Category: gbhackers

PoisonSeed Targets CRM and Bulk Email Providers in New Supply Chain Phishing Attack A sophisticated phishing campaign, dubbed “PoisonSeed,” has been identified targeting customer relationship management (CRM) and bulk email providers to facilitate cryptocurrency-related scams.The… Go to gbhackers.com

Beware! Fake Unpaid Tolls Messages Used in Phishing Attack to Steal Login Credentials A surge in phishing text messages claiming unpaid tolls has been linked to a massive phishing-as-a-service (PhaaS) operation.These scams, which have been hitting… Go to gbhackers.com

Critical Apache Parquet Vulnerability Allows Remote Code Execution A severe vulnerability has been identified in the Apache Parquet Java library, specifically within its parquet-avro module.This flaw, tracked as CVE-2025-30065, exposes systems to potential Remote Code Execution… Go to gbhackers.com

Ex-ASML Russian Employee Smuggled Trade Secrets to Moscow via USB A former employee of Dutch semiconductor firm ASML, identified as German A. (43), stands accused of smuggling sensitive trade secrets to Russia over a… Go to gbhackers.com

Halo ITSM Vulnerability Lets Attackers Inject Malicious SQL Code A critical security flaw has been discovered in Halo ITSM, an IT support management software widely deployed across cloud and on-premise environments.The vulnerability, which allows… Go to gbhackers.com

Australian Pension Funds Hacked: Members Face Financial Losses Several of Australia’s largest superannuation funds have been targeted in a coordinated cyberattack, leading to unauthorized access to customer accounts and financial losses for… Go to gbhackers.com

Frida Penetration Testing Toolkit Updated with Advanced Threat Monitoring APIs In a significant update to the popular dynamic instrumentation toolkit Frida, developers have introduced powerful new APIs for advanced threat monitoring and software analysis.These… Go to gbhackers.com

Hackers Selling SnowDog RAT Malware With Remote Control Capabilities Online A sophisticated remote access trojan (RAT) dubbed SnowDog has surfaced on underground cybercrime forums, prompting alarms among cybersecurity experts.Advertised as a tool for “corporate espionage and… Go to gbhackers.com

Massive GitHub Leak: 39M API Keys & Credentials Exposed – How to Strengthen Security Over 39 million API keys, credentials, and other sensitive secrets were exposed on GitHub in 2024, raising considerable alarm within the developer community and… Go to gbhackers.com

Authorities Shut Down Kidflix Child Abuse Platform in Major Takedown In one of the most significant operations against child sexual exploitation in recent history, authorities have announced the shutdown of “Kidflix,” one of the… Go to gbhackers.com

GoResolver: A Powerful New Tool for Analyzing Golang Malware Analyzing malware has become increasingly challenging, especially with the growing popularity of programming languages like Golang.Golang, or Go, has captivated developers for its extensive… Go to gbhackers.com

Cisco Smart Licensing Utility Flaws Allowed Attackers to Gain Admin Access Cisco has disclosed critical vulnerabilities in its Smart Licensing Utility software, identified as CVE-2024-20439 and CVE-2024-20440, which could allow unauthenticated, remote attackers to gain… Go to gbhackers.com

Google Introduces End-to-End Encryption for Gmail Business Users Google has unveiled end-to-end encryption (E2EE) capabilities for Gmail enterprise users, simplifying encrypted email communication for businesses of all sizes.This feature, launched in beta… Go to gbhackers.com

New Outlaw Linux Malware Using SSH brute-forcing To Maintain Botnet Activities for long Time A persistent Linux malware known as “Outlaw” has been identified leveraging unsophisticated yet effective techniques to maintain a long-running botnet.Despite its lack of… Go to gbhackers.com

Python Introduces New Standard Lock File Format for Enhanced Security The Python Software Foundation (PSF) has officially announced the adoption of a new standardized lock file format, outlined in PEP 751.This development is a major… Go to gbhackers.com

Hackers Exploit JavaScript & CSS Tricks to Steal Browsing History The web browsing history feature, designed to enhance user convenience by styling visited links differently, has inadvertently created a privacy vulnerability.Hackers have exploited this… Go to gbhackers.com

Hackers Exploit Microsoft Teams Messages to Deliver Malware Cybersecurity experts have uncovered a new malware campaign targeting Microsoft Teams users to infiltrate corporate systems.By exploiting the platform’s communication vulnerabilities and leveraging malicious… Go to gbhackers.com

