PhantomVAI Custom Loader Abuses RunPE Utility to Launch Stealthy Attacks on Users
A new threat called PhantomVAI, a custom “loader” used to launch cyberattacks worldwide. A loader is a type of malicious software designed to secretly download…
Author: Cybernoz
Orchid Security Introduces Continuous Identity Observability for Enterprise Applications
The Hacker NewsFeb 04, 2026Identity Security / Security Operations An innovative approach to discovering, analyzing, and governing identity usage beyond traditional IAM controls. The Challenge:…
CISA Warns of SolarWinds Web Help Desk RCE Vulnerability Exploited in Attacks
CISA Warns SolarWinds Web Help Desk Vulnerability An urgent warning regarding a critical remote code execution (RCE) vulnerability in SolarWinds Web Help Desk. The vulnerability,…
Critical ASUSTOR NAS Security Flaw Enables Complete Device Takeover
A severe vulnerability affecting ASUSTOR Network Attached Storage (NAS) devices has been disclosed, potentially allowing unauthenticated attackers to seize full control of affected systems. Tracked…
Major vulnerabilities found in Google Looker, putting self-hosted deployments at risk
Researchers at Tenable have disclosed two vulnerabilities, collectively referred to as “LookOut,” affecting Google Looker. Because the business intelligence platform is deployed by more than…
How Early Decisions Shape Incident Response Investigations
Many incident response failures do not come from a lack of tools, intelligence, or technical skills. They come from what happens immediately after detection, when…
One Identity Names Gihan Munasinghe as CTO
Alisa Viejo, United States, February 4th, 2026, CyberNewsWire One Identity, a leader in unified identity security, today announced the appointment of Gihan Munasinghe as Chief Technology…
One Identity Names Gihan Munasinghe as CTO
Alisa Viejo, United States, February 4th, 2026, CyberNewsWire One Identity, a leader in unified identity security, today announced the appointment of Gihan Munasinghe as Chief Technology…
Exposed AWS Credentials Lead to AI-Assisted Cloud Breach in 8 Minutes
Exposed AWS Credentials Lead to AI-Assisted Cloud Breach in 8 Minutes Notice: Function WP_Scripts::add was called incorrectly. The script with the handle “powerkit” was enqueued…
Hackers Exfiltrating NTDS.dit File to Gain Complete of Active Directory
Active Directory remains the backbone of enterprise authentication systems, storing critical information about user accounts, passwords, and domain configurations. Recently, security experts have observed a…
CISA Warns of Exploited GitLab Community and Enterprise SSRF Vulnerability
The Cybersecurity and Infrastructure Security Agency (CISA) has added a critical server-side request forgery (SSRF) vulnerability affecting GitLab Community and Enterprise Editions to its Known…
Avast brings deepfake scam detection to Windows PCs and mobile devices
Avast announced the full international availability of Avast Scam Guardian and Scam Guardian Pro on mobile devices, alongside the launch of Avast Deepfake Guard on…