PKfail, Critical Firmware Supply-Chain Issue Let Attackers Bypass Secure Boot
Hackers often attack secure boot during the boot process to execute unauthorized code, which gives them the ability to bypass a system’s security measures. By…
Author: Cybernoz
South Korea Data Breach Exposes Sensitive Military Documents
South Korea has recently disclosed a data breach involving its Korea Defense Intelligence Command (KDIC), a critical arm of the nation’s military intelligence apparatus. The…
‘Stargazer Goblin’ Creates 3,000 Fake GitHub Accounts for Malware Spread
A threat actor known as Stargazer Goblin has set up a network of inauthentic GitHub accounts to fuel a Distribution-as-a-Service (DaaS) that propagates a variety…
Spyware Provider for Windows, Mac & Android Hacked, Sensitive Data Exposed
TechCrunch has learned that Spytech, a little-known spyware maker based in Minnesota, has been hacked, exposing sensitive data from thousands of devices worldwide. The breach…
French Govt Investigating Recent Malware Attack
The French government has investigated a malware attack that compromised approximately 3,000 machines within the country. The attack, part of a more extensive botnet operation…
Cloud databases: Base jumping for the bigger picture
The way organisations store, manage and analyse data will always be a challenging issue given the constant assault of data on corporate IT systems. It’s…
Casper Network Security Breach: Operations Suspended
Casper Network has halted all operations due to a cyberattack on its blockchain platform. The Casper Network security breach was detected by the IT team,…
Ghostwriter targeted Ukraine with PicassoLoader malware
Belarus-linked APT Ghostwriter targeted Ukraine with PicassoLoader malware Pierluigi Paganini July 29, 2024 Belarus-linked APT group GhostWriter targeted Ukrainian organizations with a malware family known…
Misconfigured Selenium Grid servers abused for Monero mining
Threat actors are exploiting a misconfiguration in Selenium Grid, a popular web app testing framework, to deploy a modified XMRig tool for mining Monero cryptocurrency. Selenium…
RADIUS Protocol Vulnerability Impacted Multiple Cisco Products
A critical vulnerability in the Remote Authentication Dial-In User Service (RADIUS) protocol has been disclosed, affecting multiple Cisco products. The vulnerability, CVE-2024-3596, allows an on-path…
Microsoft CrowdStrike Software Update leading to Phishing Attacks
A couple weeks ago, an IT outage hit Microsoft Windows 10 and 11 servers shortly after CrowdStrike released a Falcon Sensors software update. Rather than…
The cost of cybersecurity burnout: Impact on performance and well-being
This article includes excerpts from recent reports we covered, providing statistics and insights into the levels of stress and burnout experienced by cybersecurity professionals. Most…