GBHackers on Security | #1 Globally Trusted Cyber Security News Platform

Both CrushFTP, a popular file transfer technology, and Next.js, a widely used React framework for building web applications, have come under scrutiny due to significant vulnerabilities. Rapid7 has highlighted these issues, emphasizing their potential impact on data security and unauthorized access. Overview of Vulnerabilities Next.js Vulnerability (CVE-2025-29927):  This critical vulnerability involves improper authorization in middleware, […]

The post CrushFTP Warns of HTTP(S) Port Vulnerability Enabling Unauthorized Access appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

Users of the Veeam Backup Server have encountered a significant issue following the Windows 11 24H2 update. Specifically, the update has disrupted the connection between Veeam Recovery Media and the Veeam Backup Server. This problem affects users who have created recovery media from Windows 11 version 24H2 (build 26100.3194) or higher. When attempting to restore […]

The post Windows 11 24H2 Update Disrupts Connection to Veeam Backup Server appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

Cloudflare experienced a significant service outage that affected several of its key offerings, including R2 object storage, Cache Reserve, Images, Log Delivery, Stream, and Vectorize. The incident, which lasted 1 hour and 7 minutes, was traced back to a faulty credential rotation process for the R2 Gateway service. Incident Overview The outage began at 21:38 […]

The post Cloudflare Attributes Service Outage to Faulty Password Rotation appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

In mid-March 2025, Kaspersky researchers uncovered a sophisticated APT attack, dubbed Operation ForumTroll, which leveraged a previously unknown zero-day exploit in Google Chrome. This exploit allowed attackers to bypass Chrome’s sandbox protections, a critical security feature designed to isolate and contain malicious code. The attack was initiated through personalized phishing emails, which directed victims to […]

The post APT Hackers Exploit Google Chrome Zero-Day in Operation ForumTroll to Bypass Sandbox Protections appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

Researchers at QiAnXin XLab have uncovered a sophisticated Linux-based backdoor dubbed OrpaCrab, specifically targeting industrial systems associated with ORPAK, a company involved in gas stations and oil transportation. The malware, which was uploaded to VirusTotal in January 2024 from the U.S., employs advanced techniques to evade detection and maintain persistence on compromised systems. Exploitation of […]

The post New Sophisticated Linux Backdoor Targets OT Systems via 0-Day RCE Exploit appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

A recent snag in Google’s Chrome distribution process has left Windows users unable to install the browser on their Intel and AMD systems. The issue, first reported by Windows Latest on March 25, arises when users attempt to run the ChromeSetup.exe file, only to be met with the error message: “This app can’t run on your PC: […]

The post New Chrome Installer Fails on Windows 10 & 11 With “This app can’t run on your PC” Error appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

Security researchers have uncovered a new attack campaign by the North Korean state-sponsored APT group Kimsuky, also known as “Black Banshee.” The group, active since at least 2012, has been observed employing advanced tactics and malicious scripts in their latest cyber espionage efforts targeting countries such as South Korea, Japan, and the United States. The […]

The post North Korean Kimsuky Hackers Deploy New Tactics and Malicious Scripts in Recent Attacks appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

A critical vulnerability has been identified in NetApp’s SnapCenter Server, affecting versions before 6.0.1P1 and 6.1P1. This flaw allows an authenticated SnapCenter Server user to potentially escalate their privileges to admin on remote systems where SnapCenter plug-ins are installed. The vulnerability has been designated as CVE-2025-26512 and carries a Critical severity rating with a CVSS […]

The post Critical NetApp SnapCenter Server Vulnerability Allows Attackers to Gain Admin Access appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

In a significant development, cybersecurity firm Silent Push has identified nearly 200 unique command and control (C2) domains associated with the Raspberry Robin malware. This discovery sheds new light on the infrastructure used by this sophisticated threat actor group, which has evolved from a USB worm to a formidable initial access broker (IAB) for various […]

The post Raspberry Robin Unveils 200 Unique Domains Used by Threat Actors appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

A recent investigation has revealed that several Clevo-based devices are vulnerable due to a leak of Boot Guard private keys. This vulnerability was first reported on the Win-Raid forum and involves firmware updates containing sensitive Boot Guard Key Manifest (KM) and Boot Policy Manifest (BPM) private keys. Boot Guard is a security technology used by […]

The post Clevo Devices Vulnerable as Boot Guard Private Key Leaks via Firmware Updates appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

