Looking Through a Pinhole at a Qilin Ransomware Attack
A big part of a security analyst’s everyday role is figuring out what actually happened during an incident. We can do that by piecing together…
Author: Cybernoz
APT28 hackers deploy customized variant of Covenant open-source tool
The Russian state-sponsored APT28 threat group is using a custom variant of the open-source Covenant post-exploitation framework for long-term espionage operations. Also tracked as Fancy…
Apache ZooKeeper Vulnerability Allow Attackers to Access Sensitive Data
Apache ZooKeeper Vulnerability Two “Important” severity vulnerabilities have been disclosed in Apache ZooKeeper, a widely used service for configuration management and naming in distributed applications,…
Attackers Use Malformed ZIP Archives to Evade Antivirus and EDR Tools
Cybersecurity researchers at the CERT Coordination Center (CERT/CC) have issued a warning regarding a newly disclosed evasion technique tracked as VU#976247. Threat actors are increasingly…
Fake LinkedIn Interview Used by Lazarus Hackers to Target AllSecure CEO
The notorious North Korean Lazarus Group has been caught trying to rob a CEO through a fake job interview. Just last week, the hackers used…
Why 2026 Is the Perfect Time To Pivot Into Cybersecurity
The late 1990s dot-com boom saw internet adoption explode, venture capital pour in, new roles appear overnight, and salaries and opportunity follow. Cybersecurity in the…
This spy tool has been quietly stealing data for years
ESET researchers have traced the resurgence of Sednit through a modern toolkit built around two complementary implants, BeardShell and Covenant, each relying on a separate…
Hackers may have breached FBI wiretap network via supply chain
Investigators are worried that a recent attack on a critical FBI system was more than just a random hit, and that another nation-state might have…
A Webinar Guide to Auditing Modern Agentic Workflows
The Hacker NewsMar 10, 2026Artificial Intelligence / Threat Detection Artificial Intelligence (AI) is no longer just a tool we talk to; it is a tool…
Public and private sector key to Digital Realty in West Africa
Datacentre operators always have to look at new routes, to redistribute workloads and implement expansion strategies. That’s a fact of life as they respond to…
Threat actors use custom AuraInspector to harvest data from Salesforce systems
Threat actors use custom AuraInspector to harvest data from Salesforce systems Pierluigi Paganini March 10, 2026 Attackers are mass-scanning Salesforce Experience Cloud sites using a…
OpenAI to acquire Promptfoo to strengthen AI agent security testing
“Red-teaming, governance, and evaluation tools are becoming the new table stakes,” said Neil Shah, VP for research at Counterpoint Research. “Security must be multi-layered, integrated…