Rockwell Automation Vulnerability Allows Attackers to Execute Arbitrary Commands Rockwell Automation has identified a critical flaw in its Verve Asset Manager software, exposing industrial systems to potential exploitation.The vulnerability, tracked as CVE-2025-1449, enables attackers with administrative… Go to gbhackers.com

Check Point Confirms Data Breach, Says Leaked Information is ‘Old’ Cybersecurity giant Check Point has confirmed that a recent post on a notorious dark web forum, BreachForums, attempting to sell allegedly hacked data from… Go to gbhackers.com

CISA Warns of Cisco Smart Licensing Utility Credential Flaw Exploited in Attacks The Cybersecurity and Infrastructure Security Agency (CISA) has issued a security advisory warning organizations about a critical vulnerability in Cisco’s Smart Licensing Utility (SLU)… Go to gbhackers.com

CrushFTP Security Vulnerability Under Attack After PoC Release A recently disclosed security vulnerability in CrushFTP, identified as CVE-2025-2825, has become the target of active exploitation attempts following the release of publicly available… Go to gbhackers.com

Hackers Deploy 24,000 IPs to Breach Palo Alto Networks GlobalProtect A wave of malicious activity targeting Palo Alto Networks PAN-OS GlobalProtect portals has been observed, with nearly 24,000 unique IPs attempting unauthorized access over… Go to gbhackers.com

Hackers Distributing Phishing Malware Via SVG Format To Bypass File Detection Cybersecurity experts at the AhnLab Security Intelligence Center (ASEC) have uncovered a novel phishing malware distribution method leveraging the Scalable Vector Graphics (SVG) file… Go to gbhackers.com

CrushFTP Vulnerability Lets Hackers Bypass Security and Seize Server Control A newly disclosed authentication bypass vulnerability (CVE-2025-2825) in CrushFTP file transfer software enables attackers to gain complete control of servers without valid credentials.The vulnerability… Go to gbhackers.com

New Android Malware “TsarBot” Targeting 750 Banking, Finance & Crypto Apps A newly identified Android malware, dubbed TsarBot, has emerged as a potent cyber threat targeting over 750 applications across banking, finance, cryptocurrency, and e-commerce… Go to gbhackers.com

Apache Tomcat Vulnerability Exploited to Execute Malicious Arbitrary Code on Servers A critical remote code execution (RCE) vulnerability, tracked as CVE-2025-24813, is being actively exploited in Apache Tomcat servers.Critical RCE Flaw in Apache TomcatThe… Go to gbhackers.com

Water Gamayun Hackers Exploit MSC EvilTwin Zero-day Vulnerability to Hack Windows Machine Water Gamayun, a suspected Russian threat actor, has been identified exploiting the MSC EvilTwin zero-day vulnerability (CVE-2025-26633) to compromise Windows systems.This vulnerability, embedded… Go to gbhackers.com

Gamaredon Hackers Weaponize LNK Files to Deliver Remcos Backdoor Cisco Talos has uncovered an ongoing cyber campaign by the Gamaredon threat actor group, targeting Ukrainian users with malicious LNK files to deliver the… Go to gbhackers.com

“Crocodilus” A New Malware Targeting Android Devices for Full Takeover Researchers have uncovered a dangerous new mobile banking Trojan dubbed Crocodilus actively targeting financial institutions and cryptocurrency platforms.The malware employs advanced techniques like remote… Go to gbhackers.com

Hackers Exploit DNS MX Records to Create Fake Logins Imitating 100+ Brands Cybersecurity researchers have discovered a sophisticated phishing-as-a-service (PhaaS) platform, dubbed “Morphing Meerkat,” that leverages DNS mail exchange (MX) records to dynamically serve tailored phishing… Go to gbhackers.com

New Python-Based Discord RAT Targets Users to Steal Login Credentials A recently identified Remote Access Trojan (RAT) has raised alarms within the cybersecurity community due to its innovative use of Discord’s API as a… Go to gbhackers.com

Russian Hackers Impersonate CIA to Steal Ukrainian Defense Intelligence Data In a complex cyber operation discovered by Silent Push Threat Analysts, Russian hackers have launched a multi-pronged phishing campaign impersonating various organizations, including the… Go to gbhackers.com

PJobRAT Android Malware Masquerades as Dating and Messaging Apps to Target Military Personnel PJobRAT, an Android Remote Access Trojan (RAT) first identified in 2019, has resurfaced in a new campaign targeting users in Taiwan.Initially, PJobRAT was… Go to gbhackers.com

