GBHackers on Security | #1 Globally Trusted Cyber Security News Platform

ReliaQuest, hackers have deployed a cunning search engine optimization (SEO) poisoning scheme to orchestrate payroll fraud against a manufacturing sector customer. This deceptive strategy involves crafting fake authentication portals that mirror legitimate organizational login pages, manipulating search engine results to rank these malicious sites at the top. Unsuspecting employees, searching for payroll portals on mobile […]

The post Hackers Masquerade as Organizations to Steal Payroll Logins and Redirect Payments from Employees appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

A newly identified .NET-based information-stealing malware, dubbed PupkinStealer (also known as PumpkinStealer in some reports), has surfaced as a significant cyber threat, targeting sensitive data such as web browser passwords and application session tokens. First observed in the wild around April 2025, this malware is believed to have roots in Russian-speaking cybercrime communities, with indicators […]

The post PupkinStealer Exploits Web Browser Passwords and App Tokens to Exfiltrate Data Through Telegram appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

Recorded Future Payment Fraud Intelligence has uncovered a sprawling network of 71 fraudulent e-commerce domains designed to impersonate a prominent German international discount retailer, with lidlorg[.]com identified as the central node of this scam operation. First detected on April 19, 2025, these websites employ advanced brand impersonation tactics, such as typosquatting and the unauthorized use […]

The post 71 Fake Websites Impersonating German Retailer to Steal Payment Information appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

A groundbreaking study leveraging advanced application-layer scanning has exposed approximately 150,000 industrial control systems (ICS) worldwide that are directly accessible on the public internet, posing severe risks of catastrophic cyberattacks. Conducted over a year from January 2024 to January 2025, this research utilizing comprehensive IPv4 scanning data from Censys targets 17 widely used ICS protocols, […]

The post New Scan Uncovers 150K Industrial Systems Worldwide Vulnerable to Cyberattacks appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

Microsoft has unveiled Administrator Protection, a groundbreaking security feature for Windows 11 designed to safeguard systems against privilege escalation attacks. This new capability creates a security boundary around administrative operations, significantly reducing the attack surface that hackers exploit when targeting elevated processes. According to Microsoft’s Digital Defense Report 2024, token theft incidents have escalated to […]

The post Windows 11 Introduces Enhanced Administrator Protection to Strengthen Security Against Elevated Privilege Attacks appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

PowerDNS has released a critical security update to address a vulnerability in its DNSdist load balancer that could allow remote attackers to trigger denial of service attacks without authentication. The issue, tracked as CVE-2025-30193, was patched in version 1.9.10 released on May 20, 2025. Security researchers warn that organizations using DNSdist should apply this update […]

The post PowerDNS Vulnerability Allows Attackers to Trigger DoS Attacks Through Malicious TCP Connections appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

The cybersecurity landscape reveal that the VanHelsing ransomware operation has experienced a significant security breach with its source code being leaked publicly. According to security researchers, this leak occurred after an internal dispute with a former developer who attempted to monetize the code before it was released freely by the ransomware operators. The leaked materials […]

The post VanHelsing Ransomware Builder Exposed on Hacker Forums appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

IBM X-Force’s 2024 cybersecurity report, nearly one-third of cyber intrusions now rely on identity-based attacks, exploiting valid login credentials to breach systems. This alarming trend, continuing for the second consecutive year, highlights a shift in threat actor strategies, moving away from traditional brute-force methods to stealthier, more persistent tactics. Attackers are increasingly leveraging sophisticated tools, […]

The post IBM Warns: One-Third of Cyber Attacks Use Advanced Tactics to Steal Login Credentials appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

A new research report released today by Progressive International, Expose Accenture, and the Movement Research Unit uncovers the sprawling influence of Accenture, the world’s largest consultancy firm, in driving a global wave of surveillance, exclusion, and authoritarianism. The investigation reveals how Accenture has become essential to security states worldwide, channeling public resources into private ownership […]

The post Accenture Files Leak – New Research Reveals Projects Controlling Billions of User Data appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

Cybersecurity researchers have uncovered a sophisticated malware campaign orchestrated by the notorious Kimsuky Advanced Persistent Threat (APT) group, deploying intricately crafted PowerShell payloads to deliver the XWorm Remote Access Trojan (RAT). This operation showcases the group’s advanced tactics, leveraging encoded scripts and multi-stage attack chains to infiltrate systems, bypass traditional security mechanisms, and establish covert […]

The post Kimsuky APT Group Deploys PowerShell Payloads to Deliver XWorm RAT appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

