Category: gbhackers

Top 10 Best NDR Solutions (Network Detection and Response) in 2025 The network remains the central nervous system of every organization. While endpoints and cloud environments are crucial, all digital activity ultimately traverses the network…. Go to gbhackers.com

Cisco IOS, IOS XE, and Secure Firewall Flaws Allow Remote DoS Attacks Cisco Systems has issued a high-priority security advisory addressing multiple critical vulnerabilities in the Internet Key Exchange Version 2 (IKEv2) feature across its networking… Go to gbhackers.com

F5 Fixes HTTP/2 Flaw Affecting Multiple Products in Massive DoS Attacks F5 Networks has disclosed a new HTTP/2 vulnerability affecting multiple BIG-IP products that could allow attackers to launch denial-of-service attacks against enterprise networks. The… Go to gbhackers.com

VirtualBox 7.2 Adds Windows 11/Arm VM Support and Key Bug Fixes Oracle has released VirtualBox 7.2.0, a major update that significantly expands ARM virtualization capabilities and introduces comprehensive Windows 11/ARM support. Released on August 14, 2025,… Go to gbhackers.com

HexStrike AI Links ChatGPT, Claude, and Copilot to 150+ Security Tools HexStrike AI, the leading autonomous cybersecurity framework, today announced seamless integration with ChatGPT, Claude, and GitHub Copilot, enabling these AI agents to orchestrate over… Go to gbhackers.com

Palo Alto GlobalProtect Vulnerability Allows Privilege Escalation via Certificate Bypass A newly disclosed vulnerability in Palo Alto Networks’ GlobalProtect application could allow attackers to escalate privileges and install malicious software on affected systems through… Go to gbhackers.com

Source Code of ERMAC V3.0 Malware Exposed by ‘changemeplease’ Password A significant security breach has exposed the complete source code of ERMAC V3.0, a sophisticated banking trojan that targets over 700 financial applications worldwide. The… Go to gbhackers.com

10 Best Managed Detection And Response (MDR) Companies in 2025 Organizations of all sizes face an unrelenting barrage of sophisticated cyber threats, from highly evolved ransomware strains and stealthy advanced persistent threats (APTs) to… Go to gbhackers.com

Splunk Publishes Defender’s Guide to Spot ESXi Ransomware Early Splunk has released a comprehensive defender’s guide aimed at helping cybersecurity teams detect and prevent ransomware attacks targeting ESXi infrastructure before they can cause… Go to gbhackers.com

EncryptHub Turns Brave Support Into a Dropper; MMC Flaw Completes the Run Trustwave SpiderLabs researchers have uncovered a sophisticated EncryptHub campaign that ingeniously abuses the Brave Support platform to deliver malicious payloads, leveraging the recently disclosed… Go to gbhackers.com

Windows Out-of-Box-Experience Flaw Enables Full Administrative Command Prompt Access A newly documented vulnerability in Windows’ Out-of-Box-Experience (OOBE) allows users to bypass security restrictions and gain full administrative access to command prompt functionality, even… Go to gbhackers.com

‘AI Induced Destruction’ – How AI Misuse is Creating New Attack Vectors Cybersecurity firms are reporting a disturbing new trend in 2025: artificial intelligence assistants designed to boost productivity are inadvertently becoming destructive forces, causing massive… Go to gbhackers.com

Attackers Need Just One Vulnerability to Own Your Rooted Android Android privilege escalation has been transformed by rooting frameworks such as KernelSU, APatch, and SKRoot, which use advanced kernel patching techniques to enable unauthorized… Go to gbhackers.com

Microsoft Exchange Server Flaws Allow Network-Based Spoofing and Data Tampering Microsoft has disclosed critical security vulnerabilities in Exchange Server that could enable attackers to conduct network-based spoofing attacks and tamper with sensitive data, according… Go to gbhackers.com

Windows Remote Desktop Services Flaw Allows Network-Based Denial-of-Service Attacks Microsoft disclosed a critical vulnerability in Windows Remote Desktop Services on August 12, 2025, that enables attackers to launch denial-of-service attacks remotely without requiring… Go to gbhackers.com

‘Curly COMrades’ APT Hackers Target Critical Organizations Across Multiple Countries Bitdefender Labs has identified a sophisticated advanced persistent threat (APT) group dubbed “Curly COMrades,” active since mid-2024, targeting critical infrastructure in geopolitically sensitive regions…. Go to gbhackers.com

