Category: GBHackers

Microsoft Exchange Online to End Support for SMTP AUTH Basic Authentication
28
Jan
2026

Microsoft Exchange Online to End Support for SMTP AUTH Basic Authentication

Microsoft has announced a revised deprecation timeline for SMTP AUTH Basic Authentication in Exchange Online, giving organizations an extended runway…

Share: X : Microsoft Exchange Online to End Support for SMTP AUTH Basic AuthenticationFacebook : Microsoft Exchange Online to End Support for SMTP AUTH Basic AuthenticationLinkedin : Microsoft Exchange Online to End Support for SMTP AUTH Basic AuthenticationReddit : Microsoft Exchange Online to End Support for SMTP AUTH Basic AuthenticationTelegram : Microsoft Exchange Online to End Support for SMTP AUTH Basic AuthenticationWhatsApp : Microsoft Exchange Online to End Support for SMTP AUTH Basic AuthenticationEmail : Microsoft Exchange Online to End Support for SMTP AUTH Basic Authentication
TP-Link Archer Router Flaw Exposes Users to Remote Attacks and Full Device Control
28
Jan
2026

TP-Link Archer Router Flaw Exposes Users to Remote Attacks and Full Device Control

A high command injection vulnerability has been discovered in TP-Link’s Archer MR600 v5 router, enabling authenticated attackers to execute arbitrary…

Share: X : TP-Link Archer Router Flaw Exposes Users to Remote Attacks and Full Device ControlFacebook : TP-Link Archer Router Flaw Exposes Users to Remote Attacks and Full Device ControlLinkedin : TP-Link Archer Router Flaw Exposes Users to Remote Attacks and Full Device ControlReddit : TP-Link Archer Router Flaw Exposes Users to Remote Attacks and Full Device ControlTelegram : TP-Link Archer Router Flaw Exposes Users to Remote Attacks and Full Device ControlWhatsApp : TP-Link Archer Router Flaw Exposes Users to Remote Attacks and Full Device ControlEmail : TP-Link Archer Router Flaw Exposes Users to Remote Attacks and Full Device Control
Critical IDIS IP Camera Vulnerability Allows Full Computer Compromise with One-Click Exploit
28
Jan
2026

Critical IDIS IP Camera Vulnerability Allows Full Computer Compromise with One-Click Exploit

A critical vulnerability in IDIS Cloud Manager (ICM) Viewer exposes organizations using IDIS IP cameras to one-click remote code execution…

Share: X : Critical IDIS IP Camera Vulnerability Allows Full Computer Compromise with One-Click ExploitFacebook : Critical IDIS IP Camera Vulnerability Allows Full Computer Compromise with One-Click ExploitLinkedin : Critical IDIS IP Camera Vulnerability Allows Full Computer Compromise with One-Click ExploitReddit : Critical IDIS IP Camera Vulnerability Allows Full Computer Compromise with One-Click ExploitTelegram : Critical IDIS IP Camera Vulnerability Allows Full Computer Compromise with One-Click ExploitWhatsApp : Critical IDIS IP Camera Vulnerability Allows Full Computer Compromise with One-Click ExploitEmail : Critical IDIS IP Camera Vulnerability Allows Full Computer Compromise with One-Click Exploit
Cybercriminals Leverage AI-Generated Malicious Job Offers to Spread PureRAT Malware
28
Jan
2026

Cybercriminals Leverage AI-Generated Malicious Job Offers to Spread PureRAT Malware

A Vietnamese threat actor is using AI-authored code to power a phishing campaign that delivers the PureRAT malware and related…

Share: X : Cybercriminals Leverage AI-Generated Malicious Job Offers to Spread PureRAT MalwareFacebook : Cybercriminals Leverage AI-Generated Malicious Job Offers to Spread PureRAT MalwareLinkedin : Cybercriminals Leverage AI-Generated Malicious Job Offers to Spread PureRAT MalwareReddit : Cybercriminals Leverage AI-Generated Malicious Job Offers to Spread PureRAT MalwareTelegram : Cybercriminals Leverage AI-Generated Malicious Job Offers to Spread PureRAT MalwareWhatsApp : Cybercriminals Leverage AI-Generated Malicious Job Offers to Spread PureRAT MalwareEmail : Cybercriminals Leverage AI-Generated Malicious Job Offers to Spread PureRAT Malware
Gemini MCP Tool 0-Day Vulnerability Exposes Systems to Remote Code Execution
28
Jan
2026

