Pro-Russia Hackers Exploiting Winrar Flaw to Steal Credentials
A new phishing attack has been discovered, which uses malicious archive files to exploit the recently found WinRAR vulnerability CVE-2023-38831 using a Powershell script that…
Category: GBHackers
Phishing-as-a-Service from Strox hackers phish any brand
The ever-evolving world of cybercrime has given birth to a disturbing phenomenon – Phishing-as-a-Service (PhaaS), and one name that sends shivers down the spines of…
ToddyCat APT Hackers Exploiting Vulnerable Exchange Servers
ToddyCat, a highly skilled advanced persistent threat (APT) actor notorious for launching targeted attacks in Europe and Asia, has recently upgraded its arsenal of tools…
Adobe, Cisco IOS, Skype, WordPad, & Rapid Reset Flaws
The US cybersecurity organization CISA has updated its Known Exploited Vulnerabilities catalog to include five new security flaws that are currently being actively exploited. This…
Stayin’ Alive Hacking Teleco & Government Organizations
Threat actors target telecoms and government ministries because they house valuable data and infrastructure. Telecoms hold sensitive communication records and can disrupt essential services, while…
Juniper Networks Junos OS Flaw Let Attackers Flood the system
Three new vulnerabilities have been discovered in Junos OS: password disclosure, MAC address validation bypass, and Time-of-check Time-of-use (TOCTOU) Race Condition. The severity of these…
Google Chrome Use free in Site Isolation exploit heap corruption
The latest stable version of Google Chrome (version 118.0.5993.70) has been released for Mac and Linux. In contrast, the Windows version has been updated to…
Citrix NetScaler Flaws Leads to DoS Attack & Data Exposure
Critical vulnerabilities in Citrix NetScaler ADC and NetScaler Gateway have exposed sensitive information and a denial of service attack. A malicious cyber actor can exploit one of…
North Korean Hackers Continue Their Arsenal of Tactics
The Democratic People’s Republic of Korea continues to advance its offensive cyber program, showcasing its unwavering commitment to using cyber attacks for espionage purposes. According…
Threat Actors Abusing 404 Pages to Hide Card Stealing Malware
A new web skimming campaign has been discovered, which targets multiple organizations in the food and retail industries. This campaign was unique as it included…
Customers’ Credit Card Details Exposed
On Tuesday, Air Europa, a Spanish airline, experienced a security breach where cybercriminals gained unauthorized access to the credit card information of the airline’s customers.…
Massive DDoS Attack Leveraged Zero-Day in HTTP/2 Rapid Reset
Multiple Google services and Cloud users were allegedly the target of a unique HTTP/2-based DDoS attack. The attack used a cutting-edge method known as HTTP/2 Rapid Reset,…