Category: gbhackers

Gamers Beware! New Attack Targets Gamers to Deploy AgeoStealer Malware The cybersecurity landscape faces an escalating crisis as AgeoStealer joins the ranks of advanced infostealers targeting global gaming communities. Documented in Flashpoint’s 2025 Global… Go to gbhackers.com

Compliance And Governance: What Every CISO Needs To Know About Data Protection Regulations The cybersecurity landscape has changed dramatically in recent years, largely due to the introduction of comprehensive data protection regulations across the globe. Chief Information… Go to gbhackers.com

XDR, MDR, And EDR: Enhancing Your Penetration Testing Process With Advanced Threat Detection In the ever-evolving world of cybersecurity, organizations must continuously adapt their defense strategies to stay ahead of increasingly sophisticated threats. One of the most effective… Go to gbhackers.com

How to Develop a Strong Security Culture – Advice for CISOs and CSOs Developing a strong security culture is one of the most critical responsibilities for today’s CISOs (Chief Information Security Officers) and CSOs (Chief Security Officers). As… Go to gbhackers.com

DragonForce and Anubis Ransomware Gangs Launch New Affiliate Programs Secureworks Counter Threat Unit (CTU) researchers have uncovered innovative strategies deployed by the DragonForce and Anubis ransomware operators in 2025. These groups are adapting to… Go to gbhackers.com

“Power Parasites” Phishing Campaign Targets Energy Firms and Major Brands Silent Push Threat Analysts have uncovered a widespread phishing and scam operation dubbed “Power Parasites,” targeting prominent energy companies and major global brands across… Go to gbhackers.com

Microsoft Defender XDR False Positive Leaked Massive 1,700+ Sensitive Documents to Publish An alarming data leak involving Microsoft Defender XDR has exposed more than 1,700 sensitive documents from hundreds of organizations, following a chain reaction triggered… Go to gbhackers.com

‘SessionShark’ – A New Toolkit Bypasses Microsoft Office 365 MFA Security Security researchers have uncovered a new and sophisticated threat to Microsoft Office 365 users: a phishing-as-a-service toolkit dubbed “SessionShark O365 2FA/MFA.” Promoted through cybercriminal marketplaces,… Go to gbhackers.com

Hackers Exploit MS-SQL Servers to Deploy Ammyy Admin for Remote Access A sophisticated cyberattack campaign has surfaced, targeting poorly managed Microsoft SQL (MS-SQL) servers to deploy malicious tools like Ammyy Admin and PetitPotato malware. Cybersecurity… Go to gbhackers.com

New Report Reveals How AI is Rapidly Enhancing Phishing Attack Precision The Zscaler ThreatLabz 2025 Phishing Report unveils the alarming sophistication of modern phishing attacks, driven by generative AI (GenAI). By examining over 2 billion blocked… Go to gbhackers.com

159 CVEs Exploited in the Wild in Q1 2025, 8.3% Targeted Within 1-Day Vulnerabilities… VulnCheck’s latest report for Q1 2025 has identified 159 Common Vulnerabilities and Exposures (CVEs) publicly disclosed as exploited in the wild for the first… Go to gbhackers.com

Redis DoS Flaw Allows Attackers to Crash Servers or Drain Memory A high-severity denial-of-service (DoS) vulnerability in Redis, tracked as CVE-2025-21605, allows unauthenticated attackers to crash servers or exhaust system memory by exploiting improperly limited output… Go to gbhackers.com

Google Warns: Threat Actors Growing More Sophisticated, Exploiting Zero-Day Vulnerabilities Google’s Mandiant team has released its M-Trends 2025 report, highlighting the increasing sophistication of threat actors, particularly China-nexus groups. These adversaries are deploying custom malware… Go to gbhackers.com

Critical Langflow Flaw Enables Malicious Code Injection – Technical Breakdown Released A critical remote code execution (RCE) vulnerability, identified as CVE-2025-3248 with a CVSS score of 9.8, has been uncovered in Langflow, an open-source platform… Go to gbhackers.com

GitLab Releases Critical Patch for XSS, DoS, and Account Takeover Bugs GitLab, a leading DevOps platform, has released a critical security patch impacting both its Community (CE) and Enterprise (EE) editions, urging all self-managed users… Go to gbhackers.com

SonicWall SSLVPN Flaw Allows Hackers to Crash Firewalls Remotely SonicWall has issued an urgent advisory (SNWLID-2025-0009) warning of a high-severity vulnerability in its SSLVPN Virtual Office interface that enables unauthenticated attackers to remotely… Go to gbhackers.com