Gemini MCP Tool 0-Day Vulnerability Exposes Systems to Remote Code Execution

A critical zero-day vulnerability has been disclosed in the Gemini MCP Tool, enabling unauthenticated remote attackers to execute arbitrary code…

Share: X : Gemini MCP Tool 0-Day Vulnerability Exposes Systems to Remote Code ExecutionFacebook : Gemini MCP Tool 0-Day Vulnerability Exposes Systems to Remote Code ExecutionLinkedin : Gemini MCP Tool 0-Day Vulnerability Exposes Systems to Remote Code ExecutionReddit : Gemini MCP Tool 0-Day Vulnerability Exposes Systems to Remote Code ExecutionTelegram : Gemini MCP Tool 0-Day Vulnerability Exposes Systems to Remote Code ExecutionWhatsApp : Gemini MCP Tool 0-Day Vulnerability Exposes Systems to Remote Code ExecutionEmail : Gemini MCP Tool 0-Day Vulnerability Exposes Systems to Remote Code Execution
eSkimming Attacks Surge with Evolving Tactics and Ongoing Recovery Challenges
28
Jan
2026

eSkimming Attacks Surge with Evolving Tactics and Ongoing Recovery Challenges

A new longitudinal study of Magecart-style eSkimming attacks overturns the assumption that discovery equals recovery. Instead of being a one-time…

Share: X : eSkimming Attacks Surge with Evolving Tactics and Ongoing Recovery ChallengesFacebook : eSkimming Attacks Surge with Evolving Tactics and Ongoing Recovery ChallengesLinkedin : eSkimming Attacks Surge with Evolving Tactics and Ongoing Recovery ChallengesReddit : eSkimming Attacks Surge with Evolving Tactics and Ongoing Recovery ChallengesTelegram : eSkimming Attacks Surge with Evolving Tactics and Ongoing Recovery ChallengesWhatsApp : eSkimming Attacks Surge with Evolving Tactics and Ongoing Recovery ChallengesEmail : eSkimming Attacks Surge with Evolving Tactics and Ongoing Recovery Challenges
Cal.com Broken Access Controls Lead to Account Takeover and Data Exposure
28
Jan
2026

Cal.com Broken Access Controls Lead to Account Takeover and Data Exposure

Cal.com, an open-source scheduling platform and developer-friendly alternative to Calendly, recently patched a set of critical vulnerabilities that exposed user…

Share: X : Cal.com Broken Access Controls Lead to Account Takeover and Data ExposureFacebook : Cal.com Broken Access Controls Lead to Account Takeover and Data ExposureLinkedin : Cal.com Broken Access Controls Lead to Account Takeover and Data ExposureReddit : Cal.com Broken Access Controls Lead to Account Takeover and Data ExposureTelegram : Cal.com Broken Access Controls Lead to Account Takeover and Data ExposureWhatsApp : Cal.com Broken Access Controls Lead to Account Takeover and Data ExposureEmail : Cal.com Broken Access Controls Lead to Account Takeover and Data Exposure
Meta Faces Legal Action Over Claims of Accessing All WhatsApp User Messages
27
Jan
2026

Meta Faces Legal Action Over Claims of Accessing All WhatsApp User Messages

A class-action lawsuit filed in San Francisco federal court accuses Meta Platforms of systematically misleading billions of WhatsApp users about…

Share: X : Meta Faces Legal Action Over Claims of Accessing All WhatsApp User MessagesFacebook : Meta Faces Legal Action Over Claims of Accessing All WhatsApp User MessagesLinkedin : Meta Faces Legal Action Over Claims of Accessing All WhatsApp User MessagesReddit : Meta Faces Legal Action Over Claims of Accessing All WhatsApp User MessagesTelegram : Meta Faces Legal Action Over Claims of Accessing All WhatsApp User MessagesWhatsApp : Meta Faces Legal Action Over Claims of Accessing All WhatsApp User MessagesEmail : Meta Faces Legal Action Over Claims of Accessing All WhatsApp User Messages
New Deepfake Phishing Attack Targets Bitcoin Users via Zoom and Teams
27
Jan
2026

