Threat Actors Using Ivanti EPMM Flaws to Install Stealth Backdoors
A sophisticated new cyber campaign has been detected targeting Ivanti Endpoint Manager Mobile (EPMM) systems. Starting on February 4, 2026, threat actors began exploiting two…
Author: Cybernoz
DPRK IT Workers Impersonating Individuals Using Real LinkedIn Accounts to Apply for Remote Roles
The landscape of remote employment faces a persistent and evolving challenge as North Korean operatives refine their strategies to infiltrate global organizations. For years, these…
DPRK IT Workers Use Stolen LinkedIn Identities to Secure Remote Employment
A new wave of identity fraud has hit the remote job market, with North Korean (DPRK) operatives adopting a sophisticated new tactic to bypass hiring…
15,200 OpenClaw Control Panels with Full System Access Exposed to Internet
OpenClaw Control Panels Exposed A critical security failure in the rapidly adopting “agentic AI” ecosystem has left tens of thousands of personal and corporate AI…
European Commission Contains Cyber-Attack Targeting Staff Mobile Data
European Commission Cyber-Attack The European Commission has confirmed the detection and containment of a security incident affecting the central infrastructure that manages staff mobile devices.…
Department of Comms reveals text-based triple zero pilot is close
The federal government has revealed that it is working on establishing a technical trial that could lead to the establishment of Australia’s first mass adoption…
ScarCruft Abuses Legitimate Cloud Services for C2 and OLE-based Chain to Drop Malware
ScarCruft, a prolific North Korean-backed advanced persistent threat (APT) group, has significantly refined its cyberespionage capabilities in a newly identified campaign distributing the ROKRAT malware.…
New RecoverIt Tool Abuses Windows Service Failure Recovery to Execute Malicious Payloads
A new offensive security tool named “RecoverIt” has been released, offering red teamers a stealthy method for lateral movement and persistence by abusing the Windows…
Cyber security awareness initiative for Australian parliamentarians
The National Industry Innovation Network has launched a new cyber security awareness initiative for Australian parliamentarians, aimed at strengthening resilience within the parliamentary environment as…
New Node.js Based LTX Stealer Attackers Users to Exfiltrate Login Credentials
A sophisticated new malware strain dubbed “LTX Stealer” has emerged in the cyber threat landscape, utilizing a unique Node.js-based architecture to compromise Windows systems. First…
Hackers Abuse ClawHub Skills to Evade VirusTotal via Social Engineering
A new evolution in ClawHub skill-based attacks that effectively sidesteps recent security measures. Rather than embedding base64-encoded payloads directly in SKILL.md files, threat actors have…
TikTok under EU pressure to change its addictive algorithm
The European Commission has issued preliminary findings that say TikTok breaches the Digital Services Act due to its addictive design. The Commission opened a formal…