Category: GBHackers

Malicious Typosquatted PyPI Packages Spreading SilentSync RAT
18
Sep
2025

Malicious Typosquatted PyPI Packages Spreading SilentSync RAT

On August 4, 2025, Zscaler ThreatLabz uncovered two malicious Python packages—sisaws and secmeasure—that deliver SilentSync, a Python-based remote access trojan…

Share: X : Malicious Typosquatted PyPI Packages Spreading SilentSync RATFacebook : Malicious Typosquatted PyPI Packages Spreading SilentSync RATLinkedin : Malicious Typosquatted PyPI Packages Spreading SilentSync RATReddit : Malicious Typosquatted PyPI Packages Spreading SilentSync RATTelegram : Malicious Typosquatted PyPI Packages Spreading SilentSync RATWhatsApp : Malicious Typosquatted PyPI Packages Spreading SilentSync RATEmail : Malicious Typosquatted PyPI Packages Spreading SilentSync RAT
Hackers Abuse RTL/LTR Text Tricks and Browser Flaws to Mask Malicious Links
18
Sep
2025

Hackers Abuse RTL/LTR Text Tricks and Browser Flaws to Mask Malicious Links

Cybersecurity researchers at Varonis Threat Labs have uncovered a persistent vulnerability that has remained unaddressed for over a decade, allowing…

Share: X : Hackers Abuse RTL/LTR Text Tricks and Browser Flaws to Mask Malicious LinksFacebook : Hackers Abuse RTL/LTR Text Tricks and Browser Flaws to Mask Malicious LinksLinkedin : Hackers Abuse RTL/LTR Text Tricks and Browser Flaws to Mask Malicious LinksReddit : Hackers Abuse RTL/LTR Text Tricks and Browser Flaws to Mask Malicious LinksTelegram : Hackers Abuse RTL/LTR Text Tricks and Browser Flaws to Mask Malicious LinksWhatsApp : Hackers Abuse RTL/LTR Text Tricks and Browser Flaws to Mask Malicious LinksEmail : Hackers Abuse RTL/LTR Text Tricks and Browser Flaws to Mask Malicious Links
Google Chrome 0-Day Under Active Attack – Update Immediately
18
Sep
2025

Google Chrome 0-Day Under Active Attack – Update Immediately

Google has released an urgent security update for Chrome browser users worldwide, addressing four critical vulnerabilities, including one zero-day exploit…

Share: X : Google Chrome 0-Day Under Active Attack – Update ImmediatelyFacebook : Google Chrome 0-Day Under Active Attack – Update ImmediatelyLinkedin : Google Chrome 0-Day Under Active Attack – Update ImmediatelyReddit : Google Chrome 0-Day Under Active Attack – Update ImmediatelyTelegram : Google Chrome 0-Day Under Active Attack – Update ImmediatelyWhatsApp : Google Chrome 0-Day Under Active Attack – Update ImmediatelyEmail : Google Chrome 0-Day Under Active Attack – Update Immediately
Google Play Flooded With 224 Malicious Apps, 38 Million Downloads Deliver Malware
17
Sep
2025

Google Play Flooded With 224 Malicious Apps, 38 Million Downloads Deliver Malware

A global ad fraud and click fraud operation, dubbed SlopAds, comprising 224 Android apps that collectively amassed more than 38…

Share: X : Google Play Flooded With 224 Malicious Apps, 38 Million Downloads Deliver MalwareFacebook : Google Play Flooded With 224 Malicious Apps, 38 Million Downloads Deliver MalwareLinkedin : Google Play Flooded With 224 Malicious Apps, 38 Million Downloads Deliver MalwareReddit : Google Play Flooded With 224 Malicious Apps, 38 Million Downloads Deliver MalwareTelegram : Google Play Flooded With 224 Malicious Apps, 38 Million Downloads Deliver MalwareWhatsApp : Google Play Flooded With 224 Malicious Apps, 38 Million Downloads Deliver MalwareEmail : Google Play Flooded With 224 Malicious Apps, 38 Million Downloads Deliver Malware
New Magecart Attack Injects Malicious JavaScript to Steal Payment Data
17
Sep
2025

