Category: GBHackers

SharkStealer Adopts EtherHiding Technique for C2 Communication Evasion
22
Oct
2025

SharkStealer Adopts EtherHiding Technique for C2 Communication Evasion

SharkStealer, a Golang-based information stealer, has been observed leveraging the Binance Smart Chain (BSC) Testnet as a covert dead-drop mechanism…

Share: X : SharkStealer Adopts EtherHiding Technique for C2 Communication EvasionFacebook : SharkStealer Adopts EtherHiding Technique for C2 Communication EvasionLinkedin : SharkStealer Adopts EtherHiding Technique for C2 Communication EvasionReddit : SharkStealer Adopts EtherHiding Technique for C2 Communication EvasionTelegram : SharkStealer Adopts EtherHiding Technique for C2 Communication EvasionWhatsApp : SharkStealer Adopts EtherHiding Technique for C2 Communication EvasionEmail : SharkStealer Adopts EtherHiding Technique for C2 Communication Evasion
Hackers Exploit Microsoft 365 Direct Send to Evade Filters and Steal Data
22
Oct
2025

Hackers Exploit Microsoft 365 Direct Send to Evade Filters and Steal Data

Cybercriminals are increasingly exploiting a legitimate Microsoft 365 feature designed for enterprise convenience, turning Exchange Online’s Direct Send into a…

Share: X : Hackers Exploit Microsoft 365 Direct Send to Evade Filters and Steal DataFacebook : Hackers Exploit Microsoft 365 Direct Send to Evade Filters and Steal DataLinkedin : Hackers Exploit Microsoft 365 Direct Send to Evade Filters and Steal DataReddit : Hackers Exploit Microsoft 365 Direct Send to Evade Filters and Steal DataTelegram : Hackers Exploit Microsoft 365 Direct Send to Evade Filters and Steal DataWhatsApp : Hackers Exploit Microsoft 365 Direct Send to Evade Filters and Steal DataEmail : Hackers Exploit Microsoft 365 Direct Send to Evade Filters and Steal Data
Bitter APT Exploits WinRAR Zero-Day Through Malicious Word Files to Steal Sensitive Data
22
Oct
2025

Bitter APT Exploits WinRAR Zero-Day Through Malicious Word Files to Steal Sensitive Data

In a newly uncovered campaign, the threat group known as Bitter—also tracked as APT-Q-37—has leveraged both malicious Office macros and…

Share: X : Bitter APT Exploits WinRAR Zero-Day Through Malicious Word Files to Steal Sensitive DataFacebook : Bitter APT Exploits WinRAR Zero-Day Through Malicious Word Files to Steal Sensitive DataLinkedin : Bitter APT Exploits WinRAR Zero-Day Through Malicious Word Files to Steal Sensitive DataReddit : Bitter APT Exploits WinRAR Zero-Day Through Malicious Word Files to Steal Sensitive DataTelegram : Bitter APT Exploits WinRAR Zero-Day Through Malicious Word Files to Steal Sensitive DataWhatsApp : Bitter APT Exploits WinRAR Zero-Day Through Malicious Word Files to Steal Sensitive DataEmail : Bitter APT Exploits WinRAR Zero-Day Through Malicious Word Files to Steal Sensitive Data
Direct Memory Attacks Used to Capture Browser Credentials
22
Oct
2025

Direct Memory Attacks Used to Capture Browser Credentials

On October 6, 2025, the cybercriminal developer known as “Loadbaks” announced the release of Vidar Stealer v2.0 on underground forums,…

Share: X : Direct Memory Attacks Used to Capture Browser CredentialsFacebook : Direct Memory Attacks Used to Capture Browser CredentialsLinkedin : Direct Memory Attacks Used to Capture Browser CredentialsReddit : Direct Memory Attacks Used to Capture Browser CredentialsTelegram : Direct Memory Attacks Used to Capture Browser CredentialsWhatsApp : Direct Memory Attacks Used to Capture Browser CredentialsEmail : Direct Memory Attacks Used to Capture Browser Credentials
New Rust Malware “ChaosBot” Hides Command-and-Control Inside Discord
22
Oct
2025

New Rust Malware “ChaosBot” Hides Command-and-Control Inside Discord

A sophisticated, Rust-based malware dubbed ChaosBot has been exposed utilizing the Discord platform for its Command and Control (C2) operations….

