GBHackers on Security | #1 Globally Trusted Cyber Security News Platform

Microsoft Threat Intelligence has identified a significant shift in tactics by Silk Typhoon, a Chinese espionage group, now targeting common IT solutions such as remote management tools and cloud applications for initial access. This well-resourced and technically proficient threat actor has demonstrated a large targeting footprint among Chinese threat actors, exploiting vulnerabilities in edge devices […]

The post Microsoft Warns of Silk Typhoon Hackers Exploiting Cloud Services to Attack IT Supply Chain appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

A large-scale cybercrime operation dubbed “PrintSteal” has been exposed, revealing a complex network involved in the mass production and distribution of fraudulent Indian KYC documents. The operation, which has been active since at least 2021, utilizes a vast network of over 1,800 domains to generate fake Aadhaar cards, PAN cards, and birth certificates on an […]

The post PrintSteal Cybercrime Group Mass-Producing Fake Aadhaar & PAN Cards appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

Security researchers have disclosed critical Insecure Direct Object Reference (IDOR) vulnerabilities in ZITADEL’s administration interface that expose organizations to account takeover risks and unauthorized configuration changes. Tracked as CVE-2025-27507 with a CVSS v3.1 score of 9.1/10, these flaws allow authenticated users without proper permissions to manipulate sensitive LDAP configurations and other critical instance settings. Vulnerability Overview The vulnerabilities reside […]

The post Critical IDOR Vulnerabilities in ZITADEL Let Hackers Modify Key Settings appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

A significant security vulnerability in LibreOffice, designated as CVE-2025-1080, has been patched in versions 24.8.5 and 25.2.1, released on March 4, 2025. The flaw, which allowed attackers to execute arbitrary scripts through manipulated macro URLs, posed a severe risk to users of the open-source office suite. This vulnerability underscores the importance of prompt software updates […]

The post LibreOffice Flaw Allows Attackers to Run Arbitrary Scripts via Macro URL appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

A new ransomware collective dubbed SecP0 has emerged with a disruptive strategy that diverges sharply from conventional cybercriminal playbooks. Unlike traditional ransomware groups that focus on encrypting data or threatening to leak stolen information, SecP0 is now demanding ransoms in exchange for withholding disclosure of critical software vulnerabilities, as per a tweet by PRODAFT. This tactic represents a […]

The post SecP0 Ransomware Gang Threatens to Expose Critical Vulnerabilities appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

Security researchers at ThreatLabz recently uncovered a sophisticated malware campaign operating through the Google Play Store, leveraging a seemingly benign application to distribute the Anatsa banking trojan (also known as TeaBot). The malicious app, disguised as a file manager and document reader, accumulated over 220,000 downloads before its removal, marking one of the most significant […]

The post Malicious Android App on Google Play Compromises 220,000+ Devices appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

Cryptocurrency exchange Bybit suffered a sophisticated smart contract exploit on February 21, 2025, resulting in the theft of 401,346.76 ETH (approximately $1.2 billion at the time of the incident). The attack vector leveraged advanced proxy contract manipulation through malicious delegatecall operations, marking one of the most technically complex exchange hacks in Web3 history.  Exploit Timeline […]

The post Technical Analysis Released on Bybit Hot Wallet Exploit appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

Google’s FLARE team has released GoStringUngarbler, an open-source tool designed to dismantle string obfuscation in Go binaries protected by the garble compiler. This innovation addresses growing concerns over malware authors exploiting garble’s advanced literal transformations, which render traditional static analysis ineffective. The tool combines emulation-driven string extraction with binary patching to produce deobfuscated executables, fundamentally altering […]

The post Google Unveils GoStringUngarbler to Crack Go-Based Malware Encryption appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

AI Soft has announced the upcoming public release of Alli AI, an advanced artificial intelligence-powered platform designed for content creation. Following the conclusion of a closed beta phase, the platform will soon be available with a free trial version, allowing users to explore its capabilities. Alli AI offers a range of tools for image enhancement, […]

The post Alli AI Announces Upcoming Public Launch of AI-Powered Content Creation Platform appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) escalated warnings on March 4, 2025, by adding four severe vulnerabilities to its Known Exploited Vulnerabilities (KEV) Catalog. Federal agencies and private organizations are urged to prioritize mitigation efforts, as threat actors are actively weaponizing these flaws in VMware ESXi, Workstation, Fusion, and the Linux kernel. CVE-2025-22225: […]

The post CISA Issues Alert on Actively Exploited VMware Vulnerabilities appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