Hackers Exploit Weaponized Word Docs to Steal Windows Login Credentials A sophisticated phishing campaign has been uncovered by Fortinet’s FortiGuard Labs, targeting Windows users with malicious Word documents designed to steal sensitive data. Disguised as… Go to gbhackers.com

Cookie-Bite Attack Enables MFA Bypass and Persistent Cloud Server Access Researchers have exposed a sophisticated cyberattack technique dubbed the “Cookie-Bite Attack,” which allows adversaries to bypass Multi-Factor Authentication (MFA) and maintain persistent access to… Go to gbhackers.com

Synology Network File System Vulnerability Allows Unauthorized File Access A critical security vulnerability in Synology’s Network File System (NFS) service, tracked as CVE-2025-1021, has been resolved after allowing unauthorized remote attackers to access… Go to gbhackers.com

Super-Smart AI Could Launch Attacks Sooner Than We Think In a development for cybersecurity, large language models (LLMs) are being weaponized by malicious actors to orchestrate sophisticated attacks at an unprecedented pace. Despite built-in… Go to gbhackers.com

Hackers Deploy New Malware Disguised as Networking Software Updates A sophisticated backdoor has been uncovered targeting major organizations across Russia, including government bodies, financial institutions, and industrial sectors. This malware, distributed under the guise… Go to gbhackers.com

New Rust-Based Botnet Hijacks Routers to Inject Remote Commands A new malware named “RustoBot” has been discovered exploiting vulnerabilities in various router models to gain unauthorized access and initiate Distributed Denial of Service… Go to gbhackers.com

Latest Lumma InfoStealer Variant Found Using Code Flow Obfuscation Researchers have uncovered a sophisticated new variant of the notorious Lumma InfoStealer malware, employing advanced code flow obfuscation techniques to evade detection. This new development… Go to gbhackers.com

Magecart Launches New Attack Using Malicious JavaScript to Steal Credit Card Data The notorious Magecart group has been identified by the Yarix Incident Response Team as the culprits behind a recent credit card data theft operation… Go to gbhackers.com

Japan Sounds Alarm Over Hackers Draining Millions from Compromised Trading Accounts Cybersecurity in Japan has hit a new low as the Financial Services Agency (FSA) reports a staggering increase in unauthorized access to internet trading… Go to gbhackers.com

FBI Alerts Public to Scammers Posing as IC3 Officials in Fraud Scheme The Federal Bureau of Investigation (FBI) has issued a warning regarding an emerging scam where criminals impersonate officials from the Internet Crime Complaint Center… Go to gbhackers.com

RDP and MS Office Vulnerabilities Abused by Kimusky in Targeted Intrusions The AhnLab SEcurity intelligence Center (ASEC) has released a detailed analysis of a sophisticated cyber campaign dubbed “Larva-24005,” linked to the notorious North Korean… Go to gbhackers.com

New Obfuscation Trick Lets Attackers Evade Antivirus and EDR Tools Researchers have unveiled a sophisticated new technique that allows attackers to bypass traditional Antivirus (AV) and Endpoint Detection and Response (EDR) solutions. By exploiting how… Go to gbhackers.com

Chinese Hackers Leverage Reverse SSH Tool in New Wave of Attacks on Organizations The Chinese hacker group known as Billbug, or Lotus Blossom, targeted high-profile organizations across Southeast Asia. The attackers, who were previously documented by Symantec and… Go to gbhackers.com

Linux 6.15-rc3 Released With Key Kernel Bug Fixes Linus Torvalds announced the release of Linux 6.15-rc3, delivering a fresh batch of bug fixes and minor adjustments to the ever-evolving Linux kernel. As is… Go to gbhackers.com

Hackers Abuse Zoom’s Remote Control to Access Users’ Computers A newly uncovered hacking campaign is targeting business leaders and cryptocurrency firms by abusing Zoom’s remote control feature, allowing attackers to take over victims’… Go to gbhackers.com

10 Best Patch Management Tools 2025 In today’s digital landscape, maintaining secure and efficient IT systems is critical for organizations. Patch management tools play a vital role in achieving this… Go to gbhackers.com

10 Best Cloud Security Solutions 2025 In today’s digital era, businesses are increasingly adopting cloud computing to store data, run applications, and manage infrastructure. However, as organizations shift to the… Go to gbhackers.com

