Popular npm linter packages hijacked via phishing to drop malware
Popular JavaScript libraries were hijacked this week and turned into malware droppers, in a supply chain attack achieved via targeted phishing...
Read more →Author: Cybernoz
How I’d Save The United States
I’ve been experiencing growing frustration with social/political issues lately, and each time I get to thinking about various problems that...
Read more →
ChatGPT”s GPT-5-reasoning-alpha model spotted ahead of launch
GPT-5 might be just a few days or weeks away, as we’ve spotted references to a new model called gpt-5-reasoning-alpha-2025-07-13....
Read more →
Snake Keylogger Evades Windows Defender and Scheduled Tasks to Harvest Login Credentials
A sophisticated phishing campaign targeting Turkish defense and aerospace enterprises has emerged, delivering a highly evasive variant of the Snake...
Read more →The Difference Between a Vulnerability Assessment and a Penetration Test
Language Matters > Clarified Definitions > A Physical Analog > The Exploitation Angle > Pentests Don’t Include VA > Summary...
Read more →
Chinese Threat Actors Using 2,800 Malicious Domains to Deliver Windows-Specific Malware
A sophisticated Chinese threat actor campaign has emerged as one of the most persistent malware distribution operations targeting Chinese-speaking communities...
Read more →The Difference Between a Vulnerability Assessment and a Penetration Test
Language Matters > Clarified Definitions > A Physical Analog > The Exploitation Angle > Pentests Don’t Include VA > Summary...
Read more →
New Veeam Themed Phishing Attack Using Weaponized Wav File to Attack users
A sophisticated phishing campaign targeting organizations has emerged, exploiting the trusted reputation of Veeam Software through weaponized WAV audio files...
Read more →
China’s Salt Typhoon Hackers Breached the US National Guard for Nearly a Year
After reporting last week that the “raw” Jeffrey Epstein prison video posted by the FBI was likely modified in at...
Read more →An IPTABLES Primer
iptables is the packet filtering technology that’s built into the 2.4 Linux kernel. It’s what allows one to do firewalling,...
Read more →
New CrushFTP 0-Day Vulnerability Exploited in the Wild to Gain Access to Servers
A critical zero-day flaw in the CrushFTP managed file-transfer platform was confirmed after vendor and threat-intelligence sources confirmed active exploitation...
Read more →Why You Should Dump Internet Explorer
The time has come to dump Internet Explorer. I know, I know — you may have heard the same thing...
Read more →