The More_Eggs malware, operated by the financially motivated Venom Spider group (also known as Golden Chickens), continues to exploit human trust through meticulously crafted social engineering. Sold as a Malware-as-a-Service (MaaS) to notorious threat actors like FIN6 and Cobalt Group, this potent JavaScript backdoor primarily targets human resources (HR) departments by masquerading as job application […]

The post More_Eggs Malware Uses Job Application Emails to Distribute Malicious Payloads appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

Datadog Security Research has uncovered a formidable new cryptojacking campaign dubbed “RedisRaider,” specifically targeting Linux servers with publicly accessible Redis instances. This sophisticated Linux worm employs aggressive propagation techniques and advanced obfuscation to exploit vulnerabilities in misconfigured Redis servers, deploying a customized version of the XMRig miner to mine Monero cryptocurrency. The threat actor behind […]

The post RedisRaider Campaign Targets Linux Servers by Exploiting Misconfigured Redis Instances appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

Cybercriminals are leveraging the Python Package Index (PyPI) to distribute malicious tools designed to exploit TikTok and Instagram APIs for verifying stolen account credentials. Security researchers at Socket have identified three such packages checker-SaGaF, steinlurks, and sinnercore that automate the process of validating emails and usernames against social media platforms. Released between April 2023 and […]

The post Hackers Abuse TikTok and Instagram APIs to Verify Stolen Account Credentials appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

Biotechnology giant Regeneron Pharmaceuticals has emerged as the successful bidder in the bankruptcy auction for genetic testing pioneer 23andMe, offering $256 million for the majority of the company’s assets. Announced Monday, the deal would transfer 23andMe’s consumer genomics business and valuable biobank containing genetic data from millions of customers to Regeneron, pending bankruptcy court and […]

The post Regeneron to Buy 23andMe for $256M Amid Growing Data Privacy Concerns appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

Cybersecurity and Infrastructure Security Agency (CISA) has added a cross-site scripting (XSS) vulnerability affecting MDaemon Email Server to its Known Exploited Vulnerabilities (KEV) Catalog on May 19, 2025. This critical addition, identified as CVE-2024-11182, highlights a security flaw that allows attackers to inject malicious JavaScript code via crafted HTML emails. Federal agencies now have until […]

The post CISA Includes MDaemon Email Server XSS Flaw in KEV Catalog appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

Russian organizations have become prime targets of a sophisticated malware campaign deploying the Pure malware family, first identified in mid-2022. Distributed via a Malware-as-a-Service (MaaS) model, Pure malware allows cybercriminals to purchase and deploy it with ease. While the campaign began in March 2023, the first third of 2025 witnessed a staggering fourfold increase in […]

The post Hackers Use Weaponized RAR Archives to Deliver Pure Malware in Targeted Attacks appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

Data breach at Serviceaide, Inc., a technology vendor for Catholic Health, exposed sensitive information belonging to approximately 480,000 patients. The incident, caused by an improperly secured Elasticsearch database, left names, Social Security numbers, medical records, and login credentials publicly accessible for nearly seven weeks. While forensic analysts found no direct evidence of data misuse, the […]

The post Cyberattack on Serviceaide Compromises Data of 480,000 Catholic Health Patients appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

A newly identified cyberattack campaign has revealed the persistent and evolving threat of Bumblebee malware, a sophisticated downloader first discovered in 2022 and linked to ransomware groups like Conti. According to a recent report by Cyjax, threat actors have orchestrated a cunning SEO poisoning scheme targeting users of the Bing search engine. This campaign leverages […]

The post Threat Actors Deploy Bumblebee Malware via Poisoned Bing SEO Results appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

A newly identified phishing campaign is targeting unsuspecting users by masquerading as urgent Zoom meeting invitations from colleagues. This deceptive tactic leverages the familiarity and trust associated with workplace communications to lure victims into a trap designed to steal their login credentials. Cybersecurity researchers have flagged this attack for its realistic approach, which includes a […]

The post New Phishing Attack Poses as Zoom Meeting Invites to Steal Login Credentials appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

A newly identified piece of malware, dubbed the “Hannibal Stealer,” has emerged as a significant cybersecurity threat due to its advanced stealth mechanisms and obfuscation techniques designed to bypass modern detection systems. This modular .NET info-stealer and credential harvester demonstrates deep integration for extracting sensitive data from browsers, cryptocurrency wallets, and popular applications like Discord, […]

The post New Hannibal Stealer Uses Stealth and Obfuscation to Evade Detection appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.