Threat actors exploit zero-days faster than ever – Week in security with Tony Anscombe
The average time it takes attackers to weaponize a vulnerability, either before or after a patch is released, shrank from 63 days in 2018-2019 to…
Author: Cybernoz
Chinese FamousSparrow hackers deploy upgraded malware in attacks
A China-linked cyberespionage group known as ‘FamousSparrow’ was observed using a new modular version of its signature backdoor ‘SparrowDoor’ against a US-based trade organization. The activity and…
Using Automated Pentesting to Build Resilience
“A boxer derives the greatest advantage from his sparring partner…”— Epictetus, 50–135 AD Hands up. Chin tucked. Knees bent. The bell rings, and both boxers…
Military AI caught in tension between speed and control
Military planners and industry figures say artificial intelligence (AI) can unlock back-office efficiency for the UK’s armed forces and help commanders make faster, better-informed decisions,…
ASIC scopes data forensics future ahead of Nuix deal expiry – Software
The Australian Securities and Investments Commission is planning a major overhaul of its digital evidence-gathering environment, ahead of the late-2027 expiry of a $22.7 million contract…
Bee-side 203 – AI Innovation, Dev Tools & Digital Security
New AI tools reshape email and knowledge management, Terminal advances boost dev workflow efficiency, Security flaws exposed in car cameras and cloud systems, OSINT methods…
UL NO. 453: A Deep-dive on Cyber Jobs
SECURITY | AI | PURPOSEUNSUPERVISED LEARNING is a newsletter about upgrading to thrive in a world full of AI. It’s original ideas, analysis, mental models,…
![[tl;dr sec] #257 - Autonomous AI Hacking, Buying us-east-1, macOS Security](https://image.cybernoz.com/wp-content/uploads/2025/03/tldr-sec-257-Autonomous-AI-Hacking-Buying-us-east-1-macOS.png)
[tl;dr sec] #257 – Autonomous AI Hacking, Buying us-east-1, macOS Security
AI finds an authentication bypass, what happens when you buy an AWS region name domain, fuzzing macOS and sandbox escapes I hope you’ve been doing…
What are they and how do I avoid them?
Watch out for schemes where fraudsters trick people into sharing verification codes so they can gain access to their phone numbers 21 Oct 2024 • …
UAE implements new regulations to tidy up the cryptocurrency market.
Anna Tarazevich/Pexels The UAE’s regulations aim to eliminate fraudulent crypto companies while welcoming legitimate enterprises. New regulations target ‘stablecoins’ Digital assets linked to the dirham…
Global cloud platforms provide data protection assurances for Saudis.
Unsplash/Getty Images Major players in the cloud computing sector are competing for presence in Saudi Arabia. Saudi Arabia has allocated $18 billion Leading companies are…
![[tl;dr sec] #258 - AI-powered Fuzzing and SAST, What Hackers know about your AWS Account, EDR Vulnerabilities](https://image.cybernoz.com/wp-content/uploads/2025/03/tldr-sec-258-AI-powered-Fuzzing-and-SAST-What-Hackers.png)
[tl;dr sec] #258 – AI-powered Fuzzing and SAST, What Hackers know about your AWS Account, EDR Vulnerabilities
Google’s AI-powered fuzzing and augmenting SAST with AI, new OSINT/recon service for public AWS identifiers, finding EDR vulns with fuzzing I hope you’ve been doing…