New attack uses MSC files and Windows XSS flaw to breach networks
A novel command execution technique dubbed ‘GrimResource’ uses specially crafted MSC (Microsoft Saved Console) and an unpatched Windows XSS flaw to perform code execution via…
Author: Cybernoz
Critical Flaws In Microsoft, VMware, Veeam, ASUS
Cyble Research & Intelligence Labs (CRIL) last week analyzed 154 vulnerabilities in its weekly vulnerability report, including critical flaws in products from the likes of…
Threat actors compromised 1,590 CoinStats crypto wallets
Threat actors compromised 1,590 CoinStats crypto wallets Pierluigi Paganini June 24, 2024 Threat actors breached 1,590 cryptocurrency wallets of the cryptocurrency portfolio management and tracking…
Four FIN9 hackers indicted for cyberattacks causing $71M in losses
Four Vietnamese nationals linked to the international cybercrime group FIN9 have been indicted for their involvement in a series of computer intrusions that caused over $71…
30M User Records for Sale
A hacker using the alias “Sp1d3r” has claimed to have breached TEG, an Australian ticketing giant, compromising the personal data of approximately 30 million users.…
Change Healthcare confirms the customer data stolen in ransomware attack
For the first time since news broke about a ransomware attack on Change Healthcare, the company has released details about the data stolen during the…
Widespread Use of Rafel RAT Puts 3.9 Billion Android Devices at Risk
In its latest research report, Check Point Research (CPR) reveals that multiple threat actors are using Rafel, a powerful open-source remote access trojan (RAT), targeting…
LockBit ransomware spinoff variant targets Indonesia Govt data centers
In recent days, Indonesia has been grappling with significant disruptions to airport services and banking operations following a ransomware attack attributed to a variant known…
Google Introduces Project Naptime for AI-Powered Vulnerability Research
Jun 24, 2024NewsroomVulnerability / Artificial Intelligence Google has developed a new framework called Project Naptime that it says enables a large language model (LLM) to…
IntelBroker Hacker Claims Massive Lindex Group Data Breach
Lindex Group, an international retail giant specializing in high-quality fashion, has reportedly fallen victim to a data breach. According to claims made by threat actor…
Google Claims That Only 1% of Installs From Chrome Store Has Malware
In 2024, Google reported that less than 1% of Chrome Web Store installations contained malware. Extensions are small software programs that enhance your browser experience.…
Critical RCE Vulnerability Discovered in Ollama AI Infrastructure Tool
Jun 24, 2024NewsroomArtificial Intelligence / Cloud Security Cybersecurity researchers have detailed a now-patch security flaw affecting the Ollama open-source artificial intelligence (AI) infrastructure platform that…