New Magecart Attack Injects Malicious JavaScript to Steal Payment Data

A new Magecart-style campaign has emerged that leverages malicious JavaScript injections to skim payment data from online checkout forms. The…

Share: X : New Magecart Attack Injects Malicious JavaScript to Steal Payment DataFacebook : New Magecart Attack Injects Malicious JavaScript to Steal Payment DataLinkedin : New Magecart Attack Injects Malicious JavaScript to Steal Payment DataReddit : New Magecart Attack Injects Malicious JavaScript to Steal Payment DataTelegram : New Magecart Attack Injects Malicious JavaScript to Steal Payment DataWhatsApp : New Magecart Attack Injects Malicious JavaScript to Steal Payment DataEmail : New Magecart Attack Injects Malicious JavaScript to Steal Payment Data
China-Aligned TA415 Exploits Google Sheets & Calendar for C2
17
Sep
2025

China-Aligned TA415 Exploits Google Sheets & Calendar for C2

China-aligned TA415 hackers have adopted Google Sheets and Google Calendar as covert command-and-control (C2) channels in a sustained espionage campaign…

Share: X : China-Aligned TA415 Exploits Google Sheets & Calendar for C2Facebook : China-Aligned TA415 Exploits Google Sheets & Calendar for C2Linkedin : China-Aligned TA415 Exploits Google Sheets & Calendar for C2Reddit : China-Aligned TA415 Exploits Google Sheets & Calendar for C2Telegram : China-Aligned TA415 Exploits Google Sheets & Calendar for C2WhatsApp : China-Aligned TA415 Exploits Google Sheets & Calendar for C2Email : China-Aligned TA415 Exploits Google Sheets & Calendar for C2
Agentless Access, Sensitive Data Masking, and Smooth Session Playback
17
Sep
2025

Agentless Access, Sensitive Data Masking, and Smooth Session Playback

Syteca, a global cybersecurity provider, introduced the latest release of its platform, continuing the mission to help organizations reduce insider…

Share: X : Agentless Access, Sensitive Data Masking, and Smooth Session PlaybackFacebook : Agentless Access, Sensitive Data Masking, and Smooth Session PlaybackLinkedin : Agentless Access, Sensitive Data Masking, and Smooth Session PlaybackReddit : Agentless Access, Sensitive Data Masking, and Smooth Session PlaybackTelegram : Agentless Access, Sensitive Data Masking, and Smooth Session PlaybackWhatsApp : Agentless Access, Sensitive Data Masking, and Smooth Session PlaybackEmail : Agentless Access, Sensitive Data Masking, and Smooth Session Playback
17
Sep
2025

Agentless Access, Sensitive Data Masking, and Smooth Session Playback

Syteca, a global cybersecurity provider, introduced the latest release of its platform, continuing the mission to help organizations reduce insider…

Share: X : Agentless Access, Sensitive Data Masking, and Smooth Session PlaybackFacebook : Agentless Access, Sensitive Data Masking, and Smooth Session PlaybackLinkedin : Agentless Access, Sensitive Data Masking, and Smooth Session PlaybackReddit : Agentless Access, Sensitive Data Masking, and Smooth Session PlaybackTelegram : Agentless Access, Sensitive Data Masking, and Smooth Session PlaybackWhatsApp : Agentless Access, Sensitive Data Masking, and Smooth Session PlaybackEmail : Agentless Access, Sensitive Data Masking, and Smooth Session Playback
BeaverTail Malware Delivered Through Malicious Repositories Targets Retailers
17
Sep
2025

BeaverTail Malware Delivered Through Malicious Repositories Targets Retailers

Tech Note – BeaverTail variant distributed via malicious repositories and ClickFix lure17 September 2025 – Oliver Smith, GitLab Threat Intelligence…

