Russian National Arrested for Laundering Crypto Payments
Argentine authorities have arrested a Russian national accused of laundering cryptocurrency payments linked to the notorious North Korean Lazarus Group. The operation, led by the…
Category: GBHackers
Dell Power Manager Privilege Escalation Vulnerability
Dell Technologies has issued a critical security update for its Dell Power Manager software following the discovery of a significant vulnerability that could allow attackers…
Progress WhatsUp Gold Vulnerabilities – Attackers Inject SQL Commands
The Progress WhatsUp Gold team confirmed the existence of critical vulnerabilities in all versions of their software released before 2024.0.0. If exploited, these vulnerabilities could…
Chrome Zero-day Vulnerability Actively Exploited in the Wild
Google has announced the release of Chrome 128 to the stable channel for Windows, Mac, and Linux. This update, Chrome 128.0.6613.84 for Linux and 128.0.6613.84/.85…
INE Security Launches Initiatives to Invest in the Education of Aspiring Cybersecurity Professionals
INE Security, a global cybersecurity training and certification provider, recently launched initiatives with several higher education institutions in an ongoing campaign to invest in the…
PG_MEM – A Malware Hide in Postgres Processes to Steal Data
Cybersecurity researchers at Aqua Nautilus have uncovered a new malware named PG_MEM that targets PostgreSQL databases. This sophisticated malware employs brute force attacks to gain…
Log4j Vulnerability Exploited Again To Deploy Crypto-Mining Malware
Recent attacks exploit the Log4j vulnerability (Log4Shell) by sending obfuscated LDAP requests to trigger malicious script execution, which establishes persistence, gathers system information, and exfiltrates…
The Steep Cost of Neglecting Cybersecurity Training
In modern business, cybersecurity is not merely a technical concern but a crucial financial safeguard. With cyber threats growing in sophistication and frequency, the financial…
Developers Beware! Fake Job Offers from Legitimate Github Address
A new phishing campaign is targeting developers by exploiting GitHub’s legitimate infrastructure. This sophisticated attack involves fake job offers sent from genuine GitHub email addresses,…
Critical Flaw in LiteSpeed Cache WordPress Plugin Expose Websites
The Researcher team has identified and patched a critical privilege escalation vulnerability in the LiteSpeed Cache plugin. This plugin, installed on over 5 million WordPress…
Backdoor MIFARE Smart Cards Exposes User-Defined Keys On Cards
Researchers analyze the security of MIFARE Classic cards, focusing exclusively on card-only attacks. They uncover multiple new attack vectors by examining the CRYPTO-1 algorithm, existing…
MegaMedusa, Highly Scalable Web DDoS Attack Tool Used By Hacker Groups
RipperSec, a pro-Palestinian, pro-Muslim Malaysian hacktivist group, has rapidly grown since its Telegram inception in June 2023. Leveraging a community of over 2,000 members, they…