Category: GBHackers

2 Apple Zero-Day Vulnerabilities Actively Exploited in "Extremely" Sophisticated iOS Attacks
17
Apr
2025

2 Apple Zero-Day Vulnerabilities Actively Exploited in “Extremely” Sophisticated iOS Attacks

Apple has urgently rolled out iOS 18.4.1 and iPadOS 18.4.1 to patch two zero-day vulnerabilities that were actively exploited in…

Share: X : 2 Apple Zero-Day Vulnerabilities Actively Exploited in “Extremely” Sophisticated iOS AttacksFacebook : 2 Apple Zero-Day Vulnerabilities Actively Exploited in “Extremely” Sophisticated iOS AttacksLinkedin : 2 Apple Zero-Day Vulnerabilities Actively Exploited in “Extremely” Sophisticated iOS AttacksReddit : 2 Apple Zero-Day Vulnerabilities Actively Exploited in “Extremely” Sophisticated iOS AttacksTelegram : 2 Apple Zero-Day Vulnerabilities Actively Exploited in “Extremely” Sophisticated iOS AttacksWhatsApp : 2 Apple Zero-Day Vulnerabilities Actively Exploited in “Extremely” Sophisticated iOS AttacksEmail : 2 Apple Zero-Day Vulnerabilities Actively Exploited in “Extremely” Sophisticated iOS Attacks
Researchers Expose Medusa Ransomware Group’s Onion Site
17
Apr
2025

Researchers Expose Medusa Ransomware Group’s Onion Site

Researchers have successfully infiltrated the digital fortress of one of the most prolific ransomware groups, Medusa Locker. Known for targeting…

Share: X : Researchers Expose Medusa Ransomware Group’s Onion SiteFacebook : Researchers Expose Medusa Ransomware Group’s Onion SiteLinkedin : Researchers Expose Medusa Ransomware Group’s Onion SiteReddit : Researchers Expose Medusa Ransomware Group’s Onion SiteTelegram : Researchers Expose Medusa Ransomware Group’s Onion SiteWhatsApp : Researchers Expose Medusa Ransomware Group’s Onion SiteEmail : Researchers Expose Medusa Ransomware Group’s Onion Site
Windows Task Scheduler Vulnerabilities Allow Attackers Gain Admin Account Control
16
Apr
2025

Windows Task Scheduler Vulnerabilities Allow Attackers Gain Admin Account Control

New vulnerabilities in Windows Task Scheduler’s schtasks.exe let attackers bypass UAC, alter metadata, modify event logs, and evade detection. These…

Share: X : Windows Task Scheduler Vulnerabilities Allow Attackers Gain Admin Account ControlFacebook : Windows Task Scheduler Vulnerabilities Allow Attackers Gain Admin Account ControlLinkedin : Windows Task Scheduler Vulnerabilities Allow Attackers Gain Admin Account ControlReddit : Windows Task Scheduler Vulnerabilities Allow Attackers Gain Admin Account ControlTelegram : Windows Task Scheduler Vulnerabilities Allow Attackers Gain Admin Account ControlWhatsApp : Windows Task Scheduler Vulnerabilities Allow Attackers Gain Admin Account ControlEmail : Windows Task Scheduler Vulnerabilities Allow Attackers Gain Admin Account Control
CISA Extend Funding to MITRE to Keep CVE Program Running
16
Apr
2025

CISA Extend Funding to MITRE to Keep CVE Program Running

The Cybersecurity and Infrastructure Security Agency (CISA) has extended funding to the MITRE Corporation, ensuring the continued operation of the…

Share: X : CISA Extend Funding to MITRE to Keep CVE Program RunningFacebook : CISA Extend Funding to MITRE to Keep CVE Program RunningLinkedin : CISA Extend Funding to MITRE to Keep CVE Program RunningReddit : CISA Extend Funding to MITRE to Keep CVE Program RunningTelegram : CISA Extend Funding to MITRE to Keep CVE Program RunningWhatsApp : CISA Extend Funding to MITRE to Keep CVE Program RunningEmail : CISA Extend Funding to MITRE to Keep CVE Program Running
Interlock Ransomware Uses Multi-Stage Attack Through Legitimate Websites to Deliver Malicious Browser Updates
16
Apr
2025

