New APT Actor240524 Weaponizing Official Documents To Deliver Malware
A new APT group, dubbed Actor240524, launched a spear-phishing campaign targeting Azerbaijani and Israeli diplomats on July 1, 2024, where the attackers employed a malicious…
Author: Cybernoz
ADT Data Breach: Customers Personal Information Exposed
ADT Inc., a prominent security and automation solutions provider, reported that unauthorized actors accessed specific databases containing customer order information. The company swiftly addressed the…
Leaked MDM Credentials Exposes Commonly Laptops And Smartphones For Hacking
Mobile Device Management (MDM) is a device management solution for laptops, tablets, and smartphones used by organizations to enable them to control and protect their…
The shifting landscape of DEI in the tech industry
If the number of recent organisational closures is anything to go by, diversity, equity and inclusion (DEI) in the UK technology sector is struggling. Women…
CISA Warns of Hackers Exploiting Cisco Smart Install Feature
Attackers obtain system configuration files by taking advantage of software or protocols that are installed on devices, such as by abusing the legacy Cisco Smart…
Google Researchers Found Nearly a Dozen Flaws in Popular Qualcomm Software for Mobile GPUs
Demand for graphics processing units or GPUs has exploded in recent years as video rendering and artificial intelligence systems have expanded the need for processing…
North Korean Kimusky Group Attacking University Professors
Kimsuky, a North Korean APT group, employs targeted phishing campaigns, leveraging DMARC exploitation to conceal social engineering, infiltrate university networks, and steal research for the…
Experts Uncover Severe AWS Flaws Leading to RCE, Data Theft, and Full-Service Takeovers
Aug 09, 2024Ravie LakshmananCloud Security / Data Protection Cybersecurity researchers have discovered multiple critical flaws in Amazon Web Services (AWS) offerings that, if successfully exploited,…
Kubernetes at 10: CRDs at core of extensible, modular storage in K8s
Kubernetes is 10! Mid-2024 sees the 10th birthday of the market-leading container orchestration platform. Xing Yang, cloud-native storage tech lead at VMware by Broadcom, started working…
Malware force-installs Chrome extensions on 300,000 browsers, patches DLLs
An ongoing and widespread malware campaign force-installed malicious Google Chrome and Microsoft Edge browser extensions in over 300,000 browsers, modifying the browser’s executables to hijack homepages…
Critical XSS Vulnerability In Roundcube Let Attackers Execute Arbitrary Code
Roundcube, a widely adopted open-source webmail application, is included by default in the popular cPanel web hosting control panel, leading to millions of installations worldwide. …
Iranian Hackers Targeting 2024 US Election Campaigns
Microsoft has released a report detailing Iran’s efforts to influence the upcoming 2024 US presidential election. The report highlights the increasing activity of groups linked…