In the second half of 2024, cybercriminals have increasingly leveraged legitimate Microsoft tools and browser extensions to bypass security measures and deliver malware, according to Ontinue’s latest Threat Intelligence Report. Threat actors are exploiting built-in Microsoft features like Quick Assist and Windows Hello to establish persistence and evade detection. Quick Assist, a remote access tool, […]

The post Cybercriminals Bypass Security Using Legitimate Tools & Browser Extensions to Deliver Malware appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

The cybersecurity landscape in 2024 witnessed a significant escalation in AI-related threats, with malicious actors increasingly targeting and exploiting large language models (LLMs). According to KELA’s annual “State of Cybercrime” report, discussions about exploiting popular LLMs such as ChatGPT, Copilot, and Gemini surged by 94% compared to the previous year. Jailbreaking Techniques Proliferate on Underground […]

The post Malicious AI Tools See 200% Surge as ChatGPT Jailbreaking Talks Increase by 52% appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

In 2024, the number of users affected by mobile banking malware skyrocketed to nearly 248,000, a staggering 3.6-fold increase from the previous year’s 69,000 affected users. This dramatic rise in malicious activity was particularly pronounced in the latter half of the year, indicating an evolving threat landscape in the mobile finance sector. Mamont Emerges as […]

The post Banking Malware Infects 248,000 Mobile Users Through Social Engineering Techniques appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

Security researcher Nick Cerne from Bishop Fox has published findings comparing malware development in Rust versus traditional C/C++ languages. The research demonstrates how Rust provides inherent anti-analysis features that make malware more difficult to reverse engineer. According to Cerne’s analysis, languages like Rust, Go, and Nim have become increasingly popular among malware authors for two […]

The post Researchers Compare Malware Development in Rust vs C and C++ appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

Researchers have introduced ARACNE, a fully autonomous Large Language Model (LLM)-based pentesting agent designed to interact with SSH services on real Linux shell systems. ARACNE is engineered to execute commands autonomously, marking a significant advancement in the automation of cybersecurity testing. The agent’s architecture supports multiple LLM models, enhancing its flexibility and effectiveness in penetration […]

The post ARACNE: LLM-Powered Pentesting Agent Executes Commands on Real Linux Shell Systems appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

Menlo Park, United States, March 25th, 2025, CyberNewsWire FinTech and Communications Leader, IDT Corporation partners with AccuKnox to deploy runtime security-powered CNAPP (Cloud Native Application Protection Platform) for IoT/Edge Security. AccuKnox, Inc., announced that Telecom and FinTech Leader IDT Corporation has partnered with AccuKnox to deploy Zero Trust CNAPP. Gartner’s predictions for the Internet of Things (IoT) security landscape […]

The post IDT Corporation Partners with AccuKnox for Zero Trust Runtime IoT/Edge Security appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

A sophisticated phishing campaign, recently identified by LayerX Labs, has shifted its focus from Windows users to Mac users in response to enhanced security measures implemented by major browsers. Initially, this campaign targeted Windows users by masquerading as Microsoft security alerts, aiming to steal login credentials by creating the illusion of a compromised computer. The […]

The post New Phishing Campaign Targets Mac Users to Steal Login Credentials appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

CAPE, derived from Cuckoo v1, is a sophisticated malware sandbox designed to execute malicious files in an isolated environment while capturing their dynamic behavior and collecting forensic artifacts. This platform enhances Cuckoo’s capabilities by incorporating automated dynamic malware unpacking, YARA-based classification of unpacked payloads, and both static and dynamic malware configuration extraction. CAPE also features […]

The post CAPE from Cuckoo v1 Enables Malware Analysis in a Secure Isolated Sandbox Environment appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

SnakeKeylogger, a sophisticated multistage malware, has emerged as a significant threat to both individuals and businesses by targeting sensitive login credentials. This malware campaign is characterized by its stealthy in-memory execution and multi-stage infection chain, making it challenging to detect. The attack begins with a malicious spam email containing a .img file attachment, which, when […]

The post Multistage Info-Stealer SnakeKeylogger Targets Individuals and Businesses to Steal Login Credentials appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

A recent discovery by the McAfee Mobile Research Team has highlighted a new wave of Android malware campaigns that utilize the .NET MAUI cross-platform framework to evade detection. This framework, introduced by Microsoft as a replacement for Xamarin, allows developers to build applications for multiple platforms, including Android, iOS, Windows, and macOS. However, cybercriminals have […]

The post New Malware Targets Android Users by Abusing Cross-Platform Framework for Evasion appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.