Android’s October 2023 Security Updates Patch Two Exploited Vulnerabilities
Google on Monday announced the release of patches for 51 vulnerabilities as part of the October 2023 security updates for Android, including fixes for two…
Author: Cybernoz
Researcher Reveals New Techniques to Bypass Cloudflare’s Firewall and DDoS Protection
Firewall and distributed denial-of-service (DDoS) attack prevention mechanisms in Cloudflare can be circumvented by exploiting gaps in cross-tenant security controls, defeating the very purpose of…
RSA and other crypto systems vulnerable to side-channel attack
A 25-year-old vulnerability that enables RSA decryption has been presented at the 28th European Symposium on Research in Computer Security. The paper, Everlasting robot: the…
Motel One Discloses Ransomware Attack Impacting Customer Data
Budget hotel chain Motel One Group on Monday confirmed that some customer information and credit card data was stolen in a recent ransomware attack. The…
Lighting the Exfiltration Infrastructure of a LockBit Affiliate
Exclusive: Lighting the Exfiltration Infrastructure of a LockBit Affiliate (and more) Pierluigi Paganini October 03, 2023 Researchers have identified the exfiltration infrastructure of a LockBit…
CIISec scores DSIT funding to expand successful CyberEPQ scheme
CIISec, the Chartered Institute of Information Security, has secured funding from the Department of Science, Innovation and Technology (DSIT) to expand its CyberEPQ programme for…
Yahoo partners with Intigriti to launch a new crowdsourced security program
Antwerp, BelgiumSeptember 28, 2023 Yahoo has partnered with Intigriti, a global leader in crowdsourced security, to launch a new public bug bounty program. The cybersecurity…
Zip Slip Vulnerability Let Attacker Import Malicious Code
A critical Zip Slip vulnerability was discovered in the open-source data cleaning and transformation tool ‘OpenRefine’, which allowed attackers to import malicious code and execute arbitrary code.…
Public sector needs systemic reform of capacity to innovate
Successfully digitally transforming government rests on improving digital skills, embedding a culture of innovation and making public sector procurement more agile. At trade association TechUK’s…
FBI LEEP Data Sale Sparks Concerns Over National Security
A dark web user was found selling account credentials allegedly from the Law Enforcement Enterprise Portal (LEEP). The Federal Bureau of Investigation relies on LEEP…
Two New Victims Added To The List!
The notorious MEDUSA ransomware group has struck again, targeting two prominent companies and demanding hefty ransoms for the release of encrypted data. The victims of…
Two hacker groups are back in the news, LockBit 3.0 Black and BlackCat/AlphV
Two hacker groups are back in the news, LockBit 3.0 Black and BlackCat/AlphV Pierluigi Paganini October 03, 2023 Researchers from cybersecurity firm TG Soft are warning Italian…