ExpressVPN Flaw Exposes DNS Requests to Third-Party Server
Customers of ExpressVPN have been notified of a vulnerability in the most recent version of the Windows app that permitted some DNS requests to be…
Category: GBHackers
Chinese Websites Posing as Local News Outlets
A network of at least 123 websites based in the People’s Republic of China that posed as local news outlets in 30 countries across Europe,…
New Android MoqHao Malware Executes Automatically Installation
The Roaming Mantis threat group distributes a well-known Android malware family called “MoqHao.” This malware family has been previously reported to be targeting Asian countries…
U.S. Offers $10 Million Reward for Info on Hive Ransomware
The United States State Department has recently revealed a $10 million reward for any valuable information that could lead to the detection or whereabouts of…
Researchers Use Raspberry Pi Pico to Crack BitLocker
BitLocker is a computer program provided by Microsoft that users can use to encrypt their entire volumes, preventing unauthorized access in case of device theft.…
Critical Cisco Expressway Flaw Let Remote Execute Arbitrary Code
Cisco released patches to address multiple vulnerabilities in the Cisco Expressway Series that might allow an attacker to do arbitrary operations on a vulnerable device.…
Beware of Facebook Ads That Delivers Password-Stealing Malware
A new malware called Ov3r_Stealer was found to be intended for stealing cryptocurrency wallets and passwords and then sending them to a Telegram channel that the threat…
Over 28,000 Ivanti Instances Exposed to Internet
Ivanti has disclosed two new zero-day vulnerabilities assigned with CVE-2024-21888 and CVE-2024-21893 in the products Ivanti Connect Secure and Ivanti Policy Secure. The vulnerability (CVE-2024-2188)…
INTERPOL Uncovers 1,300+ Servers Used as Launchpads
A recent massive operation by INTERPOL, which happens to be the biggest international police organization in the world, has successfully targeted the underlying infrastructure behind…
TeamCity Authentication Bypass Flaw to Gain Admin Control
A critical security vulnerability was detected in TeamCity On-Premises, tagged as CVE-2024-23917, with a CVSS score of 9.8. An unauthenticated attacker with HTTP(S) access to a…
DiceLoader Malware Used to Attack Corporate Business
An intrusion set called FIN7 has been known to be operating since 2015 and is composed of Russian-speaking members. This threat group also pretends to…
How to Extract Malware Configurations in a Sandbox
Indicators of Compromise (IOCs) are the fuel that powers our cybersecurity defenses and keeps them effective. The most sought-after source of these indicators is malware…