Category: GBHackers

Hackers Trick macOS Users into Running Terminal Commands to Install FlexibleFerret Malware
26
Nov
2025

Hackers Trick macOS Users into Running Terminal Commands to Install FlexibleFerret Malware

North Korean-aligned threat actors are leveraging convincing fake job recruitment websites to deceive macOS users into executing malicious Terminal commands…

Hackers Use Fake “Battlefield 6” Hype to Spread Stealers and C2 Malware
26
Nov
2025

Hackers Use Fake “Battlefield 6” Hype to Spread Stealers and C2 Malware

The global gaming community is reeling after Bitdefender Labs revealed widespread malware operations exploiting the blockbuster launch of Electronic Arts’…

A Novel Exploit Leveraging URL Fragments To Deceive AI Browsers
26
Nov
2025

A Novel Exploit Leveraging URL Fragments To Deceive AI Browsers

Security researchers at Cato CTRL have uncovered HashJack. This innovative indirect prompt-injection attack hides harmful commands in the fragment portion…

Gamayun APT Exploits New MSC EvilTwin Vulnerability to Deliver Malicious Payloads
26
Nov
2025

Gamayun APT Exploits New MSC EvilTwin Vulnerability to Deliver Malicious Payloads

Water Gamayun, a Russia‑aligned advanced persistent threat (APT) group, has launched a new multi‑stage intrusion campaign that weaponizes the recently…

VSCode Marketplace Hit by Rogue Prettier Extension Delivering Anivia Stealer
25
Nov
2025

VSCode Marketplace Hit by Rogue Prettier Extension Delivering Anivia Stealer

A recently discovered malicious Visual Studio Code (VSCode) extension masquerading as the well-known “Prettier” formatter briefly infiltrated the official VSCode…

Cobalt Strike 4.12 Adds New Injection, UAC Bypasses & C2 Features
25
Nov
2025

Cobalt Strike 4.12 Adds New Injection, UAC Bypasses & C2 Features

Fortra has officially released Cobalt Strike 4.12, introducing a comprehensive suite of new features designed to enhance red team operations and…

Detego Global Launches Case Management Platform for Digital Forensics and Incident Response Teams
25
Nov
2025

Detego Global Launches Case Management Platform for Digital Forensics and Incident Response Teams

Horsham, United Kingdom, November 25th, 2025, CyberNewsWire Detego Global, the company behind the award-winning Unified Digital Forensics Platform, is proud…

Sha1-Hulud Attack Hits 800+ npm Packages and Thousands of GitHub Repos
25
Nov
2025

Sha1-Hulud Attack Hits 800+ npm Packages and Thousands of GitHub Repos

Shai-Huluda, a self-replicating npm worm named after the sandworms in Dune, had struck again. This time, the attack was devastating…

Apache Syncope Flaw Lets Attackers Access Internal Database Content
25
Nov
2025

Apache Syncope Flaw Lets Attackers Access Internal Database Content

A security vulnerability has been identified in Apache Syncope that could allow attackers to decrypt stored passwords if they gain…

Retail Finance Giant SitusAMC Hit by Breach Exposing Confidential Files
25
Nov
2025

Retail Finance Giant SitusAMC Hit by Breach Exposing Confidential Files

SitusAMC, a major player in the real estate and finance services sector, disclosed a significant data breach on November 12,…

ClickFix Attack Uses Steganography to Hide Malware in Fake Windows Security Update
25
Nov
2025

ClickFix Attack Uses Steganography to Hide Malware in Fake Windows Security Update

Cybersecurity researchers at Huntress have uncovered a sophisticated ClickFix campaign that leverages steganography to conceal malicious code within PNG images…

Critical Fluent Bit Vulnerabilities Allow Remote Attacks on Cloud Environments
25
Nov
2025

Critical Fluent Bit Vulnerabilities Allow Remote Attacks on Cloud Environments

Five newly discovered critical vulnerabilities in Fluent Bit, the open-source log processor embedded in billions of containers, are sending shockwaves…