Traffic violation scams swap links for QR codes to steal your card details
As soon as people start to get to grips with a certain type of scam, criminals deploy new tactics to keep stealing money. Now people…
Author: Cybernoz
Over 1,000 Exposed ComfyUI Instances Targeted in Cryptomining Botnet Campaign
An active campaign has been observed targeting internet-exposed instances running ComfyUI, a popular stable diffusion platform, to enlist them into a cryptocurrency mining and proxy botnet.…
What you need to know before emissions regulators come knocking
IT infrastructure-related carbon emissions reporting is slowly becoming a global regulatory requirement. The International Financial Reporting Standards (IFRS) have incorporated climate-related financial disclosure requirements, including…
AI And Fraud Losses Surge
The FBI Internet Crime Report 2025 shows just how expensive cybercrime has become. In 2025, the FBI’s Internet Crime Complaint Center (IC3) received over one…
FortiClientEMS Flaws Under Active Exploitation
A newly disclosed set of vulnerabilities affecting Fortinet’s endpoint management platform has raised serious concerns among cybersecurity professionals, particularly as both flaws are already being…
AI-assisted fraud makes big debut in FBI’s cybercrime stats
The United States Federal Bureau of Investigation (FBI) has included artificial intelligence (AI) assisted offending for the first time in its annual report on online…
Severe StrongBox Vulnerability Patched in Android
The latest Android security updates address only two vulnerabilities: a critical denial-of-service (DoS) issue, and a StrongBox flaw whose impact does not appear to have…
Fast-moving Storm-1175 uses new exploits to breach networks and drop Medusa
Fast-moving Storm-1175 uses new exploits to breach networks and drop Medusa Pierluigi Paganini April 07, 2026 China-based actor Storm-1175 runs fast ransomware attacks, exploiting new…
Five takeaways from the UK’s Cyber Security & Resilience Bill
The content of the Cyber Security & Resilience Bill (CSRB) recently introduced to Parliament contained few surprises. Having spent a significant amount of time working…
PortSwigger partners with Meta Bug Bounty to empower bug hunters with training and Pro licenses
Fran Hutchings | Tuesday, 7 April 2026 at 12:12 UTC We’re excited to announce a new partnership with Meta Bug Bounty, bringing together two organizations…
‘GrafanaGhost’ bypasses Grafana’s AI defenses without leaving a trace
Security researchers at Noma Security have disclosed a new vulnerability they are calling GrafanaGhost, an exploit capable of silently stealing sensitive data from Grafana environments…
Zero‑click Grafana AI attack can enable enterprise data exfiltration
From there, attackers use indirect prompt injection techniques to manipulate the AI into executing malicious instructions. The model is tricked into generating requests that include…