Interlock Ransomware Uses Multi-Stage Attack Through Legitimate Websites to Deliver Malicious Browser Updates

The Interlock ransomware intrusion set has escalated its operations across North America and Europe with sophisticated techniques. Not falling under…

Share: X : Interlock Ransomware Uses Multi-Stage Attack Through Legitimate Websites to Deliver Malicious Browser UpdatesFacebook : Interlock Ransomware Uses Multi-Stage Attack Through Legitimate Websites to Deliver Malicious Browser UpdatesLinkedin : Interlock Ransomware Uses Multi-Stage Attack Through Legitimate Websites to Deliver Malicious Browser UpdatesReddit : Interlock Ransomware Uses Multi-Stage Attack Through Legitimate Websites to Deliver Malicious Browser UpdatesTelegram : Interlock Ransomware Uses Multi-Stage Attack Through Legitimate Websites to Deliver Malicious Browser UpdatesWhatsApp : Interlock Ransomware Uses Multi-Stage Attack Through Legitimate Websites to Deliver Malicious Browser UpdatesEmail : Interlock Ransomware Uses Multi-Stage Attack Through Legitimate Websites to Deliver Malicious Browser Updates
Windows NTLM Vulnerability Actively Exploit in the Wild to Hack Systems
16
Apr
2025

Windows NTLM Vulnerability Actively Exploit in the Wild to Hack Systems

A critical vulnerability in Microsoft Windows, identified as CVE-2025-24054, has been actively exploited in the wild since March 19, 2025,…

Share: X : Windows NTLM Vulnerability Actively Exploit in the Wild to Hack SystemsFacebook : Windows NTLM Vulnerability Actively Exploit in the Wild to Hack SystemsLinkedin : Windows NTLM Vulnerability Actively Exploit in the Wild to Hack SystemsReddit : Windows NTLM Vulnerability Actively Exploit in the Wild to Hack SystemsTelegram : Windows NTLM Vulnerability Actively Exploit in the Wild to Hack SystemsWhatsApp : Windows NTLM Vulnerability Actively Exploit in the Wild to Hack SystemsEmail : Windows NTLM Vulnerability Actively Exploit in the Wild to Hack Systems
Beware! Online PDF Converters Tricking Users into Installing Password-Stealing Malware
16
Apr
2025

Beware! Online PDF Converters Tricking Users into Installing Password-Stealing Malware

CloudSEK’s Security Research team, a sophisticated cyberattack leveraging malicious online PDF converters has been demonstrated to target individuals and organizations…

Share: X : Beware! Online PDF Converters Tricking Users into Installing Password-Stealing MalwareFacebook : Beware! Online PDF Converters Tricking Users into Installing Password-Stealing MalwareLinkedin : Beware! Online PDF Converters Tricking Users into Installing Password-Stealing MalwareReddit : Beware! Online PDF Converters Tricking Users into Installing Password-Stealing MalwareTelegram : Beware! Online PDF Converters Tricking Users into Installing Password-Stealing MalwareWhatsApp : Beware! Online PDF Converters Tricking Users into Installing Password-Stealing MalwareEmail : Beware! Online PDF Converters Tricking Users into Installing Password-Stealing Malware
Server-Side Phishing Attacks Target Employee and Member Portals to Steal Login Credentials
16
Apr
2025

Server-Side Phishing Attacks Target Employee and Member Portals to Steal Login Credentials

Attackers have been deploying server-side phishing schemes to compromise employee and member login portals across various enterprises. This strategic shift…

Share: X : Server-Side Phishing Attacks Target Employee and Member Portals to Steal Login CredentialsFacebook : Server-Side Phishing Attacks Target Employee and Member Portals to Steal Login CredentialsLinkedin : Server-Side Phishing Attacks Target Employee and Member Portals to Steal Login CredentialsReddit : Server-Side Phishing Attacks Target Employee and Member Portals to Steal Login CredentialsTelegram : Server-Side Phishing Attacks Target Employee and Member Portals to Steal Login CredentialsWhatsApp : Server-Side Phishing Attacks Target Employee and Member Portals to Steal Login CredentialsEmail : Server-Side Phishing Attacks Target Employee and Member Portals to Steal Login Credentials
Hackers Target Investors Through Fraud Networks to Steal Financial Data
16
Apr
2025

