GBHackers on Security | #1 Globally Trusted Cyber Security News Platform

PreCrime Labs at BforeAI discovered a complex cyber threat operation in which hackers have used a vast network of 607 rogue domains to spread fake Telegram Messenger application files (APKs) over the course of the last month. These domains, primarily registered via the Gname registrar and hosting content in Chinese, form part of a large-scale […]

The post Hackers Leverage 607 Malicious Domains to Spread APK Malware with Remote Command Execution appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

Security researchers identified a sophisticated malware campaign targeting WordPress websites, where threat actors embedded malicious code within core files to facilitate unauthorized redirects and search engine optimization (SEO) poisoning. The infection was traced to the wp-settings.php file, a fundamental component of the WordPress framework, which had been altered to include two anomalous lines of PHP […]

The post Threat Actors Weaponize WordPress Sites to Redirect Visitors to Malicious Domains appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

A fresh variant of SquidLoader malware has surfaced, actively entering Hong Kong institutions with previously unheard-of stealth, which is alarming for the financial industry. This sophisticated loader achieves near-zero detection rates on platforms like VirusTotal, leveraging intricate anti-analysis, anti-sandbox, and anti-debugging mechanisms to deploy Cobalt Strike Beacons for remote access. The malware’s attack chain begins […]

The post SquidLoader Deploys Stealthy Malware with Near-Zero Detection to Evade Security Measures appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

Security researchers at Atredis have uncovered multiple privilege escalation vulnerabilities in Lenovo Vantage, a pre-installed management platform on Lenovo laptops that handles device updates, configurations, and system health monitoring. These flaws, tracked under CVEs 2025-6230, 2025-6231, and 2025-6232, allow unprivileged users to bypass authentication mechanisms and execute code with SYSTEM-level privileges, potentially leading to full […]

The post Lenovo Vantage Flaws Enable Attackers to Gain SYSTEM-Level Privileges appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

Security researchers have uncovered a critical chain of vulnerabilities in Samsung’s WEA453e wireless access point that allows unauthenticated remote attackers to execute commands with full administrative privileges. The flaws, discovered in August 2020, demonstrate how seemingly minor web interface oversights can cascade into complete system compromise. The vulnerability chain begins with a reflected cross-site scripting […]

The post Samsung WLAN AP Flaws Let Remote Attackers Run Commands as Root appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

The Department of Defense (DoD) revealed that an advanced persistent threat (APT) group, known as Salt Typhoon and publicly identified as Chinese state-sponsored actors, had successfully penetrated a U.S. state’s Army National Guard network in a major increase in cyberthreats. This compromise spanned from March 2024 to December 2024, enabling potential exfiltration of sensitive military […]

The post Chinese ‘Salt Typhoon’ Hackers Infiltrated US National Guard Network for Almost a Year appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

Microsoft has issued an urgent warning to Windows users about an impending security certificate expiration that could significantly impact device functionality. The tech giant announced that Secure Boot certificates used by most Windows devices are scheduled to expire starting in June 2026, potentially affecting the ability of personal and business computers to boot securely if […]

The post Windows Secure Boot Certificate Expired in June, Microsoft Issues Warning appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

Google’s artificial intelligence agent “Big Sleep” has made cybersecurity history by discovering and stopping the exploitation of a critical zero-day vulnerability in SQLite, marking the first time an AI system has directly foiled real-world cyberattacks. The AI agent, developed by Google DeepMind and Project Zero, identified the SQLite vulnerability (CVE-2025-6965) based on threat intelligence indicating […]

The post Google’s AI ‘Big Sleep’ Detects Critical SQLite 0-Day, Halts Ongoing Attacks appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

The financially driven organization known as Dark Partners has been planning massive cryptocurrency theft since at least May 2025, using a complex network of more than 250 malicious domains that pose as AI tools, VPN services, cryptocurrency wallets, and well-known software brands. This is part of a rapidly developing cybercrime operation. These fake websites, distributed […]

The post Dark Partners Hacker Group Drains Crypto Wallets Using Fake AI Tools and VPN Services appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

A cybersecurity researcher has demonstrated how a carefully crafted Gmail message can trigger code execution through Claude Desktop, Anthropic’s AI assistant application, highlighting a new class of vulnerabilities in AI-powered systems that don’t require traditional software flaws. The exploit leverages the Model Context Protocol (MCP), which allows Claude to interact with various applications and services. […]

The post Gmail Message Exploit Triggers Code Execution in Claude, Bypassing Protections appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

