Aggregator

A recent cyberattack campaign, dubbed “DEEP#DRIVE,” has been attributed to the North Korean Advanced Persistent Threat (APT) group, Kimsuky. The operation, targeting South Korean businesses, government entities, and cryptocurrency users, employs advanced techniques involving Dropbox-hosted payloads and obfuscated PowerShell scripts to infiltrate systems and exfiltrate sensitive data. Exploiting Trusted Platforms for Malware Delivery The attackers […]

The post North Korean Hackers Leverage Dropbox and PowerShell Scripts to Breach Organizations appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

BlackLock ransomware, first identified in March 2024, has rapidly ascended the ranks of the ransomware-as-a-service (RaaS) ecosystem, becoming the seventh most prolific group on data-leak sites by late 2024. The group employs a double extortion strategy, encrypting victims’ data while exfiltrating sensitive information to pressure organizations into paying ransoms. Its malware targets multiple environments, including […]

The post BlackLock Ransomware Targets Windows, VMware ESXi, & Linux Environments appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

Правительство готовит новые меры противодействия.

A recent cybersecurity investigation has unveiled a troubling reality: U.S. military personnel and employees of major defense contractors, including Lockheed Martin, Boeing, and Honeywell, have been compromised by infostealer malware. This inexpensive yet potent cyberweapon, available for as little as $10 per infected device on underground marketplaces, has exposed critical credentials, including access to classified […]

The post Threat Actors Using $10 Infostealer Malware to Compromise US Security appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

Cybersecurity experts have uncovered a new wave of “Scam-Yourself” attacks that exploit AI-generated deepfake videos and malicious scripts to deceive users into compromising their own systems. These campaigns represent a significant evolution in cybercrime, combining advanced technologies like deepfake video synthesis, AI-generated personas, and adaptive malware tactics to execute highly convincing scams. The latest attack, […]

The post Next Wave of ‘Scam-Yourself’ Attacks Leverages AI-Generated Deepfake Videos appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

Bronbeek heeft vandaag een uitgebreide en herziene uitgave gepresenteerd over de geschiedenis van het tehuis. Een leuk cadeautje, want het Koninklijk Tehuis voor Oud-Militairen en Museum Bronbeek bestaat vandaag 162 jaar. 

Cybercrime-as-a-Service (CaaS) now accounts for 57% of all cyberthreats, marking a 17% increase from the first half of 2024, according to Darktrace’s Annual Threat Report.

The post CaaS Surges in 2025, Along With RATs, Ransomware appeared first on Security Boulevard.

A recent cybersecurity analysis has uncovered a campaign targeting Chinese-speaking users through malicious installers of popular applications such as Signal, Line, and Gmail. These backdoored executables exploit manipulated search engine results to lure unsuspecting users into downloading malware-laden files. The attackers employ deceptive tactics, including fake download pages hosted on unrelated domains, to distribute these […]

The post Malware-Infected Signal, Line, and Gmail Apps Alter System Defenses appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

思科的调查发现，97% 的 CEO 计划整合 AI。麦肯锡调查的公司中有 92% 计划未来三年加大生成式 AI 的投资。越来越多的招聘金融专业人才的职位描述中也都提及了 AI。研究人员分析了 LinkedIn、Glassdoor、Indeed、Job2Careers 和 ZipRecruiter 等求职网站上发布的 6,000 个 CFO 相关职位，其中包括 CFO、财务主管、财务计划和分析，以及会计师。2025 年 1 月的 1,000 个 CFO 职位招聘信息中，其中 27% 提及 AI；相比下去年同期是 8%。在 2025 年 1 月的财务计划和分析职位招聘信息中，35% 将 AI 作为能力要求的一部分；相比下去年同期是 14%。

Palo Alto Networks warns that hackers are actively exploiting a critical authentication bypass flaw (CVE-2025-0108) in PAN-OS firewalls, chaining it with two other vulnerabilities to breach devices in active attacks. [...]

Новая мера против киберпреступников.

Two security flaws found in Xerox VersaLink MFPs could allow hackers to capture authentication credentials and move laterally through enterprise networks and highlight the often-overlooked cyber risks that printers and other IoT devices present to organizations.

The post Flaws in Xerox VersaLink MFPs Spotlight Printer Security Concerns appeared first on Security Boulevard.

#FTP匿名登录 #Reaver WPS PIN密码泄露权限提升

For years, defensive security strategies have focused on three core areas: network, endpoint, and email. Meanwhile, the browser, sits across all of them. This article examines three key areas where attackers focus their efforts and how browser-based attacks are evolving. [...]