Category: GBHackers

News Malspam Attacks AnyDesk and Microsoft Teams
15
Aug
2024

News Malspam Attacks AnyDesk and Microsoft Teams

Cybersecurity researchers have uncovered a sophisticated malspam campaign targeting unsuspecting users through email and phone calls. Attackers are leveraging popular…

Ransomware Group Added a New EDR Killer Tool to their arsenal
15
Aug
2024

Ransomware Group Added a New EDR Killer Tool to their arsenal

A ransomware group known as RansomHub has been found deploying a new tool designed to disable endpoint detection and response…

NIST Finalizes 3 Algorithms to Combat Future Quantum Cyber Threats
15
Aug
2024

NIST Finalizes 3 Algorithms to Combat Future Quantum Cyber Threats

The U.S. Department of Commerce’s National Institute of Standards and Technology (NIST) has taken a step in safeguarding digital security…

Critical Vulnerabilities in IBM QRadar- Execute Arbitrary Code
15
Aug
2024

Critical Vulnerabilities in IBM QRadar- Execute Arbitrary Code

IBM recently disclosed critical vulnerabilities affecting its QRadar Suite Software and IBM Cloud Pak for Security. These vulnerabilities, if exploited,…

0-Click Outlook RCE Vulnerability Triggered When Email is Clicked - Technical Analysis
14
Aug
2024

Face Check With Microsoft Entra Verified ID Is Now Generally Available, Microsoft

Microsoft announced that Face Check with Microsoft Entra Verified ID is now generally accessible. It is available standalone and as…

0-Click Outlook RCE Vulnerability Triggered When Email is Clicked - Technical Analysis
14
Aug
2024

Earth Baku Using Customized Tools To Maintain Persistence And Steal Data

Earth Baku, an APT actor who initially focused on the Indo-Pacific region, has grown its activities extensively since late 2022….

0-Click Outlook RCE Vulnerability Triggered When Email is Clicked - Technical Analysis
14
Aug
2024

Iranian APT42 Actors Conducting World Wide Surveillance Operations

APT42 (aka Damselfly, UNC788, CALANQUE, Charming Kitten) is a sophisticated Iranian state-sponsored cyber espionage group.  This Advanced Persistent Threat (APT)…

0-Click Outlook RCE Vulnerability Triggered When Email is Clicked - Technical Analysis
14
Aug
2024

A New Exploit That Is Bypassing LSASS Protection

In July 2022, Microsoft patched a well-known PPL bypass flaw, initially discovered by Ionescu and Forshaw.  This allowed protection circumvention…

0-Click Outlook RCE Vulnerability Triggered When Email is Clicked - Technical Analysis
14
Aug
2024

Hackers Exploited by GraphQL Vulnerabilities to Compromise Organizations

Cyberattacks have highlighted vulnerabilities in GraphQL APIs, leading to significant security breaches in various organizations. GraphQL, a query language for…

0-Click Outlook RCE Vulnerability Triggered When Email is Clicked - Technical Analysis
14
Aug
2024

Hackers Toolkit Unveiled, Comprehensive Tools For Various Cyber Attacks

Hackers always keep updating their tools and add new ones to adapt to evolving security measures, bypass defenses, and exploit…

Clickbait PDFs, An Entry point For Multiple Web Based Attacks
14
Aug
2024

0-Click Outlook RCE Vulnerability Triggered When Email is Clicked

NetSPI discovered that Microsoft Outlook is vulnerable to authenticated remote code execution (CVE-2024-21378) due to improper validation of synchronized form…

Clickbait PDFs, An Entry point For Multiple Web Based Attacks
14
Aug
2024

Dark Web Marketplace Admins Busted Following Luxury Life

Two men living a life of luxury in Florida have been charged with cyber fraud after authorities became suspicious of…