GBHackers on Security | #1 Globally Trusted Cyber Security News Platform

A security vulnerability in Nagios XI 2024R1.2.2, tracked as CVE-2024-54961, has been disclosed, allowing unauthenticated attackers to retrieve sensitive user information, including usernames and email addresses, from the network monitoring platform. This high-severity flaw (CVSSv3 score: 6.5) exposes organizations to heightened risks of phishing campaigns, credential-stuffing attacks, and lateral movement within compromised networks. Technical Breakdown […]

The post Nagios XI Flaw Exposes User Details and Emails to Unauthenticated Attackers” appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

Ubiquiti Networks has issued an urgent security advisory (Bulletin 046) warning of multiple critical vulnerabilities in its UniFi Protect camera ecosystem, including a high-severity remote code execution (RCE) flaw that could allow attackers to hijack devices and infiltrate network infrastructure. The vulnerabilities, discovered during the Pwn2Own 2025 hacking competition, affect UniFi Protect Cameras (firmware v4.74.88 […]

The post Critical UniFi Protect Camera Vulnerability Enables Remote Code Execution Attacks appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

A critical security flaw in Fluent Bit, a widely adopted log processing and metrics collection tool part of the Cloud Native Computing Foundation (CNCF), has exposed enterprise cloud infrastructures to denial-of-service (DoS) attacks. Designated as CVE-2024-50608 and CVE-2024-50609, these vulnerabilities—scoring 8.9 on the CVSS v3.1 severity scale—stem from improper handling of HTTP headers in the […]

The post Critical Vulnerability in Fluent Bit Exposes Cloud Services to Potential Cyber Attacks appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

The cybercriminal group behind the notorious “darcula-suite” platform has unveiled its latest iteration, darcula 3.0, which introduces groundbreaking capabilities for creating phishing kits targeting any brand globally. This “Phishing-as-a-Service” (PhaaS) platform lowers the technical barrier for bad actors by automating the cloning of legitimate websites and enabling non-technical users to deploy sophisticated phishing campaigns with […]

The post New Darcula 3.0 Tool Generates Phishing Kits to Mimic Global Brands appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

A highly advanced threat actor, dubbed “Salt Typhoon,” has been implicated in a series of cyberattacks targeting major U.S. telecommunications networks, according to a report by Cisco Talos. The campaign, which began in late 2024 and was confirmed by the U.S. government, involves exploiting vulnerabilities in Cisco devices and leveraging stolen credentials to infiltrate critical […]

The post Salt Typhoon Hackers Exploit Cisco Vulnerability to Gain Device Access on US.Telecom Networks appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

The notorious CL0P ransomware group has intensified its operations in early 2025, targeting critical sectors such as telecommunications and healthcare. Known for its sophisticated tactics, the group has exploited zero-day vulnerabilities to infiltrate systems, steal sensitive data, and extort victims. This resurgence follows a relatively quieter 2024, during which CL0P listed only 27 victims compared […]

The post CL0P Ransomware Launches Large-Scale Attacks on Telecom and Healthcare Sectors appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

Cybercriminals are increasingly leveraging sophisticated Adversary-in-the-Middle (AiTM) phishing techniques, enabled by the rise of Phishing-as-a-Service (PhaaS) ecosystems. These operations target financial institutions globally, bypassing multi-factor authentication (MFA) by intercepting live authentication sessions. Threat actors use reverse proxy servers to relay user inputs to legitimate websites, capturing credentials and session cookies in real time. This allows […]

The post Adversary-in-the-Middle Hackers Exploit Vulnerabilities to Deploy Advanced Malware appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) released seven Industrial Control Systems (ICS) advisories on February 20, 2025, addressing critical vulnerabilities in products from ABB, Siemens, Mitsubishi Electric, and other industrial technology providers. These advisories underscore escalating risks to operational technology (OT) environments, where flaws in safety controllers, human-machine interfaces (HMIs), and protocol analyzers […]

The post CISA Issues Seven ICS Advisories Highlighting Critical Vulnerabilities appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

The once-shadowy realm of Pegasus spyware has breached new frontiers, with forensic analyses revealing a stark pivot from targeting journalists and activists to infiltrating the private sector. In December 2024, mobile security firm iVerify detected 11 new Pegasus infections among 18,000 scanned devices—a 1.5 per 1,000 incidence rate—exposing finance, real estate, and logistics executives to […]

The post Pegasus Spyware Now Targeting Business Executives and Financial Sector Professionals appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

Check Point Software Technologies Ltd. has announced plans to establish its inaugural Asia-Pacific Research and Development (R&D) Centre in Bengaluru, India. This initiative, unveiled during the CPX Bangkok 2025 conference, aims to drive innovation in cybersecurity solutions while strengthening global product development and talent acquisition. The Bengaluru centre underscores Check Point’s commitment to leveraging India’s […]

