A Premium Luggage Service’s Web Bugs Exposed the Travel Plans of Every User—Including Diplomats
An airline leaving all of its passengers’ travel records vulnerable to hackers would make an attractive target for espionage. Less...
Read more →Author: Cybernoz
Replit AI Agent Deletes SaaStr Network Data Without Permission
An AI agent operating within the Replit platform reportedly deleted an entire company database without permission. The incident occurred during...
Read more →
CastleLoader Malware Infects 469 Devices Using Fake GitHub Repos and ClickFix Phishing
Jul 24, 2025Ravie LakshmananMalware / Cybercrime Cybersecurity researchers have shed light on a new versatile malware loader called CastleLoader that...
Read more →
Scattered Spider victim Clorox sues helpdesk provider
IT services provider Cognizant is facing a multimillion-dollar lawsuit from one of its customers, which claims lax security procedures enabled...
Read more →
Metasploit Module Released For Actively Exploited SharePoint 0-Day Vulnerabilities
Researchers have developed a new Metasploit exploit module targeting critical zero-day vulnerabilities in Microsoft SharePoint Server that are being actively...
Read more →
UNC3944 Exploits VMware vSphere to Deploy Ransomware and Steal Data from Organizations
The Google Threat Intelligence Group has uncovered a highly advanced cyber operation orchestrated by the threat actor UNC3944, also linked...
Read more →
Storm-2603 spotted deploying ransomware on exploited SharePoint servers
One of the groups that, in the past few weeks, has been exploiting vulnerabilities in on-prem SharePoint installation has been...
Read more →IBM chief confident AI isn’t eroding other parts of the business
IBM expects to make $4.5bn in savings internally by scaling artificial intelligence (AI) initiatives. This is being achieved through a...
Read more →
Mitel warns of critical MiVoice MX-ONE authentication bypass flaw
Mitel Networks has released security updates to patch a critical-severity authentication bypass vulnerability impacting its MiVoice MX-ONE enterprise communications platform....
Read more →
Threat Actors Weaponizing .hwp Files to Deliver RokRAT Malware
Cybersecurity researchers have uncovered a sophisticated malware campaign where threat actors are exploiting Hangul Word Processor (.hwp) documents to distribute...
Read more →
Elephant APT Group Exploits VLC Player and Encrypted Shellcode in Attacks on Defense Sector
Arctic Wolf Labs has uncovered a sophisticated cyber-espionage operation attributed to the Dropping Elephant advanced persistent threat (APT) group, also...
Read more →
Introducing the smarter, more sophisticated Malwarebytes Trusted Advisor, your cybersecurity personal assistant
You ever get that feeling when you double-check the locks, but still wonder if you’ve missed something? That’s what a...
Read more →