Category: gbhackers

Malware Deployment Campaigns: ‘Librarian Ghouls’ APT Group Targets Organizations The Advanced Persistent Threat (APT) group known as “Librarian Ghouls,” also tracked as “Rare Werewolf” and “Rezet,” has been actively targeting organizations across Russia… Go to gbhackers.com

SAP Security Patch Day: 14 Vulnerabilities Resolved Across Various Products SAP’s June 10, 2025 Security Patch Day delivered critical security updates addressing 14 distinct vulnerabilities across the enterprise software portfolio. The security notes span… Go to gbhackers.com

New DuplexSpy RAT Gives Attackers Full Control Over Windows Machines A new Remote Access Trojan (RAT) named DuplexSpy has surfaced, posing a significant threat to Windows-based systems worldwide. Developed in C# by GitHub user ISSAC/iss4cf0ng… Go to gbhackers.com

Jenkins Gatling Plugin Flaw Allows CSP Bypass, Exposing Systems to Attack On June 6, 2025, the Jenkins Project issued a security advisory (SECURITY-3588 / CVE-2025-5806) affecting the Gatling Plugin, a widely used tool for displaying… Go to gbhackers.com

Beware for Developers: 16 React Native Packages with Millions of Downloads Compromised Overnight Cybersecurity researchers have uncovered a large-scale attack targeting the npm ecosystem, compromising 16 popular React Native packages with a combined download count exceeding one… Go to gbhackers.com

Australian Naval Operations Accidentally Jam New Zealand’s Internet and Radio Residents and businesses across New Zealand’s North and South Islands experienced an unexpected and widespread interruption to wireless internet and radio services. The… Go to gbhackers.com

Malicious npm Utility Packages Enable Attackers to Wipe Production Systems Socket’s Threat Research Team has uncovered two malicious npm packages, express-api-sync and system-health-sync-api, designed to masquerade as legitimate utilities while embedding destructive backdoors capable… Go to gbhackers.com

New Rust-Developed InfoStealer Drains Sensitive Data from Chromium-Based Browsers A newly identified information-stealing malware, crafted in the Rust programming language, has emerged as a significant threat to users of Chromium-based browsers such as… Go to gbhackers.com

Hackers Leverage New ClickFix Tactic to Exploit Human Error with Deceptive Prompts A sophisticated social engineering technique known as ClickFix baiting has gained traction among cybercriminals, ranging from individual hackers to state-sponsored Advanced Persistent Threat (APT)… Go to gbhackers.com

Hundreds of Malicious GitHub Repos Targeting Novice Cybercriminals Traced to Single User Sophos X-Ops researchers have identified over 140 GitHub repositories laced with malicious backdoors, orchestrated by a single threat actor associated with the email address… Go to gbhackers.com

ClickFix Attack Uses Fake Cloudflare Verification to Silently Deploy Malware A newly identified social engineering attack dubbed “ClickFix” has emerged as a significant threat, leveraging meticulously crafted fake Cloudflare verification pages to trick users… Go to gbhackers.com

DragonForce Ransomware Reportedly Compromised Over 120 Victims in the Past Year DragonForce, a ransomware group first identified in fall 2023, has claimed over 120 victims in the past year, marking its rapid ascent as a… Go to gbhackers.com

Critical FreeRTOS-Plus-TCP Flaw Allows Code Execution or System Crash A critical memory corruption vulnerability, tracked as CVE-2025-5688, has been disclosed in FreeRTOS-Plus-TCP, Amazon’s open-source TCP/IP stack widely used in embedded and IoT devices…. Go to gbhackers.com

Chrome Extensions Flaw Exposes Sensitive API Keys, Secrets and Tokens A critical security flaw has been uncovered in numerous popular Chrome extensions, affecting millions of users worldwide by exposing sensitive credentials such as API… Go to gbhackers.com

