How To Find Broken Access Control Vulnerabilities in the Wild
What Is Broken Access Control? BAC is a class of application vulnerability where a function or asset in the application is accessible to someone who…
Author: Cybernoz
Evil Corp hit with new sanctions, BitPaymer ransomware charges
The Evil Corp cybercrime syndicate has been hit with new sanctions by the United States, United Kingdom, and Australia, with the US also indicting one…
New Variant Of XWorm Delivered Via Windows Script File
XWorm refers to a type of malware that has been analyzed for its obfuscation techniques and potential impacts on systems. While this malware is known…
New PyPI Malware Poses as Crypto Wallet Tools to Steal Private Keys
Checkmarx researchers discovered PyPI malware posing as crypto wallet tools. These malicious packages stole private keys and recovery phrases, targeting wallets like Metamask, Trust Wallet,…
Russia Cyber attack on Nato countries and ransomware attack on UMC Health System
The Evil Corp Cyber Attack on NATO Countries The notorious Russian state-funded cyber threat group known as Evil Corp has recently made headlines for its…
Iran-linked Threat Group Handala Actively Targets Israel
Iran-linked threat actors have become increasingly active in 2024, but one such group has so far gone relatively unnoticed. Handala has landed on our radar…
Police arrest four suspects linked to LockBit ransomware gang
Law enforcement authorities from 12 countries arrested four suspects linked to the LockBit ransomware gang, including a developer, a bulletproof hosting service administrator, and two…
Authorities Unmasked LockBit Affiliate Evil Corp Key Member
Law enforcement agencies have identified Russian national Aleksandr Viktorovich Ryzhenkov as a key member of the notorious Evil Corp cybercrime group and a LockBit ransomware…
Unmasked: The Evil Corp cyber gangster who worked for LockBit
The UK’s National Crime Agency (NCA) has named and shamed a high-profile LockBit affiliate as its ongoing Operation Cronos takedown action against the notorious gang…
U.S. CISA adds D-Link DIR-820 Router, DrayTek Multiple Vigor Router, Motion Spell GPAC, SAP Commerce Cloud bugs to its Known Exploited Vulnerabilities catalog
U.S. CISA adds D-Link DIR-820 Router, DrayTek Multiple Vigor Router, Motion Spell GPAC, SAP Commerce Cloud bugs to its Known Exploited Vulnerabilities catalog Pierluigi Paganini…
API Gateways and API Protection: What’s the Difference?
Modern businesses are increasingly reliant on APIs. They are the building blocks facilitating data exchange and communication between disparate systems. Because of their prevalence and…
Microsoft fixes Windows KB5043145 reboot loops, USB and Bluetooth issues
Microsoft fixes a known issue in the Windows KB5043145 preview update that causes reboot loops, freezes systems, and breaks USB and Bluetooth devices. The company…