CISA Issues New Advisory for Industrial Control Systems
The Cybersecurity and Infrastructure Security Agency (CISA) has released a new advisory concerning a critical vulnerability in industrial control systems (ICS). The advisory, issued on…
Author: Cybernoz
Hackers Attacking Vaults, Buckets, And Secrets To Steal Data
Hackers target vaults, buckets, and secrets to access some of the most classified and valuable information, including API keys, logins, and other useful data kept…
threat actors are calling customers, posing as support
CDK Global has cautioned customers about unscrupulous actors calling them and posing as CDK agents or affiliates to gain unauthorized systems access. The warning follows ongoing cyberattacks…
Hackers Published Sensitive Data Stolen From London Hospitals
A cyber-attack on London hospitals resulted in the publication of sensitive data stolen from Synnovis, a National Health Service (NHS) pathology provider. The attack, which…
Mailcow Mail Server Vulnerability Let Attackers Execute Remote Code
Two critical vulnerabilities (CVE-2024-31204 and CVE-2024-30270) affecting Mailcow versions before 2024-04 allow attackers to execute arbitrary code on the server. An attacker can exploit these…
Oyster Backdoor Spreading via Trojanized Popular Software Downloads
Jun 21, 2024NewsroomMalware / Malvertising A malvertising campaign is leveraging trojanized installers for popular software such as Google Chrome and Microsoft Teams to drop a…
Hackers Employing FB Infrastructure Steal Your Account Password
Cybercriminals in password theft are constantly developing new ways to deliver phishing emails. They’ve learned to use a legitimate Facebook mechanism to send fake notifications…
Beware Of Zergeca Botnet with Scanning & Persistence Features
A new botnet named Zergeca has emerged, showcasing advanced capabilities that set it apart from typical Distributed Denial of Service (DDoS) botnets. Discovered by the…
US bans Kaspersky antivirus software due to national security risks
The US Department of Commerce has announced an upcoming US-wide ban of cybersecurity and antivirus software by Kaspersky, as its “ability to gather valuable US…
SolarWinds Serv-U Vulnerability Under Active Attack
Jun 21, 2024NewsroomVulnerability / Data Protection A recently patched high-severity flaw impacting SolarWinds Serv-U file transfer software is being actively exploited by malicious actors in…
Russia-linked APT Nobelium targets French diplomatic entities
Russia-linked APT Nobelium targets French diplomatic entities Pierluigi Paganini June 21, 2024 French information security agency ANSSI reported that Russia-linked threat actor Nobelium is behind…
GoRed Using DNS And ICMP Tunneling For C2 Server Communication
Hackers often abuse DNS and ICMP tunneling to transmit data and bypass network security measures covertly. All these protocols, which are often enabled by poorly…