Category: GBHackers On Security

Read the original article: Hackers Abuse Excel 4.0 Macros to Deliver Malware such as ZLoader & Quakbot

Read more →

Read the original article: 10 Best Free Firewall Software 2021 to Protect Your Network In this article, we have done the depth analysis and list you top 10 best Free Fir […]Content was cut in order to protect the source.Please…

Read more →

Read the original article: Linux kernel Bug Let Attackers Insert Malicious Code Into The Kernel Address Space The cybersecurity researchers have detected that the Linux […]Content was cut in order to protect the source.Please visit the source for the rest…

Read more →

Read the original article: Emotet Malware Uninstalls Itself From All The Infected Computers World Wide In January, the FBI, along with other law enforcement agencies around […]Content was cut in order to protect the source.Please visit the source for the…

Read more →

Read the original article: Hackers Using Prometei Botnet to Exploiting Microsoft Exchange Vulnerabilities Researchers from Cybereason has recently announced the discovery o […]Content was cut in order to protect the source.Please visit the source for the rest of the article.…

Read more →

Read the original article: Ransomware Strain Qlocker Targeting QNAP NAS Flaws – Patch It! The cyber […]Content was cut in order to protect the source.Please visit the source for the rest of the article. Read the original article: Ransomware Strain…

Read more →

Read the original article: BigBasket Data Leak – Over 20 Million Personal Records Published on Hacking Forum More than 20 million BigBasket users’ data we […]Content was cut in order to protect the source.Please visit the source for the rest…

Read more →

Read the original article: ToxicEye RAT Uses Telegram to Steal Data from Victims and Perform Malicious Activities Cybersecurity researchers have recently detected several atta […]Content was cut in order to protect the source.Please visit the source for the rest of…

Read more →

Read the original article: Web Application Attacks – Types, Impact & Mitigation – Part-1 With this article, we list some of the common web application attacks, impacts, and possible mitigation. In par […]Content was cut in order to protect the…

Read more →

Read the original article: Web Application Attacks – Types, Impact & Mitigation – Part-2 With this article, we list some of the common web application attacks, impacts, and possible mitigation. In part -2 we are cov […]Content was cut in…

Read more →

Read the original article: Web Application Attacks – Types, Impact & Mitigation – Part-3 With this article, we list some of the common web application attacks, impacts, and possible mitigation. In part -3 we […]Content was cut in order to…

Read more →

Read the original article: Web Application Attacks – Types, Impact & Mitigation – Part-4 With this article, we list some of the common web application attacks, impacts, and possible mitig […]Content was cut in order to protect the source.Please visit…

Read more →

Read the original article: Shodan and Censys: Finding Hidden Parts On the Internet With Special Search Engines

Read more →

Read the original article: QR Codes Popularity May Abused to Deliver Malware and Banking Heists Nowad […]Content was cut in order to protect the source.Please visit the source for the rest of the article. Read the original article: QR Codes…

Read more →

Read the original article: Google Released Chrome 90 With The Fixes Of Zero-Day Flaw – Update Your Chrome Immediately

Read more →

Read the original article: Secure Coding Practices to Ensure Application Security The security of anything developed by writing a code comes down to the precautions followed […]Content was cut in order to protect the source.Please visit the source for the…

Read more →

Read the original article: Cybersecurity Experts Predict That The Worst is Yet to Come “The Next 9/11 Will be a Cyberattack, Security Expert Warns” ~ CNBC […]Content was cut in order to protect the source.Please visit the source for the…

Read more →

Read the original article: Hackers use Pulse VPN Zero-day Flaws to Hack Defense, Government & Financial Organizations The cybersecurity research team at FireEye has […]Content was cut in order to protect the source.Please visit the source for the rest of…

Read more →

Read the original article: Malicious App in Google Play Store Hijack SMS Message Notifications to Commit Billing Fraud

Read more →

Read the original article: Mac Malware That Spreads via Xcode Projects Adapts to macOS 11 & M1-based Macs The cybersecurity re […]Content was cut in order to protect the source.Please visit the source for the rest of the article. Read…

Read more →

Read the original article: NSA Released Top 5 Vulnerabilities That Exploited by Russian Hackers to Hack US Based Networks

Read more →

Read the original article: Major BGP Leak Affects Thousand of Networks and Websites Globally Thousands of […]Content was cut in order to protect the source.Please visit the source for the rest of the article. Read the original article: Major BGP…

