10 Essential Firefox Plugins for the Infosec Professional
I’ve moved to Chrome > and Safari > as my primary browsers, but nothing compares to Firefox > when it...
Read more →Author: Cybernoz
After website hack, Arizona election officials unload on Trump’s CISA
Arizona election officials say a hack targeting a statewide online portal for political candidates resulted in the defacement and replacement...
Read more →
UNG0002 Deploys Weaponized LNK Files with Cobalt Strike and Metasploit to Target Organizations
Seqrite Labs APT-Team has uncovered a persistent threat entity, UNG0002 (Unknown Group 0002), orchestrating espionage-driven operations across Asian jurisdictions, including...
Read more →
US National Guard unit ‘extensively’ hacked by Salt Typhoon in 2024
An American state’s Army National Guard network was thoroughly hacked by a Chinese cyberespionage group nicknamed “Salt Typhoon,” according to a...
Read more →Why Religion is More Dangerous Than Handguns
We’ve been debating agnosticism and atheism here for the last couple of weeks. One of the sub-arguments that has pronounced...
Read more →
Threat Actors Compromise Popular npm Packages to Steal Maintainers’ Tokens
Threat actors have leveraged a phishing campaign targeting npm package maintainers, resulting in the compromise of widely used JavaScript tooling...
Read more →
MuddyWater deploys new DCHSpy variants amid Iran-Israel conflict
MuddyWater deploys new DCHSpy variants amid Iran-Israel conflict Pierluigi Paganini July 21, 2025 Iran-linked APT MuddyWater is deploying new DCHSpy...
Read more →Why Religion is More Dangerous Than Handguns
We’ve been debating agnosticism and atheism here for the last couple of weeks. One of the sub-arguments that has pronounced...
Read more →
Ring denies breach after users report suspicious logins
Ring is warning that a backend update bug is responsible for customers seeing a surge in unauthorized devices logged into...
Read more →
Beware of npm Phishing Emails Targeting Developer Credentials
An developer recently came across a highly advanced phishing email that spoofs the [email protected] address in order to impersonate npm,...
Read more →A Few Thoughts on Social Networking Tools
Ok, just a few random thoughts; I’ll do a real post later on this once things are fleshed out more....
Read more →
NailaoLocker Ransomware Attacking Windows Systems Using Chinese SM2 Cryptographic Standard
FortiGuard Labs has discovered a sophisticated new ransomware strain called NailaoLocker that represents a significant departure from conventional encryption malware....
Read more →