Overlooked essentials: API security best practices
In this Help Net Security, Ankita Gupta, CEO at Akto, discusses API security best practices, advocating for authentication protocols like OAuth 2.0 and OpenID Connect,…
Author: Cybernoz
Detect And Mitigate With Expert Tips
Phishing attacks represent the most prevalent cyber threat today, and their frequency is only rising. While this may be concerning, there are effective measures to…
SubSnipe: Open-source tool for finding subdomains vulnerable to takeover
SubSnipe is an open-source, multi-threaded tool to help find subdomains vulnerable to takeover. It’s simpler, produces better output, and has more fingerprints than other subdomain…
Void Banshee Exploits Legacy Internet Explorer In Attack
Researchers have uncovered a critical vulnerability (CVE-2024-38112) that the Void Banshee threat actor group has been actively exploiting in a recent campaign to deploy the…
Kaspersky offers free security software for six months in U.S. goodbye
Kaspersky is offering free security products for six months and tips for staying safe as a parting gift to consumers in the United States. The…
Hacker Dumps Personal Info of Millions of Users
The hacker behind the Trello data breach claims the data was stolen in January 2024 and can be used for doxing and further exposing the…
CISA warns critical Geoserver GeoTools RCE flaw is exploited in attacks
CISA is warning that a critical GeoServer GeoTools remote code execution flaw tracked as CVE-2024-36401 is being actively exploited in attacks. GeoServer is an open-source…
Kaspersky Labs to wind down US operations – Security
Kaspersky Labs will gradually wind down its US operations from July 20, the Russian anti-virus software maker said, nearly a month after the Biden administration…
Quantum Radiology recovers “majority” of patient records after 2023 cyber incident – Security
Quantum Radiology, a mostly Sydney-based medical imaging operator attacked at the end of last year, has now decrypted its “main” IT systems and recovered “the…
EU And Ukraine Forge Stronger Cybersecurity Partnership
With Ukraine embroiled in a brutal war and formally seeking EU membership, the recent EU-Ukraine Cyber Dialogue in Brussels signaled a critical shift – cybersecurity…
Iranian Group MuddyWater Switches To MuddyRot Malware
MuddyWater, a notorious threat actor group linked to the Iranian intelligence service, has been operating a new malware campaign that targeted several Western and Middle…
Australian Electoral Commission starts moving out of NEXTDC – Cloud – Networking
The Australian Electoral Commission is moving out of NEXTDC and into a CDC Data Centres facility, with plans to have the migration completed before the…