Read more →

Read the original article: Notorious FIN7 Hackers Group SysAdmin Sentenced to 10 Years in Prison For Hacking $3 Billion Worth Debit & Credit Cards A citizen of Uk […]Content was cut in order to protect the source.Please visit the source…

Read more →

Read the original article: A Perfect Way to Start and Strengthen Your Cyber Security Career Breaking into a cybersecurity career is no different than any other career path or profession. In fact, in some ways, we […]Content was cut in…

Read more →

Read the original article: Most Important Computer Forensics Tools for Hackers and Security Professionals Computer Forensics tools are more often used by security industries to test the vulnerabilities in network and applications by […]Content was cut in order to protect…

Read more →

Read the original article: Operation Overtrap – Hackers Attack Online Banking Users Via Bottle Exploit Kit & Banking Malware Cybersecurity experts at Trend Mi […]Content was cut in order to protect the source.Please visit the source for the rest of…

Read more →

Read the original article: Critical Zero-day Vulnerability in Desktop Window Manager (DWM) Let Attackers to Escalate Privilege The security firm […]Content was cut in order to protect the source.Please visit the source for the rest of the article. Read the…

Read more →

Read the original article: Indicator Of Attack(IoA’s) And Activities – SOC/SIEM – A Detailed Explanation

Read more →

Read the original article: Critical Microsoft Exchange Server Vulnerabilities Could Allow Hackers to Control of Enterprise Networks

Read more →

Read the original article: Yuki Chan – Automated Penetration Testing and Auditing Tool Yuki Chan is an Automated  Pen […]Content was cut in order to protect the source.Please visit the source for the rest of the article. Read the original article:…

Read more →

Read the original article: Unpatched zero-day vulnerability Affecting Current Versions of Google Chrome & Microsoft Edge Published Online

Read more →

Read the original article: Hackers Abuse Website Contact Forms To Deliver Sophisticated IcedID Malware

Read more →

Read the original article: 500,000 Huawei Users Infected with Joker Android Malware From Own Apps Store In a report,  Doctor Web’s analyst has pronounced […]Content was cut in order to protect the source.Please visit the source for the rest of…

Read more →

Read the original article: TOP 11 Deep Web Search Engine Alternative for Google and Bing 2021 Deep Web Search Engine is an alternative search engine when we need […]Content was cut in order to protect the source.Please visit the source…

Read more →

Read the original article: New Wormable Android Malware Disguised as a Netflix Tool Spreads Through WhatsApp Messages Check Point Research (CPR) team has recentl […]Content was cut in order to protect the source.Please visit the source for the rest of…

Read more →

Read the original article: New Malicious Document Builder Named “EtterSilent” Used by Top Hackers Groups

Read more →

Read the original article: Ransomware Gangs Using a new Method to Collect Ransom Payments from Victims There are many ransomware gangs in the wild, and among them, the top ones are implementing new methods to pressure more victim organizations to…

Read more →

Read the original article: Hackers Abusing GitHub Infrastructure To Mine Cryptocurrency The IT service management portal, GitHub, is actively reviewing a series of attacks, as the threat actors are rigorously abusing the infrastructure and the servers of GitHub to mine…

Read more →

Read the original article: Hackers Exploit FortiOS Vulnerabilities to Access Government and Technology Services Networks Recently, in March, the news got spread all over the internet that hackers are currently exploiting three known Fortinet FortiOS vulnerabilities. The case was initially…

Read more →

Read the original article: 7 Reasons Active Threat Monitoring is the New Business Norm Active threat monitoring can be what stands between your business and certain disaster at the hands of an attacker. As technology advances, so too do cyberattackers’…

Read more →

Read the original article: Newly Discovered “System Update” Android Malware Steals Photos, Videos & GPS Location We should always stay alert and cautious with the applications that we download and install from outside the Play Store since we can download…

Read more →

Read the original article: 533 MILLION Facebook Users Personal Data Leaked That Includes Mark Zuckerberg’s Cell Phone Number Recently, on a hacker forum, more than 533 million users’ personal data of the social network giant Facebook were leaked and published. …

Read more →

Read the original article: North Korean Hackers Use Exploits to Plant Malware on Researcher’s Computers The North Korean hackers have once again used fake Twitter and LinkedIn accounts to target users from the cybersecurity field. Recently, cybersecurity researchers have identified…