GitHub Copilot RCE Vulnerability via Prompt Injection Enables Full System Compromise A critical security vulnerability in GitHub Copilot has been disclosed, allowing attackers to achieve remote code execution and complete system compromise through sophisticated prompt… Go to gbhackers.com

New Charon Ransomware Uses DLL Sideloading and Anti-EDR Tactics in Targeted Attacks Trend Micro researchers have uncovered a novel ransomware family dubbed Charon, deployed in a sophisticated campaign targeting the public sector and aviation industry in… Go to gbhackers.com

Royal Enfield Reportedly Targeted in Ransomware Attack, Hackers Claim Data Encryption Royal Enfield, the storied motorcycle manufacturer celebrated for its classic designs and global fan base, is reportedly grappling with a significant cybersecurity breach. A hacker… Go to gbhackers.com

SAP Security Patch Day Fixes 15 Flaws, Including 3 Injection Vulnerabilities SAP released critical security updates on August 12, 2025, addressing 15 vulnerabilities across its enterprise software portfolio, with three severe code injection flaws receiving… Go to gbhackers.com

Researchers Detail Script-Masking Tactics That Bypass Defenses Security researchers and cybersecurity professionals are highlighting the growing sophistication of payload obfuscation techniques that allow malicious actors to bypass traditional defense mechanisms. As… Go to gbhackers.com

Record $250K Bug Bounty Awarded for Discovering Critical Chrome RCE Flaw Google has awarded a record-breaking $250,000 bug bounty to security researcher Micky for discovering a critical remote code execution vulnerability in Google Chrome that… Go to gbhackers.com

North Korean Kimsuky Hackers Suffer Data Breach as Insiders Leak Information Online A member of North Korea’s notorious Kimsuky espionage group has experienced a significant data breach after insiders leaked hundreds of gigabytes of internal files… Go to gbhackers.com

SoupDealer Malware Evades Sandboxes, AVs, and EDR/XDR in Real-World Attacks The SoupDealer malware has successfully bypassed nearly all public sandboxes and antivirus solutions, with the exception of Threat.Zone, while also evading endpoint detection and… Go to gbhackers.com

Malware Campaign Masquerades as Tesla in Poisoned Google Ads A malware operation has surfaced in the context of a complex cyber threat landscape, using tainted Google Ads to pose as Tesla and trick… Go to gbhackers.com

Multiple Critical Flaws Hit Zero Trust Products from Check Point, Zscaler, and Netskope Security researchers at AmberWolf have uncovered critical vulnerabilities in leading Zero Trust Network Access (ZTNA) solutions from major cybersecurity vendors, potentially exposing thousands of… Go to gbhackers.com

Windows RPC Protocol Exploited to Launch Server Spoofing Attacks A vulnerability in Microsoft Windows’ Remote Procedure Call (RPC) protocol has been discovered that allows attackers to manipulate core system communications and launch sophisticated… Go to gbhackers.com

AI Coding Assistant: Creating the Perfect Blueprint for Attackers AI coding tools like Claude CLI are unintentionally changing the attack surface for developers and businesses in the rapidly changing cybersecurity landscape. Gone are the… Go to gbhackers.com

APT Sidewinder Mimics Government and Military Agencies to Steal Login Credentials Cybersecurity researchers have uncovered an extensive phishing campaign orchestrated by APT Sidewinder, a persistent threat actor believed to originate from South Asia, targeting government… Go to gbhackers.com

Multiple Zero-Day Exploits Discover That Bypass BitLocker, Exposing All Encrypted Data Microsoft security researchers have uncovered four critical vulnerabilities in Windows BitLocker that could allow attackers with physical access to bypass the encryption system and… Go to gbhackers.com

Over 28,000 Microsoft Exchange Servers Exposed Online to CVE-2025-53786 Vulnerability The cybersecurity community faces a significant threat as scanning data reveals over 28,000 unpatched Microsoft Exchange servers remain exposed on the public internet, vulnerable… Go to gbhackers.com

Critical Linux Kernel Vulnerability Allows Attackers Gain Full Kernel-Level Control From Chrome Sandbox August 9, 2025: A severe security vulnerability in the Linux kernel, dubbed CVE-2025-38236, has been uncovered by Google Project Zero researcher Jann Horn, exposing… Go to gbhackers.com

CastleBot MaaS Released Diverse Payloads in Coordinated Mass Ransomware Attacks IBM X-Force has uncovered CastleBot, a nascent malware framework operating as a Malware-as-a-Service (MaaS) platform, enabling cybercriminals to deploy a spectrum of payloads ranging… Go to gbhackers.com

