Russian Hackers Caught Exploiting Roundcube Webmail Zero-Day
The Russia-linked advanced persistent threat (APT) actor Winter Vivern has been observed exploiting a zero-day vulnerability in the Roundcube webmail server in attacks aimed at…
Author: Cybernoz
Hackers Earn $400k on First Day at Pwn2Own Toronto 2023
The Pwn2Own Toronto 2023 hacking contest kicked off yesterday and participants successfully hacked NAS, printers, mobile phones, and other types of devices, earning a total…
Seiko says ransomware attack exposed sensitive customer data
Japanese watchmaker Seiko has confirmed it suffered a Black Cat ransomware attack earlier this year, warning that the incident has led to a data breach,…
QNAP Eliminates Server Behind Extensive Brute-force Attacks
QNAP, a Networking hardware company, has effectively taken down a malicious server that was utilized in extensive brute-force attacks targeting Internet-exposed NAS devices. On October 14, 2023, the…
Mandiant Intelligence Chief Raises Alarm Over China’s ‘Volt Typhoon’ Hackers in US Critical Infrastructure
ATLANTA – SECURITYWEEK 2023 ICS CYBERSECURITY CONFERENCE – Chief analyst at Mandiant Intelligence John Hultquist says defenders in the critical infrastructure trenches should urgently work…
Ransomware isn’t going away – the problem is only getting worse
As the world moves steadily to becoming more and more digital, organizations worldwide become increasingly dependent on IT systems to run their services. Threat actors…
Samsung Galaxy S23 Hacked at Pwn2Own Toronto 2023
Pwn2Own is a highly significant and influential annual hacking competition in the cybersecurity community. It serves as a platform for top researchers and hackers to…
Microsoft invests $5 billion to bolster Cyber Shield of Australia
Australian Prime Minister Anthony Albanese has unveiled Microsoft’s Cyber Shield, a substantial commitment to bolster the nation’s cybersecurity infrastructure with a $5 billion investment. The…
UK Finance paints mixed picture of fraud as losses top £500m
The rate of cyber fraud dropped slightly over the first six months of 2023, falling 2% compared to the same period in 2022, but even…
VMware vCenter Flaw So Critical, Patches Released for End-of-Life Products
Virtualization technology powerhouse VMware is calling urgent attention to a critical remote code execution flaw haunting its vCenter Server and VMware Cloud Foundation products. The…
VMware addressed critical vCenter flaw also for End-of-Life products
VMware addressed critical vCenter flaw also for End-of-Life products Pierluigi Paganini October 25, 2023 VMware addressed a critical out-of-bounds write vulnerability, tracked as CVE-2023-34048, that impacts vCenter…
Citrix Bleed exploit lets hackers hijack NetScaler accounts
A proof-of-concept (PoC) exploit is released for the ‘Citrix Bleed’ vulnerability, tracked as CVE-2023-4966, that allows attackers to retrieve authentication session cookies from vulnerable Citrix…