Pure Crypter, a well-known malware-as-a-service (MaaS) loader, has been recognized as a crucial tool for threat actors targeting Windows-based systems in a thorough technical research carried out by eSentire’s Threat Response Unit (TRU) during 2024 and 2025. This loader, favored for deploying information stealers like Lumma and Rhadamanthys via the ClickFix initial access vector, has […]
The post Pure Crypter Uses Multiple Evasion Methods to Bypass Windows 11 24H2 Security Features appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.
A threat actor using the alias “303” allegedly claimed to have breached the company’s systems and leaked sensitive internal data on a dark web forum. The alleged breach reportedly involves GitHub credentials and source code from internal project repositories belonging to Deloitte’s U.S. consulting division. According to reports emerging from cybersecurity monitoring services, the threat […]
The post Deloitte Data Breach: Alleged Leak of Source Code & GitHub Credentials appeared first on Cyber Security News.
A recent discovery by security researchers at BeyondTrust has revealed a critical, yet by-design, security gap in Microsoft Entra ID that could allow external guest users to gain powerful control over Azure environments. Contrary to common assumptions, Entra B2B guest accounts—typically used for collaboration with external partners—can leverage specific billing roles to create and transfer […]
The post Attackers Exploit Microsoft Entra Billing Roles to Escalate Privileges appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.
The race to secure global digital infrastructure against quantum computing threats has entered a critical phase. Recent advancements in quantum hardware and cryptographic standardization are driving unprecedented collaboration between governments, tech giants, and cybersecurity experts. As quantum processors like Atom Computing’s 1180-qubit system demonstrate rapid scaling and Google’s Willow chip achieves exponential error reduction, organizations […]
The post Implementing Post-Quantum Cryptography for Future-Proof Security appeared first on Cyber Security News.
Microsoft has exposed the escalating sophistication of phishing attacks, particularly focusing on Adversary-in-the-Middle (AiTM) techniques that are becoming a cornerstone of modern cyber threats. As organizations increasingly adopt multifactor authentication (MFA), passwordless solutions, and robust email protections, threat actors are adapting with advanced methods to steal credentials, especially targeting enterprise cloud environments. AiTM attacks, often […]
The post Microsoft Reveals Techniques for Defending Against Evolving AiTM Attacks appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.
A critical security vulnerability discovered in Icinga 2 monitoring systems enables attackers to bypass certificate validation and obtain legitimate certificates for impersonating trusted network nodes. The flaw, designated CVE-2025-48057 with a CVSS score of 9.3, affects installations built with older OpenSSL versions and has prompted immediate security updates from the Icinga development team. Organizations running […]
The post Critical Icinga 2 Vulnerability Allows Attackers to Bypass Validation and Obtain Certificates appeared first on Cyber Security News.
A sophisticated new malware strain has been discovered operating on Windows systems for weeks without detection, employing an advanced evasion technique that deliberately corrupts its Portable Executable (PE) headers to prevent traditional analysis methods. The malware, identified during a recent incident investigation, represents a significant evolution in cyber threats targeting Microsoft Windows environments. The malicious […]
The post New Malware Compromise Microsoft Windows Without PE Header appeared first on Cyber Security News.