Cybernoz - Cybernoz

Tool that Detects 117 persistence malware techniques on Windows, Linux, and macOS

PyrsistenceSniper is an advanced tool for detecting offline persistence, enabling cybersecurity analysts to identify 117 separate persistence mechanisms across Windows, Linux, and macOS platforms. Originally…

May 24, 2026 Cybernoz 3 min read

GBHackers

Hackers Use SEO Poisoning to Fake Gemini CLI, Claude Installers

Financially motivated threat actors are running an active campaign that impersonates Google’s Gemini CLI and Anthropic’s Claude Code, using SEO poisoning to deliver a fileless…

May 24, 2026 Cybernoz 3 min read

TheHackerNews

Packagist Supply Chain Attack Infects 8 Packages Using GitHub-Hosted Linux Malware

Ravie LakshmananMay 23, 2026Malware / DevSecOps A new “coordinated” supply chain attack campaign has impacted eight packages on Packagist including malicious code designed to run…

May 24, 2026 Cybernoz 2 min read

Mix

Could Suddenly-Great Open Source AI Crash the US Economy?

Not sure why I haven’t thought more about this, but it seems like the US now has a massive economic vulnerability from cheap, high-quality, open…

May 24, 2026 Cybernoz 2 min read

ThreatIntelligence-IncidentResponse

The Mechanics of Defense Evasion

Dig, if you will, the picture of you and I engaged in a stress. Being on the receiving end of defense evasion is stressful. I…

May 24, 2026 Cybernoz 10 min read

Bleeping Computer

Laravel Lang packages hijacked to deploy credential-stealing malware

A supply chain attack targeting the Laravel Lang localization packages has exposed developers to a sophisticated credential-stealing malware campaign after attackers abused GitHub version tags…

May 24, 2026 Cybernoz 3 min read

CyberSecurityNews

Anthropic’s Claude Mythos Preview Uncovers 10,000+ 0-Days in Project Glasswing

Anthropic has revealed the staggering initial results of Project Glasswing, a collaborative cybersecurity initiative designed to secure critical infrastructure using advanced AI before malicious actors…

May 24, 2026 Cybernoz 3 min read

GBHackers

Ubiquiti Patches Critical UniFi OS Privilege Escalation Flaws

Ubiquiti has released urgent security patches for five critical and high-severity vulnerabilities across its UniFi OS platform, addressing flaws that could allow remote attackers to…

May 24, 2026 Cybernoz 3 min read

HelpnetSecurity

Microsoft 365 users targeted by new phishing threat that bypasses MFA

Microsoft 365 access tokens are being targeted by an emerging Phishing-as-a-Service (PhaaS) platform called Kali365, the FBI is warning. First observed in April 2026, Kali365…

May 24, 2026 Cybernoz 2 min read

TheHackerNews

npm Adds 2FA-Gated Publishing and Package Install Controls Against Supply Chain Attacks

Ravie LakshmananMay 23, 2026Software Supply Chain / DevSecOps GitHub has rolled out new controls for npm to improve the security of the software supply chain,…

May 23, 2026 Cybernoz 2 min read

Securityaffairs

CVE-2026-9082: Drupal’s Highly Critical SQL Injection Flaw Is Already Under Active Attack

CVE-2026-9082: Drupal’s Highly Critical SQL Injection Flaw Is Already Under Active Attack Pierluigi Paganini May 23, 2026 Attackers began exploiting Drupal SQL injection flaw CVE-2026-9082…

May 23, 2026 Cybernoz 4 min read

CISOOnline

Unpatched ChromaDB flaw leaves servers open to remote code execution

The vulnerability stems from a race condition between the code ChromaDB uses to parse embedding model references and the code it uses to perform an…

May 23, 2026 Cybernoz 1 min read