CyberSecurityNews

Cisco Software Manager Password Change Vulnerability

A critical vulnerability in Cisco’s Smart Software Manager On-Prem (SSM On-Prem) has surfaced, allowing unauthenticated, remote attackers to change user passwords, including those of administrative…

August 8, 2024 Cybernoz 2 min read

CyberSecurityNews

Microsoft Entra ID Vulnerability Let Attackers Gain Global Admin Access

Security researchers have uncovered vulnerabilities in Microsoft’s Entra ID (formerly Azure Active Directory) dubbed “UnOAuthorized,” which could allow unauthorized actions beyond expected controls. The findings,…

August 8, 2024 Cybernoz 3 min read

CyberSecurityNews

0.0.0.0 Day – 18 Yr Old Vulnerability Let Attackers Browser Security

Researchers at Oligo Security have discovered an 18-year-old critical vulnerability, dubbed “0.0.0.0 Day,” that affects all major web browsers, including Chromium, Firefox, and Safari. This…

August 8, 2024 Cybernoz 3 min read

CyberSecurityNews

Attackers Can Execute Arbitrary Commands

Cisco has disclosed multiple critical vulnerabilities affecting its Small Business SPA300 and SPA500 Series IP Phones, potentially allowing attackers to execute arbitrary commands with root…

August 8, 2024 Cybernoz 2 min read

CyberSecurityNews

GhostWrite Vulnerability Allows Hackers to Access Computer Memory

A group of cybersecurity researchers at CISPA Helmholtz Center for Information Security recently identified three major security vulnerabilities in five commercial RISC-V CPUs, including GhostWrite,…

August 8, 2024 Cybernoz 3 min read

CyberSecurityNews

2.9 Billion Users Personal Data Stolen

In one of the largest data breaches in history, the personal information of nearly 3 billion individuals has been stolen from National Public Data, a…

August 8, 2024 Cybernoz 2 min read

CyberSecurityNews

Hackers Leveraging OneDrive Or Google Drive To Hide Malicious Traffic

Attackers, including nation-state actors, increasingly leverage legitimate cloud services for espionage operations, exploiting their low-profile and cost-effective nature. The services, such as Microsoft OneDrive and…

August 7, 2024 Cybernoz 4 min read

CyberSecurityNews

RHADAMANTHYS Stealer Weaponizing RAR Archive To Steal Login Credentials

A newly surfaced cybercampaign targeting Israeli users has thrust the sophisticated RHADAMANTHYS information stealer into the spotlight. Originating from Russian-speaking cybercriminals and offered as a…

August 7, 2024 Cybernoz 3 min read

CyberSecurityNews

Firefox Patches Multiple High Severity Vulnerabilities

Mozilla has released Firefox 129, addressing multiple high-severity vulnerabilities. These patches are critical for enhancing the browser’s security and protecting users from potential exploits. Detailed…

August 7, 2024 Cybernoz 2 min read

CyberSecurityNews

Microsoft 365 Anti-phishing Feature Bypassed Using CSS Style Tags

Phishing is the most effective method for an attacker to infiltrate an organization. Several attack methods and techniques are available for an attacker to send…

August 7, 2024 Cybernoz 3 min read

CyberSecurityNews

Critical Kibana Vulnerability Let Attackers Execute Arbitrary Code

Kibana, a popular open-source data visualization and exploration tool, has identified a critical security flaw that could allow attackers to execute arbitrary code. This vulnerability,…

August 7, 2024 Cybernoz 2 min read

CyberSecurityNews

Chrome Security Vulnerability Let Attackers Execute Malicious Code

Google has released a critical security update for its Chrome browser, addressing multiple high-severity vulnerabilities that could allow attackers to execute malicious code on users’…

August 7, 2024 Cybernoz 2 min read