Compliance vs capability: an opinion on what actually protects you
By Raif Al Bedewi A professor I deeply respect, Prof. Atif Ahmad at the University of Melbourne, once told me something that stuck. “Compliance checks…
Author: Cybernoz
New critical Citrix NetScaler hole of similar severity to CitrixBleed2, says expert
As categories, ADCs and VPNs are prime targets for threat actors because they are internet-facing. “Anything that organizations tend to heavily rely on and expose…
Delve did the security compliance on LiteLLM, an AI project hit by malware
This is one of those Silicon Valley real-life episodes that seems pulled from the HBO satire show. This week, some really atrocious malware was discovered…
A _declassified Look Inside the Dark Economy of Cybercrime
The first episode of our “_declassified” series might change the way you think about cybercrime forever…and we hope it does. Because, like special guest Jim…
Your private call isn’t so private.
The UK’s cyber security chief urges a “full court press” against threats. RSAC highlights. The U.S. State Department has launched a Bureau of Emerging Threats.…
GitHub adds AI-powered bug detection to expand security coverage
GitHub is adopting AI-based scanning for its Code Security tool to expand vulnerability detections beyond the CodeQL static analysis and cover more languages and frameworks. The developer collaboration…
China-Linked Hackers Breach Southeast Asian Military Systems in Long-Running Spy Campaign
A sophisticated and long-running cyber espionage campaign, tracked as CL-STA-1087, has been quietly targeting military organizations across Southeast Asia since at least 2020. The operation, assessed…
Obfuscated VBS and PNG Loaders Power New Open Directory Malware Campaign with RAT Payloads
A sophisticated, multi-stage delivery framework leveraging obfuscated Visual Basic Script (VBS) files, fileless PowerShell loaders, and payloads hidden within PNG images. The activity was initially…
Mirai Malware Evolves into Hundreds of Variants Driving Botnet Growth
The internet connects our homes and offices, but researchers at Pulsedive and Spamhaus have found that this connectivity is increasingly being turned against us since…
Vorlon adds forensics and response to secure AI agents
Vorlon has unveiled AI Agent Flight Recorder and AI Agent Action Center, adding forensics and coordinated response to secure enterprise agentic ecosystems and close a…
New FCC router ban could leave home networks less secure
On Monday, the Federal Communications Commission (FCC) updated its list of insecure equipment, outlining its reasons for adding all consumer-grade routers made outside the US.…
GlassWorm Malware Uses Solana Dead Drops to Deliver RAT and Steal Browser, Crypto Data
Ravie LakshmananMar 25, 2026Browser Security / Threat Intelligence Cybersecurity researchers have flagged a new evolution of the GlassWorm campaign that delivers a multi-stage framework capable…