ChromeAlone – A Browser Based Cobalt Strike Like C2 Tool That Turns Chrome Into… At DEF CON 33, security researcher Mike Weber of Praetorian Security unveiled ChromeAlone — a Chromium-based browser Command & Control (C2) framework capable of… Go to gbhackers.com

CISA Issues 10 ICS Advisories Detailing Vulnerabilities and Exploits The Cybersecurity and Infrastructure Security Agency (CISA) has released ten industrial control systems (ICS) advisories on August 7, 2025, highlighting critical vulnerabilities across various… Go to gbhackers.com

US Confirms Takedown of BlackSuit Ransomware Behind 450+ Hacks Federal law enforcement agencies have successfully dismantled the critical infrastructure of BlackSuit ransomware, a sophisticated cybercriminal operation that has compromised over 450 victims across… Go to gbhackers.com

Amazon ECS Internal Protocol Exploited to Steal AWS Credentials from Other Tasks Security researchers have disclosed a critical vulnerability in Amazon Elastic Container Service (ECS) that allows malicious containers to steal AWS credentials from other tasks… Go to gbhackers.com

Malicious Go Packages Used by Threat Actors to Deploy Obfuscated Remote Payloads Socket’s Threat Research Team has identified eleven malicious Go packages distributed via GitHub, with ten remaining active on the Go Module Mirror, posing ongoing… Go to gbhackers.com

Over 60 Malicious RubyGems Packages Used to Steal Social Media and Marketing Credentials Socket’s Threat Research Team has exposed a persistent campaign involving over 60 malicious RubyGems packages that masquerade as automation tools for platforms like Instagram,… Go to gbhackers.com

Akamai Ghost Platform Flaw Allows Hidden Second Request Injection Akamai Technologies disclosed a critical HTTP request smuggling vulnerability affecting its content delivery network platform that could allow attackers to inject hidden secondary requests… Go to gbhackers.com

‘Ghost Calls’ Attack Exploits Web Conferencing as Hidden Command-and-Control Channel Security researchers have unveiled a sophisticated new attack technique called “Ghost Calls” that exploits popular web conferencing platforms to establish covert command-and-control (C2) channels,… Go to gbhackers.com

HeartCrypt-Packed ‘AVKiller’ Tool Actively Deployed in Ransomware Attacks to Disable EDR Threat actors are placing a higher priority on neutralizing endpoint detection and response (EDR) systems in order to remain stealthy in the dynamic world… Go to gbhackers.com

New Active Directory Attack Method Bypasses Authentication to Steal Data Security researchers have uncovered a novel attack technique that exploits weaknesses in hybrid Active Directory (AD) and Entra ID environments to bypass authentication and… Go to gbhackers.com

Nvidia Denies Presence of Backdoors, Kill Switches, or Spyware in Its Chips Nvidia has issued a comprehensive denial regarding allegations that its graphics processing units contain backdoors, kill switches, or spyware, emphasizing that such features would… Go to gbhackers.com

Threat Actors Poison Bing Search Results to Distribute Bumblebee Malware via ‘ManageEngine OpManager’ Queries Threat actors leveraged SEO poisoning techniques to manipulate Bing search results, directing users querying for “ManageEngine OpManager” to a malicious domain, opmanagerpro. This site distributed… Go to gbhackers.com

Chinese Hackers Exploit SharePoint Flaws to Deploy Backdoors, Ransomware, and Loaders Unit 42 researchers have identified significant overlaps between Microsoft’s reported ToolShell exploit chain targeting SharePoint vulnerabilities and a tracked activity cluster dubbed CL-CRI-1040. This… Go to gbhackers.com

Chinese Hackers Breach Exposes 115 Million U.S. Payment Cards Security researchers have uncovered a highly advanced network of Chinese-speaking cybercriminal syndicates orchestrating smishing attacks that exploit digital wallet tokenization, potentially compromising up to… Go to gbhackers.com

Adobe AEM Forms 0-Day Vulnerability Allows Attackers to Run Arbitrary Code Adobe has released critical security updates for Adobe Experience Manager (AEM) Forms on Java Enterprise Edition following the discovery of two severe vulnerabilities that… Go to gbhackers.com

Trend Micro Apex One Hit by Actively Exploited RCE Vulnerability Trend Micro has issued an urgent security bulletin warning customers of critical remote code execution vulnerabilities in its Apex One on-premise management console that… Go to gbhackers.com

