Cisco ISE Vulnerabilities Enable Remote Code Execution
Cisco has released security updates to fix multiple vulnerabilities in its Identity Services Engine and Webex Services, warning that successful exploitation could lead to remote…
Author: Cybernoz
Vercel Security Incident Traced To Third-Party AI Tool
Vercel has disclosed a Vercel security incident involving unauthorized access to certain internal systems, with the breach traced back to a compromised third-party AI tool.…
Judo Bank hires ex-Bendigo CIO
Judo Bank has named Nathalie Moss as its chief technology officer, the first time since mid-2024 that an executive has held that specific title. Nathalie…
Proof Beats Promise: The Trust Crisis AI Is Creating
By Lakshmi Hanspal, Chief Trust Officer, DigiCert Artificial intelligence is transforming enterprise systems, quietly dismantling the foundations of digital trust. For decades, organisations operated on…
Für Cyberattacken gewappnet – Krisenkommunikation nach Plan
Lesen Sie, welche Aspekte für einen Krisenkommunikationsplan entscheidend sind. Gorodenkoff – shutterstock.com Cyberangriffe fordern nicht nur CISOs in punkto Prävention und Krisenbewältigung heraus. Auch die…
ConnectWise ScreenConnect CVE-2024-1709 & CVE-2024-1708
On February 19, 2024, ConnectWise published a security advisory for ScreenConnect version 23.9.8, referencing two vulnerabilities and software weaknesses. The same day, Huntress researchers worked…
Critical Vulnerability In Flowise Allows Remote Command Execution Via MCP Adapters
A critical vulnerability in Flowise and multiple AI frameworks has been discovered by OX Security, exposing millions of users to remote code execution (RCE). The…
Cloud deployment firm Vercel breached, advises secrets rotation
Cloud application deployment platform Vercel said it has suffered a security incident that involves unauthorised access to some of its internal systems, and is advising…
Weak vs. Strong AI Rollouts
I get to see and help with a lot of Anterprise AI rollouts. Some are brilliant, but most (even in 2026) are surprisingly bad. I’ve…
Guide: How to Know if your ScreenConnect Server is Hacked
You’ve probably seen it by now, but there was a major ConnectWise ScreenConnect vulnerability (CVE-2024-1708 and CVE-2024-1709) – which we’re calling “SlashAndGrab” – that’s been…
Apple account change alerts abused to send phishing emails
Apple account change notifications are being abused to send fake iPhone purchase phishing scams within legitimate emails sent from Apple’s servers, increasing legitimacy and potentially…
Services Australia tips virtual desktop consolidation
Services Australia has signalled a potential consolidation of virtual desktop technology, both for the agency directly and to departments that it provides IT shared services…