TECHZONE™
الذهاب إلى القناة على Telegram
TECHZONE CYBERNEWS && UPDATES Wᴇʟᴄᴏᴍᴇ Tᴏ TECHZONE™ ✔️Infosec Facts ✔️Cheatsheets ✔️Free Courses ✔️Open source tools ✔️Tech news
إظهار المزيد595
المشتركون
لا توجد بيانات24 ساعات
-17 أيام
-1030 أيام
أرشيف المشاركات
595
Insight Partners, VC Giant, Falls to Social Engineering
https://www.darkreading.com/cyber-risk/insight-partners-vc-giant-social-engineering
595
Russian Groups Target Signal Messenger in Spy Campaign
https://www.darkreading.com/mobile-security/russian-groups-target-signal-messenger-in-spy-campaign
595
No, you’re not fired – but beware of job termination scams
https://www.welivesecurity.com/en/scams/no-youre-not-fired-beware-job-termination-scams/
Some employment scams take an unexpected turn as cybercriminals shift from “hiring” to “firing” staff
595
Hackers Exploit Signal's Linked Devices Feature to Hijack Accounts via Malicious QR Codes
https://thehackernews.com/2025/02/hackers-exploit-signals-linked-devices.html
Multiple Russia-aligned threat actors have been observed targeting individuals of interest via the privacy-focused messaging app Signal to gain unauthorized access to their accounts.
"The most novel and widely used technique underpinning Russian-aligned attempts to compromise Signal accounts is the abuse of the app's legitimate 'linked devices' feature that enables Signal to be used on multiple
595
Patch Now: CISA Warns of Palo Alto Flaw Exploited in the Wild
https://www.darkreading.com/remote-workforce/patch-now-cisa-researchers-warn-palo-alto-flaw-exploited-wild
595
What Is the Board's Role in Cyber-Risk Management in OT Environments?
https://www.darkreading.com/cyber-risk/board-role-cyber-risk-management-ot-environments
595
New Snake Keylogger Variant Leverages AutoIt Scripting to Evade Detection
https://thehackernews.com/2025/02/new-snake-keylogger-variant-leverages.html
A new variant of the Snake Keylogger malware is being used to actively target Windows users located in China, Turkey, Indonesia, Taiwan, and Spain.
Fortinet FortiGuard Labs said the new version of the malware has been behind over 280 million blocked infection attempts worldwide since the start of the year.
"Typically delivered through phishing emails containing malicious attachments or links,
595
North Korea's Kimsuky Taps Trusted Platforms to Attack South Korea
https://www.darkreading.com/cyberattacks-data-breaches/north-koreans-kimsuky-attacks-rivals-trusted-platforms
595
The Ultimate MSP Guide to Structuring and Selling vCISO Services
https://thehackernews.com/2025/02/the-ultimate-msp-guide-to-structuring.html
The growing demand for cybersecurity and compliance services presents a great opportunity for Managed Service Providers (MSPs) and Managed Security Service Providers (MSSPs) to offer virtual Chief Information Security Officer (vCISO) services—delivering high-level cybersecurity leadership without the cost of a full-time hire.
However, transitioning to vCISO services is not without its challenges
595
Trojanized Game Installers Deploy Cryptocurrency Miner in Large-Scale StaryDobry Attack
https://thehackernews.com/2025/02/trojanized-game-installers-deploy.html
Users who are on the lookout for popular games were lured into downloading trojanized installers that led to the deployment of a cryptocurrency miner on compromised Windows hosts.
The large-scale activity has been codenamed StaryDobry by Russian cybersecurity company Kaspersky, which first detected it on December 31, 2024. It lasted for a month.
Targets of the campaign include individuals and
595
CISA Adds Palo Alto Networks and SonicWall Flaws to Exploited Vulnerabilities List
https://thehackernews.com/2025/02/cisa-adds-palo-alto-networks-and.html
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Tuesday added two security flaws impacting Palo Alto Networks PAN-OS and SonicWall SonicOS SSLVPN to its Known Exploited Vulnerabilities (KEV) catalog, based on evidence of active exploitation.
The flaws are listed below -
CVE-2025-0108 (CVSS score: 7.8) - An authentication bypass vulnerability in the Palo Alto Networks PAN-OS
595
Katharine Hayhoe: The most important climate equation | Starmus highlights
https://www.welivesecurity.com/en/we-live-science/katharine-hayhoe-most-important-climate-equation-starmus-highlights/
The atmospheric scientist makes a compelling case for a head-to-heart-to-hands connection as a catalyst for climate action
595
Xerox Printer Vulnerabilities Enable Credential Capture
https://www.darkreading.com/iot/xerox-printer-vulnerabilities-credential-capture
595
China-Linked Threat Group Targets Japanese Orgs' Servers
https://www.darkreading.com/cyberattacks-data-breaches/china-linked-threat-group-japanese-orgs-servers
595
Thrive Acquires Secured Network Services
https://www.darkreading.com/cloud-security/thrive-acquires-secured-network-services
595
SANS Institute Launches AI Cybersecurity Hackathon
https://www.darkreading.com/cybersecurity-operations/sans-institute-launches-ai-cybersecurity-hackathon
595
Microsoft: New Variant of macOS Threat XCSSET Spotted in the Wild
https://www.darkreading.com/vulnerabilities-threats/microsoft-variant-macos-threat-xcsset
595
Introducing enQase for Quantum-Safe Security
https://www.darkreading.com/endpoint-security/introducing-enqase-for-quantum-safe-security
595
New OpenSSH Flaws Enable Man-in-the-Middle and DoS Attacks — Patch Now
https://thehackernews.com/2025/02/new-openssh-flaws-enable-man-in-middle.html
Two security vulnerabilities have been discovered in the OpenSSH secure networking utility suite that, if successfully exploited, could result in an active machine-in-the-middle (MitM) and a denial-of-service (DoS) attack, respectively, under certain conditions.
The vulnerabilities, detailed by the Qualys Threat Research Unit (TRU), are listed below -
CVE-2025-26465 - The OpenSSH client
595
Chinese Hackers Exploit MAVInject.exe to Evade Detection in Targeted Cyber Attacks
https://thehackernews.com/2025/02/chinese-hackers-exploit-mavinjectexe-to.html
The Chinese state-sponsored threat actor known as Mustang Panda has been observed employing a novel technique to evade detection and maintain control over infected systems.
This involves the use of a legitimate Microsoft Windows utility called Microsoft Application Virtualization Injector (MAVInject.exe) to inject the threat actor's malicious payload into an external process, waitfor.exe,
متاح الآن! بحث تيليغرام 2025 — أهم رؤى العام 