MediaTek Chip Vulnerabilities Allow Attackers to Gain Elevated Access MediaTek has disclosed three critical security vulnerabilities affecting dozens of its chipsets, potentially allowing attackers to gain elevated system privileges on affected devices. The vulnerabilities,… Go to gbhackers.com

Critical Flaw in ADOdb SQLite3 Driver Allows Arbitrary SQL Execution A critical security vulnerability has been discovered in the popular ADOdb PHP database abstraction library that could allow attackers to execute arbitrary SQL statements,… Go to gbhackers.com

Raspberry Robin Malware Targets Windows Systems via New CLFS Driver Exploit The Raspberry Robin malware, also known as Roshtyak, has undergone substantial updates that enhance its evasion and persistence on Windows systems. Active since 2021 and… Go to gbhackers.com

New Android Malware Poses as SBI Card and Axis Bank Apps to Steal Financial… McAfee’s Mobile Research Team has identified a sophisticated Android malware campaign primarily aimed at Hindi-speaking users in India, masquerading as legitimate financial applications from… Go to gbhackers.com

Chollima APT Group Targets Job Seekers and Organizations with JavaScript-Based Malware The North Korean-linked Chollima advanced persistent threat (APT) group, also known as Famous Chollima, has been orchestrating a persistent cyber espionage campaign since at… Go to gbhackers.com

ShadowSyndicate Infrastructure Used by Multiple Ransomware Groups Including Cl0p, LockBit and RansomHub Cybersecurity researchers have uncovered significant overlaps between the attack infrastructure of ShadowSyndicate, also known as Infra Storm by Group-IB, and several prominent ransomware-as-a-service (RaaS)… Go to gbhackers.com

North Korea Hiding Malware Within JPEG Files to Attack Windows Systems Bypassing Detections Security researchers at Genians Security Center have uncovered a sophisticated new variant of the RoKRAT malware, attributed to the North Korean-linked APT37 threat group,… Go to gbhackers.com

Interlock Ransomware Uses ClickFix Exploit to Execute Malicious Commands on Windows The Interlock ransomware group was connected to several sophisticated cyber incidents that targeted firms in North America and Europe, according to a recent report… Go to gbhackers.com

Vulnerabilities in Government-Linked Partner Software Allow Remote Code Attacks Multiple serious security vulnerabilities have been discovered in Partner Software and Partner Web applications widely used by government agencies and contractors, potentially exposing sensitive… Go to gbhackers.com

Critical Squid Flaw Allows Remote Code Execution by Attackers A severe security vulnerability in the widely-used Squid HTTP proxy has been disclosed, potentially exposing millions of systems to remote code execution attacks. The flaw,… Go to gbhackers.com

10 Best Dark Web Monitoring Tools in 2025 Choosing the right dark web monitoring tool is a critical decision for both individuals and organizations seeking to protect their digital assets and identity…. Go to gbhackers.com

Qilin Ransomware Affiliate Panel Login Credentials Exposed Online A significant security breach within the Qilin ransomware operation has provided unprecedented insight into the group’s affiliate network structure and operational methods. On July… Go to gbhackers.com

New Undetectable Plague Malware Targeting Linux Servers for Persistent SSH Access Security researchers have discovered a sophisticated Linux backdoor dubbed “Plague” that has remained undetected by all major antivirus engines despite multiple samples being uploaded… Go to gbhackers.com

Akira Ransomware Exploits 0-Day Vulnerability in SonicWall Firewall Devices Cybersecurity firm Arctic Wolf has identified a significant increase in ransomware attacks targeting SonicWall firewall devices in late July 2025, with evidence pointing to… Go to gbhackers.com

SafePay Ransomware Strikes 260+ Victims Across Multiple Countries The SafePay ransomware organization has quickly become a powerful operator since its initial detection in September 2024, marking a startling increase in the cyber… Go to gbhackers.com

Qilin Ransomware Sees Surge After Collapse of Dominant RansomHub RaaS The ransomware landscape underwent significant disruption, marked by the abrupt cessation of operations from several prominent Ransomware-as-a-Service (RaaS) groups, including RansomHub, Babuk-Bjorka, FunkSec, BianLian,… Go to gbhackers.com

APT36 Hackers Target Indian Railways, Oil, and Government Systems Using Malicious PDF Files The Pakistan-linked threat group APT36, also known as Transparent Tribe, has broadened its cyber operations beyond traditional military targets to encompass Indian railways, oil… Go to gbhackers.com

