SolarWinds Web Help Desk Exploitation
Summary On February 6, 2026, Microsoft reported the exploitation of SolarWinds Web Help Desk (WHD) servers The exploitation facilitated multi-stage intrusions leveraging remote monitoring and…
Author: Cybernoz
Transparent Tribe’s ‘Vibeware’ Shift Signals Rise of AI-Generated Malware at Industrial Scale
Pakistan-based threat actor APT36, widely known as Transparent Tribe, has shifted away from carefully crafted tools to a new approach called “vibeware” — AI-assisted malware…
Hiding payloads in Java source code strings
In this post we’ll show you how Java handles unicode escapes in source code strings in a way you might find surprising – and how…
ClipXDaemon Malware Targets Crypto Users in Linux X11 Sessions
ClipXDaemon is a new Linux malware family that hijacks cryptocurrency clipboard data in X11 sessions, operating fully offline without any command‑and‑control (C2) infrastructure. It reuses…
Fake Claude Code install pages highlight rise of “InstallFix” attacks
Users looking for Anthropic’s Claude Code agentic AI coding tool are being tricked via fake Claude Code install pages into running malware, Push Security researchers…
Chrome Extension Turns Malicious After Ownership Transfer, Enabling Code Injection and Data Theft
Two Google Chrome extensions have turned malicious after what appears to be a case of ownership transfer, offering attackers a way to push malware to…
Harvey Nash docuseries addresses AI skills ‘paradox’
Artificial intelligence (AI) is a rapidly growing technology, becoming more embedded in society and business every day, but is the world ready for such rapid…
4 best practices to get IAM implementation right the first time
Congrats—you got the green light to move forward with improving identity access management (IAM). While you realize this is great news for your organization’s security,…
We’ve seen ransomware cost American lives. Here’s what it will actually take to stop it.
Flights canceled. Emergency rooms shut down. Centuries-old companies shuttered. Ransomware and other similar cyberattacks have become so routine that even those serious human and economic…
European Commission opens consultation on draft guidance to help manufacturers and developers comply with CRA
The European Commission has prepared a Communication providing practical guidance on applying the Cyber Resilience Act (CRA). It will help manufacturers, developers, and other stakeholders…
New e-book: Establishing a proactive defense with Microsoft Security Exposure Management
Effective exposure management begins by illuminating and hardening risks across the entire attack surface. Some of the most meaningful shifts in security happen quietly—when teams…
Tradecraft Tuesday Recap: React2Shell, ClickFix, and the Rise of AI Scams
Every security professional knows the drill. You go home for the holidays and, without volunteering, you become the family’s help desk, incident responder, and fraud…