SHELBY Malware Steals Data by Abusing GitHub as Command-and-Control Server Elastic Security Labs has uncovered a sophisticated malware campaign, dubbed REF8685, targeting the Iraqi telecommunications sector.The campaign utilizes a novel malware family called… Go to gbhackers.com

GLPI ITSM Tool Flaw Allows Attackers to Inject Malicious SQL Queries A critical SQL injection vulnerability, tracked as CVE-2025-24799, has been identified in GLPI, a widely used open-source IT Service Management (ITSM) tool.The flaw, if exploited, enables… Go to gbhackers.com

Meta AI Expands to 41 European Countries in New Rollout Meta AI has announced its rollout across 41 European countries. This development marks a critical step in the company’s mission to make its intelligent… Go to gbhackers.com

Mozilla Releases Urgent Patch for Windows After Chrome Zero-Day Exploit Mozilla has released an urgent update for Firefox on Windows to address a critical vulnerability.This move comes after a similar exploit was identified in… Go to gbhackers.com

Cloudflare Introduces OpenPubkey SSH with Single Sign-On Integration Cloudflare has contributed to the open-sourcing of OPKSSH, a tool that integrates single sign-on (SSO) technologies like OpenID Connect (OIDC) into SSH protocols.This integration… Go to gbhackers.com

Kuala Lumpur Airport Hit by Cyberattack, Hackers Demand $10M Ransom Kuala Lumpur International Airport (KLIA), one of Southeast Asia’s busiest airports, was hit by a major cyberattack over the weekend.The incident, which paralyzed some… Go to gbhackers.com

RedCurl Unleashes New Ransomware Targeting Hyper-V Servers Exclusively Cybersecurity researchers at Bitdefender have uncovered a significant evolution in the tactics of the RedCurl threat group, marking their first foray into ransomware deployment…. Go to gbhackers.com

CISA Adds Sitecore CMS Code Execution Vulnerability to Exploited List  The Cybersecurity and Infrastructure Security Agency (CISA) has included a critical deserialization vulnerability affecting Sitecore CMS and Experience Platform (XP).This vulnerability, tracked as CVE-2019-9874,… Go to gbhackers.com

Advanced CoffeeLoader Malware Evades Security to Deliver Rhadamanthys Shellcode Security researchers at Zscaler ThreatLabz have identified a new sophisticated malware family called CoffeeLoader, which emerged around September 2024.This advanced loader employs numerous… Go to gbhackers.com

New “ReaderUpdate” macOS Malware Evolves with Nim and Rust Variants Security researchers at SentinelOne have discovered that ReaderUpdate, a macOS malware loader platform that has been active since at least 2020, has significantly evolved… Go to gbhackers.com

PoC Exploit Released for Ingress-NGINX RCE Vulnerabilities A recently disclosed vulnerability in Ingress-NGINX, tracked as CVE-2025-1974, has raised concerns about the security of Kubernetes environments.This vulnerability allows for Remote Code Execution… Go to gbhackers.com

APT Hackers Exploit Google Chrome Zero-Day in Operation ForumTroll to Bypass Sandbox Protections In mid-March 2025, Kaspersky researchers uncovered a sophisticated APT attack, dubbed Operation ForumTroll, which leveraged a previously unknown zero-day exploit in Google Chrome.This… Go to gbhackers.com

New Chrome Installer Fails on Windows 10 & 11 With “This app can’t run… A recent snag in Google’s Chrome distribution process has left Windows users unable to install the browser on their Intel and AMD systems.The issue,… Go to gbhackers.com

New Sophisticated Linux Backdoor Targets OT Systems via 0-Day RCE Exploit Researchers at QiAnXin XLab have uncovered a sophisticated Linux-based backdoor dubbed OrpaCrab, specifically targeting industrial systems associated with ORPAK, a company involved in gas… Go to gbhackers.com

North Korean Kimsuky Hackers Deploy New Tactics and Malicious Scripts in Recent Attacks Security researchers have uncovered a new attack campaign by the North Korean state-sponsored APT group Kimsuky, also known as “Black Banshee.”The group, active… Go to gbhackers.com

Critical NetApp SnapCenter Server Vulnerability Allows Attackers to Gain Admin Access A critical vulnerability has been identified in NetApp’s SnapCenter Server, affecting versions before 6.0.1P1 and 6.1P1.This flaw allows an authenticated SnapCenter Server user to… Go to gbhackers.com