Chinese Hackers Exploit Ivanti Connect Secure Flaw to Gain Unauthorized Access In a sophisticated cyber-espionage operation, a group known as UNC5221, suspected to have China-nexus, has exploited a critical vulnerability in Ivanti Connect Secure VPN… Go to gbhackers.com

New Android SuperCard X Malware Uses NFC-Relay Technique for POS & ATM Transactions A new malware strain known as SuperCard X has emerged, utilizing an innovative Near-Field Communication (NFC)-relay attack to execute unauthorized transactions at Point-of-Sale (POS)… Go to gbhackers.com

SheByte PaaS Launches $199 Subscription Service for Cybercriminals The landscape of cyber threats targeting Canadian financial institutions saw significant shifts after LabHost, a prominent phishing-as-a-service (PhaaS) platform, was shut down. LabHost, known for… Go to gbhackers.com

How To Hunt Web And Network-Based Threats From Packet Capture To Payload Modern cyberattacks increasingly exploit network protocols and web applications to bypass traditional security controls. To counter these threats, security teams must adopt advanced techniques… Go to gbhackers.com

How SMBs Can Improve SOC Maturity With Limited Resources Small and Medium-sized Businesses (SMBs) have become prime targets for cybercriminals, being three times more likely to be targeted by phishing attacks than larger… Go to gbhackers.com

How To Detect Obfuscated Malware That Evades Static Analysis Tools Obfuscated malware presents one of the most challenging threats in cybersecurity today. As static analysis tools have become standard components of security defenses, malware… Go to gbhackers.com

How Security Analysts Detect and Prevent DNS Tunneling Attack In Enterprise Networks DNS tunneling represents one of the most sophisticated attack vectors targeting enterprise networks today, leveraging the trusted Domain Name System protocol to exfiltrate data… Go to gbhackers.com

How to Conduct a Cloud Security Assessment Cloud adoption has transformed organizations’ operations but introduces complex security challenges that demand proactive leadership and a thorough Cloud Security Assessment. A cloud security assessment… Go to gbhackers.com

Defending Against Web API Exploitation With Modern Detection Strategies In today’s interconnected digital landscape, APIs serve as the critical building blocks of modern web applications, enabling seamless data exchange and functionality. However, as… Go to gbhackers.com

How To Integrate MITRE ATT&CK Into Your SOC For Better Threat Visibility The evolving cybersecurity landscape demands advanced strategies to counter sophisticated threats that outpace traditional security measures. The MITRE ATT&CK framework emerges as a critical… Go to gbhackers.com

Bubble.io 0-Day Flaw Lets Attackers Run Arbitrary Queries on Elasticsearch A vulnerability in Bubble.io, a leading no-code development platform, has exposed thousands of applications to data breaches. The flaw allows attackers to bypass security controls… Go to gbhackers.com

Global Zoom Outage Linked to Server Block by GoDaddy Registry Millions of users worldwide experienced a sudden disruption of Zoom services on April 16, as the popular video conferencing platform suffered a global outage… Go to gbhackers.com

Over 6 Million Chrome Extensions Found Executing Remote Commands Security researchers have uncovered a network of over 35 Google Chrome extensions—collectively installed on more than 6 million browsers—secretly executing remote commands and potentially… Go to gbhackers.com

CISA Warns of Potential Credential Exploits Linked to Oracle Cloud Hack The Cybersecurity and Infrastructure Security Agency (CISA) has issued a public warning following reports of possible unauthorized access to a legacy Oracle Cloud environment.While… Go to gbhackers.com

Chinese Hacker Group Mustang Panda Bypass EDR Detection With New Hacking Tools The China-sponsored hacking group, Mustang Panda, has been uncovered by Zscaler ThreatLabz to employ new techniques and tools, including the updated backdoor ToneShell and… Go to gbhackers.com

Agent Tesla Malware Uses Multi-Stage Attacks with PowerShell Scripts Researchers from Palo Alto Networks have uncovered a series of malicious spam campaigns leveraging the notorious Agent Tesla malware through intricate, multi-stage infection vectors.The… Go to gbhackers.com

Intel Sells 51% Stake in Altera to Silver Lake in $8.75 Billion Deal Intel Corporation has announced the divestiture of a 51% stake in its Altera division to Silver Lake, valuing the programmable logic company at $8.75… Go to gbhackers.com