Critical RCE Flaw Found in HPE Insight Remote Support Tool Hewlett-Packard Enterprise (HPE) has released a critical security bulletin addressing multiple high-impact vulnerabilities in its Insight Remote Support (IRS) software, versions prior to 7.15.0.646…. Go to gbhackers.com

New pathWiper Malware Targets Critical Infrastructure to Deploy Admin Tools Cisco Talos has uncovered a sophisticated and destructive cyberattack targeting a critical infrastructure entity in Ukraine, deploying a previously unknown wiper malware dubbed “PathWiper.”… Go to gbhackers.com

BADBOX 2.0 Malware Hits Over a Million Android Devices in Global Cyber Threat HUMAN’s Satori Threat Intelligence and Research team, in collaboration with Google, Trend Micro, and Shadowserver, has uncovered and partially disrupted a massive cyber fraud… Go to gbhackers.com

UNC6040 APT Hackers Steals Salesforce data Without Exploit Any Vulnerabilities The financially motivated threat cluster UNC6040, tracked by Google Threat Intelligence Group (GTIG), has been orchestrating a series of voice phishing (vishing) campaigns specifically… Go to gbhackers.com

Cisco IMC Vulnerability Allows Attackers to Gain Elevated Privileges Cisco has issued a security advisory regarding a critical privilege escalation vulnerability (CVE-2025-20261) affecting its Integrated Management Controller (IMC) software used in UCS B-Series,… Go to gbhackers.com

CISA Releases TTPs & IoCs for Play Ransomware That Hacked 900+ Orgs The Cybersecurity and Infrastructure Security Agency (CISA), alongside the Federal Bureau of Investigation (FBI) and the Australian Signals Directorate’s Australian Cyber Security Centre (ASD’s… Go to gbhackers.com

Critical Cisco Nexus Dashboard Vulnerability Lets Attackers Impersonate Managed Devices Cisco has issued a high-severity security advisory (ID: cisco-sa-ndfc-shkv-snQJtjrp) regarding a critical SSH host key validation vulnerability in its Nexus Dashboard Fabric Controller (NDFC),… Go to gbhackers.com

Cisco Alerts Users to Critical ISE Vulnerability Exposing Sensitive Data Cisco has issued a critical security advisory (Advisory ID: cisco-sa-ise-aws-static-cred-FPMjUcm7) for its Identity Services Engine (ISE) when deployed on major cloud platforms—Amazon Web Services… Go to gbhackers.com

New Malware Attack Uses Malicious Chrome & Edge Extensions to Steal Sensitive Data Cybersecurity experts from Positive Technologies’ Security Expert Center have uncovered a sophisticated malicious campaign dubbed “Phantom Enigma,” primarily targeting Brazilian residents while also affecting… Go to gbhackers.com

IBM QRadar Vulnerabilities Expose Sensitive Configuration Files to Attackers IBM has issued a security bulletin highlighting multiple vulnerabilities in its QRadar Suite Software and Cloud Pak for Security platforms. The flaws, which range… Go to gbhackers.com

Wireshark Certified Analyst – Wireshark Released Official Certification for Security Professionals The Wireshark Foundation has officially launched the Wireshark Certified Analyst (WCA-101) certification, marking a significant milestone for IT professionals and network engineers worldwide. Designed… Go to gbhackers.com

New Crocodilus Malware Grants Full Control Over Android Devices The Mobile Threat Intelligence (MTI) team identified a formidable new player in the mobile malware landscape: Crocodilus, an Android banking Trojan designed for device… Go to gbhackers.com

Threat Actor Bribes Overseas Support Agents to Steal Coinbase Customer Data On May 15, 2025, Coinbase, the largest U.S. cryptocurrency exchange, publicly disclosed a major security breach that exposed the sensitive personal data of 69,461… Go to gbhackers.com

Threat Actors Exploit DevOps Web Server Misconfigurations to Deploy Malware Threat actors have increasingly turned their attention to exploiting misconfigurations in DevOps-managed web servers to deploy malicious payloads. Recent investigations into web server vulnerabilities reveal… Go to gbhackers.com