Microsoft Introduces Security Copilot Agents with Enhanced AI Protections Microsoft has launched an expanded version of its Security Copilot platform, now equipped with advanced AI agents.These agents are designed to autonomously handle critical… Go to gbhackers.com

Security Onion 24.10 Released: Everything You Need to Know Security Onion, a widely used open-source platform for network security monitoring, has recently released Security Onion 2.4.140.This latest update focuses on enhancing key components… Go to gbhackers.com

Massive Cyberattack Disrupts Ukrainian State Railway’s Online Services The Ukrainian State Railways, known as Ukrzaliznytsia, has experienced a massive disruption to its online services.The railway company issued a statement acknowledging an IT… Go to gbhackers.com

Rilide Malware Poses as Browser Extension to Steal Login Credentials from Chrome and Edge… Rilide, a sophisticated malware, has been masquerading as a legitimate browser extension to steal sensitive information from users of Chromium-based browsers like Google Chrome… Go to gbhackers.com

Beware Developers – Fake Coding Challenges Will Deploy FogDoor on Your System Researchers has discovered a sophisticated malware operation that poses as a fake coding challenge and targets Polish-speaking professionals.This campaign, known as “FizzBuzz to FogDoor,”… Go to gbhackers.com

Critical Chrome Vulnerability Allows Attackers to Execute Arbitrary Code Google has recently rolled out a critical security update for its Chrome browser, addressing vulnerabilities that could potentially allow attackers to execute arbitrary code.This… Go to gbhackers.com

North Korea Launches Military Research Facility to Strengthen Cyber Warfare Operations North Korea has taken a significant step in enhancing its cyber warfare capabilities by establishing a new research center, known as Research Center 227,… Go to gbhackers.com

SvcStealer Malware Strikes, Harvesting Sensitive Data from Browsers and Applications A new strain of malware, known as SvcStealer, has emerged as a significant threat in the cybersecurity landscape.This malware is primarily delivered through… Go to gbhackers.com

Cloudflare Reveals AI Labyrinth to Counter Automated AI Attacks Cloudflare has unveiled AI Labyrinth, an innovative platform designed to combat AI-powered bots that relentlessly crawl and scrape data from websites without permission.By employing AI-generated… Go to gbhackers.com

WordPress Plugin Flaw Exposes 200,000+ Sites at Risk of Code Execution A critical security vulnerability has been discovered in the popular WordPress plugin, WP Ghost, which boasts over 200,000 active installations.This flaw, tracked as CVE-2025-26909,… Go to gbhackers.com

Attackers Leverage Weaponized CAPTCHAs to Execute PowerShell and Deploy Malware In a recent surge of sophisticated cyberattacks, threat actors have been utilizing fake CAPTCHA challenges to trick users into executing malicious PowerShell commands, leading… Go to gbhackers.com

Researchers Uncover FIN7’s Stealthy Python-Based Anubis Backdoor Researchers have recently discovered a sophisticated Python-based backdoor, known as the Anubis Backdoor, deployed by the notorious cybercrime group FIN7.This advanced threat actor,… Go to gbhackers.com

JumpServer Flaws Allow Attackers to Bypass Authentication and Gain Full Control JumpServer, a widely used open-source Privileged Access Management (PAM) tool developed by Fit2Cloud, has been found to have critical security vulnerabilities.These flaws, recently… Go to gbhackers.com

Researchers Reveal macOS Vulnerability Exposing System Passwords A recent article by Noah Gregory has highlighted a significant vulnerability in macOS, identified as CVE-2024-54471, which was patched in the latest security updates… Go to gbhackers.com

Hackers Use Fake Meta Emails to Steal Ad Account Credentials A recent phishing campaign uncovered by the Cofense Phishing Defense Center (PDC) has been exploiting fake Meta emails to deceive users into surrendering their… Go to gbhackers.com

Veeam RCE Vulnerability Allows Domain Users to Hack Backup Servers Researchers uncovered critical Remote Code Execution (RCE) vulnerabilities in the Veeam Backup & Replication solution.These vulnerabilities, which include CVE-2025-23120, exploit weaknesses in deserialization mechanisms,… Go to gbhackers.com

I-SOON’s ‘Chinese Fishmonger’ APT Targets Government Entities and NGOs In a recent development, the U.S. Department of Justice unsealed an indictment against employees of the Chinese contractor I-SOON, revealing their involvement in multiple… Go to gbhackers.com

