Category: GBHackers

Spanish Authorities Dismantle Advanced AI Phishing Operation GoogleXcoder
13
Oct
2025

Spanish Authorities Dismantle Advanced AI Phishing Operation GoogleXcoder

Spanish law enforcement recently dismantled an advanced AI-driven phishing network and arrested the mastermind developer known as “GoogleXcoder.” This operation…

Share: X : Spanish Authorities Dismantle Advanced AI Phishing Operation GoogleXcoderFacebook : Spanish Authorities Dismantle Advanced AI Phishing Operation GoogleXcoderLinkedin : Spanish Authorities Dismantle Advanced AI Phishing Operation GoogleXcoderReddit : Spanish Authorities Dismantle Advanced AI Phishing Operation GoogleXcoderTelegram : Spanish Authorities Dismantle Advanced AI Phishing Operation GoogleXcoderWhatsApp : Spanish Authorities Dismantle Advanced AI Phishing Operation GoogleXcoderEmail : Spanish Authorities Dismantle Advanced AI Phishing Operation GoogleXcoder
WhatsApp Worm Targets Users with Banking Malware, Steals Login Information
13
Oct
2025

WhatsApp Worm Targets Users with Banking Malware, Steals Login Information

Cybersecurity researchers have uncovered a sophisticated new campaign targeting WhatsApp users in Brazil with self-propagating malware designed to steal banking…

Share: X : WhatsApp Worm Targets Users with Banking Malware, Steals Login InformationFacebook : WhatsApp Worm Targets Users with Banking Malware, Steals Login InformationLinkedin : WhatsApp Worm Targets Users with Banking Malware, Steals Login InformationReddit : WhatsApp Worm Targets Users with Banking Malware, Steals Login InformationTelegram : WhatsApp Worm Targets Users with Banking Malware, Steals Login InformationWhatsApp : WhatsApp Worm Targets Users with Banking Malware, Steals Login InformationEmail : WhatsApp Worm Targets Users with Banking Malware, Steals Login Information
Hackers Claim Massive Salesforce Breach: 1 Billion Records Stolen
13
Oct
2025

Hackers Claim Massive Salesforce Breach: 1 Billion Records Stolen

A new cybercriminal conglomerate known as Scattered Lapsus$ Hunters has emerged as a significant threat to global organizations, claiming responsibility…

Share: X : Hackers Claim Massive Salesforce Breach: 1 Billion Records StolenFacebook : Hackers Claim Massive Salesforce Breach: 1 Billion Records StolenLinkedin : Hackers Claim Massive Salesforce Breach: 1 Billion Records StolenReddit : Hackers Claim Massive Salesforce Breach: 1 Billion Records StolenTelegram : Hackers Claim Massive Salesforce Breach: 1 Billion Records StolenWhatsApp : Hackers Claim Massive Salesforce Breach: 1 Billion Records StolenEmail : Hackers Claim Massive Salesforce Breach: 1 Billion Records Stolen
Oracle E-Business Suite Flaw Enables Remote Code Execution and Data Theft
13
Oct
2025

Oracle E-Business Suite Flaw Enables Remote Code Execution and Data Theft

Oracle has issued a critical security alert for a severe vulnerability in its E-Business Suite platform that could allow attackers…

Share: X : Oracle E-Business Suite Flaw Enables Remote Code Execution and Data TheftFacebook : Oracle E-Business Suite Flaw Enables Remote Code Execution and Data TheftLinkedin : Oracle E-Business Suite Flaw Enables Remote Code Execution and Data TheftReddit : Oracle E-Business Suite Flaw Enables Remote Code Execution and Data TheftTelegram : Oracle E-Business Suite Flaw Enables Remote Code Execution and Data TheftWhatsApp : Oracle E-Business Suite Flaw Enables Remote Code Execution and Data TheftEmail : Oracle E-Business Suite Flaw Enables Remote Code Execution and Data Theft
Attackers Exploit Defender for Endpoint Cloud API to Bypass Authentication and Disrupt Incident Response
13
Oct
2025

Attackers Exploit Defender for Endpoint Cloud API to Bypass Authentication and Disrupt Incident Response

Microsoft Defender for Endpoint’s cloud communication can be abused to bypass authentication, intercept commands, and spoof results, allowing attackers to…

