Author: Cybernoz

Salesforce AI hack
25
Sep
2025

Salesforce AI Hack Enabled CRM Data Theft

Prompt injection and an expired domain could have been used to target Salesforce’s Agentforce platform for data theft. The attack…

Threat group linked to UK, US retail attacks now targeting insurance industry
25
Sep
2025

Cyber insurance could greatly reduce losses from diversification, mitigation measures

The cyber insurance market could reduce exposure to catastrophic risk by diversifying portfolios by geography and industry and employing mitigation…

Malicious Rust packages on Crates.io steal crypto wallet keys
25
Sep
2025

Malicious Rust packages on Crates.io steal crypto wallet keys

Two malicious packages with nearly 8,500 downloads in Rust’s official crate repository scanned developers’ systems to steal cryptocurrency private keys…

Chinese State-Sponsored Hackers Targeting Telecommunications Infrastructure to Steal Sensitive Data
25
Sep
2025

Chinese State-Sponsored Hackers Targeting Telecommunications Infrastructure to Steal Sensitive Data

Chinese state-sponsored cyber threat group Salt Typhoon has intensified long-term espionage operations against global telecommunications infrastructure, according to recent legal…

function to define the ingredients
25
Sep
2025

New SVG-based phishing campaign is a recipe for disaster

We’ve written in the past about cybercriminals using SVG files for phishing and for clickjack campaigns. We found a new,…

Salesforce Patches Critical ForcedLeak Bug Exposing CRM Data via AI Prompt Injection
25
Sep
2025

Salesforce Patches Critical ForcedLeak Bug Exposing CRM Data via AI Prompt Injection

Sep 25, 2025Ravie LakshmananVulnerability / AI Security Cybersecurity researchers have disclosed a critical flaw impacting Salesforce Agentforce, a platform for…

Critical infrastructure operators putting more insecure industrial equipment on the internet
25
Sep
2025

Critical infrastructure operators putting more insecure industrial equipment on the internet

Listen to the article 3 min This audio is auto-generated. Please let us know if you have feedback. Dive Brief:…

Cisco uncovers new SNMP vulnerability used in attacks on IOS devices
25
Sep
2025

Cisco uncovers new SNMP vulnerability used in attacks on IOS devices

Cisco Systems has issued security updates to address a critical vulnerability in its widely deployed IOS and IOS XE network…

Cisco IOS and XE Vulnerability Let Remote Attacker Bypass Authentication and Access Sensitive Data
25
Sep
2025

Cisco IOS and XE Vulnerability Let Remote Attacker Bypass Authentication and Access Sensitive Data

A critical vulnerability in the implementation of the TACACS+ protocol for Cisco IOS and IOS XE Software could allow an…

Choosing the Right C3PAO for Your CMMC Level 2 Certification
25
Sep
2025

Choosing the Right C3PAO for Your CMMC Level 2 Certification

If you’re aiming for CMMC Level 2 certification, choosing the right C3PAO (Certified Third-Party Assessment Organization) is one of the…

BQTLOCK Ransomware Attacking Windows Users Via Telegram to Encrypt Files and Delete Backup
25
Sep
2025

BQTLOCK Ransomware Attacking Windows Users Via Telegram to Encrypt Files and Delete Backup

Security researchers have uncovered a new Ransomware-as-a-Service (RaaS) strain named BQTLOCK that is actively targeting Windows users through Telegram channels…

ForcedLeak Flaw in Salesforce Agentforce AI Agent Exposed CRM Data
25
Sep
2025

ForcedLeak Flaw in Salesforce Agentforce AI Agent Exposed CRM Data

A vulnerability dubbed ForcedLeak was recently discovered in Salesforce Agentforce, an AI-driven system designed to handle complex business tasks within…