Splunk Universal Forwarder for Windows Flaw Grants Non-Admin Users Full Content Access A critical security advisory (SVD-2025-0602) has been issued for Splunk Universal Forwarder for Windows, addressing a high-severity vulnerability (CVE-2025-20298) that exposes Windows systems to… Go to gbhackers.com

Splunk Enterprise XSS Flaw Enables Attackers to Execute Unauthorized JavaScript Splunk has disclosed a reflected Cross-Site Scripting (XSS) vulnerability in its Enterprise and Cloud Platform products, tracked as CVE-2025-20297 and detailed in advisory SVD-2025-0601…. Go to gbhackers.com

Beware: Fake Booking.com Sites Spread AsyncRAT Malware to Infect Devices Cybercriminals have launched a devious campaign targeting users of gaming sites, social media platforms, and even sponsored ads by redirecting links to counterfeit Booking.com… Go to gbhackers.com

Malicious NPM Packages Exploit Ethereum Wallets with Obfuscated JavaScript A recent wave of malicious NPM packages has emerged as a significant threat to cryptocurrency users, specifically targeting Ethereum wallet holders. Cybersecurity researchers have… Go to gbhackers.com

CISO Roles Take on Strategic Security Leadership Roles Beyond Cybersecurity as Organizations A comprehensive analysis of over 800 Chief Information Security Officers reveals a fundamental transformation in the cybersecurity leadership landscape, with CISOs increasingly assuming strategic… Go to gbhackers.com

Over 50,000 Azure AD Users’ Access Tokens Exposed via Unauthenticated API Endpoint CloudSEK’s BeVigil platform has uncovered a critical security vulnerability affecting an aviation giant, where an exposed JavaScript file containing an unauthenticated API endpoint led… Go to gbhackers.com

Critical Denodo Scheduler Flaw Allows Remote Code Execution by Attackers Denodo, a provider of logical data management software, recently faced a critical security vulnerability in its Denodo Scheduler product. This vulnerability, tracked as CVE-2025-26147,… Go to gbhackers.com

Active Exploits Detected Targeting Critical vBulletin Vulnerability Two critical vulnerabilities—CVE-2025-48827 and CVE-2025-48828—have been assigned to vBulletin, the widely used PHP/MySQL forum software, following public disclosure and observed exploitation in the wild…. Go to gbhackers.com

Critical Roundcube Flaw Allows Remote Code Execution by Attackers Roundcube Webmail, one of the most widely used browser-based IMAP clients, has released urgent security updates for its 1.6 and 1.5 LTS versions. The… Go to gbhackers.com

Attackers Exploit Microsoft Entra Billing Roles to Escalate Privileges in Organizational Environments A startling discovery by BeyondTrust researchers has unveiled a critical vulnerability in Microsoft Entra ID and Azure environments, where attackers can exploit lesser-known billing… Go to gbhackers.com

Threat Actors Exploit Google Apps Script to Host Phishing Sites The Cofense Phishing Defense Center has uncovered a highly strategic phishing campaign that leverages Google Apps Script a legitimate development platform within Google’s ecosystem… Go to gbhackers.com

Dadsec Hacker Group Uses Tycoon2FA Infrastructure to Steal Office365 Credentials Cybersecurity researchers from Trustwave’s Threat Intelligence Team have uncovered a large-scale phishing campaign orchestrated by the notorious hacker group Storm-1575, also known as “Dadsec.” Since… Go to gbhackers.com

Beware: Weaponized AI Tool Installers Infect Devices with Ransomware Cisco Talos has uncovered a series of malicious threats masquerading as legitimate AI tool installers, targeting unsuspecting users and businesses across multiple industries. These… Go to gbhackers.com

Pure Crypter Uses Multiple Evasion Methods to Bypass Windows 11 24H2 Security Features Pure Crypter, a well-known malware-as-a-service (MaaS) loader, has been recognized as a crucial tool for threat actors targeting Windows-based systems in a thorough technical… Go to gbhackers.com

