Iran-Linked Hackers Launch Password Spray Campaign Against Microsoft 365 Tenants in Middle East
Microsoft 365 tenants in the Middle East are facing a new password spray campaign tied to an Iran-linked threat actor. Rather than starting with malware…
Author: Cybernoz
Hackers Exploit Next.js React2Shell Vulnerability, Breach 766 Hosts in 24 Hours
Hackers are abusing a critical React2Shell vulnerability in Next.js applications to run an automated credential‑theft operation that has already compromised at least 766 servers in…
GitHub Copilot CLI gets a second-opinion feature built on cross-model review
Coding agents make decisions in sequence: a plan is drafted, implemented, then tested. Any error introduced early compounds as subsequent steps build on the same…
New GPUBreach Attack Enables Full CPU Privilege Escalation via GDDR6 Bit-Flips
New academic research has identified multiple RowHammer attacks against high-performance graphics processing units (GPUs) that could be exploited to escalate privileges and, in some cases,…
UAE unveils Falcon Perception in push for AI independence
Abu Dhabi has taken a step towards global artificial intelligence (AI) with Falcon Perception, a multimodal model that enables machines to efficiently see, read and…
REvil Ransomware Gang Leader Identified By Germany
German authorities have named a key figure behind some of the most notorious ransomware operations in recent years, linking a real identity to the REvil…
EU CSAM Law Lapse Puts Child Safety At Online Risks
A growing surge in CSAM (Child Sexual Abuse Material) circulating online has become an urgent concern for authorities and child protection organizations across the EU.…
Cambodian parliament passes landmark cybercrime law
Cambodia’s parliament has passed the first law dedicated to targeting scam centres accused of bilking international victims out of billions of dollars, as pressure mounts…
German Police Unmask REvil Ransomware Leader
The German Federal Criminal Police (BKA) has named a Russian national as the mastermind behind the GandCrab and REvil ransomware operations. According to a law…
U.S. CISA adds a flaw in Fortinet FortiClient EMS to its Known Exploited Vulnerabilities catalog
U.S. CISA adds a flaw in Fortinet FortiClient EMS to its Known Exploited Vulnerabilities catalog Pierluigi Paganini April 07, 2026 The U.S. Cybersecurity and Infrastructure…
Phishing in the Fast Lane
Phishing continues to be a hot-button issue and a prevalent worry for many, so let’s keep this conversation alive. In a recent installment of Tradecraft…
Disgruntled researcher leaks “BlueHammer” Windows zero-day exploit
Exploit code has been released for an unpatched Windows privilege escalation flaw reported privately to Microsoft, allowing attackers to gain SYSTEM or elevated administrator permissions.…