Share: X : New Rust Malware “ChaosBot” Hides Command-and-Control Inside DiscordFacebook : New Rust Malware “ChaosBot” Hides Command-and-Control Inside DiscordLinkedin : New Rust Malware “ChaosBot” Hides Command-and-Control Inside DiscordReddit : New Rust Malware “ChaosBot” Hides Command-and-Control Inside DiscordTelegram : New Rust Malware “ChaosBot” Hides Command-and-Control Inside DiscordWhatsApp : New Rust Malware “ChaosBot” Hides Command-and-Control Inside DiscordEmail : New Rust Malware “ChaosBot” Hides Command-and-Control Inside Discord
Millions of Credentials Stolen Each Day by Stealer Malware
22
Oct
2025

Millions of Credentials Stolen Each Day by Stealer Malware

The cybercrime ecosystem surrounding stealer malware has reached unprecedented scale, with threat actors now processing millions of stolen credentials daily…

Share: X : Millions of Credentials Stolen Each Day by Stealer MalwareFacebook : Millions of Credentials Stolen Each Day by Stealer MalwareLinkedin : Millions of Credentials Stolen Each Day by Stealer MalwareReddit : Millions of Credentials Stolen Each Day by Stealer MalwareTelegram : Millions of Credentials Stolen Each Day by Stealer MalwareWhatsApp : Millions of Credentials Stolen Each Day by Stealer MalwareEmail : Millions of Credentials Stolen Each Day by Stealer Malware
New Salt Typhoon Attacks Leverage Zero-Days and DLL Sideloading
22
Oct
2025

New Salt Typhoon Attacks Leverage Zero-Days and DLL Sideloading

Salt Typhoon represents one of the most persistent and sophisticated cyber threats targeting global critical infrastructure today. Believed to be…

Share: X : New Salt Typhoon Attacks Leverage Zero-Days and DLL SideloadingFacebook : New Salt Typhoon Attacks Leverage Zero-Days and DLL SideloadingLinkedin : New Salt Typhoon Attacks Leverage Zero-Days and DLL SideloadingReddit : New Salt Typhoon Attacks Leverage Zero-Days and DLL SideloadingTelegram : New Salt Typhoon Attacks Leverage Zero-Days and DLL SideloadingWhatsApp : New Salt Typhoon Attacks Leverage Zero-Days and DLL SideloadingEmail : New Salt Typhoon Attacks Leverage Zero-Days and DLL Sideloading
Hackers Exploit OAuth Apps to Keep Cloud Access Even After Password Resets
22
Oct
2025

Hackers Exploit OAuth Apps to Keep Cloud Access Even After Password Resets

Cloud account takeover attacks have evolved beyond simple credential theft. Cybercriminals are now exploiting OAuth applications to maintain persistent access…

Share: X : Hackers Exploit OAuth Apps to Keep Cloud Access Even After Password ResetsFacebook : Hackers Exploit OAuth Apps to Keep Cloud Access Even After Password ResetsLinkedin : Hackers Exploit OAuth Apps to Keep Cloud Access Even After Password ResetsReddit : Hackers Exploit OAuth Apps to Keep Cloud Access Even After Password ResetsTelegram : Hackers Exploit OAuth Apps to Keep Cloud Access Even After Password ResetsWhatsApp : Hackers Exploit OAuth Apps to Keep Cloud Access Even After Password ResetsEmail : Hackers Exploit OAuth Apps to Keep Cloud Access Even After Password Resets
Apache Syncope Groovy Flaw Allows Remote Code Injection
21
Oct
2025

Apache Syncope Groovy Flaw Allows Remote Code Injection

Apache Syncope, has disclosed a critical security vulnerability that allows authenticated administrators to execute arbitrary code on affected systems. The…