Critical Flaw in PHP’s extract() Function Enables Arbitrary Code Execution A critical vulnerability in PHP’s extract() function has been uncovered, enabling attackers to execute arbitrary code by exploiting memory corruption flaws.The issue affects PHP versions 5.x,… Go to gbhackers.com

Tails 6.14.2 Released with Critical Fixes for Linux Kernel Vulnerabilities The Tails Project has urgently released Tails 6.14.2, addressing critical security vulnerabilities in the Linux kernel and the Perl programming language.This emergency release is vital… Go to gbhackers.com

APT29 Hackers Use GRAPELOADER in New Attack Against European Diplomats Check Point Research (CPR) has uncovered a new targeted phishing campaign employing GRAPELOADER, a sophisticated initial-stage downloader, launched by the notorious Russian-linked hacking group… Go to gbhackers.com

Hacktivist Group Becomes More Sophisticated, Targets Critical Infrastructure to Deploy Ransomware A recent report by Cyble has shed light on the evolving tactics of hacktivist groups, moving beyond traditional cyber disruptions like DDoS attacks and… Go to gbhackers.com

Chinese Hackers Unleash New BRICKSTORM Malware to Target Windows and Linux Systems A sophisticated cyber espionage campaign leveraging the newly identified BRICKSTORM malware variants has targeted European strategic industries since at least 2022.According to NVISO’s… Go to gbhackers.com

CISA Issues 9 New ICS Advisories Addressing Critical Vulnerabilities The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has released nine new advisories detailing severe vulnerabilities in widely-used Industrial Control Systems (ICS) products.These advisories,… Go to gbhackers.com

Hertz Data Breach Exposes Customer Personal Information to Hackers The Hertz Corporation has confirmed that sensitive personal information belonging to customers of its Hertz, Dollar, and Thrifty brands was compromised after hackers targeted… Go to gbhackers.com

The Future of Authentication: Moving Beyond Passwords Traditional passwords have been the cornerstone of digital security for six decades, but their reign is coming to an end.As cyber threats become… Go to gbhackers.com

CentreStack 0-Day Exploit Enables Remote Code Execution on Web Servers A critical 0-day vulnerability has been disclosed in CentreStack, a popular enterprise cloud storage and collaboration platform, which could allow attackers to execute arbitrary… Go to gbhackers.com

Hackers Use Microsoft Teams Chats to Deliver Malware to Windows PCs A sophisticated cyberattack campaign has emerged, leveraging Microsoft Teams chats to infiltrate Windows PCs with malware, according to a recent report by cybersecurity firm… Go to gbhackers.com

Over 100,000 WordPress Plugin Vulnerability Exploited Just 4 Hours After Disclosure Over 100,000 WordPress websites have been exposed to a critical security vulnerability, following the public disclosure of a flaw in the popular SureTriggers plugin… Go to gbhackers.com

Slow Pisces Group Targets Developers Using Coding Challenges Laced with Python Malware A North Korean state-sponsored threat group known as “Slow Pisces” has been orchestrating sophisticated cyberattacks targeting developers in the cryptocurrency sector using malware-laced coding… Go to gbhackers.com

DoJ Launches Critical National Security Program to Protect Americans’ Sensitive Data The U.S. Department of Justice has launched a landmark initiative to block foreign adversaries—including China, Russia, and Iran—from exploiting commercial channels to access sensitive… Go to gbhackers.com

FortiGate 0-Day Exploit Allegedly Up for Sale on Dark Web A chilling new development in the cybersecurity landscape has emerged, as a threat actor has reportedly advertised an alleged zero-day exploit targeting Fortinet’s FortiGate… Go to gbhackers.com

Kaspersky Shares 12 Essential Tips for Messaging App Security and Privacy In an era where instant messaging apps like WhatsApp, Telegram, Signal, iMessage, Viber, and WeChat dominate personal and professional communication, digital privacy and security… Go to gbhackers.com

Alleged FUD Malware ‘GYware’ Advertised on Hacker Forum for $35/Month A new Remote Access Trojan (RAT) known as “GYware” is being marketed on a popular hacker forum at an affordable price of $35 per… Go to gbhackers.com

Threat Actors Manipulate Search Results to Lure Users to Malicious Websites Cybercriminals are increasingly exploiting search engine optimization (SEO) techniques and paid advertisements to manipulate search engine results, pushing malicious websites to the top where… Go to gbhackers.com

Hackers Imitate Google Chrome Install Page on Google Play to Distribute Android Malware Cybersecurity experts have unearthed an intricate cyber campaign that leverages deceptive websites posing as the Google Play Store to distribute Android malware.These websites,… Go to gbhackers.com

