New COLDRIVER Malware Campaign Joins BO Team and Bearlyfy in Russia-Focused Cyberattacks
The Russian advanced persistent threat (APT) group known as COLDRIVER has been attributed to a fresh round of ClickFix-style attacks...
Read more →Author: Cybernoz
ForcedLeak: Critical Salesforce AgentForce Vulnerability
A recently disclosed security research report has revealed a severe vulnerability chain in Salesforce AgentForce, dubbed ForcedLeak, which highlights a...
Read more →
Fortra GoAnywhere Vulnerability Exploited as 0-day Before Patch Released
A critical, perfect 10.0 CVSS score vulnerability in Fortra’s GoAnywhere Managed File Transfer (MFT) solution was actively exploited as a...
Read more →
Apache Airflow Vulnerability Lets Read-Only Users Access Sensitive Data
Apache Airflow maintainers have disclosed a serious security issue, tracked as CVE-2025-54831, that allows users holding only read permissions to...
Read more →
The 7 Cybersecurity Trends Of 2026 That Everyone Must Be Ready For
26 Sep The 7 Cybersecurity Trends Of 2026 That Everyone Must Be Ready For Posted at 08:45h in Blogs by...
Read more →
Neon App pays users to record their phone calls, sells data for AI training
TechCrunch reports about a “bizarre app” inviting you to record and share your audio calls so that it can sell the...
Read more →
Why BAS Is Proof of Defense, Not Assumptions
Sep 26, 2025The Hacker NewsSecurity Validation / Enterprise Security Car makers don’t trust blueprints. They smash prototypes into walls. Again...
Read more →
Australia Ransomware Threats Surge In 2025
Australia’s strong economy and high per-capita wealth have made it a prime target for ransomware groups, with the country facing...
Read more →
Microsoft Reduces Israel’s Access to Cloud and AI Products Over Reports of Mass Surveillance in Gaza
Microsoft said Thursday it had disabled services to a unit within the Israeli military after a company review had determined...
Read more →
First-Ever Malicious MCP Server Found in the Wild Steals Emails via AI Agents
The first-ever malicious Model-Context-Prompt (MCP) server discovered in the wild, a trojanized npm package named postmark-mcp that has been secretly...
Read more →Why BAS Is Proof of Defense, Not Assumptions
Sep 26, 2025The Hacker NewsSecurity Validation / Enterprise Security Car makers don’t trust blueprints. They smash prototypes into walls. Again...
Read more →
North Korea’s Fake Recruiters Feed Stolen Data to IT Workers
The North Korean threat actor behind the DeceptiveDevelopment campaign is supplying stolen developer information to the country’s horde of fraudulent...
Read more →