Hackers Target Investors Through Fraud Networks to Steal Financial Data

Why Application Security is Non-Negotiable The resilience of your digital infrastructure directly impacts your ability to scale. And yet, application…

Share: X : Hackers Target Investors Through Fraud Networks to Steal Financial DataFacebook : Hackers Target Investors Through Fraud Networks to Steal Financial DataLinkedin : Hackers Target Investors Through Fraud Networks to Steal Financial DataReddit : Hackers Target Investors Through Fraud Networks to Steal Financial DataTelegram : Hackers Target Investors Through Fraud Networks to Steal Financial DataWhatsApp : Hackers Target Investors Through Fraud Networks to Steal Financial DataEmail : Hackers Target Investors Through Fraud Networks to Steal Financial Data
WhatsApp Job Offer Scam Targets Job Seekers in New Phishing Attack
16
Apr
2025

WhatsApp Job Offer Scam Targets Job Seekers in New Phishing Attack

A new form of phishing attack is making waves among job seekers, as cybercriminals exploit WhatsApp and Meta’s trusted branding…

Share: X : WhatsApp Job Offer Scam Targets Job Seekers in New Phishing AttackFacebook : WhatsApp Job Offer Scam Targets Job Seekers in New Phishing AttackLinkedin : WhatsApp Job Offer Scam Targets Job Seekers in New Phishing AttackReddit : WhatsApp Job Offer Scam Targets Job Seekers in New Phishing AttackTelegram : WhatsApp Job Offer Scam Targets Job Seekers in New Phishing AttackWhatsApp : WhatsApp Job Offer Scam Targets Job Seekers in New Phishing AttackEmail : WhatsApp Job Offer Scam Targets Job Seekers in New Phishing Attack
SquareX to Reveal Critical Data Splicing Attack at BSides SF, Exposing Major DLP Vulnerability
16
Apr
2025

SquareX to Reveal Critical Data Splicing Attack at BSides SF, Exposing Major DLP Vulnerability

SquareX researchers Jeswin Mathai and Audrey Adeline will be disclosing a new class of data exfiltration techniques at BSides San Francisco 2025. Titled “Data Splicing Attacks:…

Share: X : SquareX to Reveal Critical Data Splicing Attack at BSides SF, Exposing Major DLP VulnerabilityFacebook : SquareX to Reveal Critical Data Splicing Attack at BSides SF, Exposing Major DLP VulnerabilityLinkedin : SquareX to Reveal Critical Data Splicing Attack at BSides SF, Exposing Major DLP VulnerabilityReddit : SquareX to Reveal Critical Data Splicing Attack at BSides SF, Exposing Major DLP VulnerabilityTelegram : SquareX to Reveal Critical Data Splicing Attack at BSides SF, Exposing Major DLP VulnerabilityWhatsApp : SquareX to Reveal Critical Data Splicing Attack at BSides SF, Exposing Major DLP VulnerabilityEmail : SquareX to Reveal Critical Data Splicing Attack at BSides SF, Exposing Major DLP Vulnerability
Landmark Admin Suffers Major Breach, Exposing Data of 1.6M+ Users
16
Apr
2025

Landmark Admin Suffers Major Breach, Exposing Data of 1.6M+ Users

Landmark Admin, LLC (“Landmark”), a Texas-based third-party administrator for life insurance carriers, has confirmed that a cyberattack compromised sensitive personal…

Share: X : Landmark Admin Suffers Major Breach, Exposing Data of 1.6M+ UsersFacebook : Landmark Admin Suffers Major Breach, Exposing Data of 1.6M+ UsersLinkedin : Landmark Admin Suffers Major Breach, Exposing Data of 1.6M+ UsersReddit : Landmark Admin Suffers Major Breach, Exposing Data of 1.6M+ UsersTelegram : Landmark Admin Suffers Major Breach, Exposing Data of 1.6M+ UsersWhatsApp : Landmark Admin Suffers Major Breach, Exposing Data of 1.6M+ UsersEmail : Landmark Admin Suffers Major Breach, Exposing Data of 1.6M+ Users