Octo2 Malware Uses Fake NordVPN, Chrome Apps to Infect Android Devices
Octo2 malware is targeting Android devices by disguising itself as popular apps like NordVPN and Google Chrome. This advanced trojan uses sophisticated techniques to evade…
Author: Cybernoz
EU adopts Cyber Resilience Act to secure connected products
The EU Council has adopted the Cyber Resilience Act (CRA), a new law that aims to make consumer products with digital components safe(r) to use.…
How Hybrid Password Attacks Work and How to Defend Against Them
Threat actors constantly change tactics to bypass cybersecurity measures, developing innovative methods to steal user credentials. Hybrid password attacks merge multiple cracking techniques to amplify…
Iran and China-linked actors used ChatGPT for preparing attacks
Iran and China-linked actors used ChatGPT for preparing attacks Pierluigi Paganini October 11, 2024 OpenAI disrupted 20 cyber and influence operations in 2023, revealing Iran…
US, UK Authorities Warn of Hackers Attacking Zimbra & TeamCity Servers
In a joint advisory issued on October 10, 2024, the US and UK cyber agencies have warned of ongoing attacks by Russian hackers targeting vulnerable…
Foxit PDF Reader Vulnerability Let Attackers Execute Arbitrary Code
Foxit PDF Reader has a memory corruption vulnerability that could allow an attacker to execute arbitrary code on the victim machine. Foxit PDF Reader is a…
CISA Warns of Threat Actors Exploiting F5 BIG-IP Cookies for Network Reconnaissance
Oct 11, 2024Ravie LakshmananVulnerability / Network Security The U.S. Cybersecurity and Infrastructure Security Agency (CISA) is warning that it has observed threat actors leveraging unencrypted…
New Exclusive Report Reveals Administrators Of BreachForums
The administrators behind the infamous dark web data breach forum, BreachForums, have been exposed. Established in March 2022, BreachForums quickly became a hub for cybercriminals…
Mamba Toolkit Abuses Multi-Factor Authentication In Sophisticated Phishing Attack
Phishing attacks are stealthy cyber threats where threat actors impersonate reputable entities to trick individuals into revealing sensitive information (“passwords” or “financial details”). These types…
One Year Later: The Israeli Tradition of Resilience
One year after Hamas attacked Israel on October 7, geopolitical tensions continue to undoubtedly impact various aspects of life in Israel. Yet, as they have…
Ubuntu 24.10 Oracular Oriole brings tighter security controls
Canonical released Ubuntu 24.10 Oracular Oriole, which brings notable advancements, including an updated kernel, new toolchains, and the GNOME 47 desktop environment, along with significant…
New Critical GitLab Vulnerability Could Allow Arbitrary CI/CD Pipeline Execution
Oct 11, 2024Ravie LakshmananDevOps / Vulnerability GitLab has released security updates for Community Edition (CE) and Enterprise Edition (EE) to address eight security flaws, including…