Hackers Weaponize Websites With LNK File To Deliver Weaponized LZH File
The watering hole attack leverages a compromised website to deliver malware. When a user visits the infected site, their system downloads an LZH archive containing…
Author: Cybernoz
Veritas Vulnerability Let Attackers Execute Arbitrary SQL Commands
A newly discovered vulnerability in Veritas/Arctera Data Insight software (versions 7.1 and prior) highlights a significant security concern, allowing attackers to execute arbitrary SQL commands…
US Treasury Department Breach, Hackers Accessed Workstations
The Biden administration confirmed that a Chinese state-sponsored hacking group breached the U.S. Treasury Department, gaining unauthorized access to employee workstations and unclassified documents. This…
Massive healthcare breaches prompt US cybersecurity rules overhaul
The U.S. Department of Health and Human Services (HHS) has proposed updates to the Health Insurance Portability and Accountability Act of 1996 (HIPAA) to secure…
Cloudflare Launches New Tool h3i for HTTP/3 Testing & Debugging
Cloudflare, a leader in Internet performance and security, has unveiled a powerful new open-source tool named h3i, designed to enhance testing and debugging for the HTTP/3…
New Botnet Exploiting D-Link Routers To Gain Control Remotely
Researchers observed a recent surge in activity from the “FICORA” and “CAPSAICIN,” both variants of Mirai and Kaiten, respectively, which exploit known vulnerabilities in D-Link…
China-linked actors hacked US Treasury Department
China-linked actors hacked US Treasury Department Pierluigi Paganini December 31, 2024 China-linked threat actors breached the U.S. Treasury Department by hacking a remote support platform…
TrueNAS CORE Vulnerability Let Attackers Execute Remote Code
Security researchers Daan Keuper, Thijs Alkemade, and Khaled Nassar from Computest Sector 7 disclosed a critical vulnerability in TrueNAS CORE, a widely-used open-source storage operating…
Chinese APT Exploits BeyondTrust API Key to Access U.S. Treasury Systems and Documents
Dec 31, 2025Ravie LakshmananVulnerability / Incident Response The United States Treasury Department said it suffered a “major cybersecurity incident” that allowed suspected Chinese threat actors…
Cybersecurity Trends of 2024: Adapting to a Changing Threat Landscape
As we move into 2024, the cybersecurity landscape continues to evolve rapidly in response to emerging technologies, increasing cyber threats, and shifting geopolitical dynamics. Organizations…
Chinese APT Hackers behind US Treasury breach of data
Chinese hackers, reportedly part of an Advanced Persistent Threat (APT) group, are accused of breaching the servers and workstations of the U.S. Department of the…
Regulations, security, and remote work: Why network outsourcing is booming
A growing number of enterprises in the US are adopting managed network services to support AI and other new technologies across increasingly complex networks, according…