370+Ivanti Connect Secure Exploited Using 0-Day Vulnerability
A major cybersecurity incident has come to light, with more than 370 Ivanti Connect Secure (ICS) devices reportedly compromised through the exploitation of a zero-day…
Author: Cybernoz
Hackers Use XWorm RAT to Exploit Script Kiddies, Pwning 18,000 Devices
Crooks pwning crooks – Hackers exploit script kiddies with XWorm RAT, compromising 18,000+ devices globally and stealing sensitive data via Telegram-based C&C. CloudSEK has discovered…
Loan Charge under review: MPs brand latest independent inquiry into controversial policy ‘a farce’
A cross-party group of MPs has branded the government’s newly announced independent review of HM Treasury’s controversial Loan Charge policy a “farce”, now details of…
A Practical Guide to Investigating IoT Devices with the SecurityTrails API
The last decade is arguably one of exceptional growth and transformation, with technologies like the Internet of Things (IoT) leading us to add sensory awareness…
Managed Detection and Response – How are you monitoring?
Security Information and Event Management (SIEM) systems are now a critical component of enterprise security operations, helping organizations detect, respond to, and manage threats in…
HellCat and Morpheus Ransomware Share Identical Payloads for Attacks
The cybersecurity landscape witnessed a surge in ransomware activity during the latter half of 2024 and into early 2025, with the emergence of operations like…
Ransomware attacks surged in December 2024
Ransomware attacks saw a sharp increase in December 2024, as confirmed by a report from NCC Group, a UK-based information assurance firm. This rise in…
Outdated Exchange servers fail to auto-mitigate security bugs
Microsoft says outdated Exchange servers cannot receive new emergency mitigation definitions because an Office Configuration Service certificate type is being deprecated. Emergency mitigations (also known…
CISA Releases Six ICS Advisories Highlighting Critical Security Vulnerabilities
U.S. Cybersecurity and Infrastructure Security Agency (CISA) issued six Industrial Control Systems (ICS) advisories to address significant vulnerabilities in critical systems used across various industries.…
The Age of Unseen Truths And Deceptive Lies
From the moment we’re born, we are surrounded by a mix of true and false information. In the past, distinguishing between them was relatively easy,…
Salt Typhoon Hacked Nine U.S. Telecoms, Tactics and Techniques Revealed
Salt Typhoon, a state-sponsored Advanced Persistent Threat (APT) group linked to the People’s Republic of China (PRC), has executed one of the most sophisticated cyber-espionage…
PayPal Hit With $2 Million Fine For Cybersecurity Failures
The New York State Department of Financial Services (NYDFS) has imposed a $2 million fine on PayPal, Inc. for violations of its stringent cybersecurity regulations.…