PyPI Issues Advisory to Prevent ZIP Parser Confusion Attacks on Python Package Installers
The Python Package Index (PyPI) has announced new restrictions aimed at mitigating ZIP parser confusion attacks that could exploit discrepancies...
Read more →Author: Cybernoz
Research reveals possible privacy gaps in Apple Intelligence’s data handling
LAS VEGAS — One of the big worries during the generative AI boom is where exactly data is traveling when...
Read more →
Are You Sending the Wrong Signals?
The Salt team has spent the last 5-10 years producing blogs, comparison documents and webinars which highlight our credentials versus...
Read more →
Windows UAC Bypass Exploits Character Map Tool for Privilege Escalation
Cybersecurity researchers have uncovered a new technique that allows attackers to bypass Windows User Account Control (UAC) protections by exploiting...
Read more →
Multiple Security vulnerabilities Found in WWBN AVideo, MedDream, and Eclipse ThreadX
Cisco Talos’ Vulnerability Discovery & Research team has disclosed a total of 12 critical security vulnerabilities across three popular software...
Read more →
Australian Information Commissioner Seeks Civil Penalty Action Over 2022 Optus Data Breach
The Australian Information Commissioner has launched civil penalty proceedings against telecommunications giant Optus over the massive 2022 data breach that...
Read more →
What’s New With the Next-Generation AI Agent
OpenAI has officially launched ChatGPT-5, a new generation of its AI agent that introduces a sophisticated, unified system designed to...
Read more →
It Looks Like a School Bathroom Smoke Detector. A Teen Hacker Showed It Could Be an Audio Bug
To hack the Halo 3C, they found that if they could connect to one over the network it was installed...
Read more →
VexTrio TDS Deploys Malicious VPN Apps on Google Play and App Store
VexTrio, a sophisticated threat actor known for operating a massive traffic distribution system (TDS), has expanded its malicious activities by...
Read more →
RubyGems Malware Attack Weaponizes 60+ Packages to Steal Credentials from Social Media and Marketing Tools
Threat actors began slipping malicious code into legitimate RubyGems packages, disguising infostealers as social media automation tools in early 2023....
Read more →
Saas Security Best Practices – Cyber Defense Magazine
Software as a Service (SaaS) is the prevalent software distribution model in the tech industry. Whether you are a young...
Read more →
Columbia University Data Breach Exposes Personal and Financial Data of 870,000
Columbia University disclosed a significant cybersecurity incident that compromised personal and financial information of nearly 870,000 individuals, making it one...
Read more →