Bendigo Bank cuts cost, time out of software development efforts
Bendigo Bank is in the process of “materially changing” its “technology development operating model”, with a digital onboarding experience declared as one of its first…
Author: Cybernoz
Single IP Dominates Exploitation Campaign Attacking Ivanti EPMM with RCE Vulnerability
Single IP Dominates Ivanti EPMM with RCE Vulnerability A critical remote code execution (RCE) flaw in Ivanti Endpoint Manager Mobile (EPMM), tracked as CVE-2026-1281, is…
ShinyHunters leaked 600K+ Canada Goose customer records, but the firm denies it was breached
ShinyHunters leaked 600K+ Canada Goose customer records, but the firm denies it was breached Pierluigi Paganini February 16, 2026 ShinyHunters leaked 600,000+ Canada Goose customer…
Hackers Can Weaponize ‘Summarize with AI’ Buttons to Inject Memory Prompts Into AI Recommendations
A new security threat has emerged targeting users of AI assistants through a technique called AI Recommendation Poisoning. Companies and threat actors embed hidden instructions…
CleanTalk Plugin for WordPress Exposes Sites to Authorization Bypass via Reverse DNS
A critical vulnerability in the popular CleanTalk Spam Protection plugin for WordPress exposes websites to complete takeover. Tracked as CVE-2026-1490, this high-severity flaw allows unauthenticated…
Microsoft equips CISOs and AI risk leaders with a new security tool
Microsoft released Security Dashboard for AI in public preview for enterprise environments. The dashboard aggregates posture and real-time risk signals from Microsoft Defender, Microsoft Entra,…
UK government risks ‘perpetuating’ Post Office injustice through response to Capture appeals
If the government fails to overturn convictions of subpostmasters that used the Post Office Capture system, it will perpetuate a “most ghastly injustice”, a peer…
New Clickfix variant ‘Matryoshka’ Attacking Users to Deploy macOS Stealer Malware
A sophisticated social engineering campaign targeting macOS users has emerged, deploying a dangerous stealer malware through an evolved version of the ClickFix attack technique. Named…
Joomla Vulnerabilities in Novarain/Tassos Framework Expose SQL Injection Risks
Joomla site owners using extensions that bundle the Novarain/Tassos Framework are being warned after a source code review identified multiple attack primitives that can be…
Ransomware Threatens SMBs. Cyberinsurance Isn’t Always A Financial Backstop.
Cybercriminals are no longer concentrating their efforts on large enterprises; they’re increasingly directing attacks toward small and mid-market businesses. Cybersecurity Ventures projected global cybercrime costs would reach…
LockBit 5.0 ransomware expands its reach across Windows, Linux, and ESXi
The Acronis Threat Research Unit (TRU) has identified a new and significantly enhanced version of the LockBit ransomware, LockBit 5.0, currently being deployed in active…
LockBit’s New 5.0 Version Attacking Windows, Linux and ESXI Systems
A dangerous new version of LockBit ransomware has emerged, targeting multiple operating systems and threatening businesses worldwide. LockBit 5.0, released in September 2025, represents a…