New Deepfake Phishing Attack Targets Bitcoin Users via Zoom and Teams

A sophisticated deepfake-enabled phishing campaign is actively targeting Bitcoin users through fake Zoom and Microsoft Teams calls. The attackers are…

Share: X : New Deepfake Phishing Attack Targets Bitcoin Users via Zoom and TeamsFacebook : New Deepfake Phishing Attack Targets Bitcoin Users via Zoom and TeamsLinkedin : New Deepfake Phishing Attack Targets Bitcoin Users via Zoom and TeamsReddit : New Deepfake Phishing Attack Targets Bitcoin Users via Zoom and TeamsTelegram : New Deepfake Phishing Attack Targets Bitcoin Users via Zoom and TeamsWhatsApp : New Deepfake Phishing Attack Targets Bitcoin Users via Zoom and TeamsEmail : New Deepfake Phishing Attack Targets Bitcoin Users via Zoom and Teams
Hackers Exploit SEO Poisoning to Target Users Seeking Legitimate Tools
27
Jan
2026

Hackers Exploit SEO Poisoning to Target Users Seeking Legitimate Tools

Search engine optimization (SEO) poisoning techniques to trick users into downloading malicious software disguised as legitimate tools. This attack campaign…

Share: X : Hackers Exploit SEO Poisoning to Target Users Seeking Legitimate ToolsFacebook : Hackers Exploit SEO Poisoning to Target Users Seeking Legitimate ToolsLinkedin : Hackers Exploit SEO Poisoning to Target Users Seeking Legitimate ToolsReddit : Hackers Exploit SEO Poisoning to Target Users Seeking Legitimate ToolsTelegram : Hackers Exploit SEO Poisoning to Target Users Seeking Legitimate ToolsWhatsApp : Hackers Exploit SEO Poisoning to Target Users Seeking Legitimate ToolsEmail : Hackers Exploit SEO Poisoning to Target Users Seeking Legitimate Tools
Attackers Exploit React2Shell Vulnerability to Target IT Sector Systems
27
Jan
2026

Attackers Exploit React2Shell Vulnerability to Target IT Sector Systems

Active exploitation of a critical vulnerability in React Server Components, tracked as CVE‑2025‑55182 (React2Shell), targeting companies across multiple industry sectors…

Share: X : Attackers Exploit React2Shell Vulnerability to Target IT Sector SystemsFacebook : Attackers Exploit React2Shell Vulnerability to Target IT Sector SystemsLinkedin : Attackers Exploit React2Shell Vulnerability to Target IT Sector SystemsReddit : Attackers Exploit React2Shell Vulnerability to Target IT Sector SystemsTelegram : Attackers Exploit React2Shell Vulnerability to Target IT Sector SystemsWhatsApp : Attackers Exploit React2Shell Vulnerability to Target IT Sector SystemsEmail : Attackers Exploit React2Shell Vulnerability to Target IT Sector Systems
Over 6,000 SmarterMail Servers Exposed to Actively Exploited RCE Vulnerability
27
Jan
2026

Over 6,000 SmarterMail Servers Exposed to Actively Exploited RCE Vulnerability

Approximately 6,000 vulnerable SmarterTools SmarterMail installations globally are all exposed to an actively exploited remote code execution vulnerability. The vulnerability,…

Share: X : Over 6,000 SmarterMail Servers Exposed to Actively Exploited RCE VulnerabilityFacebook : Over 6,000 SmarterMail Servers Exposed to Actively Exploited RCE VulnerabilityLinkedin : Over 6,000 SmarterMail Servers Exposed to Actively Exploited RCE VulnerabilityReddit : Over 6,000 SmarterMail Servers Exposed to Actively Exploited RCE VulnerabilityTelegram : Over 6,000 SmarterMail Servers Exposed to Actively Exploited RCE VulnerabilityWhatsApp : Over 6,000 SmarterMail Servers Exposed to Actively Exploited RCE VulnerabilityEmail : Over 6,000 SmarterMail Servers Exposed to Actively Exploited RCE Vulnerability