Bank of England and New York counterpart exchange puts technology cooperation into 3D
Financial services regulators in the UK and New York are to share staff through a secondment programme that kicks off next month. The New York…
Author: Cybernoz
Black Basta Abusing Teams Chat To Initiate Remote Session & Drop Malware
Notorious ransomware group Black Basta has been observed leveraging Microsoft Teams as part of a sophisticated social engineering campaign. This new tactic, which combines email…
A New Jam-Packed Biden Executive Order Tackles Cybersecurity, AI, and More
Four days before he leaves office, US president Joe Biden has issued a sweeping cybersecurity directive ordering improvements to the way the government monitors its…
FTC Slams GoDaddy For Not Implement Standard Security Practices Following Major Breaches
The Federal Trade Commission (FTC) has announced that it will require GoDaddy Inc. to develop and implement a comprehensive information security program. This decision comes…
New UEFI Secure Boot bypass vulnerability discovered (CVE-2024-7344)
ESET researchers have identified a vulnerability (CVE-2024-7344) impacting most UEFI-based systems, which allows attackers to bypass UEFI Secure Boot. The issue was found in a…
PlugX malware deleted from thousands of systems by FBI
The FBI says it has removed PlugX malware from thousands of infected computers worldwide. The move came after suspicion that cybercriminals groups under control of…
Davos 2025: Digital supply chains at risk as world faces two years of turbulence
The risk of conflict, growing protectionism, tariffs and trade wars, and growing regulation threaten to disrupt the supply chains of companies, including access to datacentres…
Ivanti Endpoint Manager Vulnerabilities Allows Attackers To Extract Sensitive Information
Ivanti addressed multiple severe vulnerabilities in its Endpoint Manager (EPM) software, potentially exposing organizations to significant data breaches. The most alarming of these flaws are…
Scammers Exploit California Wildfires, Posing as Fire Relief Services
SUMMARY Cybercriminals are exploiting the California wildfires to launch phishing campaigns. Veriti Research found fake domains like “malibu-firecom” designed to mimic legitimate services. These domains…
Cisco AI Defense safeguards against the misuse of AI tools
Cisco announced Cisco AI Defense, a pioneering solution to enable and safeguard AI transformation within enterprises. As AI technology advances, new safety concerns and security…
Botnet Malware Exploits 13,000 MikroTik Devices By Abusing Misconfigured DNS Records
Cybersecurity experts at Infoblox Threat Intel have uncovered a sophisticated botnet leveraging misconfigured DNS records to bypass email protection systems and deliver malware through spam…
Veeam Azure Backup Vulnerability Allows Attackers to Utilize SSRF & Send Unauthorized Requests
A critical vulnerability has been identified in Veeam Backup for Microsoft Azure, specifically referenced as CVE-2025-23082. Discovered during internal testing, this security flaw could allow…