QR codes sent in attachments are the new favorite for phishers
Recently we’ve been seeing quite a few phishing campaigns using QR codes in email attachments. The lure and the targets...
Read more →News Archive
View All →
Europol-led operation shuts down CSAM platform Kidflix, leading to 79 arrests
Europol-led operation shuts down CSAM platform Kidflix, leading to 79 arrests Pierluigi Paganini April 03, 2025 An international law enforcement...
Read more →
Giving Windows Mobile 5.0 A Try
So I got another phone — well, a Windows device (not quite the same thing exactly). It’s heresy, to be...
Read more →
Cisco confirms cyberattacks on Smart Licensing Utility flaw
Dive Brief: CISA earlier this week added CVE-2024-20439, a critical flaw in the Cisco Smart Licensing Utility, to its known...
Read more →
Oracle privately confirms Cloud breach to customers
Oracle has finally acknowledged to some customers that attackers have stolen old client credentials after breaching a “legacy environment” last...
Read more →
SonicWall Firewall Vulnerability Enables Unauthorized Access
Researchers from Bishop Fox have successfully exploited CVE-2024-53704, an authentication bypass vulnerability that affects SonicWall firewalls. This critical flaw allows remote...
Read more →
Taking a ‘good enough’ approach with cloud security isn’t enough
Thanks to cloud computing, organisations of all shapes and sizes have benefitted from the flexibility of IT capacity without the...
Read more →
Linux DHCP | Daniel Miessler
If you’re ever trying to get dhcp to work in Linux, and the package you installed also installed a service...
Read more →![[tl;dr sec] #273 - Model Context Protocol + Security Tools, Compromising CodeQL, Red Teaming with ServiceNow](https://cybernoz.com/wp-content/uploads/2025/04/tldr-sec-273-Model-Context-Protocol-Security-Tools.png)
[tl;dr sec] #273 – Model Context Protocol + Security Tools, Compromising CodeQL, Red Teaming with ServiceNow
MCPs for Ghidra, Semgrep, and SecOps, a CodeQL supply chain issue, using ServiceNow offensively I hope you’ve been doing well!...
Read more →
Recent GitHub supply chain attack traced to leaked SpotBugs token
A cascading supply chain attack on GitHub that targeted Coinbase in March has now been traced back to a single...
Read more →
DarkCloud Stealer Uses Weaponized .TAR Archives to Target Organizations and Steal Passwords
A recent cyberattack campaign leveraging the DarkCloud stealer has been identified, targeting Spanish companies and local offices of international organizations...
Read more →
Secure Ideas Achieves CREST Accreditation and CMMC Level 1 Compliance
Jacksonville, United States, April 3rd, 2025, CyberNewsWire Secure Ideas, a premier provider of penetration testing and security consulting services, proudly...
Read more →