Oracle Corporation released its July 2025 Critical Patch Update, addressing a substantial 309 security vulnerabilities across its extensive product portfolio. This quarterly security release represents one of the most comprehensive patches in recent years, affecting dozens of Oracle’s enterprise software solutions and requiring immediate attention from organizations worldwide. The critical update spans Oracle’s entire technology […]

The post Oracle Issues Critical Update Fixing 309 Vulnerabilities Across Products appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

SentinelOne researchers have discovered NimDoor, a sophisticated MacOS malware campaign ascribed to North Korean-affiliated attackers, most likely the Stardust Chollima gang, in a notable increase in cyber threats targeting the bitcoin industry. Active since at least April 2025, NimDoor exploits social engineering tactics by masquerading as Zoom SDK updates to infiltrate Web3 and crypto organizations, […]

The post NimDoor MacOS Malware Abuses Zoom SDK Updates to Steal Keychain Credentials appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

Security researchers from zLabs have discovered a more advanced version of the Konfety Android malware, which uses complex ZIP-level changes to avoid detection and mimic genuine apps on the Google Play Store, marking a dramatic increase in mobile dangers. This malware employs an “evil-twin” strategy, where malicious versions distributed through third-party sources share identical package […]

The post Konfety Android Malware Exploits ZIP Tricks to Masquerade as Legit Apps on Google Play appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

Cloudflare’s latest DDoS Threat Report for the second quarter of 2025 reveals that the company autonomously mitigated the largest-ever recorded distributed denial-of-service (DDoS) attacks, peaking at an unprecedented 7.3 terabits per second (Tbps) and 4.8 billion packets per second (Bpps). These hyper-volumetric assaults, which surged dramatically, underscore the relentless evolution of attack vectors targeting critical […]

The post Massive DDoS Attack Slams Internet with 7.3 Tbps and 4.8 Billion Packets Per Second appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

A critical security vulnerability has been discovered in Vim, the popular open-source command-line text editor, that could allow attackers to overwrite arbitrary files on users’ systems. The vulnerability, designated CVE-2025-53906, was published on July 15, 2025, and affects all versions of Vim prior to 9.1.1551. The security flaw stems from a path traversal issue within Vim’s […]

The post Command-Line Editor Vim Hit by Vulnerability Allowing File Overwrites appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

Cyber espionage campaigns against Japanese companies have increased in fiscal year 2024, which runs from April 2024 to March 2025, according to a thorough analysis published by Macnica’s Security Research Center. The main objective of these campaigns is to exfiltrate sensitive data, including manufacturing blueprints, policy-related documents, and personal information. Since initiating monitoring in 2014, […]

The post Hackers Exploit Ivanti and Fortinet VPN Vulnerabilities in Attacks on Japanese Companies appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

Curl, the ubiquitous command-line tool and library for transferring data with URLs, has reached version 8.15.0 with a landmark release that addresses more than 230 bugs and streamlines its internal architecture. Officially launched today at 10:00 CEST (08:00 UTC) in a live-streamed presentation on Twitch, this release marks the project’s 269th iteration and reaffirms its […]

The post Curl 8.15.0 Officially Released: 233 Bugs Fixed in Major Update appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

Italian State Police, working alongside French and Romanian authorities, have successfully dismantled a sophisticated ransomware operation known as “Diskstation” that specifically targeted Synology Network Attached Storage (NAS) systems worldwide. The international investigation, coordinated by EUROPOL and led by Milan’s Cybersecurity Operations Center, resulted in the arrest of several Romanian nationals and exposed a criminal network […]

The post Authorities Take Down ‘Diskstation’ Ransomware Gang Targeting Synology NAS Globally appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

The largest Bitcoin-enabled Western darknet marketplace, Abacus Market, has gone offline amid widespread suspicions of an exit scam that may have cost users millions of dollars in held cryptocurrency funds. TRM Labs, a blockchain analytics firm, assesses that the marketplace’s operators likely shut down operations and disappeared with users’ Bitcoin and Monero deposits in early […]

The post Abacus Dark Web Market Suspected of Exit Scam with Held Bitcoin Funds appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

A 21-year-old former U.S. Army soldier has pleaded guilty to participating in a sophisticated cybercrime operation that targeted telecommunications companies through hacking, data theft, and extortion schemes. Cameron John Wagenius, who was stationed in Texas during his military service, admitted to conspiring with others to breach protected computer networks and demand ransom payments from victim […]

The post Former U.S. Army Member Pleads Guilty in Telecom Hacking Case appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.