Federated ID, OpenID, and OAuth: A Web Authentication Primer
Federated ID Federated ID, also called Federated Identity Management (FIM), allows a Service Provider (SP) to offer a service without...
Read more →Author: Cybernoz
Coyote malware abuses Windows accessibility framework for data theft
A new variant of the banking trojan ‘Coyote’ has begun abusing a Windows accessibility feature, Microsoft’s UI Automation framework, to identify...
Read more →
Securing Virtualized Environments – Hypervisor Security Best Practices
Hypervisor security represents a critical foundation for protecting virtualized infrastructure, as a single compromise at the hypervisor level can potentially...
Read more →
New Web3 Phishing Scam Uses Fake AI Platforms to Steal Credentials
The threat actor group LARVA-208, notorious for phishing attacks and social engineering against English-speaking IT staff, has pivoted to targeting...
Read more →
Flowable’s Summer 2025 Update Introduces Groundbreaking Agentic AI Capabilities
Flowable has taken a significant leap forward in the realm of intelligent process automation with its Summer 2025 release. The...
Read more →
Chinese cyber spies among those linked to SharePoint attacks
An as-yet unnamed Chinese state threat actor appears to be among those exploiting CVE-2025-53770 (aka ToolShell), a remote code execution vulnerability...
Read more →Federated ID, OpenID, and OAuth: A Web Authentication Primer
Federated ID Federated ID, also called Federated Identity Management (FIM), allows a Service Provider (SP) to offer a service without...
Read more →
Dark Web Travel Agencies Offering Cheap Travel Deals to Steal Credit Card Data
The rise of clandestine “travel agencies” on darknet forums has reshaped the cyber-crime landscape, morphing traditional card-skimming into a full-fledged...
Read more →
Iranian Hackers Target Global Airlines to Steal Sensitive Data
APT39, a hacker collective connected to Iran’s Ministry of Intelligence and Security (MOIS), was exposed as operating through the compromised...
Read more →
Microsoft Reveals Chinese State Hackers Exploiting SharePoint Flaws
Microsoft’s critical new update reveals that specific Chinese nation-state threat groups are actively exploiting vulnerabilities in its on-premises SharePoint servers....
Read more →
Microsoft Links Ongoing SharePoint Exploits to Three Chinese Hacker Groups
Jul 22, 2025Ravie LakshmananVulnerability / Threat Intelligence Microsoft has formally tied the exploitation of security flaws in internet-facing SharePoint Server...
Read more →
Overconfidence in cyber security: a silent catalyst for CNI breaches
Critical National Infrastructure (CNI) lies at the heart of modern society, powering essential systems vital for daily life. Yet, it...
Read more →