Hackers Use AI-Generated Videos on TikTok to Spread Info-Stealing Malware TrendMicro has uncovered a sophisticated campaign where threat actors are exploiting TikTok to distribute information-stealing malware. By leveraging AI-generated videos posing as tutorials for unlocking… Go to gbhackers.com

Weaponized PyPI Package Executes Supply Chain Attack to Steal Solana Private Keys A chilling discovery by Socket’s Threat Research Team has exposed a meticulously crafted supply chain attack on the Python Package Index (PyPI), orchestrated by… Go to gbhackers.com

Novel Malware Evades Detection by Skipping PE Header in Windows Researchers have identified a sophisticated new strain of malware that bypasses traditional detection mechanisms by entirely omitting the Portable Executable (PE) header in Windows… Go to gbhackers.com

Safari Flaw Exploited by BitM Attack to Steal User Login Data A new wave of phishing attacks, known as Fullscreen Browser-in-the-Middle (BitM) attacks, is exploiting browser features to steal user credentials with unprecedented stealth. Unlike… Go to gbhackers.com

Next.js Dev Server Vulnerability Leads to Developer Data Exposure A recently disclosed vulnerability, CVE-2025-48068, has raised concerns among developers using the popular Next.js framework. This flaw, affecting versions 13.0.0 through 15.2.1 when the… Go to gbhackers.com

UTG-Q-015 Hackers Launch Massive Brute-Force Attacks on Government Web Servers The hacker group UTG-Q-015, first identified in December 2024 for mounting attacks on major websites like CSDN, has escalated its malicious activities, targeting government… Go to gbhackers.com

CISA Releases Dedicated SIEM & SOAR Guide for Cybersecurity Professionals Security Information and Event Management (SIEM) platforms are essential for detecting, analyzing, and responding to cybersecurity threats in real time. However, the effectiveness of… Go to gbhackers.com

Critical Dell PowerStore T Vulnerability Allows Full System Compromise As part of its ongoing commitment to product security, Dell Technologies has released a significant update for the PowerStore T family, remediating a series… Go to gbhackers.com

New Research Reveals Key TCP SYN Patterns for Detecting Malicious Activity A groundbreaking study by NETSCOUT, utilizing data from their honeypot systems designed to capture unsolicited internet traffic, has shed light on the intricate patterns… Go to gbhackers.com

Victoria’s Secret Website Taken Offline After Cybersecurity Breach Victoria’s Secret, the iconic lingerie retailer, has taken its US website offline and suspended some in-store services following a major cybersecurity incident. Customers attempting… Go to gbhackers.com

Robinhood Ransomware Operator Arrested for Attacks on Government and Private Networks On May 27, 2025, Iranian national Sina Gholinejad, 37, pleaded guilty in a North Carolina federal court to charges of computer fraud and conspiracy… Go to gbhackers.com

CISA Releases Executive Guide on SIEM and SOAR Platforms for Rapid Threat Detection In today’s rapidly evolving threat landscape, Security Information and Event Management (SIEM) and Security Orchestration, Automation, and Response (SOAR) platforms have become foundational to… Go to gbhackers.com

MATLAB, Serving Over 5 Million Users, Hit by Ransomware Attack MathWorks, the renowned developer of MATLAB and Simulink, has been grappling with the aftermath of a significant ransomware attack that began on Sunday, May… Go to gbhackers.com

CISA Publishes ICS Advisories Highlighting New Vulnerabilities and Exploits On May 27, 2025, the Cybersecurity and Infrastructure Security Agency (CISA) released a new Industrial Control Systems (ICS) advisory—ICSA-25-146-01—highlighting a significant security vulnerability in… Go to gbhackers.com

Chrome Security Patch Addresses High-Severity Vulnerabilities Enabling Code Execution The Chrome team at Google has officially released Chrome 137 to the stable channel for Windows, Mac, and Linux platforms. This update, version 137.0.7151.55/56,… Go to gbhackers.com

