Facebook and Instagram Ads Push Gun Silencers Disguised as Car Parts
Experts believe the operation is based in China and relies on a drop-shipping scheme. “It’s likely just a reshipper selling controversial or illegal products,” says…
Author: Cybernoz
NPM Package Disguised as an Ethereum Tool Deploys Quasar RAT
SUMMARY Malicious NPM Package Identified: “ethereumvulncontracthandler” disguises as a vulnerability scanner but installs Quasar RAT malware. Technical Details: The package uses obfuscation and downloads scripts…
New AI Jailbreak Method ‘Bad Likert Judge’ Boosts Attack Success Rates by Over 60%
Jan 03, 2025Ravie LakshmananMachine Learning / Vulnerability Cybersecurity researchers have shed light on a new jailbreak technique that could be used to get past a…
Corporate cover-up behind world-beating cyber security record in Middle East
Only two of the top 100 listed companies in the Middle East reported cyber security incidents last year, according to defence vulnerability scanning firm SecurityScorecard,…
US Army Soldier Arrested For Selling Stolen Confidential Phone Records
Federal authorities have unsealed an indictment against a U.S. Army soldier, accusing him of selling and attempting to sell stolen confidential phone records. Cameron John…
ASUS Critical Vulnerabilities Let Attackers Execute Arbitrary Commands
72 Hours to Audit-Ready API Security APIs present a unique challenge in this landscape, as risk assessment and mitigation are often hindered by incomplete API…
LDAPNightmare, a PoC exploit targets Windows LDAP flaw CVE-2024-49113
LDAPNightmare, a PoC exploit targets Windows LDAP flaw CVE-2024-49113 Pierluigi Paganini January 03, 2025 Experts warn of a new PoC exploit, LDAPNightmare, that targets a…
Malicious npm Packages Attacking Developers To Steal Sensitive
A malicious npm campaign that poses as the Hardhat plugins and the Nomic Foundation is observed to target Ethereum developers to acquire private keys and…
Around 3.3M POP3 and IMAP mail servers lack TLS encryption
Around 3.3 million POP3 and IMAP mail servers lack TLS encryption Pierluigi Paganini January 03, 2025 Over 3 million POP3 and IMAP mail servers lack…
Terraform’s Do Kwon Extradited For Cryptocurrency Fraud
Do Hyeong Kwon, the co-founder and former CEO of Terraform Labs, was extradited from Montenegro and appeared in federal court in Manhattan, where he faced…
LDAPNightmare PoC Exploit Crashes LSASS and Reboots Windows Domain Controllers
Jan 03, 2025Ravie LakshmananWindows Server / Threat Mitigation A proof-of-concept (PoC) exploit has been released for a now-patched security flaw impacting Windows Lightweight Directory Access…
NTT Docomo Hit by DDoS Attack, Services Disrupted for 11 Hours
NTT Docomo, one of Japan’s leading telecommunications and IT service providers, experienced a massive disruption on January 2, 2025, after a Distributed Denial of Service…