Iranian Hackers Deploy New BugSleep Backdoor in Middle East Cyber Attacks
The Iranian nation-state actor known as MuddyWater has been observed using a never-before-seen backdoor as part of a recent attack campaign, shifting away from its…
Author: Cybernoz
Medius Appoints Fahmi Megdiche As CISO
Medius, a global leader in AP automation and spend management solutions, has announced the appointment of Fahmi Megdiche as its new Chief Information Security Officer…
Apache HugeGraph-Server RCE Vulnerability Under Active Attack
Attackers are actively exploiting a critical remote code execution (RCE) vulnerability in Apache HugeGraph-Server, which is tracked as CVE-2024-27348. The vulnerability affects versions 1.0.0 to…
HardBit Ransomware Using Passphrase Protection To Evade Detection
In 2022, HardBit Ransomware emerged as version 4.0. Unlike typical ransomware groups, this ransomware doesn’t use leak sites or double extortion. Their tactics include data…
Threat Prevention & Detection in SaaS Environments
Identity-based threats on SaaS applications are a growing concern among security professionals, although few have the capabilities to detect and respond to them. According to…
Massive hyperscaler GenAI spend raises questions on costs
The latest Gartner worldwide IT spending forecast shows that the analyst firm expects a 7.5% increase in spending compared to 2023. Total spending on IT…
Multiple Netgear Vulnerabilities Let Attackers Bypass Authentication
NETGEAR has released an update to the firmware to address a high-severity authentication bypass vulnerability that currently affects CAX30 models. The attacker exploiting this flaw…
SYS01 info-stealer pushed via Facebook ads, LinkedIn and YouTube posts
Malicious Google ads are a well known threat, but malvertising can also be found on other popular online destinations such as Facebook, LinkedIn, and YouTube.…
Malicious npm Packages Found Using Image Files to Hide Backdoor Code
Jul 16, 2024NewsroomOpen Source / Software Supply Chain Cybersecurity researchers have identified two malicious packages on the npm package registry that concealed backdoor code to…
FBI Successfully Unlocks Trump Shooting Suspect’s Phone
The FBI revealed on Monday that they have achieved access to the phone of the alleged shooter, Thomas Matthew Crooks, marking a notable breakthrough in…
New Poco RAT Weaponizing 7zip Files Using Google Drive
The hackers weaponize 7zip files to pass through security measures and deliver malware effectively. These archived files can hide malicious content, which makes it more…
Void Banshee APT Exploits Microsoft MHTML Flaw to Spread Atlantida Stealer
Jul 16, 2024NewsroomData Security / Vulnerability An advanced persistent threat (APT) group called Void Banshee has been observed exploiting a recently disclosed security flaw in…