Dangling DNS Attack Allows Hackers to Take Over Organization’s Subdomain Hackers are exploiting what’s known as “Dangling DNS” records to take over corporate subdomains, posing significant threats to organizations’ security frameworks.This attack vector has… Go to gbhackers.com

HelloKitty Ransomware Returns, Launching Attacks on Windows, Linux, and ESXi Environments Security researchers and cybersecurity experts have recently uncovered new variants of the notorious HelloKitty ransomware, signaling its resurgence with attacks targeting Windows, Linux, and… Go to gbhackers.com

RansomHub Ransomware Group Hits 84 Organizations as New Threat Actors Emerge The RansomHub ransomware group has emerged as a significant danger, targeting a wide array of industries across the globe.In March 2025, this group alone… Go to gbhackers.com

Chinese eCrime Group Targets Users in 120+ Countries to Steal Banking Credentials Smishing Triad, a Chinese eCrime group, has launched an extensive operation targeting users across more than 121 countries.This campaign, primarily focused on stealing banking… Go to gbhackers.com

TROX Stealer Harvests Sensitive Data Including Stored Credit Cards and Browser Credentials Cybersecurity experts at Sublime have uncovered a complex malware campaign revolving around TROX Stealer, an information stealer that employs urgency to deceive victims.This… Go to gbhackers.com

Calix Devices Vulnerable to Pre-Auth RCE on Port 6998, Root Access Possible A severe security flaw enabling unauthenticated remote code execution (RCE) with root privileges has been uncovered in select Calix networking devices, raising alarms for… Go to gbhackers.com

Microsoft Boosts Exchange and SharePoint Security with Updated Antimalware Scan Microsoft has fortified its Exchange Server and SharePoint Server security by integrating advanced Antimalware Scan Interface (AMSI) capabilities.This measure, aimed at countering sophisticated attack… Go to gbhackers.com

AMD CPU Signature Verification Vulnerability Enables Unauthorized Microcode Execution A vulnerability in AMD CPUs has been uncovered, enabling attackers with administrative privileges to bypass microcode signature verification and execute malicious code.Designated as CVE-2024-36347 (CVSS score:… Go to gbhackers.com

APT32 Turns GitHub into a Weapon Against Security Teams and Enterprise Networks Southeast Asian Advanced Persistent Threat (APT) group OceanLotus, also known as APT32, has been identified as employing GitHub to conduct a sophisticated poison attack… Go to gbhackers.com

AkiraBot Floods 80,000 Sites After Outsmarting CAPTCHAs and Slipping Past Network Defenses AkiraBot, identified by SentinelLABS, represents a sophisticated spam bot framework that targets website chats and contact forms to promote low-quality SEO services.Since its… Go to gbhackers.com

Microsoft Identity Web Flaw Exposes Sensitive Client Secrets and Certificates A new vulnerability has been discovered in the Microsoft.Identity.Web NuGet package under specific conditions, potentially exposing sensitive information such as client secrets and certificate… Go to gbhackers.com

CatB Ransomware Abuses Microsoft Distributed Transaction Coordinator for Stealthy Payload Execution The cybersecurity realm has encountered a formidable adversary with the emergence of CatB ransomware, also known as CatB99 or Baxtoy.First identified in late… Go to gbhackers.com

Smokeloader Malware Operators Busted, Servers Seized by Authorities In a major victory against cybercrime, law enforcement agencies across North America and Europe have dismantled the infrastructure behind the Smokeloader malware, a notorious… Go to gbhackers.com

New Double-Edged Email Attack Steals Office 365 Credentials and Delivers Malware Cybersecurity experts have uncovered a sophisticated phishing campaign that employs a double-edged tactic to compromise Office 365 credentials and deliver malware, posing significant risks… Go to gbhackers.com

Ransomware Groups Target Organizations to Exfiltrate Data and Blackmail via Leak Site Posts Ransomware attacks have continued their relentless assault on organizations worldwide, with a focus on data exfiltration and subsequent blackmail through leak site posts.Rapid7 Labs’… Go to gbhackers.com

Hellcat Ransomware Upgrades Arsenal to Target Government, Education, and Energy Sectors The cybersecurity community has raised alarms over the rapid evolution of the Hellcat ransomware group, which has escalated its tactics to target critical sectors…. Go to gbhackers.com

