Over 6TB of Data Stolen
Caesars Entertainment Inc. has reportedly paid a substantial sum to hackers who infiltrated the company’s systems and threatened to release sensitive data. This breach follows…
Author: Cybernoz
Memory Corruption Flaw in ncurses API Library
Multiple memory corruption vulnerabilities have been discovered in the ncurses library, which various programs use on multiple operating systems like Portable Operating System Interface (POSIX)…
3AM Ransomware Attack – Stop Services, Delete Shadow Copies
Ransomware is a universal threat to enterprises, targeting anyone handling sensitive data when profit potential is high. A new ransomware named 3AM has surfaced and…
Generative AI lures DevOps and SecOps into risky territory
Application security leaders are more optimistic than developer leaders on generative AI, though both agree it will lead to more pervasive security vulnerabilities in software…
Free Download Manager backdoored to serve Linux malware for +3 years
Free Download Manager backdoored to serve Linux malware for more than 3 years Pierluigi Paganini September 15, 2023 Researchers discovered a free download manager site…
New infosec products of the week: September 15, 2023
Here’s a look at the most interesting products from the past week, featuring releases from Armis, Cisco, CTERA, Kingston Digital, Purism, and Swissbit. Librem 11…
Massive DDoS Attack at 633.7 Gbps Combining Packets
DDoS attack evolves with changing tech and attacker motivations, with recent cases involving significant damages and legal consequences. Recently, the DDoS defense platform of Akamai…
How Zero-Day Attacks Are Escalating the Cyber Threat Landscape
In the ever-evolving landscape of cybersecurity, the term “zero-day attack” strikes fear into the hearts of both individuals and organizations alike. These attacks are notorious…
Modernizing fraud prevention with machine learning
The number of digital transactions has skyrocketed. As consumers continue to spend and interact online, they have growing expectations for security and identity verification. As…
Trellix DLP Vulnerability Allows Attackers To Delete Files
A privilege escalation vulnerability has been identified in the Trellix Windows DLP endpoint for Windows, which may be exploited to delete any file/folder for which…
Enterprises persist with outdated authentication strategies
Despite authentication being a cornerstone of cybersecurity, risk mitigation strategies remain outdated, according to new research from Enzoic. With the attack surface expanding and the…
Iranian Nation-State Actors Employ Password Spray Attacks Targeting Multiple Sectors
Sep 15, 2023THNCyber Attack / Password Security Iranian nation-state actors have been conducting password spray attacks against thousands of organizations globally between February and July…