Threat Actors Exploit Proofpoint and Intermedia Link Wrapping to Conceal Phishing Payloads Cybercriminals are increasingly exploiting link wrapping features from vendors like Proofpoint and Intermedia to mask malicious payloads, leveraging the inherent trust users place in… Go to gbhackers.com

Microsoft to Block External Workbook Links to Unsafe File Types by Default Microsoft announced a significant security enhancement for Excel users, revealing plans to block external workbook links to unsafe file types by default starting in… Go to gbhackers.com

WhatsApp 0-Click RCE Exploit Worth $1 Million at Pwn2Own Ireland 2025 Cybersecurity researchers have a massive incentive to target WhatsApp this fall, as the Zero Day Initiative (ZDI) announced a record-breaking $1 million bounty for… Go to gbhackers.com

Microsoft Upgrades .NET Bounty Program, Offers Rewards Up to $40,000 Microsoft has announced significant enhancements to its .NET Bounty Program, introducing expanded coverage, streamlined award structures, and substantially increased financial incentives for security researchers. The… Go to gbhackers.com

Chinese Silk Typhoon Hackers File Over 10 Patents for Advanced Intrusive Hacking Tools A SentinelLABS investigation has revealed that businesses linked to the Chinese advanced persistent threat (APT) group Hafnium, also known as Silk Typhoon, have submitted… Go to gbhackers.com

NOVABLIGHT Masquerades as Educational Tool to Steal Login Credentials and Compromise Crypto Wallets A newly analyzed Malware-as-a-Service (MaaS) infostealer, NOVABLIGHT, has emerged as a significant cybersecurity threat, targeting unsuspecting users with advanced data theft capabilities. Developed and… Go to gbhackers.com

Critical SUSE Manager Vulnerability Allows Remote Command Execution as Root A critical security vulnerability has been discovered in SUSE Manager that enables attackers to execute arbitrary commands with root privileges without any authentication. The flaw,… Go to gbhackers.com

UNC2891 Hackers Breach ATMs Using Raspberry Pi Devices for Network Access A Raspberry Pi device that was directly attached to an internal network switch was used by the financially motivated threat actor group UNC2891 to… Go to gbhackers.com

Researchers Exploit 0-Day Flaws in Retired Netgear Router and BitDefender Box Cybersecurity researchers successfully exploited critical zero-day vulnerabilities in two discontinued network security devices during DistrictCon’s inaugural Junkyard competition in February, earning runner-up recognition for… Go to gbhackers.com

New Gunra Ransomware Linux Variant Launches 100 Encryption Threads with Partial Encryption Feature The new Gunra group has expanded its attack surface beyond Windows PCs by releasing a Linux version of their virus, which was initially discovered… Go to gbhackers.com

New JSCEAL Attack Aims to Steal Credentials and Wallets from Crypto App Users Check Point Research (CPR) has identified a sophisticated malware campaign dubbed JSCEAL, which targets users of cryptocurrency trading applications through malicious advertisements and compiled… Go to gbhackers.com

CISA and FBI Release Tactics, Techniques, and Procedures of the Scattered Spider Hacker Group The joint Cybersecurity Advisory AA23-320A, collaboratively issued by agencies such as the FBI, CISA, RCMP, ASD’s ACSC, AFP, CCCS, and NCSC-UK, serves as a… Go to gbhackers.com

ChatGPT Agent Defeats Cloudflare’s ‘I Am Not a Robot’ Security Check In a significant development that highlights both the advancing capabilities of AI and potential vulnerabilities in web security systems, a ChatGPT-powered agent has successfully… Go to gbhackers.com

Severe Vulnerability in AI Vibe Lets Attackers Access Private User Applications A critical security vulnerability in the popular AI-powered development platform Base44 allowed unauthorized attackers to bypass authentication controls and gain access to private enterprise… Go to gbhackers.com

Lionishackers Exfiltrate Sensitive Corporate Databases for Sale on the Dark Web Outpost24’s threat intelligence researchers have uncovered the operations of Lionishackers, a financially motivated cyber threat actor specializing in the exfiltration and illicit sale of… Go to gbhackers.com

Linux 6.16 Released with Performance and Networking Enhancements Linux creator Linus Torvalds announced the release of Linux kernel version 6.16 on July 27, 2025, marking the end of what he described as… Go to gbhackers.com

New macOS Vulnerability Allows Attackers to Steal Private Files by Bypassing TCC Microsoft Threat Intelligence has uncovered a critical macOS vulnerability that enables attackers to bypass Apple’s Transparency, Consent, and Control (TCC) framework, potentially exposing sensitive… Go to gbhackers.com

