“Dead Man’s Switch” Triggers Massive npm Supply Chain Malware Attack
GitLab’s security team has discovered a severe, ongoing attack spreading dangerous malware through npm, the world’s most extensive code library. The malware uses an alarming…
Author: Cybernoz
Shai Hulud v2 Exploits GitHub Actions Workflows as Attack Vector to Steal Secrets
The software supply chain is under siege from “Shai Hulud v2,” a sophisticated malware campaign that has compromised 834 packages across the npm and Maven…
Handala Hacker Group Targets Israeli High-Tech and Aerospace Professionals
A sophisticated cyber intimidation campaign by the Handala hacker group has targeted Israeli high-tech and aerospace professionals, publishing their personal information alongside aggressive, misleading descriptions…
Microsoft to Block Unauthorized Scripts in Entra ID Logins with 2026 CSP Update
Nov 27, 2025Ravie LakshmananWeb Security / Zero Trust Microsoft has announced plans to improve the security of Entra ID authentication by blocking unauthorized script injection…
Budget 2025: £300m extra for NHS IT and a £1.8bn budget for digital ID cards
The UK government’s Autumn Budget contained no major announcements of significance to the tech sector, but there were a few developments that continue progress on…
OpenAI data may have been exposed after a cyberattack on analytics firm Mixpanel
OpenAI data may have been exposed after a cyberattack on analytics firm Mixpanel Pierluigi Paganini November 27, 2025 OpenAI warns some users that a cyberattack…
Dead Man’s Switch – Widespread npm Supply Chain Attack Driving Malware Attacks
GitLab’s Vulnerability Research team has uncovered a large-scale supply chain attack spreading a destructive malware variant through the npm ecosystem. The malware, an evolved version…
Apache SkyWalking Flaw Allows Attackers to Launch XSS Attacks
A recently discovered vulnerability in Apache SkyWalking, a popular application performance monitoring tool, could allow attackers to execute malicious scripts and launch cross-site scripting (XSS)…
One Identity Safeguard Named a Visionary in the 2025 Gartner Magic Quadrant for PAM
Alisa Viejo, CA, USA, November 27th, 2025, CyberNewsWire Gartner has recognized One Identity as a Visionary in the 2025 Gartner Magic Quadrant for Privileged Access Management (PAM). In…
SAP selects Tata Consultancy Services to transform its IT operations
SAP has signed a five-year outsourcing agreement with Tata Consultancy Services (TCS) to support it in its strategy to transform its internal IT through enterprise-wide…
Qilin RaaS Exposed 1 Million Files and 2 TB of Data Linked to Korean MSP Breach
The “Korean Leaks” campaign has emerged as one of the most sophisticated supply chain attacks targeting South Korea’s financial sector in recent memory. This operation…
OpenAI Reveals Mixpanel Data Breach Exposing User Details
OpenAI has publicly disclosed a security incident involving a data breach at Mixpanel, a third-party analytics provider previously used by the company for monitoring usage…