GBHackers on Security | #1 Globally Trusted Cyber Security News Platform

Cybersecurity researchers have identified a critical 0-day vulnerability in Windows Server 2012 and Server 2012 R2. This previously unknown security flaw allows attackers to bypass the Mark of the Web (MoTW) verification on certain files, posing a significant threat to affected systems. Vulnerability Details The vulnerability, which was introduced over two years ago, has managed […]

The post Windows Server 2012 0-day Vulnerability Exposes Critical Security Flaw appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

A critical vulnerability identified as CVE-2024-44308 has been actively exploited in the wild, affecting multiple versions of Apple Safari across iOS, visionOS, and macOS platforms. This flaw, located within WebKit’s DFG JIT compiler, poses a significant threat by allowing remote code execution (RCE). Affected Software and Versions Here’s a table summarizing the affected software and […]

The post Apple Safari JavaScriptCore Remote Code Execution Flaw Exploited in the Wild appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

Several vulnerabilities affecting MediaTek processors have been identified, potentially allowing attackers to escalate privileges on affected devices. These vulnerabilities span multiple components, including video decoding, telephony, power management, and modem functionalities, posing significant risks to users worldwide. Overview of Vulnerabilities The vulnerabilities, identified by their Common Vulnerabilities and Exposures (CVEs), highlight issues primarily related to […]

The post MediaTek Processor Vulnerabilities Let Attackers Escalate Privileges appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

Researchers uncovered the resurgence of APT-C-01, also known as the Poison Ivy group, an advanced persistent threat organization notorious for its sustained cyber attacks. This group has been actively targeting sectors such as defense, government, technology, and education since 2007, utilizing sophisticated phishing techniques including watering hole phishing and spear phishing. Recent threat-hunting activities have […]

The post Poison Ivy APT Launches Continuous Cyber Attack on Defense, Gov, Tech & Edu Sectors appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

Russian authorities have arrested Mikhail Matveev, a notorious Russian hacker linked to multiple ransomware attacks worldwide. Matveev, who was also known by online aliases such as Wazawaka, Uhodiransomwar, m1x, and Boriselcin, was detained in Kaliningrad, Russia, following an investigation into his alleged cybercrimes. According to a RIA Novosti source, the Kaliningrad Interior Ministry and the […]

The post Ransomware Developer Mikhail Matveev Arrested in Russia appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

In a presentation at the POC 2024 conference, cybersecurity expert Andrey Konovalov revealed a novel method for covertly disabling the LED indicator of the ThinkPad X230’s webcam, highlighting ongoing vulnerabilities in USB-connected devices. Like many laptops, the ThinkPad X230 has a built-in webcam that connects via USB. During his presentation, Konovalov detailed his journey of […]

The post Hackers Can Secretly Access ThinkPad Webcams by Disabling LED Indicator Light appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

A publicly exposed database has left the sensitive information of hundreds of thousands of individuals vulnerable to potential misuse. Not protected by passwords or encryption, the database contained 644,869 PDF files, totaling 713.1 GB, exposing a treasure trove of personal information. The data, mostly labeled as “background checks,” included a wide range of personally identifiable […]

The post 600,000+ Sensitive Records Exposed From Background Checks Service Provider appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

Uniswap Labs has launched a $15.5 million bug bounty program to ensure the security of its latest protocol, Uniswap v4. This substantial bounty is the largest ever offered in the history of the DeFi sector. Uniswap v4 represents the latest evolution of the Uniswap Protocol, marking a significant transformation into a comprehensive developer platform. This […]

The post Uniswap Labs to Offer $15.5 Million Bounty for Bug Hunters appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

A sophisticated phishing scam has surfaced in Japan, targeting corporate internet banking users. This attack, which has rapidly gained attention nationwide, involves fraudsters impersonating bank representatives to deceive victims into providing sensitive banking information. The attack begins with a phone call from individuals pretending to be bank officials. These imposters inform unsuspecting victims that their […]

The post New Phishing Attack Targeting Corporate Internet Banking Users appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

Wirral University Teaching Hospital in the UK has been hit by a targeted cyberattack, leading to the declaration of a major incident. The cyberattack has affected the hospital’s IT systems, necessitating a shift from digital to paper-based processes in certain areas. A spokesperson for the hospital stated, “We expect the major incident that was declared […]

The post UK Healthcare Provider Hit by Cyberattack, Services Affected appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