Cisco Systems has disclosed a security vulnerability in its Webex for BroadWorks unified communications platform that could allow attackers to intercept sensitive credentials and user data under specific configurations. The flaw, tracked as CSCwo20742 and classified as a low-severity issue, impacts organizations using Release 45.2 of the software in Windows-based environments, prompting Cisco to release configuration-based fixes and recommend […]

The post Cisco Webex for BroadWorks Flaw Opens Door for Attackers to Access Credentials appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

A critical security flaw in the widely used GiveWP – Donation Plugin and Fundraising Platform has left over 10,000 WordPress websites vulnerable to remote code execution attacks since March 3, 2025. Tracked as CVE-2025-0912, the vulnerability allows unauthenticated attackers to hijack sites by exploiting a deserialization flaw in versions 3.19.4 and earlier. Vulnerability Overview The vulnerability stems from […]

The post Over 10,000 WordPress Sites Exposed by Donation Plugin Code Execution Vulnerability appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

Cybersecurity researchers at G DATA have uncovered a sophisticated malware campaign utilizing fake booking websites to deliver the LummaStealer malware through deceptive CAPTCHA prompts. This new attack vector, discovered in January 2025, marks a significant shift in LummaStealer’s distribution methods, moving from traditional channels like GitHub and Telegram to malvertising techniques. The infection chain begins […]

The post Beware! Fake CAPTCHA Hidden LummaStealer Threat Installing Silently appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

A sophisticated Advanced Persistent Threat (APT) group, known as CNC, has been conducting a cyber espionage campaign dubbed “Operation Sea Elephant” targeting scientific research institutions and universities in South Asia. The operation, which aims to steal research data related to ocean sciences, was recently uncovered by security researchers. The CNC group, previously associated with Patchwork, […]

The post Operation Sea Elephant Targets Organizations to Steal Research Data appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

A network of suspected North Korean IT workers is using GitHub to create and backstop fake personas, aiming to infiltrate companies globally, particularly in Japan and the United States. DPRK-Linked Network Targets Companies in Japan and US Cybersecurity firm Nisos has uncovered this operation, which appears to be part of Pyongyang’s efforts to fund its […]

The post North Korean IT Workers Exploit GitHub to Launch Global Cyber Attacks appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

A sophisticated phishing campaign targeting the Albion Online gaming community has been uncovered, revealing a complex operation involving impersonation of the Electronic Frontier Foundation (EFF) and deployment of advanced malware. The campaign, discovered on March 4, 2025, showcases the evolving tactics of cybercriminals in exploiting trust in reputable organizations and leveraging the immersive nature of […]

The post Cybercriminals Impersonate Electronic Frontier Foundation to Target Gaming Community appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

The U.S. Department of the Treasury has intensified its global campaign against darknet-facilitated drug trafficking by sanctioning Behrouz Parsarad, the Iran-based administrator of the notorious Nemesis Marketplace. The move, announced on March 5, 2025, follows a 2024 international law enforcement operation that dismantled the platform, which enabled over $30 million in illicit drug sales—including synthetic […]

The post U.S. Cracks Down on Nemesis Darknet Admin with New Treasury Sanctions appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

A high-severity security flaw in the widely used Vim text editor allows attackers to execute arbitrary code on vulnerable systems by tricking users into opening specially crafted TAR archives. Tracked as CVE-2025-27423, this vulnerability has prompted urgent patching efforts and warnings for developers and system administrators globally. Technical Breakdown of the Vulnerability The flaw resides in […]

The post Vim Vulnerability (CVE-2025-27423) Allows Code Execution via Malicious TAR Archives appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

A newly documented exploitation technique targeting Telegram’s file-sharing infrastructure has raised alarms in cybersecurity circles. Dubbed “EvilVideo,” this attack vector leverages a vulnerability (CVE-2024-7014) in how Telegram processes multimedia content, enabling attackers to disguise malicious HTML files as video files. When unsuspecting users attempt to open these files, embedded JavaScript code executes, enabling IP logging, […]

The post Telegram EvilVideo Vulnerability Exploited to Run Malicious Code on Victims’ Devices appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

Security researchers have released proof-of-concept (PoC) exploit code for critical vulnerabilities in Hewlett Packard Enterprise’s (HPE) Insight Remote Support (IRS) tool, including an unauthenticated XML External Entity (XXE) injection flaw (CVE-2024-53675) and a path traversal-based remote code execution (RCE) vulnerability (CVE-2024-53676).  These flaws affect IRS versions prior to v7.14.0.629 and expose systems to arbitrary file disclosure and full SYSTEM-level […]

The post PoC Released for HPE Remote Support Tool Vulnerability Allowing Remote Code Execution appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.