Ransomware Group Actively Exploits Windows CLFS Zero-Day Vulnerability Microsoft has uncovered a sophisticated ransomware campaign exploiting a zero-day vulnerability in the Windows Common Log File System (CLFS), tracked as CVE-2025-29824.The vulnerability… Go to gbhackers.com

CISA Issues Alert on Active Exploits of Windows CLFS Vulnerability The Cybersecurity and Infrastructure Security Agency (CISA) has issued an urgent alert regarding active exploitation of a critical vulnerability in the Microsoft Windows Common… Go to gbhackers.com

Threat Actor Leaks Data from Major Bulletproof Hosting Provider Medialand A threat actor disclosed internal data from Medialand, a prominent bulletproof hosting (BPH) provider long associated with Yalishanda, a cybercriminal organization tracked as LARVA-34.The… Go to gbhackers.com

Hackers Abuse Windows .RDP Files to Launch Unauthorized Remote Desktop Sessions The Google Threat Intelligence Group (GTIG) has unearthed a novel phishing campaign leveraging Windows Remote Desktop Protocol (.RDP) files to facilitate unauthorized remote access.Dubbed… Go to gbhackers.com

Morphing Meerkat: A PhaaS Utilizing DNS Reconnaissance to Generate Targeted Phishing Pages Originally discovered in 2020 as a Phishing-as-a-Service (PhaaS) platform, Morphing Meerkat has since evolved into a sophisticated cybercriminal tool.Initially capable of mimicking login… Go to gbhackers.com

Linux 6.15-rc1 Released: Better Drivers, Faster Performance The Linux kernel community has witnessed another milestone with the release of Linux 6.15-rc1, the first release candidate for the forthcoming Linux 6.15 stable… Go to gbhackers.com

Google Patches Actively Exploited Android 0-Day Vulnerability Google has issued critical security updates to address a recently discovered zero-day vulnerability actively exploited in Android devices.The Android Security Bulletin for April 2025… Go to gbhackers.com

Malicious Python Packages Target Popular Cryptocurrency Library to Steal Sensitive Data In a recent development, the ReversingLabs research team has uncovered a sophisticated software supply chain attack targeting developers of cryptocurrency applications.The attack involved… Go to gbhackers.com

Lazarus Adds New Malicious npm Using Hexadecimal String Encoding to Evade Detection Systems North Korean state-sponsored threat actors associated with the Lazarus Group have intensified their Contagious Interview campaign by deploying novel malicious npm packages leveraging hexadecimal… Go to gbhackers.com

50,000+ WordPress Sites Vulnerable to Privilege Escalation Attacks In a recent cybersecurity development, over 50,000 WordPress websites using the Uncanny Automator plugin have been identified as vulnerable to a critical privilege escalation… Go to gbhackers.com

Python JSON Logger Vulnerability Enables Remote Code Execution – PoC Released A recent security disclosure has revealed a remote code execution (RCE) vulnerability, CVE-2025-27607, in the Python JSON Logger package, affecting versions between 3.2.0 and… Go to gbhackers.com

Sakura RAT Released on GitHub Can Bypass Antivirus and EDR Tools A newly developed remote administration tool (RAT) named “Sakura RAT” has been released on GitHub, raising alarms for its powerful capabilities and ability to… Go to gbhackers.com

U.S. Secures Extradition of Rydox Cybercrime Marketplace Admins from Kosovo in Major International Operation The United States has successfully extradited two Kosovo nationals, Ardit Kutleshi, 26, and Jetmir Kutleshi, 28, from Kosovo to face charges in the Western… Go to gbhackers.com

Ivanti Fully Patched Connect Secure RCE Vulnerability That Actively Exploited in the Wild Ivanti has issued an urgent security advisory for CVE-2025-22457, a critical vulnerability impacting Ivanti Connect Secure, Pulse Connect Secure, Ivanti Policy Secure, and ZTA… Go to gbhackers.com

EncryptHub Ransomware Uncovered Through ChatGPT Use and OPSEC Failures EncryptHub, a rapidly evolving cybercriminal entity, has come under intense scrutiny following revelations of operational security (OPSEC) failures and extensive reliance on ChatGPT for… Go to gbhackers.com

Beware! Weaponized Job Recruitment Emails Spreading BeaverTail and Tropidoor Malware A concerning malware campaign was disclosed by the AhnLab Security Intelligence Center (ASEC), revealing how threat actors are leveraging fake recruitment emails to distribute… Go to gbhackers.com