Author: Cybernoz

Researchers find flaw in Mend.io security platform
25
Jan
2024

Bugcrowd sees surge in vulnerability submissions, led by public sector

Multi-solution crowdsourced cyber security platform Bugcrowd says it saw growing acceptance and adoption of crowdsourced security strategies among mainstream end-user…

Hackers target WordPress database plugin active on 1 million sites
25
Jan
2024

Hackers target WordPress database plugin active on 1 million sites

Malicious activity targeting a critical severity flaw in the ‘Better Search Replace’ WordPress plugin has been detected, with researchers observing…

5379 GitLab Servers are Vulnerable to Zero-Click Takeover Attacks
25
Jan
2024

5379 GitLab Servers are Vulnerable to Zero-Click Takeover Attacks

GitLab has released important security fixes for versions 16.7.2, 16.6.4, and 16.5.6 for GitLab Community Edition (CE) and Enterprise Edition…

The sophistication of cybercriminals intensifies with emerging strategies for cashing in or causing chaos
25
Jan
2024

The sophistication of cybercriminals intensifies with emerging strategies for cashing in or causing chaos

While tried and true tactics like phishing and malware are here to stay, there are always new approaches to watch…

Webinar
25
Jan
2024

Kasseika Ransomware Exploits Driver Functionality to Kill Antivirus

Ransomware is a tool that hackers use to extort money from their targets like individuals, businesses, and governments. The malware…

Pwn2Own Automotive: Tesla, Sony, Alpine Players Breached on Day One
25
Jan
2024

Tesla, Sony, Alpine Players Breached on Day One

Pwn2Own Automotive 2024 takes place in Tokyo, Japan, from January 24 to 26. The Pwn2Own Automotive 2024 hacking contest, taking…

Regula introduces smart testing for remote onboarding efficiency
25
Jan
2024

Regula introduces smart testing for remote onboarding efficiency

Currently, over 75% of countries worldwide use electronic documents equipped with NFC chips. Due to this fact, virtually every business…

Critical Jenkins Vulnerability
25
Jan
2024

Critical Jenkins Vulnerability Exposes Servers to RCE Attacks

Jan 25, 2024NewsroomVulnerability / Software Security The maintainers of the open-source continuous integration/continuous delivery and deployment (CI/CD) automation software Jenkins…

Cisco updates AppDynamics with Smart Agents to tackle sprawl
25
Jan
2024

Cisco updates AppDynamics with Smart Agents to tackle sprawl

Cisco has developed technology to help developers manage the software agents they use to monitor applications and IT infrastructure. Smart…

How a Group of Israel-Linked Hackers Has Pushed the Limits of Cyberwar
25
Jan
2024

How a Group of Israel-Linked Hackers Has Pushed the Limits of Cyberwar

Predatory Sparrow is distinguished most of all by its apparent interest in sending a specific geopolitical message with its attacks,…

QR Code Phishing Soars 587%: Users Falling Victim to Social Engineering Scams
25
Jan
2024

Users Falling Victim to Social Engineering Scams

Check Point’s Live Cyber Threat Map identified 20,000 instances of QR code phishing and malware attacks within two weeks, highlighting…

Blackwood APT delivers malware by hijacking legitimate software update requests
25
Jan
2024

Blackwood APT delivers malware by hijacking legitimate software update requests

ESET researchers have discovered NSPX30, a sophisticated implant used by a new China-aligned APT group, which they dubbed Blackwood. Blackwood…