How Is API Abuse Different from Web Application Attacks by Bots?
API abuse and web application bot attacks are often confused. This is understandable, as both involve automated interactions and are usually executed by bots. Both…
Author: Cybernoz
Philippine Entrepreneur Combines Blockchain Innovation with Environmental Conservation through Ora Coin Foundation
Cebu-based entrepreneur Brian Christopher Aguilar has emerged as a notable figure in the cryptocurrency sector, leveraging blockchain technology to support environmental sustainability. As the founder…
Supply Chains Make Insider Threat Defense More Complex
Regular insider threats are bad enough — conventional security tools don’t detect them, they know where it’ll hurt to hit, and management doesn’t suspect them.…
In the cloud, effective IAM should align to zero-trust principles
In today’s digital landscape, the traditional security perimeter has dissolved, making identity the new frontline of defence. As organisations increasingly adopt cloud services and remote…
Hackers Exploiting ProjectSend Authentication Vulnerability In The Wild
Hackers are actively exploiting a critical authentication vulnerability in ProjectSend, a popular open-source file-sharing web application. The vulnerability, now identified as CVE-2024-11680, allows remote, unauthenticated…
INTERPOL Arrests 1,000 and Dismantles Cybercrime Networks Across Africa
Group-IB collaborated with INTERPOL and AFRIPO in a major crackdown on cybercrime in Africa for “Operation Serengeti.” This article provides details of the operation, including…
Zero-Day Attack Exploits Corrupted Files to Evade Advanced Security Tools
Cybersecurity experts at ANY.RUN have uncovered an active zero-day attack campaign that leverages corrupted files to bypass antivirus software, sandbox environments, and even email spam…
Philippine Entrepreneur Combines Blockchain Innovation with Environmental Conservation through Ora Coin Foundation
Cebu, Philippines, November 27th, 2024, CyberNewsWire Cebu-based entrepreneur Brian Christopher Aguilar has emerged as a notable figure in the cryptocurrency sector, leveraging blockchain technology to…
APT-C-60 Exploits WPS Office Vulnerability to Deploy SpyGlace Backdoor
Nov 27, 2024Ravie LakshmananMalware / Cyber Espionage The threat actor known as APT-C-60 has been linked to a cyber attack targeting an unnamed organization in…
Barings Law plans to sue Microsoft and Google over AI training data
A Manchester law firm has started on-boarding clients for a probable class action against Microsoft and Google, which it believes to be unlawfully collecting and…
RomCom Exploits Firefox & Windows Zero-Day Vulnerabilities
A Russia-aligned hacking group, known as RomCom (also identified as Storm-0978, Tropical Scorpius, or UNC2596), has successfully exploited two zero-day vulnerabilities—one in Mozilla Firefox and…
Bootkitty, The First UEFI Bootkit Targeting Linux Servers
Researchers have uncovered the first UEFI bootkit designed specifically for Linux systems, named Bootkitty. This discovery marks a pivotal moment in the evolution of UEFI…