Adidas Customer Information Compromised Through Third-Party Vendor German sportswear giant Adidas has confirmed a data breach after cybercriminals accessed customer data through a third-party customer service provider. The breach, disclosed on… Go to gbhackers.com

Multiple Vulnerabilities in Hardy Barth EV Station Allow Unauthenticated Network Access Critical security flaws have been identified in the eCharge Hardy Barth cPH2 and cPP2 charging stations, specifically affecting firmware version 2.2.0. These vulnerabilities, discovered… Go to gbhackers.com

Silver RAT Malware Employs New Anti-Virus Bypass Techniques to Execute Malicious Activities A newly identified strain of malware, dubbed Silver RAT, has emerged as a significant threat to cybersecurity, leveraging sophisticated anti-virus bypass techniques to infiltrate… Go to gbhackers.com

Researchers Uncover macOS ‘AppleProcessHub’ Stealer: TTPs and C2 Server Details Revealed Researchers have identified a novel information-stealing malware dubbed ‘AppleProcessHub,’ designed to infiltrate Apple systems and exfiltrate sensitive user data. This discovery sheds light on an… Go to gbhackers.com

GIMP Image Editor Vulnerability Allows Remote Attackers to Execute Arbitrary Code Two major security vulnerabilities have been found in the widely used GIMP image editing software, potentially allowing remote attackers to execute arbitrary code on… Go to gbhackers.com

Over 40 Malicious Chrome Extensions Impersonate Popular Brands to Steal Sensitive Data Cybersecurity firm LayerX has uncovered over 40 malicious Chrome browser extensions, many of which are still available on the Google Chrome Web Store. These extensions,… Go to gbhackers.com

Nova Scotia Power Suffers Ransomware Attack; 280,000 Customers’ Data Compromised Nova Scotia Power, the largest electricity provider in the province, confirmed on Friday, May 23, 2025, that it has been the victim of a… Go to gbhackers.com

Linux 6.15 Launches with Major Performance and Hardware Upgrades The Linux 6.15 kernel, released on May 25, 2025, marks a pivotal moment in open-source development, introducing several groundbreaking features and technical advancements. Most… Go to gbhackers.com

D-Link Routers Exposed by Hard-Coded Telnet Credential A recently disclosed vulnerability (CVE-2025-46176) exposes critical security flaws in D-Link’s DIR-605L and DIR-816L routers, revealing hardcoded Telnet credentials that enable remote command execution…. Go to gbhackers.com

TA-ShadowCricket: Sophisticated Hacker Group Targeting Government and Enterprise Networks A decade-long cyber espionage campaign orchestrated by the advanced persistent threat (APT) group TA-ShadowCricket has been exposed through a joint investigation by South Korea’s… Go to gbhackers.com

Zero-Trust Policy Bypass Enables Exploitation of Vulnerabilities and Manipulation of NHI Secrets A new project has exposed a critical attack vector that exploits protocol vulnerabilities to disrupt DNS infrastructure, manipulate Non-Human Identity (NHI) secrets, and ultimately… Go to gbhackers.com

Threat Actor Sells Burger King Backup System RCE Vulnerability for $4,000 A threat actor known as #LongNight has reportedly put up for sale remote code execution (RCE) access to Burger King Spain’s backup system, leveraging… Go to gbhackers.com

Chinese Nexus Hackers Exploit Ivanti Endpoint Manager Mobile Vulnerability Ivanti disclosed two critical vulnerabilities, identified as CVE-2025-4427 and CVE-2025-4428, affecting Ivanti Endpoint Manager Mobile (EPMM) version 12.5.0.0 and earlier. These flaws, when chained… Go to gbhackers.com

Hackers Target macOS Users with Fake Ledger Apps to Deploy Malware Hackers are increasingly targeting macOS users with malicious clones of Ledger Live, the popular application for managing crypto assets via Ledger cold wallets. Since August… Go to gbhackers.com

