Aggregator

You must login to view this content

A sophisticated new injection campaign has been uncovered, targeting mobile users through malicious third-party JavaScript to deliver a Chinese adult-content Progressive Web App (PWA) scam. This attack, which redirects users to sites like hxxps://xjdm166[.]com, leverages the unique capabilities of PWAs to retain users longer and evade traditional browser security mechanisms. Unlike typical phishing attempts, this […]

The post Hackers Target Mobile Users Using PWA JavaScript to Bypass Browser Security appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

A novel malware campaign targeting containerized infrastructures has emerged, exploiting insecurely exposed Docker APIs to spread malicious containers and mine Dero cryptocurrency. Dubbed a “Docker zombie outbreak” by cybersecurity researchers at Kaspersky, this attack leverages a self-replicating propagation mechanism to transform compromised containers into “zombies” that mine cryptocurrency and infect new victims. The campaign, detected […]

The post Docker Zombie Malware Infects Containers for Crypto Mining and Self-Replication appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

The post CVE-2025-26147: Authenticated RCE In Denodo Scheduler  appeared first on Rhino Security Labs.

ReliaQuest, hackers have deployed a cunning search engine optimization (SEO) poisoning scheme to orchestrate payroll fraud against a manufacturing sector customer. This deceptive strategy involves crafting fake authentication portals that mirror legitimate organizational login pages, manipulating search engine results to rank these malicious sites at the top. Unsuspecting employees, searching for payroll portals on mobile […]

The post Hackers Masquerade as Organizations to Steal Payroll Logins and Redirect Payments from Employees appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.