Microsoft won’t patch PhantomRPC: Feature or bug?
A researcher has discovered a weakness called PhantomRPC that Microsoft does not consider a vulnerability it plans to patch. PhantomRPC involves Windows Remote Procedure Call…
Author: Cybernoz
New Wave of DPRK Attacks Uses AI-Inserted npm Malware, Fake Firms, and RATs
Cybersecurity researchers have discovered malicious code in an npm package after a malicious package as a dependency to the project by Anthropic’s Claude Opus large…
MPs call on UK government to learn from central bank’s IT project success story
The Public Accounts Committee (PAC) has called on the UK government to learn from the Bank of England’s nine-year core system replacement project. In a…
Hutt City Council Phishing Attack Exposes 700+ Users
A Hutt City Council phishing attack reported in March 2026 has led to the exposure of sensitive information belonging to hundreds of individuals, prompting the…
IOCTA 2026 Report Warns Of AI-Driven Cybercrime
The IOCTA 2026 report released by Europol offers a detailed look at how cybercrime is evolving across Europe, with criminals increasingly using artificial intelligence, encryption,…
Always-on defence becomes critical as AI accelerates cyber threats: Infotrust
“Attackers have access to the same AI tools and technologies that we use to defend ourselves,” says Simon McKay, CEO of Cyber at Infotrust. In…
Fresh LiteLLM Vulnerability Exploited Shortly After Disclosure
A critical-severity vulnerability in the open source AI gateway LiteLLM was exploited days after public disclosure to access database tables containing sensitive information, Sysdig reports.…
All supported cPanel versions hit by critical auth bug, now patched
All supported cPanel versions hit by critical auth bug, now patched Pierluigi Paganini April 29, 2026 cPanel fixed a critical authentication flaw that could let…
State CISOs losing confidence in ability to manage cyber risks
Deloitte-NASCIO study shows AI, budget pressures are forcing states to make tough decisions. Source link
Critical GitHub RCE bug exposed millions of repositories
“On GitHub.com, this vulnerability allowed remote code execution on shared storage nodes. We confirmed that millions of public and private repositories belonging to other users…
Why a recent supply-chain attack singled out security firms Checkmarx and Bitwarden
“Current evidence indicates that this data originated from Checkmarx’s GitHub repositories, and that access to those repositories was facilitated through the initial supply chain attack…
Resilience report finds manufacturing leads global cyberattack targets, with ransomware dominating losses
Resilience published on Tuesday new data showing that manufacturing remains the most targeted industry for cyberattacks, driven by its critical role in global supply chains…