Cisco fixes SD-WAN vManage flaw exploited in zero-day attacks
Cisco has released security updates to address a vulnerability in the Catalyst SD-WAN Manager, tracked as CVE-2026-20262, that was exploited in attacks to escalate to…
Author: Cybernoz
Microsoft Site Showing Warning Following Certificate Expiry
Microsoft seems to have failed certificate management after a domain used by sysadmins globally to test connectivity to Microsoft 365 started generating untrusted connection warnings…
Could GPU-Accelerated EDR Improve The Future Of Endpoint Detection?
The growing computational challenge in endpoint detection Ever wonder how Modern Endpoint Detection and Response (EDR) works? EDR platforms rely heavily on behavioral analysis to…
Payroll Pirate Campaign Uses AiTM Session Hijacking to Bypass MFA and Redirect Salaries
A financially motivated campaign dubbed “Payroll Pirate” has emerged using advanced phishing and adversary-in-the-middle (AiTM) session hijacking to bypass multifactor authentication (MFA) and reroute payroll…
Feds Seize CFAKE and SOCFAKE Over Explicit Deepfakes of Famous Women
US authorities have seized two domains accused of publishing thousands of nonconsensual deepfake nude images (digital forgeries) of famous women, in one of the first…
Cybercrime is Accelerating: Preparing the Next Wave of Cybersecurity Experts
15 Jun Cybercrime is Accelerating: Preparing the Next Wave of Cybersecurity Experts Posted at 09:14h in Blogs by Taylor Fox This week in cybersecurity from…
China-linked spies backdoored authentication stack to stay hidden for years
A China-linked cyber espionage group known as Velvet Ant spent nearly a decade inside the internal network of an unnamed organization without being detected, according…
Claude Fable 5 and Mythos 5 “abruptly disabled” after US gov. ban
Anthropic has been ordered by the US government to cut off its newest Claude Fable 5 and Mythos 5 models for fear of abuse by…
One-Click Microsoft 365 Copilot Flaw Could Have Let Attackers Steal Emails, Files, and MFA Codes
Swati KhandelwalJun 15, 2026Vulnerability / Enterprise Security A single click on a trusted Microsoft link could have let an attacker pull emails, calendar details, and…
Big tech must introduce age checks to support UK’s under-16s social media ban
The UK government will require big tech companies to introduce age verification technology as it gears up to ban children from social media by April…
CVE-2026-20253: Critical Splunk Enterprise RCE Flaw Fixed
A newly disclosed security vulnerability in Splunk Enterprise has prompted urgent patching efforts after researchers revealed that the flaw could allow unauthenticated attackers to perform arbitrary file…
Outsider AI Phishing Kit Linked To 1.5M Malicious URLs
Google has launched a lawsuit against the operators behind the Outsider AI phishing kit. This alleged AI phishing kit, the company says, has been used…