Share: X : Attackers Exploit Defender for Endpoint Cloud API to Bypass Authentication and Disrupt Incident ResponseFacebook : Attackers Exploit Defender for Endpoint Cloud API to Bypass Authentication and Disrupt Incident ResponseLinkedin : Attackers Exploit Defender for Endpoint Cloud API to Bypass Authentication and Disrupt Incident ResponseReddit : Attackers Exploit Defender for Endpoint Cloud API to Bypass Authentication and Disrupt Incident ResponseTelegram : Attackers Exploit Defender for Endpoint Cloud API to Bypass Authentication and Disrupt Incident ResponseWhatsApp : Attackers Exploit Defender for Endpoint Cloud API to Bypass Authentication and Disrupt Incident ResponseEmail : Attackers Exploit Defender for Endpoint Cloud API to Bypass Authentication and Disrupt Incident Response
Threat Actors Exploit Discord Webhooks for C2 via npm, PyPI, and Ruby Packages - GBHackers Security
12
Oct
2025

Threat Actors Exploit Discord Webhooks for C2 via npm, PyPI, and Ruby Packages – GBHackers Security

Threat actors are increasingly abusing Discord webhooks as covert command-and-control (C2) channels inside open-source packages, enabling stealthy exfiltration of secrets,…

Share: X : Threat Actors Exploit Discord Webhooks for C2 via npm, PyPI, and Ruby Packages – GBHackers SecurityFacebook : Threat Actors Exploit Discord Webhooks for C2 via npm, PyPI, and Ruby Packages – GBHackers SecurityLinkedin : Threat Actors Exploit Discord Webhooks for C2 via npm, PyPI, and Ruby Packages – GBHackers SecurityReddit : Threat Actors Exploit Discord Webhooks for C2 via npm, PyPI, and Ruby Packages – GBHackers SecurityTelegram : Threat Actors Exploit Discord Webhooks for C2 via npm, PyPI, and Ruby Packages – GBHackers SecurityWhatsApp : Threat Actors Exploit Discord Webhooks for C2 via npm, PyPI, and Ruby Packages – GBHackers SecurityEmail : Threat Actors Exploit Discord Webhooks for C2 via npm, PyPI, and Ruby Packages – GBHackers Security
New Stealit Malware Exploits Node.js Extensions to Target Windows Systems
11
Oct
2025

New Stealit Malware Exploits Node.js Extensions to Target Windows Systems

Security researchers have identified a new, active campaign of the Stealit malware that uses an experimental Node.js feature to infect…

Share: X : New Stealit Malware Exploits Node.js Extensions to Target Windows SystemsFacebook : New Stealit Malware Exploits Node.js Extensions to Target Windows SystemsLinkedin : New Stealit Malware Exploits Node.js Extensions to Target Windows SystemsReddit : New Stealit Malware Exploits Node.js Extensions to Target Windows SystemsTelegram : New Stealit Malware Exploits Node.js Extensions to Target Windows SystemsWhatsApp : New Stealit Malware Exploits Node.js Extensions to Target Windows SystemsEmail : New Stealit Malware Exploits Node.js Extensions to Target Windows Systems
Nanoprecise partners with AccuKnox to strengthen its Zero Trust Cloud Security and Compliance Posture
10
Oct
2025

Nanoprecise partners with AccuKnox to strengthen its Zero Trust Cloud Security and Compliance Posture

Menlo Park, USA, October 10th, 2025, CyberNewsWire AccuKnox, a leader in Zero Trust Cloud Native Application Protection Platforms (CNAPP), is…

Share: X : Nanoprecise partners with AccuKnox to strengthen its Zero Trust Cloud Security and Compliance PostureFacebook : Nanoprecise partners with AccuKnox to strengthen its Zero Trust Cloud Security and Compliance PostureLinkedin : Nanoprecise partners with AccuKnox to strengthen its Zero Trust Cloud Security and Compliance PostureReddit : Nanoprecise partners with AccuKnox to strengthen its Zero Trust Cloud Security and Compliance PostureTelegram : Nanoprecise partners with AccuKnox to strengthen its Zero Trust Cloud Security and Compliance PostureWhatsApp : Nanoprecise partners with AccuKnox to strengthen its Zero Trust Cloud Security and Compliance PostureEmail : Nanoprecise partners with AccuKnox to strengthen its Zero Trust Cloud Security and Compliance Posture
Chaosbot Using CiscoVPN and Active Directory Passwords for Network Commands
10
Oct
2025

