Category: GBHackers

Google Wear OS Flaw Lets Any App Send Texts on Behalf of Users
29
Oct
2025

Google Wear OS Flaw Lets Any App Send Texts on Behalf of Users

A critical vulnerability discovered in Google Messages for Wear OS has exposed millions of smartwatch users to a significant security…

Sweet Security Brings Runtime-CNAPP Power to Windows
29
Oct
2025

Sweet Security Brings Runtime-CNAPP Power to Windows

Tel Aviv, Israel, October 29th, 2025, CyberNewsWire Sweet Security Brings Runtime-CNAPP Power to Windows Sweet Security, a leader in Runtime…

PureHVNC RAT Distributed via Weaponized Judicial Documents
29
Oct
2025

PureHVNC RAT Distributed via Weaponized Judicial Documents

The campaign leverages judicial document themes to distribute Hijackloader malware, which subsequently deploys PureHVNC remote access trojan (RAT)—marking the first…

Google Publishes New Guide to Help Defenders Monitor Privileged Accounts
29
Oct
2025

Google Publishes New Guide to Help Defenders Monitor Privileged Accounts

Google has released comprehensive guidance on protecting privileged accounts, recognizing that stolen credentials have become one of the most dangerous…

Russian Hackers Target Government with Stealthy “Living-Off-the-Land” Tactics
29
Oct
2025

Russian Hackers Target Government with Stealthy “Living-Off-the-Land” Tactics

Russian-linked attackers have intensified their targeting of Ukrainian organizations through sophisticated intrusions that rely heavily on legitimate Windows tools rather…

Massive 4TB EY Database Backup Found Publicly Accessible on Azure
29
Oct
2025

Massive 4TB EY Database Backup Found Publicly Accessible on Azure

A critical security vulnerability was discovered when a complete 4-terabyte SQL Server backup belonging to Ernst & Young (EY), one…

New ‘Gentlemen’ RaaS Appears on Hacking Forums, Targeting Windows, Linux and ESXi
29
Oct
2025

New ‘Gentlemen’ RaaS Appears on Hacking Forums, Targeting Windows, Linux and ESXi

Threat intelligence researchers have identified a new ransomware-as-a-service (RaaS) operation called The Gentlemen’s RaaS, being actively recruited on underground hacking…

Hackers Allegedly Leak HSBC USA Customer and Financial Information
29
Oct
2025

Hackers Allegedly Leak HSBC USA Customer and Financial Information

A threat actor has claimed responsibility for breaching HSBC USA, the American division of the global investment bank and financial…

CISA Issues Alert on Active Exploitation of Dassault Systèmes Security Flaws
29
Oct
2025

CISA Issues Alert on Active Exploitation of Dassault Systèmes Security Flaws

The Cybersecurity and Infrastructure Security Agency (CISA) has issued a critical security alert regarding two severe vulnerabilities discovered in Dassault…

Massive Tata Motors Data Leak Exposes 70+ TB of Sensitive Information
29
Oct
2025

Massive Tata Motors Data Leak Exposes 70+ TB of Sensitive Information

Tata Motors, India’s largest automaker and a major player in the global automotive industry, suffered a catastrophic data exposure that…

Docker Compose Flaw Lets Attackers Overwrite Arbitrary Files
29
Oct
2025

Docker Compose Flaw Lets Attackers Overwrite Arbitrary Files

A path traversal vulnerability discovered in Docker Compose allows attackers to write arbitrary files to host systems through specially crafted…

10 NPM Packages That Automatically Run on Install and Steal Credentials
29
Oct
2025

10 NPM Packages That Automatically Run on Install and Steal Credentials

A sophisticated supply chain attack involving ten malicious npm packages that execute automatically upon installation and deploy a comprehensive credential…