VanHelsing Ransomware Targets Windows Systems with New Evasion Tactics and File Extension The cybersecurity landscape has been recently disrupted by the emergence of the VanHelsing ransomware, a sophisticated strain identified by the CYFIRMA Research and Advisory… Go to gbhackers.com

Apple Sued in Federal Court for Delaying Apple Intelligence Features   Tech giant Apple has found itself at the center of a new legal battle after a class-action lawsuit was filed in the U.S. District… Go to gbhackers.com

Caido v0.47.0 Released – A Web Pentesting Tool Alternative to Burp Suite Caido has unveiled version 0.47.0 of its web pentesting tool, cementing its position as a robust alternative to Burp Suite.This release is marked by… Go to gbhackers.com

Dell Alerts on Critical Secure Connect Gateway Vulnerabilities Dell has issued several critical security alerts regarding vulnerabilities in its Secure Connect Gateway (SCG) products.These vulnerabilities pose significant risks to users, including potential… Go to gbhackers.com

Signal Messenger Exploited in Targeted Attacks on Defense Industry Employees The Computer Emergency Response Team of Ukraine (CERT-UA) has reported a series of targeted cyberattacks against employees of the defense-industrial complex and members of… Go to gbhackers.com

Babuk Ransomware Group Claims Attack on Telecommunication Firm Orange The Babuk ransomware group has recently claimed responsibility for a sophisticated cyberattack on Orange, a leading global telecommunications company.According to an exclusive interview… Go to gbhackers.com

CISA Alerts on Edimax IP Camera OS Command Injection Exploit The Cybersecurity and Infrastructure Security Agency (CISA) has issued an urgent alert regarding a critical vulnerability found in Edimax IC-7100 IP cameras.The alert centers… Go to gbhackers.com

Chinese “Salt Typhoon” Hackers Exploit Exchange Vulnerabilities to Target Organizations The Chinese Advanced Persistent Threat (APT) group known as Salt Typhoon, also referred to as FamousSparrow, GhostEmperor, Earth Estries, and UNC2286, has been actively… Go to gbhackers.com

Hackers Exploit Azure App Proxy Pre-Authentication to Access Private Networks Hackers are exploiting a vulnerability in Microsoft’s Azure App Proxy by manipulating the pre-authentication settings to gain unauthorized access to private networks.The Azure App… Go to gbhackers.com

New Jailbreak Technique Bypasses DeepSeek, Copilot, and ChatGPT to Generate Chrome Malware A threat intelligence researcher from Cato CTRL, part of Cato Networks, has successfully exploited a vulnerability in three leading generative AI (GenAI) models: OpenAI’s… Go to gbhackers.com

Hackers Exploit Cobalt Strike, SQLMap, and Other Tools to Target Web Applications A recent cybersecurity incident has highlighted the sophisticated methods used by hackers to target web applications, particularly in South Korea.The attackers leveraged a… Go to gbhackers.com

Severe AMI BMC Vulnerability Enables Remote Authentication Bypass by Attackers A critical vulnerability has been discovered in AMI’s MegaRAC software, which is used in Baseboard Management Controllers (BMCs) across various server hardware.This vulnerability,… Go to gbhackers.com

CISA Warns of Supply-Chain Attack Exploiting GitHub Action Vulnerability The Cybersecurity and Infrastructure Security Agency (CISA) has sounded the alarm over a critical supply-chain attack affecting a widely used third-party GitHub Action: tj-actions/changed-files.This… Go to gbhackers.com

TruffleHog: New Burp Suite Extension for Secret Scanning Released A new extension for Burp Suite has been released, integrating the powerful secret scanning capabilities of TruffleHog.This innovative integration aims to enhance the detection… Go to gbhackers.com

Hackers Exploit Tomcat Vulnerability to Hijack Apache Servers A recent and significant cybersecurity threat has emerged involving a critical vulnerability in Apache Tomcat, identified as CVE-2025-24813.This vulnerability allows for remote code execution,… Go to gbhackers.com

Apple Introduces RCS End-to-End Encryption for iPhone Messages Apple has announced the integration of end-to-end encryption (E2EE) for Rich Communication Services (RCS) on iPhones.This development follows the introduction of RCS in iOS… Go to gbhackers.com

Adobe Acrobat Vulnerabilities Enable Remote Code Execution A recent disclosure by Cisco Talos’ Vulnerability Discovery & Research team highlighted several vulnerability issues in Adobe Acrobat.All of these vulnerabilities have been addressed… Go to gbhackers.com

