Experts warn of exploit attempt for Ivanti vTM bug
Experts warn of exploit attempt for Ivanti vTM bug Pierluigi Paganini August 19, 2024 Researchers at the Shadowserver Foundation observed an exploit attempt based on…
Author: Cybernoz
Linux Kernal Vulnerability Let Attackers Write on Memory
Researchers uncovered a vulnerability in the Linux kernel’s dmam_free_coherent() function, which stems from a race condition caused by the improper order of operations when freeing…
Microsoft Zero-Day CVE-2024-38193 was exploited by North Korea-linked Lazarus APT
Microsoft Zero-Day CVE-2024-38193 was exploited by North Korea-linked Lazarus APT Pierluigi Paganini August 19, 2024 Microsoft addressed a zero-day vulnerability actively exploited by the North-Korea-linked…
Copilot Autofix – A GitHub AI Tool Now Analyse Code Vulnerabilities
Copilot Autofix is a newly launched feature of the GitHub Advanced Security (GHAS) and this feature was designed to make it easier for users to…
Enhancing Internal Controls: Correlation, Mapping, and Risk Mitigation
Cyber incidents are escalating in frequency and severity as hackers across the globe continuously seek vulnerabilities to exploit. They are looking for a way into…
QWERTY Info Stealer Anti-Debugging Techniques to Exfiltrate Data
A new malware strain known as “QWERTY Info Stealer” has emerged. It targets Windows systems with advanced anti-debugging techniques and data exfiltration capabilities. This malware…
National Public Data Leaks Social Security Numbers of about 2.7 billion populaces
In the first week of August this year, a hacker released a dataset containing personal information of Americans from the servers of National Public Data,…
Microsoft Patches Zero-Day Flaw Exploited by North Korea’s Lazarus Group
Aug 19, 2024Ravie LakshmananVulnerability / Zero-Day A newly patched security flaw in Microsoft Windows was exploited as a zero-day by Lazarus Group, a prolific state-sponsored…
Keeping control of SaaS costs
Like other public cloud services, software-as-a-service (SaaS) providers make it extremely easy to purchase their products. This means SaaS-based application subscriptions can easily become unmanageable,…
Top Paying Countries for Cybersecurity Experts
As the global demand for cybersecurity experts continues to surge, driven by increasing cyber threats and complex digital infrastructures, certain countries stand out for offering…
Researchers Found a New Technique to Defend Cache Side Channel Attacks
Researchers from the University of Rochester have unveiled a novel technique to defend against cache side-channel attacks, a prevalent threat in modern computing systems. The…
Researchers Uncover New Infrastructure Tied to FIN7 Cybercrime Group
Aug 19, 2024Ravie LakshmananCybercrime / Network Security Cybersecurity researchers have discovered new infrastructure linked to a financially motivated threat actor known as FIN7. The two…