Hackers Exploit IIS Servers with New Web Shell Script for Full Remote Control Security researchers have examined a complex online shell script called UpdateChecker.aspx that was installed on compromised Internet Information Services (IIS) servers in response to… Go to gbhackers.com

Threat Actors Use Phishing to Target Belgian Grand Prix Fans and Teams Cybersecurity experts have pointed to an increase in sophisticated threat actor activity following the July 27 2025 Belgian Grand Prix at Spa-Francorchamps, which takes… Go to gbhackers.com

Threat Actors Claim Breach of Airpay Payment Gateway Cybercriminals have reportedly claimed a successful breach of Airpay, an Indian payment gateway service, raising serious concerns about the security of financial data and… Go to gbhackers.com

Women’s Dating App “Tea” Data Leak Exposes 13,000 User Selfies Tea, a women-only dating safety app that allows users to review and share information about men they’ve dated anonymously, has suffered a significant data… Go to gbhackers.com

Hackers Breach Intelligence Portal Used by the CIA and Other Agencies Unidentified hackers have successfully compromised a critical intelligence website operated by the National Reconnaissance Office, marking a significant security breach affecting the CIA and… Go to gbhackers.com

SHUYAL Emerges: Stealing Login Credentials from 19 Major Browsers A sophisticated new information stealer named SHUYAL was recently discovered by Hybrid Analysis. It has demonstrated extensive capabilities in credential extraction from 19 different… Go to gbhackers.com

Leak Zone Dark Web Forum Breach Exposes 22 Million User IPs and Locations A significant data breach has exposed sensitive information about users of Leakzone, a prominent dark web forum known for trading hacking tools and compromised… Go to gbhackers.com

Hackers Exploit Official Gaming Mouse Software to Spread Windows-based Xred Malware Gaming peripheral manufacturer Endgame Gear has disclosed a security incident involving malware-infected software distributed through their official website, affecting users who downloaded the OP1w… Go to gbhackers.com

Microsoft Investigates Leak in Early Warning System Used by Chinese Hackers to Exploit SharePoint… Chinese laws requiring vulnerability disclosure to the government create transparency issues and potential conflicts for international cybersecurity efforts. Microsoft is probing whether a leak from… Go to gbhackers.com

Arizona Woman Sentenced for Aiding North Korean IT Workers in Cyber Operations Christina Marie Chapman, a 50-year-old Arizona woman, has been sentenced to 102 months in prison for her role in an elaborate fraud scheme that… Go to gbhackers.com

Beware of Fake Error Pages Deploying Platform-Specific Malware on Linux and Windows Systems Wiz Research has uncovered an active cryptomining campaign, dubbed Soco404, that exploits misconfigurations in PostgreSQL databases and other cloud services to deploy platform-specific malware… Go to gbhackers.com

New Gunra Ransomware Targets Windows Systems, Encrypts Files, and Erases Shadow Copies AhnLab’s Threat Intelligence Platform (TIP) has been instrumental in monitoring ransomware activities across dark web forums and marketplaces. Through its Live View > Dark Web… Go to gbhackers.com

Hackers Use Weaponized .HTA Files to Infect Victims with Red Ransomware CloudSEK’s TRIAD team uncovered an active development site deploying Clickfix-themed malware linked to the Epsilon Red ransomware. This variant deviates from traditional clipboard-based command injection… Go to gbhackers.com

US Announces $15M Reward for North Korean IT Scheme Leaders The United States government announced coordinated actions across multiple departments today, offering rewards totaling up to $15 million for information leading to the arrests… Go to gbhackers.com

Tridium Niagara Framework Flaws Expose Sensitive Network Data Cybersecurity researchers at Nozomi Networks Labs have discovered 13 critical vulnerabilities in Tridium’s widely-used Niagara Framework, potentially exposing sensitive network data across building management,… Go to gbhackers.com

Critical VGAuth Flaw in VMware Tools Grants Full System Access Security researchers have uncovered critical vulnerabilities in VMware Tools’ Guest Authentication Service (VGAuth) that allow attackers to escalate privileges from any user account to… Go to gbhackers.com

Bloomberg’s Comdb2 Vulnerable to DoS Through Malicious Packets Cisco Talos’ Vulnerability Discovery & Research team has disclosed five critical security vulnerabilities in Bloomberg’s Comdb2 open-source database that could allow attackers to cause… Go to gbhackers.com