Post Office boss signed off hush money to cover up smoking gun
A former Post Office senior executive agreed the suffering of subpostmasters could have been avoided if the organisation had investigated reported IT problems rather than…
Author: Cybernoz
PuTTY SSH client flaw allows recovery of cryptographic private keys
A vulnerability tracked as CVE-2024-31497 in PuTTY 0.68 through 0.80 could potentially allow attackers with access to 60 cryptographic signatures to recover the private key…
Ex-Security Engineer Jailed For Hacking Decentralized Cryptocurrency Exchanges
Ahmed exploited a vulnerability in a decentralized cryptocurrency exchange’s smart contract by injecting fabricated pricing data, which triggered the generation of inflated fees totaling $9…
Tanium Automate reduces manual processes for repeatable tasks
Alongside Tanium Guardian and its partnership with Microsoft Copilot for Security, Tanium Automate serves as another critical component in support of the autonomous endpoint management…
New ransomware group demands Change Healthcare ransom
The Change Healthcare ransomware attack has taken a third cruel twist. A new ransomware group, RansomHub, has listed the organisation as a victim on its…
TA558 Hackers Weaponize Images for Wide-Scale Malware Attacks
Apr 16, 2024NewsroomThreat Intelligence / Endpoint Security The threat actor tracked as TA558 has been observed leveraging steganography as an obfuscation technique to deliver a…
CISOs not yet convinced to invest in AI
With the use of artificial intelligence (AI) by threat actors limited largely to crafting more effective social engineering and phishing lures, and AI-orchestrated ransomware attacks…
A renewed espionage campaign targets South Asia with iOS spyware LightSpy
A renewed espionage campaign targets South Asia with iOS spyware LightSpy Pierluigi Paganini April 16, 2024 Researchers warn of a renewed cyber espionage campaign targeting…
Pentest People Becomes the First Leeds-based Cybersecurity Company to Achieve NCSC’s Cyber Advisor (Cyber Essentials) Accreditation
Pentest People, the Penetration Testing as a Service (PTaaS®) and cybersecurity experts, today announces it is the first Leeds-based cybersecurity company to become a qualified…
Connect:fun Attacking Organizations Running FortiClient EMS
A new exploit campaign has emerged, targeting organizations that utilize Fortinet’s FortiClient EMS. Dubbed “Connect:fun” by Forescout Research – Vedere Labs, this campaign leverages a…
Global Hack Exposes Personal Data: Implications & Privacy Protection
In a digital age where information is the new currency, the recent global hack has once again highlighted the urgent need for enhanced cybersecurity measures.…
Annual Cybersecurity Training Isn’t Working, So What’s The Alternative?
16 Apr Annual Cybersecurity Training Isn’t Working, So What’s The Alternative? Posted at 09:23h in Blogs by Di Freeze This week in cybersecurity from the…