HTTP/2’s speed abused to slow webserver performance in DoS attack
HTTP/2 was introduced in 2015 to increase the speed of HTTP by allowing multiple simultaneous connections, and is gradually being superceded by HTTP/3, which is…
Author: Cybernoz
Dashlane explains how attackers managed to download encrypted password vaults
That means the chances of the attackers decrypting one of the encrypted vaults they obtained is very small in the event the master password was…
Gain visibility into DDoS attacks with flow logs in AWS Shield Advanced
Reconstructing distributed denial of service (DDoS) attack traffic used to mean combining data from multiple sources after the fact. AWS Shield Advanced attack flow logs…
Abusing Ngrok: Hackers at the End of the Tunnel
Do you know that expression, “light at the end of the tunnel?” Usually, that has a positive connotation. After some hard work or persevering through…
DentaQuest data breach exposed info of 2.6 million accounts
A data breach at the dental benefits administrator DentaQuest has reportedly exposed the sensitive data of 2.6 million accounts. The security incident came to light…
Stock Exchange Executive’s Outlook Account Targeted to Exfiltrate Credentials
A senior executive at a major global stock exchange had their Microsoft Outlook account silently compromised for five straight months, with attackers carefully siphoning emails…
Meta Silently Added Face-Recognition Code for Its Smart Glasses to Millions of Phones
Meta has quietly embedded face-recognition technology for its smart glasses into an app downloaded to millions of phones, according to a WIRED analysis of the…
Supply Chain Attack Hits Dozens of npm Packages via binding.gyp
A large-scale npm supply chain attack has compromised at least 57 packages across more than 286 malicious versions in a rapid, coordinated campaign that unfolded…
iFood Confirms Data Breach Affecting 1.2 Million Users in Brazil
Brazilian food delivery app iFood has confirmed becoming the victim of a data breach in December 2025 that affected 1.2 million users (which makes up…
Product showcase: Trend Micro Mobile Security detects scams in messages, QR codes, and websites
Trend Micro Mobile Security for iOS protects devices from potentially harmful websites while browsing, blocks ads and personal information trackers, helps users avoid unsafe Wi-Fi…
Meta’s AI support bot happily handed Instagram accounts to hackers
Customer service chatbots have one job: get the user what they’re asking for without bothering a human. Meta’s new AI support assistant took that brief…
Cisco Patches CVE-2026-20230 in Unified CM as Exploit Code Goes Public
Swati KhandelwalJun 04, 2026Vulnerability / Network Security Cisco has patched a bug in Unified Communications Manager that lets an unauthenticated attacker on the network write…