Threat Intelligence In Telecommunication: CISO’s Lifeline
The telecommunications industry stands at the crossroads of innovation and vulnerability. As one of the backbone industries of digital economies, telcos handle vast amounts of…
Author: Cybernoz
Threat Actors Using OS Command Injection Vulnerabilities To Compromise Systems
By exploiting OS command injection vulnerabilities, threat actors can run arbitrary commands on a host operating system to obtain unauthorized access, control, and the power…
RaspAP Flaw-Hackers Escalate Privileage with Raspberry Pi Devices
A critical local privilege escalation vulnerability has been discovered in RaspAP, an open-source project designed to transform Raspberry Pi devices into wireless access points or…
UK government invests £106m in five quantum tech hubs
The government is ploughing millions of pounds into five new quantum hubs in Glasgow, Edinburgh, Birmingham, Oxford and London to bring together researchers and businesses.…
North Korean Onyx Sleet Using Group Of Malware And Exploits to Gain Intelligence
Onyx Sleet, a cyber espionage group also known as SILENT CHOLLIMA, Andariel, DarkSeoul, Stonefly, and TDrop2, mainly targets the military, defense sector, and technology in…
Ukraine Claims Cyber Attack Disrupted Russian ATMs and Banking System
Ukraine launches a massive cyber attack on Russia, disrupting ATM services, online banking, and financial institutions. Reportedly, a series of cyber attacks affected critical infrastructure…
Quad Talks Enhance Maritime Security And Cyber Defense
In a key step to improve maritime safety in the Asia-Pacific region, top diplomats from Japan, the United States, Australia, and India met in Tokyo…
Hackers Exploiting MSHTML vulnerability Deliver Atlantida Malware
Void Banshee, a threat actor, has been exploiting a critical MSHTML vulnerability, CVE-2024-38112, to distribute the Atlantida InfoStealer malware. This sophisticated campaign has targeted unsuspecting…
Hackers Attacking Users Searching For W2 Form
A malicious campaign emerged on June 21, 2024, distributing a JavaScript file hosted on grupotefex.com, which executes an MSI installer, subsequently dropping a Brute Ratel…
eBook: 20 tips for secure cloud migration
More organizations rely on cloud platforms to reap the benefits of scalability, flexibility, availability, and reduced costs. However, cloud environments come with security challenges and…
Malicious Python Package Attacking macOS Developers To Steal GCP Logins
Hackers continuously exploit malicious Python packages to attack developer environments and inject harmful code that enables them to steal sensitive information, install malware, or create…
Microsoft 365 users targeted by phishers abusing Microsoft Forms
There has been an uptick in phishing campaigns leveraging Microsoft Forms this month, aiming to trick targets into sharing their Microsoft 365 login credentials. A…