Vulnerabilities in Fonts Allow XXE & Arbitrary Command Execution
The popular fonts used in web development and design can be exploited to launch XML External Entity (XXE) attacks and execute arbitrary commands. These vulnerabilities,…
Author: Cybernoz
BianLian Threat Actors Exploiting JetBrains TeamCity Flaws in Ransomware Attacks
Mar 11, 2024NewsroomRansomware / Vulnerability The threat actors behind the BianLian ransomware have been observed exploiting security flaws in JetBrains TeamCity software to conduct their…
Vinnova launches National Digital Advancement project
Vinnova, the Swedish state agency for innovation, launched the latest-phase of a multi-branch national digital advancement (NDA) project in January, the core segment of which…
Cyberattack On Russian Election Systems Amid 2024 Elections
Nebula, an anti-Putin hacktivist group, claimed a cyberattack on Russian election systems, targeting critical infrastructure for the upcoming Russian election. In their dark web post,…
Magnet Goblin group used a new Linux variant of NerbianRAT malware
Magnet Goblin group used a new Linux variant of NerbianRAT malware Pierluigi Paganini March 11, 2024 The financially motivated hacking group Magnet Goblin uses various…
Beware of Fake Trading Apps on Google Play & App Store
A recent investigation unveiled a trend of fake trading apps on Google Play and the App Store designed to trick unsuspecting users out of their…
PoC Exploit Released for OpenEdge and AdminServer.
A Proof of Concept (PoC) exploit has been released for a vulnerability in the OpenEdge Authentication Gateway and AdminServer. This vulnerability, CVE-2024-1403, affects multiple versions…
TechUK calls for next government to introduce ‘industrial strategy’ for AI
Tech companies have urged the next government to adopt an “industrial strategy” to accelerate the take-up of artificial intelligence (AI) across UK businesses. The recommendation…
Magnet Goblin Hackers Exploiting 1-day Vulnerabilities Linux Servers
Threat actors often target Linux servers due to their widespread use in critical infrastructure, web hosting, and cloud environments. The open-source nature of the Linux…
Matanbuchus Malware Weaponizing XLS files to Hijack Windows
The Matanbuchus malware has been reported to initiate a new campaign, exploiting XLS files to compromise Windows machines. This sophisticated threat, known for its loader-as-a-service…
Hackers exploited WordPress Popup Builder plugin flaw to compromise 3,300 sites
Hackers exploited WordPress Popup Builder plugin flaw to compromise 3,300 sites Pierluigi Paganini March 11, 2024 Threat actors are hacking WordPress sites by exploiting a…
Top 10 Cloud Security Mitigation Strategies
NSA and CISA jointly released “Top 10 Cloud Security Mitigation Strategies” to advise cloud users on critical security practices for migrating data. The National Security…