Zyxel has announced awareness of active exploitation attempts by threat actors targeting their firewall products. This follows a detailed report by cybersecurity firm Sekoia highlighting vulnerabilities previously disclosed in Zyxel’s systems. The company has responded swiftly to these potential threats, aiming to safeguard its users through vital firmware updates and security enhancements. CVE-2024-11667: The Vulnerability […]

The post Zyxel Firewall Vulnerability Actively Exploited in Attacks appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

Ransomware groups and state-sponsored actors increasingly exploit data exfiltration to maximize extortion and intelligence gains by leveraging a mix of custom and legitimate tools to steal sensitive data, including financial, personal, and classified information.  To mitigate risks, organizations must implement robust security measures, such as network monitoring, file integrity checks, and endpoint detection and response, […]

The post Researchers Detailed New Exfiltration Techniques Used By Ransomware Groups appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

A JavaScript-based malware targeting Magento eCommerce websites has been identified, which is designed to skim payment card details and activates exclusively on checkout pages.  The malware dynamically generates a fraudulent credit card form or directly extracts sensitive payment information, where the stolen data is encrypted and transmitted to a remote server.  The attack vector involves […]

The post New Skimmer Malware Steals Credit Card Data From Checkout Pages appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

UNC2465, a financially motivated threat actor, leverages the SMOKEDHAM backdoor to gain initial access to target networks, which are often delivered via phishing emails, trojanized software, or supply chain attacks, enabling persistence and lateral movement.  Once in the network, UNC2465 utilizes tools like Advanced IP Scanner and BloodHound for reconnaissance, RDP for lateral movement, and […]

The post SMOKEDHAM Backdoor Mimic As Legitimate Tools Leveraging Google Drive & Dropbox appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

Helldown Ransomware, a sophisticated cyber threat, actively targets critical industries worldwide by leveraging advanced cross-platform capabilities, including Windows and Linux, to encrypt files and exploit system vulnerabilities.  Its modular design and anti-detection techniques enable continuous evolution and persistent attacks, which makes it a significant threat to global cybersecurity, demanding immediate attention and robust mitigation strategies. […]

The post Helldown Ransomware Attacking Windows And Linux Servers Evading Detection appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

APT-C-60 launched a phishing attack in August 2024, targeting domestic organizations with malicious emails disguised as job applications. These emails, sent to recruitment departments, contained malware designed to compromise systems and potentially steal sensitive data.  The attack leverages a targeted phishing email to distribute a malicious VHDX file hosted on Google Drive. Once mounted, the […]

The post APT-C-60 Attacking HR Department With Weaponized Resumes appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

A series of vulnerabilities have been identified, posing significant risks to the system’s security. These vulnerabilities could allow attackers to trigger denial of service (DoS) attacks and execute script injections, as highlighted in recent advisories. Denial of Service Vulnerability in JSON Library – CVE-2024-47855 A major vulnerability, identified as CVE-2024-47855, affects the Jenkins system due […]

The post Critical Jenkins Vulnerability Let Attackers Trigger DoS & Inject Scripts appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

In today’s interconnected world, where digital communication and transactions dominate, phishing attacks have become an ever-present threat. By masquerading as trustworthy entities, phishing attacks deceive users and organizations into divulging sensitive information, such as passwords, financial data, and personal details. Phishing attacks, among the most prevalent techniques cyber criminals employ, can be straightforward yet highly […]

The post Shut Down Phishing Attacks -Detection & Prevention Checklist appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

Microsoft has re-released the November 2024 Security Update (SU) with enhancements to rectify problems encountered with transport rules. Originally rolled out on November 12, 2024, as part of its ongoing security update efforts, the initial SU (referred to as Nov 2024 SUv1 with article KB5044062) led to unexpected interruptions in transport rules, impacting certain environments […]

The post Microsoft Re-Releasing Exchange Server Nov 2024 Security Update Fixing Transport Rules appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

A new vulnerability has been discovered in Windows 11, specifically affecting the 23H2 version. This vulnerability is identified in the ksthunk.sys driver, allows attackers to exploit an integer overflow in the CKSAutomationThunk::ThunkEnableEventIrp function to escalate their privileges on the system. Technical Details The flaw was highlighted during the TyphoonPWN 2024 event, where an independent security researcher successfully demonstrated an […]

The post New Windows 11 Vulnerability Lets Attackers Elevate Privileges appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.