Open-source vulnerability disclosure: Exploitable weak spots
Flaws in the vulnerability disclosure process of open-source projects could be exploited by attackers to harvest the information needed to...
Read more →Author: Cybernoz
New C2 Framework Iranian Hackers Using Against Israel
Nov 09, 2023NewsroomCyber Attack / Malware Iranian nation-state actors have been observed using a previously undocumented command-and-control (C2) framework called...
Read more →
The Security Interviews: Why cyber needs to integrate better
The intersection between business and technology has always fascinated Tony Buffomante, the global head of cyber security and risk services...
Read more →
Get to know our new Head of Hackers: @r0adrunn3r!
We’re thrilled to introduce our new Head of Hackers, Soti Giannitsari! In her previous role as Head of Community at...
Read more →
When Email Security Meets SaaS Security: Uncovering Risky Auto-Forwarding Rules
Nov 09, 2023The Hacker NewsEmail Security / SaaS Security While intended for convenience and efficient communication, email auto-forwarding rules can...
Read more →
US Shop Mall, The Body Shop Listed Victims
A mysterious cyber entity known only as ‘Nobody’ has emerged on the dark web, boasting possession of a vast trove...
Read more →
The largest Russian bank Sberbank hit by a massive DDoS attack
The largest Russian bank Sberbank hit by a massive DDoS attack Pierluigi Paganini November 09, 2023 The largest and oldest...
Read more →
Russian hackers switch to LOTL technique to cause power outage
Russian state hackers have evolved their methods for breaching industrial control systems by adopting living-off-the-land techniques that enable reaching the...
Read more →
Top Cyber Incident Response Plans
It is getting better and better that modern security tools can protect companies’ networks and endpoints from hackers. But sometimes,...
Read more →
8Base Ransomware Hits Ingeniería FULCRUM, Scheidt GmbH
The infamous 8Base ransomware group has allegedly expanded its list of victims, targeting well-established entities, Ingeniería FULCRUM and Scheidt GmbH,...
Read more →
SysAid Zero-Day Vulnerability Exploited by Ransomware Group
Organizations using SysAid IT service management software have been warned about a zero-day vulnerability that has been exploited by affiliates...
Read more →
CISA Says SLP Vulnerability Allowing Amplified DoS Attacks Exploited in the Wild
The US cybersecurity agency CISA on Wednesday issued a warning on threat actors exploiting a Service Location Protocol (SLP) vulnerability...
Read more →