Nation-state group CL-STA-0969 targeted Southeast Asian telecoms in 2024
Nation-state group CL-STA-0969 targeted Southeast Asian telecoms in 2024 Pierluigi Paganini August 04, 2025 State-backed group CL-STA-0969 hit Southeast Asian...
Read more →Author: Cybernoz
AI-Powered Code Editor Cursor IDE Vulnerability Enables Remote Code Without User Interaction
A severe vulnerability in the popular AI-powered code editor Cursor IDE, dubbed “CurXecute,” allows attackers to execute arbitrary code on...
Read more →
Lovense flaws expose emails and allow account takeover
Lovense flaws expose emails and allow account takeover Pierluigi Paganini August 04, 2025 Lovense fixed bugs exposing emails and allowing...
Read more →
Vulnerabilities in Government-Linked Partner Software Allow Remote Code Attacks
Multiple serious security vulnerabilities have been discovered in Partner Software and Partner Web applications widely used by government agencies and...
Read more →
Gartner: What to look for in a customer data platform
Customer data platforms (CDPs) first gained popularity among marketing users as the technology tackled the marketing function’s complex customer data...
Read more →
APT37 Hackers Weaponizes JPEG Files to Attack Windows System Leveraging “mspaint.exe” File
A sophisticated new wave of cyberattacks attributed to North Korea’s notorious APT37 (Reaper) group is leveraging advanced malware hidden within...
Read more →
NestJS Vulnerability Allows Code Execution on Developer Machines
A critical remote code execution vulnerability has been discovered in the popular NestJS framework that could allow attackers to execute...
Read more →
A week in security (July 28 – August 3)
August 1, 2025 – OpenAI removed a short-lived experiment that allowed ChatGPT users to make their conversations discoverable by search...
Read more →
PlayPraetor Android Trojan Infects 11,000+ Devices via Fake Google Play Pages and Meta Ads
Cybersecurity researchers have discovered a nascent Android remote access trojan (RAT) called PlayPraetor that has infected more than 11,000 devices,...
Read more →
CrowdStrike investigated 320 North Korean IT worker cases in the past year
North Korean operatives seeking and gaining technical jobs with foreign companies kept CrowdStrike busy, accounting for almost one incident response...
Read more →
Microsoft PlayReady DRM Used by Netflix, Amazon, and Disney+ Leaked Online
A significant security breach has compromised Microsoft’s PlayReady Digital Rights Management (DRM) system, exposing critical certificates that protect premium streaming...
Read more →
Critical HashiCorp Vulnerability Allows Attackers to Run Code on Host Machine
HashiCorp has disclosed a critical security vulnerability affecting its Vault products that could allow privileged operators to execute arbitrary code...
Read more →