Share: X : Apache Syncope Groovy Flaw Allows Remote Code InjectionFacebook : Apache Syncope Groovy Flaw Allows Remote Code InjectionLinkedin : Apache Syncope Groovy Flaw Allows Remote Code InjectionReddit : Apache Syncope Groovy Flaw Allows Remote Code InjectionTelegram : Apache Syncope Groovy Flaw Allows Remote Code InjectionWhatsApp : Apache Syncope Groovy Flaw Allows Remote Code InjectionEmail : Apache Syncope Groovy Flaw Allows Remote Code Injection
New Luma Infostealer Malware Steals Browser Data, Cryptocurrency, and Remote Access Accounts
21
Oct
2025

New Luma Infostealer Malware Steals Browser Data, Cryptocurrency, and Remote Access Accounts

Luma Infostealer, a malware-as-a-service (MaaS) offering, has emerged as a potent threat targeting high-value credentials such as web browser cookies,…

Share: X : New Luma Infostealer Malware Steals Browser Data, Cryptocurrency, and Remote Access AccountsFacebook : New Luma Infostealer Malware Steals Browser Data, Cryptocurrency, and Remote Access AccountsLinkedin : New Luma Infostealer Malware Steals Browser Data, Cryptocurrency, and Remote Access AccountsReddit : New Luma Infostealer Malware Steals Browser Data, Cryptocurrency, and Remote Access AccountsTelegram : New Luma Infostealer Malware Steals Browser Data, Cryptocurrency, and Remote Access AccountsWhatsApp : New Luma Infostealer Malware Steals Browser Data, Cryptocurrency, and Remote Access AccountsEmail : New Luma Infostealer Malware Steals Browser Data, Cryptocurrency, and Remote Access Accounts
Sendmarc Appoints Dan Levinson as Customer Success Director in North America
21
Oct
2025

Sendmarc Appoints Dan Levinson as Customer Success Director in North America

Wilmington, Delaware, October 21st, 2025, CyberNewsWire Sendmarc has announced the appointment of Dan Levinson as Customer Success Director – North…

Share: X : Sendmarc Appoints Dan Levinson as Customer Success Director in North AmericaFacebook : Sendmarc Appoints Dan Levinson as Customer Success Director in North AmericaLinkedin : Sendmarc Appoints Dan Levinson as Customer Success Director in North AmericaReddit : Sendmarc Appoints Dan Levinson as Customer Success Director in North AmericaTelegram : Sendmarc Appoints Dan Levinson as Customer Success Director in North AmericaWhatsApp : Sendmarc Appoints Dan Levinson as Customer Success Director in North AmericaEmail : Sendmarc Appoints Dan Levinson as Customer Success Director in North America
Microsoft 365 Copilot Flaw Lets Hackers Steal Sensitive Data via Indirect Prompt Injection
21
Oct
2025

Microsoft 365 Copilot Flaw Lets Hackers Steal Sensitive Data via Indirect Prompt Injection

 A vulnerability in Microsoft 365 Copilot allowed attackers to trick the AI assistant into fetching and exfiltrating sensitive tenant data…

Share: X : Microsoft 365 Copilot Flaw Lets Hackers Steal Sensitive Data via Indirect Prompt InjectionFacebook : Microsoft 365 Copilot Flaw Lets Hackers Steal Sensitive Data via Indirect Prompt InjectionLinkedin : Microsoft 365 Copilot Flaw Lets Hackers Steal Sensitive Data via Indirect Prompt InjectionReddit : Microsoft 365 Copilot Flaw Lets Hackers Steal Sensitive Data via Indirect Prompt InjectionTelegram : Microsoft 365 Copilot Flaw Lets Hackers Steal Sensitive Data via Indirect Prompt InjectionWhatsApp : Microsoft 365 Copilot Flaw Lets Hackers Steal Sensitive Data via Indirect Prompt InjectionEmail : Microsoft 365 Copilot Flaw Lets Hackers Steal Sensitive Data via Indirect Prompt Injection