The post Check Point Software to Open First Asia-Pacific R&D Centre in Bengaluru, India appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

A recent investigation into Ivanti Endpoint Manager (EPM) has uncovered four critical vulnerabilities that could allow unauthenticated attackers to exploit machine account credentials for relay attacks, potentially leading to server compromise. These vulnerabilities, identified in the C:\Program Files\LANDesk\ManagementSuite\WSVulnerabilityCore.dll, were patched in January 2025 following their discovery in October 2024. The vulnerabilities are categorized as follows: […]

The post PoC Exploit Released for Ivanti Endpoint Manager Vulnerabilities appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

As of February 2025, ransomware remains a formidable cyber threat, evolving in complexity and scale. The ransomware ecosystem has adapted to previous law enforcement disruptions, showcasing a resilient business model that continues to attract financially motivated cybercriminals. The proliferation of Ransomware-as-a-Service (RaaS) has significantly contributed to the volume of attacks, allowing less experienced affiliates to […]

The post Ransomware Trends 2025 – What’s new appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

ESET researchers have uncovered a series of malicious activities orchestrated by a North Korea-aligned group known as DeceptiveDevelopment, active since early 20241. The cybercriminals pose as company recruiters, enticing freelance software developers with fake employment offers. As part of the elaborate ruse, targets are asked to complete coding tests, such as adding features to existing […]

The post Hackers Delivering Malware Bundled with Fake Job Interview Challenges appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

Cybersecurity researchers from Palo Alto Networks’ Unit 42 disclosed the resurgence of the Bookworm malware, which has been linked to the Stately Taurus threat actor group. This malware employs a sophisticated DLL sideloading technique that enables it to infiltrate Windows systems effectively. The research highlights overlaps between the infrastructure used by Stately Taurus and the […]

The post New Bookworm Malware Using SLL Sideloading Technique To Windows appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

A recent investigation has uncovered a malicious application, DriverEasy, masquerading as a legitimate Google Chrome update to steal user credentials. The malware leverages Dropbox’s API to exfiltrate sensitive information, including passwords, and is linked to North Korea’s cyber-espionage campaign known as “Contagious Interview.” Password Theft via Fake Prompts DriverEasy, written in Swift and Objective-C, deploys […]

The post Fake Chrome Update Delivers DriverEasy Malware by Abusing Dropbox appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

Cybersecurity experts have raised alarms about the Rhadamanthys Infostealer, a sophisticated malware now being distributed through Microsoft Management Console (MMC) files with the MSC extension. This new tactic, confirmed by the AhnLab Security Intelligence Center (ASEC), exploits the flexibility of MSC files, which are XML-based and capable of executing scripts, commands, and programs. The malware’s […]

The post Rhadamanthys Infostealer Uses Microsoft Management Console to Spread Malware appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

Security researchers have uncovered a significant evolution in the ShadowPad malware family, which is now being used to deploy ransomware in highly targeted attacks. ShadowPad, modular malware linked to Chinese threat actors, has historically been associated with cyber espionage. However, recent incidents reveal its expanded capabilities, marking an alarming shift toward ransomware deployment. Incident Analysis […]

The post ShadowPad Malware Upgraded to Deliver Ransomware in Targeted Attacks appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

A recent phishing campaign conducted by cybersecurity firm Hackmosphere has revealed alarming vulnerabilities among top decision-makers, including CEOs and CTOs. The study underscores how cybercriminals exploit social engineering tactics to target high-ranking executives, emphasizing the need for heightened vigilance and robust security measures. Phishing, a prevalent cyberattack method, involves tricking individuals into revealing sensitive information […]

The post Phishing Attack Exploit CEOs, CTOs, and Top Decision-Makers appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

Cybersecurity researchers have uncovered a sophisticated malware campaign orchestrated by the threat actor group SmartApeSG, also known as ZPHP or HANEYMANEY. This campaign exploits fake browser update notifications to deliver two potent malware strains: NetSupport RAT and StealC. The operation leverages malicious scripts injected into compromised websites, redirecting victims to fraudulent pages designed to mimic […]

The post Hackers Drop NetSupport RAT & StealC Malware on Your Windows Via Fake Browser Updates appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

Microsoft has urgently addressed a high-severity privilege escalation vulnerability (CVE-2025-21420) in the Windows Disk Cleanup Utility (cleanmgr.exe) during its February 2025 Patch Tuesday updates. The flaw, scoring 7.8 on the CVSS scale, enabled attackers to execute malicious code with SYSTEM privileges through DLL sideloading techniques. Technical Mechanism of the Exploit The vulnerability leverages cleanmgr.exe’s privileged […]

The post Windows Disk Cleanup Tool Exploit Allows SYSTEM Privilege Escalation appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.