New Phishing Attack Facebook Business Account Users
An unreported phishing campaign that disseminated a Python version of the NodeStealer has been found. NodeStealer gave threat actors the ability to steal browser cookies and…
Author: Cybernoz
AGL taps Ravi Kalidindi to head customer markets technology – Training & Development
AGL has promoted senior manager of cloud, analytics and data platforms Ravi Kalidindi to head of technology for customer markets. The customer markets business unit…
Decommissioned medical infusion pumps sold on secondary market could reveal Wi-Fi configuration settingsSecurity Affairs
Experts warn that decommissioned medical infusion pumps sold via the secondary market could expose Wi-Fi configuration settings. The sale of decommissioned medical infusion pumps through…
Chrome malware Rilide targets enterprise users via PowerPoint guides
The malicious Rilide Stealer Chrome browser extension has returned in new campaigns targeting crypto users and enterprise employees to steal credentials and crypto wallets. Rilide…
Free Airline Miles, Hotel Points, and User Data Put at Risk by Flaws in Points Platform
Travel rewards programs like those offered by airlines and hotels tout the specific perks of joining their club over others. Under the hood, though, the…
Over 600+ Citrix Servers Hacked To Install Web Shells
A critical remote code execution (RCE) vulnerability identified as CVE-2023-3519 has been the subject of several attacks, which have already compromised and backdoored hundreds of Citrix Netscaler…
Hacktivists fund their operations using common cybercrime tactics
Hacktivist groups that operate for political or ideological motives employ a broad range of funding methods to support their operations. Israeli cyber-intelligence firm KELA notes that although…
Ivanti MobileIron API Access Flaw
There is a critical vulnerability in Ivanti’s MobileIron Core 11.2 version that could allow a malicious actor to gain unauthorized access to restricted functions. MobileIron…
Hackers Abuse AWS SSM Agent to Perform Malicious Activities
Legitimate SSM agents can turn malicious when attackers with high-privilege access use it to carry out ongoing malicious activities on an endpoint. Once compromised, the…
Company Update | HackerOne
HackerOne CEO, Marten Mickos, emailed the following note to employees on August 2, 2023. H1 Team, I have made the painful and necessary decision to undertake…
Microsoft shares fix for Outlook asking to reopen closed windows
Microsoft is investigating an issue causing Outlook Desktop to unexpectedly ask users to restore windows closed during a previous session. Outlook for Microsoft 365 users…
Hackers Exploit Salesforce Email Zero-day Flaw in Facebook
Hackers exploited a zero-day vulnerability in the email services and SMTP servers of Salesforce. Malicious email traffic is often concealed within email gateway services that…