EU Targets Stark Industries in Cyberattack Sanctions Crackdown The European Union has escalated its response to Russia’s ongoing campaign of hybrid threats, announcing new restrictive measures against 21 individuals and 6 entities…. Go to gbhackers.com

Winos 4.0 Malware Masquerades as VPN and QQBrowser to Target Users A sophisticated malware campaign deploying Winos 4.0, a memory-resident stager, has been uncovered by Rapid7, targeting users through fake installers of popular software like… Go to gbhackers.com

NETGEAR Router Flaw Allows Full Admin Access by Attackers A severe authentication bypass vulnerability (CVE-2025-4978) has been uncovered in NETGEAR’s DGND3700v2 wireless routers, enabling unauthenticated attackers to gain full administrative control over affected… Go to gbhackers.com

Operation Endgame Crushes DanaBot Malware, Shuts Down 150 C2 Servers and Halts 1,000 Daily… Operation Endgame II has delivered a devastating strike against DanaBot, a notorious malware that has plagued systems since its emergence in 2018. Initially designed as… Go to gbhackers.com

Apple XNU Kernel Flaw Enables Attackers to Escalate Privileges Apple has released urgent security patches addressing CVE-2025-31219, a high-severity vulnerability in its XNU kernel that underpins macOS, iOS, iPadOS, tvOS, watchOS, and visionOS…. Go to gbhackers.com

Inside LockBit: Data Leak Reveals Leading Affiliates and How They Operate A massive data leak from the LockBit ransomware group, published on its hijacked leak site, has provided an unprecedented glimpse into the inner workings… Go to gbhackers.com

Versa Concerto 0-Day Flaw Enables Remote Code Execution by Bypassing Authentication Security researchers have uncovered multiple critical vulnerabilities in Versa Concerto, a widely deployed network security and SD-WAN orchestration platform used by large enterprises, service… Go to gbhackers.com

Hackers Targets Coinbase Users Targeted in Advanced Social Engineering Hack Coinbase users have become the prime targets of an intricate social engineering campaign since early 2025. Reports from on-chain investigator Zach reveal that over $300… Go to gbhackers.com

Hackers Exploit PyBitmessage Library to Evade Antivirus and Network Security Detection The AhnLab Security Intelligence Center (ASEC) has uncovered a new strain of backdoor malware being distributed alongside a Monero coin miner. This malware leverages the… Go to gbhackers.com

Several GitLab Vulnerabilities Enable Attackers to Launch DoS Attacks GitLab has issued critical security patches addressing 11 vulnerabilities across its Community Edition (CE) and Enterprise Edition (EE) platforms, with three high-risk flaws enabling… Go to gbhackers.com

Cisco Identity Services RADIUS Vulnerability Allows Attackers to Trigger Denial of Service Condition Cisco has disclosed a significant security vulnerability in its Identity Services Engine (ISE) that could enable unauthenticated remote attackers to cause denial of service… Go to gbhackers.com

Cellcom Confirms Cybersecurity Breach After Network Failure Cellcom/Nsight has officially confirmed a cyberattack as the cause of a five-day service disruption affecting customers across its network. In an official statement released… Go to gbhackers.com

LockBit Internal Data Leak Reveals Payload Creation Methods and Ransom Demands The notorious ransomware group LockBit inadvertently suffered a major data breach, exposing the inner workings of their ransomware-as-a-service (RaaS) operations. This leak, which surfaced on… Go to gbhackers.com

Over 100 Malicious Chrome Extensions Exploiting Users to Steal Login Credentials and Execute Remote… Cybersecurity researchers have uncovered a sprawling network of over 100 malicious Chrome extensions actively exploiting unsuspecting users. These extensions, masquerading as legitimate tools for productivity,… Go to gbhackers.com

