CyberSecurityNews

New Windows RPC Vulnerability Lets Attackers Escalate Privileges Across All Windows Versions

PhantomRPC, a newly identified architectural vulnerability in Windows Remote Procedure Call (RPC) that enables local privilege escalation to SYSTEM-level access, potentially affecting every version of…

April 26, 2026 Cybernoz 3 min read

CyberSecurityNews

CISA Warns of Multiple SimpleHelp Vulnerabilities Exploited in Attack

The Cybersecurity and Infrastructure Security Agency (CISA) has issued a critical alert regarding two actively exploited vulnerabilities in SimpleHelp remote support software. Remote access tools…

April 25, 2026 Cybernoz 2 min read

CyberSecurityNews

GPT‑5.5 Bio Bug Bounty to Strengthen Advanced AI Capabilities

OpenAI has announced a new Bio Bug Bounty program for GPT-5.5 as part of its efforts to improve safety controls for advanced AI systems and…

April 25, 2026 Cybernoz 2 min read

CyberSecurityNews

Hackers Can Abuse Entra Agent ID Administrator Role to Hijack Service Principals

A critical scope overreach vulnerability was recently identified in the Microsoft Entra Agent Identity Platform. The newly introduced Agent ID Administrator role allowed accounts to…

April 25, 2026 Cybernoz 2 min read

CyberSecurityNews

ADT Confirms Data Breach Following ShinyHunters Data Leak Claim

Home security giant ADT Inc. has confirmed a data breach after the notorious threat group ShinyHunters claimed to have stolen over 10 million records and…

April 25, 2026 Cybernoz 2 min read

CyberSecurityNews

Hackers Use Fake CAPTCHA Pages to Trigger Costly International SMS Fraud

Most internet users are familiar with CAPTCHA tests, simple challenges like selecting traffic lights or typing distorted letters to confirm they are human. But cybercriminals…

April 25, 2026 Cybernoz 3 min read

CyberSecurityNews

Claude Desktop Reportedly Adds Browser Access Bridge to Multiple Chromium-Based Browsers

A recent technical audit by privacy researcher Alexander Hanff has revealed that Anthropic’s Claude Desktop application for macOS silently installs a Native Messaging bridge into…

April 24, 2026 Cybernoz 3 min read

CyberSecurityNews

Void Dokkaebi Hackers Use Fake Job Interviews to Spread Malware via Code Repositories

A North Korea-linked hacking group known as Void Dokkaebi, also tracked as Famous Chollima, is running a campaign that tricks software developers into installing malware…

April 24, 2026 Cybernoz 3 min read

CyberSecurityNews

Hackers Use Telegram Bots to Track 900+ Successful React2Shell Exploits

A newly exposed server has revealed how a threat actor used automated tools, AI assistance, and Telegram bots to silently hack into more than 900…

April 24, 2026 Cybernoz 4 min read

CyberSecurityNews

Hackers Leverage Microsoft Teams to Breach Organizations Posing as IT Helpdesk Staff

A newly identified threat group, UNC6692, has been caught running a sophisticated multistage intrusion campaign that uses Microsoft Teams impersonation, a custom modular malware suite,…

April 24, 2026 Cybernoz 4 min read

CyberSecurityNews

North Korean Hackers Use Fake IT Worker Scheme to Infiltrate Companies and Evade Sanctions

North Korea has been running one of the most quietly effective cyber fraud operations in recent years. State-sponsored operatives working for the Pyongyang regime have…

April 24, 2026 Cybernoz 3 min read

CyberSecurityNews

AI-Assisted Lazarus Campaign Targets Developers With Backdoored Coding Challenges

A North Korean state-sponsored threat group is running an active campaign that tricks software developers into installing malware through fake job interviews and rigged coding…

April 23, 2026 Cybernoz 4 min read