityScorecard have reported that over 130,000 compromised devices are being…
Botnet targets Basic Auth in Microsoft 365 password spray attacks
A massive botnet of over 130,000 compromised devices is conducting password-spray attacks against Microsoft 365 (M365) accounts worldwide, targeting basic authentication to evade multi-factor authentication.…
Inside the Telegram Groups Doxing Women for Their Facebook Posts
Once a woman was mentioned, her privacy was permanently compromised. Users frequently shared social media handles, which led other members to contact her—soliciting intimate images…
Hackers Unleash Devastating Cyber Assault on Critical Infrastructure
In a recent escalation of cyber threats, hackers have launched a targeted campaign, identified as UAC-0212, aimed at compromising critical infrastructure facilities in Ukraine. This…
Australia bans all Kaspersky products on government systems
The Australian government has banned all Kaspersky Lab products and web services from its systems and devices following an analysis that claims the company poses…
GitVenom Campaign Abuses Thousands of GitHub Repositories to Infect Users
The GitVenom campaign, a sophisticated cyber threat, has been exploiting GitHub repositories to spread malware and steal cryptocurrency. This campaign involves creating hundreds of fake…
New Malware Campaign Uses Cracked Software to Spread Lumma and ACR Stealer
Feb 24, 2025Ravie LakshmananEndpoint Security / Vulnerability Cybersecurity researchers are warning of a new campaign that leverages cracked versions of software as a lure to…
TVs at HUD Played an AI-Generated Video of Donald Trump Kissing Elon Musk’s Feet
Federal employees at the Department of Housing and Urban Development (HUD) were greeted this morning by television sets at the agency’s Washington, DC headquarters playing…
Android App on Google Play Targets Indian Users to Steal Login Credentials
A malicious Android application, Finance Simplified (package: com.someca.count), has been identified on the Google Play Store, targeting Indian users under the guise of a financial…
Surveillance pricing is “evil and sinister,” explains Justin Kloczko (Lock and Code S06E04)
This week on the Lock and Code podcast… Insurance pricing in America makes a lot of sense so long as you’re one of the insurance…