Ivanti EPMM 0-Day RCE Vulnerability Under Active Attack Critical vulnerability chain in Ivanti’s Endpoint Manager Mobile (EPMM) has been actively exploited.  The vulnerabilities, initially disclosed by Ivanti on March 13th, 2025, combine an… Go to gbhackers.com

Atlassian Alerts Users to Multiple Critical Vulnerabilities Affecting Data Center Server Atlassian has released its May 2025 Security Bulletin addressing eight high-severity vulnerabilities affecting multiple enterprise products in its Data Center and Server offerings. The… Go to gbhackers.com

DPRK IT Workers Impersonate Polish and US Nationals to Secure Full-Stack Developer Positions A alarming cybersecurity report by Nisos has uncovered a sophisticated employment scam network potentially affiliated with the Democratic People’s Republic of Korea (DPRK). This… Go to gbhackers.com

Critical Multer Vulnerability Puts Millions of Node.js Apps at Risk Critical security vulnerability has been discovered in Multer, one of the most widely used Node.js middleware packages for handling file uploads. The vulnerability affects… Go to gbhackers.com

Windows 11 Privilege Escalation Vulnerability Let Attackers Gain Admin Access in Under 300 Milliseconds Security researchers have uncovered a critical vulnerability in Windows 11 that allowed attackers to escalate privileges from a standard user to system-level administrator in… Go to gbhackers.com

O2 VoLTE Flaw Allows Tracking of Customers’ Locations Through Phone Calls Significant privacy vulnerability in O2 UK’s Voice over LTE (VoLTE) implementation was recently discovered, allowing any caller to access precise location data of call… Go to gbhackers.com

Microsoft Issues Urgent Patch to Resolve BitLocker Recovery Problem Microsoft has released an emergency update to address a critical issue affecting Windows 10 devices with specific Intel processors. The update (KB5061768) fixes a… Go to gbhackers.com

Hackers Exploit RVTools to Deploy Bumblebee Malware on Windows Systems A reliable VMware environment reporting tool, RVTools, was momentarily infiltrated earlier this week on May 13, 2025, to disseminate the sneaky Bumblebee loader virus,… Go to gbhackers.com

Confluence Servers Under Attack: Hackers Leverage Vulnerability for RDP Access and Remote Code Execution Threat actors exploited a known vulnerability, CVE-2023-22527, a template injection flaw in Atlassian Confluence servers exposed to the internet. This exploit facilitated remote code execution… Go to gbhackers.com

New ModiLoader Malware Campaign Targets Windows PCs, Harvesting User Credentials AhnLab Security Intelligence Center (ASEC) has recently uncovered a malicious campaign distributing ModiLoader (also known as DBatLoader) malware through phishing emails. These emails, crafted… Go to gbhackers.com

Health Care Data Breach Costs BreachForums Admin $700,000 Fine Conor Brian Fitzpatrick, the 22-year-old former administrator of cybercrime forum Breachforums, will forfeit approximately $700,000 to settle a civil lawsuit stemming from a healthcare… Go to gbhackers.com

Critical Firefox 0-Day Flaws Allow Remote Code Execution Mozilla has urgently patched two critical 0-day vulnerabilities in its popular web browser Firefox, both of which could allow remote attackers to execute malicious… Go to gbhackers.com

VMware ESXi, Firefox, Red Hat Linux & SharePoint Hacked – Pwn2Own Day 2 Security researchers demonstrated their prowess on the second day of Pwn2Own Berlin 2025, discovering critical vulnerabilities across major enterprise platforms and earning $435,000 in… Go to gbhackers.com

Critical WordPress Plugin Flaw Puts Over 10,000 Sites of Cyberattack A serious security flaw affecting the Eventin plugin, a popular event management solution for WordPress, was recently discovered by Denver Jackson, a member of… Go to gbhackers.com

Sophisticated NPM Attack Leverages Google Calendar2 for Advanced Communication A startling discovery in the npm ecosystem has revealed a highly sophisticated malware campaign embedded within the seemingly innocuous package os-info-checker-es6. First published on… Go to gbhackers.com