Hackers Target TP-Link Vulnerability to Gain Full System Control Hackers exploit a vulnerability in TP-Link routers, specifically the TL-WR845N model, to gain full control over the system.This exploit allows unauthorized users to access… Go to gbhackers.com

Hackers Use CSS Tricks to Bypass Spam Filters and Monitor Users Cybersecurity experts have uncovered how hackers use Cascading Style Sheets (CSS) to deceive spam filters and monitor user behavior.This sophisticated technique allows malicious actors… Go to gbhackers.com

Hackers Exploiting Exposed Jupyter Notebooks to Deploy Cryptominers Cado Security Labs has identified a sophisticated cryptomining campaign exploiting misconfigured Jupyter Notebooks, targeting both Windows and Linux systems.The attack utilizes multiple stages… Go to gbhackers.com

AWS SNS Exploited for Data Exfiltration and Phishing Attacks Amazon Web Services’ Simple Notification Service (AWS SNS) is a versatile cloud-based pub/sub service that facilitates communication between applications and users.While its scalability… Go to gbhackers.com

Edimax Camera RCE Vulnerability Exploited to Spread Mirai Malware A recent alert from the Akamai Security Intelligence and Response Team (SIRT) has highlighted the exploitation of a severe command injection vulnerability in Edimax… Go to gbhackers.com

Cisco Warns of Critical IOS XR Vulnerability Enabling DoS Attacks Cisco has issued a security advisory warning of a vulnerability in its IOS XR Software that could allow attackers to launch denial-of-service (DoS) attacks. The… Go to gbhackers.com

DeepSeek R1 Jailbreaked to Create Malware, Including Keyloggers and Ransomware The increasing popularity of generative artificial intelligence (GenAI) tools, such as OpenAI’s ChatGPT and Google’s Gemini, has attracted cybercriminals seeking to exploit these technologies… Go to gbhackers.com

Critical ruby-saml Vulnerabilities Allow Attackers to Bypass Authentication A critical security vulnerability has been identified in the ruby-saml library, a popular tool used for Single Sign-On (SSO) via Security Assertion Markup Language… Go to gbhackers.com

Ongoing Cyber Attack Mimic Booking.com to Spread Password-Stealing Malware Microsoft Threat Intelligence has identified an ongoing phishing campaign that began in December 2024, targeting organizations in the hospitality industry by impersonating the online… Go to gbhackers.com

U.S. Charges LockBit Ransomware Developer in Cybercrime Crackdown The U.S. Department of Justice has charged Rostislav Panev, a dual Russian and Israeli national, for his role as a developer of the notorious… Go to gbhackers.com

CISA Releases Security Advisory on 13 Industrial Control System Threats CISA issued thirteen Industrial Control Systems (ICS) advisories, highlighting current security issues and vulnerabilities in various systems.These advisories are crucial for maintaining the security… Go to gbhackers.com

New Microsoft 365 Attack Leverages OAuth Redirection for Credential Theft Threat researchers at Proofpoint are currently tracking two sophisticated and highly targeted cyber-attack campaigns that are utilizing OAuth redirection mechanisms to compromise user credentials.These… Go to gbhackers.com

Hackers Exploit Microsoft Copilot for Advanced Phishing Attacks Hackers have been targeting Microsoft Copilot, a newly launched Generative AI assistant, to carry out sophisticated phishing attacks.This campaign highlights the risks associated with… Go to gbhackers.com

New DCRat Campaign Uses YouTube Videos to Target Users A new campaign involving the DCRat backdoor has recently been uncovered, leveraging YouTube as a primary distribution channel.Since the beginning of the year, attackers… Go to gbhackers.com

Fake CAPTCHA Malware Exploits Windows Users to Run PowerShell Commands In early February 2025, Trustwave SpiderLabs uncovered a resurgence of a malicious campaign leveraging fake CAPTCHA verifications to deliver malware.This campaign uses deceptive… Go to gbhackers.com

FreeType Vulnerability Actively Exploited for Arbitrary Code Execution A significant vulnerability has been identified in the FreeType library, a widely used open-source font rendering engine.This vulnerability tracked as CVE-2025-27363, is being actively… Go to gbhackers.com

Medusa Ransomware Hits 300+ Critical Infrastructure Organizations Worldwide The Federal Bureau of Investigation (FBI), Cybersecurity and Infrastructure Security Agency (CISA), and the Multi-State Information Sharing and Analysis Center (MS-ISAC) have issued a… Go to gbhackers.com