OWASP Smart Contract Top 10 2026 — Security Risks and Vulnerabilities
OWASP Smart Contract Top 10 2026 The Open Web Application Security Project (OWASP) has published the Smart Contract Top 10: 2026, a forward-looking standard awareness…
Author: Cybernoz
Wormable XMRig Campaign Uses BYOVD Exploit and Time-Based Logic Bomb
Cybersecurity researchers have disclosed details of a new cryptojacking campaign that uses pirated software bundles as lures to deploy a bespoke XMRig miner program on…
Innovate UK cyber startup programme gets £10m funding booster
The Department for Science, Innovation and Technology (DSIT) has committed to extending the Innovate UK-backed Cyber Security Academic Startup Accelerator Programme (CyberASAP) putting an additional…
New MIMICRAT Custom RAT Uncovered in Sophisticated Multi-Stage ClickFix Campaign
A sophisticated new cyber campaign has been uncovered, utilizing a deceptive technique known as “ClickFix” to distribute a custom remote access trojan dubbed MIMICRAT. This…
Multiple Zero-Day Flaws in PDF Platforms Enable XSS and One-Click Attacks
We often think of a PDF file (Portable Document Format file) as a simple digital version of a printed document. However, new research shared with…
Gap between upskilling intent and execution in business, says Pluralsight
Organisations understand the importance of giving their employees the opportunity to learn new skills, but many are falling short, according to research. A study from…
Hackers target vulnerabilities in Roundcube Webmail
Threat actors are targeting a critical and high severity vulnerability in Roundcube Webmail, which is widely used in government and higher education, according to security…
Microsoft MFA Down – 504 Gateway Timeout Errors Disrupting MFA Access for U.S. Users
Microsoft is currently investigating a significant service degradation affecting Multi-Factor Authentication (MFA) across its Microsoft 365 suite, with users in the North America region reporting…
AI helps novice threat actor compromise FortiGate devices in dozens of countries
Listen to the article 5 min This audio is auto-generated. Please let us know if you have feedback. A Russian-speaking threat actor used AI to…
New Phishing Framework Starkiller Proxies Real Login Pages to Bypass MFA
A highly sophisticated phishing framework named Starkiller has recently emerged, offering attackers an advanced method to steal credentials and bypass multi-factor authentication. Developed by a…
Spanish police arrest suspected Anonymous members over DDoS attacks on government sites
Spanish police (Guardia Civil) arrested four members of the hacktivist group Anonymous Fénix over DDoS attacks targeting ministries, political parties and public institutions. Police raid…
Romanian hacker pleads guilty to selling access to Oregon state networks
Romanian hacker pleads guilty to selling access to Oregon state networks Pierluigi Paganini February 23, 2026 A Romanian man pleaded guilty to selling admin access…