Category: GBHackers on Security | #1 Globally Trusted Cyber Security News Platform

The United States Department of Justice (DoJ) has charged an Iranian national, Alireza Shafie Nasab, for his alleged involvement in a sophisticated cyber-espionage campaign targeting American entities. The indictment, unsealed recently, reveals a multi-year operation that compromised governmental and private…

Read more →

SolarWinds cyberattack was one of the largest attacks of the century in which attackers used the Golden SAML attack in post-breach exploitation to affect thousands of organizations all over the world including the United States government for deploying malicious code…

Read more →

Researchers have developed what they claim to be one of the first generative AI worms, named Morris II, capable of autonomously spreading between AI systems. This new form of cyberattack, reminiscent of the original Morris worm that wreaked havoc on…

Read more →

Researchers have developed what they claim to be one of the first generative AI worms, named Morris II, capable of autonomously spreading between AI systems. This new form of cyberattack, reminiscent of the original Morris worm that wreaked havoc on…

Read more →

CutOut.Pro, an AI-powered photo and video editing platform, has reportedly suffered a data breach, exposing personal information belonging to over 20 million users. The breach was first brought to light by an individual using the alias ‘KryptonZambie’ on the BreachForums…

Read more →

A new wave of cyber threats has emerged as the RisePro information stealer targets Windows users, compromising sensitive data and causing significant security concerns. RisePro, which shares similarities with the Vidar stealer, is a Trojan-type malware that infiltrates systems to…

Read more →

The Common Weakness Enumeration (CWE) project, a cornerstone in the cybersecurity landscape, has unveiled its latest iteration, version 4.14, introducing significant updates and enhancements to bolster the security of both hardware and software systems. This release underscores the collaborative effort…

Read more →

The Golden Corral Corporation, a popular American restaurant chain, has suffered a significant data breach, compromising the personal information of over 180,000 past and present employees, dependents, and beneficiaries. You can analyze a malware file, network, module, and registry activity…

Read more →

Threat actors target and abuse VPN flaws because VPNs are often used to secure sensitive data and communications, making them valuable targets for exploitation.  By exploiting the VPN flaws, threat actors can gain unauthorized access to networks, intercept confidential data,…

Read more →

Malicious hackers sometimes jailbreak language models (LMs) to exploit bugs in the systems so that they can perform a multitude of illicit activities.  However, this is also driven by the need to gather classified information, introduce malicious materials, and tamper…

Read more →

Anycubic 3D printer owners have been caught off guard by a series of unauthorized messages warning them of a critical security flaw. The incident has raised concerns about the safety of internet-connected devices and the potential for exploitation. You can…

Read more →

To safeguard the privacy and security of American citizens, President Joe Biden has issued an Executive Order to prevent the sale and transfer of sensitive personal data to countries deemed as threats, notably China and Russia. This decisive action represents…

Read more →

Kali Linux recently released version 2024.1, the first release of the year 2024, with new Micro Mirror free software CDN, a theme refresh, additional Desktop environment changes, NetHunter updates, and four new tools. Kali Linux is one of the most…

Read more →

LockBit 3.0 is a sophisticated ransomware identified as a significant threat to organizations worldwide. This ransomware variant is designed to encrypt files on infected systems, rendering them inaccessible until a ransom is paid. LockBit” is a ransomware-as-a-service (RaaS) group active since September…

Read more →

Acemagic, a Chinese manufacturer of mini PCs, has been found to ship devices laden with malware, raising significant concerns about cybersecurity and consumer safety. Further investigations revealed that other models, including the AD15 and S1, also harbored similar malicious software.…

Read more →

Security researchers have uncovered a massive campaign of repository confusion attacks on GitHub, affecting over 100,000 repositories and potentially millions more. This sophisticated cyberattack targets developers by tricking them into downloading and using malicious repositories disguised as legitimate ones. You…

Read more →

The Lazarus Group, a well-known cybercriminal organization, has recently exploited a zero-day vulnerability in Windows to gain kernel privileges, a critical level of system access. This vulnerability, identified as CVE-2024-21338, was found in the appid.Sys AppLocker driver was patched by…

Read more →

Over the years, several reports associated with cybercriminals have been based in Russia and Western countries. This is due to the fact that many sophisticated cyber attacks and data leaks originate from these regions. Though this is the case, there…

Read more →

Threat actors use weaponized PDF files for initial infection. This is because they can be embedded with malicious code, PDF readers’ vulnerabilities are exploited, and users are tricked into activating the payload. Since they are common trusted file types, PDFs…

Read more →

The Predator Files project, coordinated by the European Investigative Collaborations (EIC), has highlighted the extensive use of Predator spyware by customers of Intellexa surveillance solutions. The intrusion set, known as Lycantrox, was exposed by Sekoia.io in collaboration with Amnesty International,…

Read more →