Webworm APT targets European government organizations with new backdoors
ESET has released an analysis of the 2025 activity of Webworm, a China-aligned APT group tracked as Space Pirates and UAT-8302. Active since at least…
Author: Cybernoz
Fake malware-signing service Fox Tempest dismantled by Microsoft
Microsoft says it dismantled a malware-signing-as-a-service (MSaaS) called Fox Tempest, which helped cybercriminals make malware appear legitimate. The service let customers submit malicious files to…
Microsoft Takes Down Malware-Signing Service Behind Ransomware Attacks
Microsoft on Tuesday said it disrupted a malware-signing-as-a-service (MSaaS) operation that weaponized the company’s Artifact Signing system to deliver malicious code and conduct ransomware and…
Bulgaria fires up Google Cloud for national cyber security
Bulgaria’s national system integrator, Bulgaria Information Services (BIS) has deployed Google Cloud’s Cybershield service to enhance the eastern European country’s national cyber defence capabilities, one…
Travel Booking Fraud Rises Ahead Of Summer Holidays
Dubai Police has warned residents and travellers about the sharp rise in travel booking fraud and fake holiday offers circulating online during the summer vacation…
Quantum Bridge Raises $8 Million for Quantum-Safe Key Distribution Solution
Toronto, Canada-based Quantum Bridge announced on Wednesday that it has raised $8 million in Series A funding for its quantum-safe key distribution solution. The new…
Microsoft issues YellowKey mitigation, no patch yet
Microsoft issues YellowKey mitigation, no patch yet Pierluigi Paganini May 20, 2026 Microsoft acknowledged the YellowKey BitLocker bypass flaw and released mitigations, urging admins to…
7-Eleven hit by data breach
The retailer confirmed that an unauthorized third party gained access to certain systems used to store franchisee documents earlier this spring. Source link
GitHub says internal repositories were taken in poisoned VS Code extension attack
GitHub said late Tuesday that internal repositories were exfiltrated after an employee device was compromised through a poisoned Visual Studio Code extension, an incident that…
Operationalizing CTEM Faster: Build Surface Command Dashboards in Minutes
Modern attack surfaces don’t sit still. Cloud expansion, SaaS sprawl, identity complexity, and shadow IT are continuously reshaping organizational risk. For security leaders, visibility isn’t…
SHub Reaper impersonates Apple, Google, and Microsoft in one MacOS attack chain
Reaper changes tactics by moving execution into Apple’s Script Editor, sidestepping the protections Apple recently introduced to curb Terminal-based attacks. The end goal, however, remains…
CrowdSec flags rising exploitation of Four-Faith industrial routers as botnet activity grows across critical sectors
Threat actors are actively exploiting a critical authentication bypass flaw in Four-Faith F3x36 industrial cellular routers, with security researchers warning that the attacks have escalated…