SOC Evolution Is About More Than Automation
[By Michael Mumcuoglu, CEO and Co-Founder, CardinalOps] It is worth remembering; cybersecurity professionals inherently win, only when attackers lose. Although it may feel like a victory, we don’t…
Author: Cybernoz
Dozens of surveillance companies are supplying spyware to governments says Google
Dozens of surveillance companies are providing spyware technology used by governments around the world to spy on the mobile phones of journalists, human rights defenders,…
Fortinet addressed two critical FortiSIEM vulnerabilities
Fortinet addressed two critical FortiSIEM vulnerabilities Pierluigi Paganini February 07, 2024 Fortinet warns of two critical OS command injection vulnerabilities in FortiSIEM that could allow…
Google tests blocking side-loaded Android apps with risky permissions
Google has launched a new pilot program to fight financial fraud by blocking the sideloading of Android APK files that request access to risky permissions.…
How to tell if your toothbrush is being used in a DDoS attack
February 7, 2024 – We look at a scam campaign on Facebook that continues to do the rounds, and how you can recover your compromised…
Security Think Tank: The phishing forecast for 2024
2023 was a ground-breaking year for cyber security advancements and attacks, with new developments making headlines globally. In 2024, we can expect to see increasingly…
Critical shim bug impacts every Linux boot loader signed in the past decade
Critical shim bug impacts every Linux boot loader signed in the past decade Pierluigi Paganini February 07, 2024 The maintainers of Shim addressed six vulnerabilities,…
The unlikely 3 million electric toothbrush DDoS attack
A widely reported story that 3 million electric toothbrushes were hacked with malware to conduct distributed denial of service (DDoS) attacks is likely a hypothetical…
Linux Shim Bootloader Flaw Expose Most Linux Distros to Attacks
Shim is a small application used by open-source projects and other third parties for verifying and running the bootloader (typically GRUB2). The application was developed…
From Cybercrime Saul Goodman to the Russian GRU – Krebs on Security
In 2021, the exclusive Russian cybercrime forum Mazafaka was hacked. The leaked user database shows one of the forum’s founders was an attorney who advised…
Over 28,000 Ivanti Instances Exposed to Internet
Ivanti has disclosed two new zero-day vulnerabilities assigned with CVE-2024-21888 and CVE-2024-21893 in the products Ivanti Connect Secure and Ivanti Policy Secure. The vulnerability (CVE-2024-2188)…
Ransomware payments reached $1 billion in 2023
In the year 2023 alone, hackers behind the rampant spread of ransomware amassed a staggering $1 billion in ransom payments, as disclosed by a comprehensive…