Share: X : BeaverTail Malware Delivered Through Malicious Repositories Targets RetailersFacebook : BeaverTail Malware Delivered Through Malicious Repositories Targets RetailersLinkedin : BeaverTail Malware Delivered Through Malicious Repositories Targets RetailersReddit : BeaverTail Malware Delivered Through Malicious Repositories Targets RetailersTelegram : BeaverTail Malware Delivered Through Malicious Repositories Targets RetailersWhatsApp : BeaverTail Malware Delivered Through Malicious Repositories Targets RetailersEmail : BeaverTail Malware Delivered Through Malicious Repositories Targets Retailers
Microsoft OneDrive Auto-Sync Flaw Leaks Enterprise Secrets from SharePoint Online
17
Sep
2025

Microsoft OneDrive Auto-Sync Flaw Leaks Enterprise Secrets from SharePoint Online

A new report from Entro Labs reveals that one in five exposed secrets in large organizations can be traced back…

Share: X : Microsoft OneDrive Auto-Sync Flaw Leaks Enterprise Secrets from SharePoint OnlineFacebook : Microsoft OneDrive Auto-Sync Flaw Leaks Enterprise Secrets from SharePoint OnlineLinkedin : Microsoft OneDrive Auto-Sync Flaw Leaks Enterprise Secrets from SharePoint OnlineReddit : Microsoft OneDrive Auto-Sync Flaw Leaks Enterprise Secrets from SharePoint OnlineTelegram : Microsoft OneDrive Auto-Sync Flaw Leaks Enterprise Secrets from SharePoint OnlineWhatsApp : Microsoft OneDrive Auto-Sync Flaw Leaks Enterprise Secrets from SharePoint OnlineEmail : Microsoft OneDrive Auto-Sync Flaw Leaks Enterprise Secrets from SharePoint Online
MuddyWater Deploys Custom Multi-Stage Malware Hidden Behind Cloudflare
17
Sep
2025

MuddyWater Deploys Custom Multi-Stage Malware Hidden Behind Cloudflare

Since early 2025, cybersecurity analysts have witnessed a marked evolution in the tactics and tooling of MuddyWater, the Iranian state-sponsored…

Share: X : MuddyWater Deploys Custom Multi-Stage Malware Hidden Behind CloudflareFacebook : MuddyWater Deploys Custom Multi-Stage Malware Hidden Behind CloudflareLinkedin : MuddyWater Deploys Custom Multi-Stage Malware Hidden Behind CloudflareReddit : MuddyWater Deploys Custom Multi-Stage Malware Hidden Behind CloudflareTelegram : MuddyWater Deploys Custom Multi-Stage Malware Hidden Behind CloudflareWhatsApp : MuddyWater Deploys Custom Multi-Stage Malware Hidden Behind CloudflareEmail : MuddyWater Deploys Custom Multi-Stage Malware Hidden Behind Cloudflare
Apple Patches 0-Day Vulnerabilities in Older iPhones and iPads
17
Sep
2025

Apple Patches 0-Day Vulnerabilities in Older iPhones and iPads

Apple has released critical security updates for older iPhone and iPad models, addressing a zero-day vulnerability that has reportedly been…

Share: X : Apple Patches 0-Day Vulnerabilities in Older iPhones and iPadsFacebook : Apple Patches 0-Day Vulnerabilities in Older iPhones and iPadsLinkedin : Apple Patches 0-Day Vulnerabilities in Older iPhones and iPadsReddit : Apple Patches 0-Day Vulnerabilities in Older iPhones and iPadsTelegram : Apple Patches 0-Day Vulnerabilities in Older iPhones and iPadsWhatsApp : Apple Patches 0-Day Vulnerabilities in Older iPhones and iPadsEmail : Apple Patches 0-Day Vulnerabilities in Older iPhones and iPads