Chaosbot Using CiscoVPN and Active Directory Passwords for Network Commands

Adversaries have once again demonstrated that operational hours are irrelevant when mounting sophisticated cyberattacks. eSentire’s TRU team first observed suspicious…

Share: X : Chaosbot Using CiscoVPN and Active Directory Passwords for Network CommandsFacebook : Chaosbot Using CiscoVPN and Active Directory Passwords for Network CommandsLinkedin : Chaosbot Using CiscoVPN and Active Directory Passwords for Network CommandsReddit : Chaosbot Using CiscoVPN and Active Directory Passwords for Network CommandsTelegram : Chaosbot Using CiscoVPN and Active Directory Passwords for Network CommandsWhatsApp : Chaosbot Using CiscoVPN and Active Directory Passwords for Network CommandsEmail : Chaosbot Using CiscoVPN and Active Directory Passwords for Network Commands
SonicWall SSL VPN Devices Targeted by Threat Actors to Distribute Akira Ransomware
10
Oct
2025

SonicWall SSL VPN Devices Targeted by Threat Actors to Distribute Akira Ransomware

A significant uptick in Akira ransomware attacks has been observed exploiting unpatched SonicWall SSL VPN devices between July and August…

Share: X : SonicWall SSL VPN Devices Targeted by Threat Actors to Distribute Akira RansomwareFacebook : SonicWall SSL VPN Devices Targeted by Threat Actors to Distribute Akira RansomwareLinkedin : SonicWall SSL VPN Devices Targeted by Threat Actors to Distribute Akira RansomwareReddit : SonicWall SSL VPN Devices Targeted by Threat Actors to Distribute Akira RansomwareTelegram : SonicWall SSL VPN Devices Targeted by Threat Actors to Distribute Akira RansomwareWhatsApp : SonicWall SSL VPN Devices Targeted by Threat Actors to Distribute Akira RansomwareEmail : SonicWall SSL VPN Devices Targeted by Threat Actors to Distribute Akira Ransomware
175 Malicious npm Packages Targeting Tech and Energy Firms, 26,000 Downloads
10
Oct
2025

175 Malicious npm Packages Targeting Tech and Energy Firms, 26,000 Downloads

Socket’s Threat Research Team has uncovered a sprawling phishing campaign—dubbed “Beamglea”—leveraging 175 malicious npm packages that have amassed over 26,000…

Share: X : 175 Malicious npm Packages Targeting Tech and Energy Firms, 26,000 DownloadsFacebook : 175 Malicious npm Packages Targeting Tech and Energy Firms, 26,000 DownloadsLinkedin : 175 Malicious npm Packages Targeting Tech and Energy Firms, 26,000 DownloadsReddit : 175 Malicious npm Packages Targeting Tech and Energy Firms, 26,000 DownloadsTelegram : 175 Malicious npm Packages Targeting Tech and Energy Firms, 26,000 DownloadsWhatsApp : 175 Malicious npm Packages Targeting Tech and Energy Firms, 26,000 DownloadsEmail : 175 Malicious npm Packages Targeting Tech and Energy Firms, 26,000 Downloads
GitHub Copilot Flaw Allows Attackers to Steal Source Code from Private Repositories
10
Oct
2025

GitHub Copilot Flaw Allows Attackers to Steal Source Code from Private Repositories

A critical weakness in GitHub Copilot Chat discovered in June 2025 exposed private source code and secrets to attackers. Rated…

Share: X : GitHub Copilot Flaw Allows Attackers to Steal Source Code from Private RepositoriesFacebook : GitHub Copilot Flaw Allows Attackers to Steal Source Code from Private RepositoriesLinkedin : GitHub Copilot Flaw Allows Attackers to Steal Source Code from Private RepositoriesReddit : GitHub Copilot Flaw Allows Attackers to Steal Source Code from Private RepositoriesTelegram : GitHub Copilot Flaw Allows Attackers to Steal Source Code from Private RepositoriesWhatsApp : GitHub Copilot Flaw Allows Attackers to Steal Source Code from Private RepositoriesEmail : GitHub Copilot Flaw Allows Attackers to Steal Source Code from Private Repositories