Author: Cybernoz

Weaponized Telegram & WhatsApp Apps
16
Mar
2023

Weaponized Telegram & WhatsApp Apps

ESET Research discovered the first incidence of clippers present in messaging apps. Several fake Telegram and WhatsApp websites have been…

Cryptojacking Group TeamTNT Suspected of Using Decoy Miner to Conceal Data Exfiltration
16
Mar
2023

Cryptojacking Group TeamTNT Suspected of Using Decoy Miner to Conceal Data Exfiltration

Mar 16, 2023Ravie LakshmananCryptojacking / Cyber Attack The cryptojacking group known as TeamTNT is suspected to be behind a previously…

TikTok banned on UK government devices
16
Mar
2023

TikTok banned on UK government devices

The UK government has banned the use of the Gen Z-beloved, China-owned social media application TikTok on government-owned devices with…

1year anniversary of BugBountyHunter & our second Hackevent | by Sean (zseano)
16
Mar
2023

1year anniversary of BugBountyHunter & our second Hackevent | by Sean (zseano)

Sorry for the silence from me lately with regards to any new writeups or anything interesting! The new dad life…

twitter
16
Mar
2023

Convincing Twitter ‘quote tweet’ phone scam targets bank customers

A convincing Twitter scam is targeting bank customers by abusing the quote-tweet feature, as observed by BleepingComputer.  What makes this scam stand out is…

Mandiant: Dangerous MS Outlook zero-day widely used against Ukraine
16
Mar
2023

Mandiant: Dangerous MS Outlook zero-day widely used against Ukraine

A serious elevation of privilege (EoP) vulnerability in Microsoft Outlook, which was disclosed and patched earlier this week in Microsoft’s…

Reflected XSS at fotoservice.hema.nl | by Jonathan Bouman
16
Mar
2023

Reflected XSS at fotoservice.hema.nl | by Jonathan Bouman

Proof of concept. Above the browser. Below a private slack channel displaying the credentials. BackgroundReflected XSS bugs are great fun…

Russia
16
Mar
2023

Winter Vivern APT hackers use fake antivirus scans to install malware

An advanced hacking group named ‘Winter Vivern’ targets European government organizations and telecommunication service providers to conduct espionage. The group’s…

US Federal Agency Hacked Using Telerik Vulnerability in IIS Server
16
Mar
2023

US Federal Agency Hacked Using Telerik Vulnerability in IIS Server

As a result of a joint effort of the CISA, FBI, and MS-ISAC, a public advisory was published recently. This…

Rubrik customer, partner data exposed in possible Clop attack
16
Mar
2023

Rubrik customer, partner data exposed in possible Clop attack

Rubrik, a supplier of cloud data management and security services, has disclosed a data breach, possibly attributable to the Clop…

16
Mar
2023

Loyola University Data Breach, Hackers Threaten to Leak Data

Peru-based Universidad San Ignacio de Loyola (USIL), also called St. Ignatius of Loyola University, has allegedly been breached. Hacker has…

Open Sesame: Escalating Open Redirect to RCE With Electron Code Review | by Eugene Lim | The Startup
16
Mar
2023

Open Sesame: Escalating Open Redirect to RCE With Electron Code Review | by Eugene Lim | The Startup

For better or worse, Node.js has rocketed up the developer popularity charts. Thanks to frameworks like React, React Native, and…