Read more →

Read the original article: Google’s Pixel & Apple’s iPhone Track & Transmit Telemetry Data, Despite The User Explicitly Opting Out – New Report The data and the information of the users obtained by both Google on Android smartphones and Apple…

Read more →

Read the original article: Ransomware Attack Has Infected IT Systems at Schools Across London One of the largest trust in London schools, The Harris Federation, has been attacked recently by ransomware operators.  This cyberattack has shut down the IT systems,…

Read more →

Read the original article: Web Application Pentesting with Manual SQL Injection – Integer Based Today we will perform manual SQL injection with integer based method for the MySQL database. I hope the last article on error based string injection is…

Read more →

Read the original article: SolarWinds Hackers Accessed Emails of US Department of Homeland Security (DHS) Officials Recently, the Homeland security officials (DHS) of the US department came to the list of the victim of the SolarWinds attack. However, the  DHS…

Read more →

Read the original article: Flaws with Ovarro’s TBox Remote Terminal Units Opens Industrial Systems For Remote Attacks Recently, on March 23, the United States Computer Emergency Readiness Team (US-CERT) has proclaimed that in “Ovarro TBox” several vulnerabilities have been detected.…

Read more →

Read the original article: 204 Fleeceware Apps Generated over $400 million in Revenue on the Apple App Store and Google Play Store The cybersecurity researchers at Avast have recently found a total of 204 Fleeceware apps with a billion downloads…

Read more →

Read the original article: Critical “Netmask” npm Package Flaw Affects Hundreds of Thousands of Applications Cybersecurity researchers Victor Viale, Sick Codes, Nick Sahler, Kelly Kaoudis, and John Jackson have recently detected a severe networking vulnerability in the Netmask npm package.…

Read more →

Read the original article: Most Important Android Penetration Testing Tools for Pentesters & Security Professionals Android security testing is more often used by security industries to test the vulnerabilities in Android applications. Here you can find the Comprehensive Android Penetration…

Read more →

Read the original article: Facebook Blocks Chinese Hackers Using Fake Person as Targeting Uyghur Activists The security experts and analysts from Facebook threat intelligence team has recently worked together to detect and stop a huge range of threat. The threat…

Read more →

Read the original article: Brother and Sister Pleads Guilty for Stealing & Selling Hundreds of Laptops from University There is news regarding a brother and sister all over the internet, and the news is about theft. Both brother and sister…

Read more →

Read the original article: Purple Fox Malware Propagates as Worms Attacking Windows Machines Recently, cybersecurity researchers have asserted that they have detected a botnet that is continuously targeting Windows devices that are rapidly growing in size. According to the experts,…

Read more →

Read the original article: Google Warns of a New Android Zero-Day Vulnerability Is Under Active Attack Google has recently acknowledged about the threat actors who are using Qualcomm chipset as their weapon to launch different targeted attacks. Google warns everyone…

Read more →

Read the original article: Spear Phishing is the Next Big Challenge for CISOs Phishing, which started off as Nigerian Prince scams in the 1990s, has become a common attack vector ever since. As though phishing wasn’t enough of a cybersecurity…

Read more →

Read the original article: RCE Flaw in Apache OFBiz Allowed An Attackers to Take Over The ERP System The developers at Apache Software Foundation have recently fixed a critical RCE flaw (CVE-2021-26295) in Apache OFBiz. This flaw could allow an…

Read more →

Read the original article: A Complete Guide to Perform External Penetration Testing on Your Client Network | Step-by-Step Methods This write-up walks us through one of my many journeys in my external penetration testing and how I compromised the organization…

Read more →

Read the original article: A New Sophisticated Office 365 Phishing Scam Targets Employees of Insurance & Financial Departments Security analysts at Area 1 Security have recently discovered a new sophisticated Office 365 phishing scam that is targeting the execs of…

Read more →

Read the original article: CopperStealer Malware Attacks Facebook and Instagram Business Accounts The cybersecurity researchers at Proofpoint have recently issued all the details regarding a new undocumented malware, which is dubbed as “CopperStealer.” According to the report, the threat actors…

Read more →

Read the original article: macOS malware Targets XcodeSpy Targets Xcode Developers with EggShell Backdoor Recently, the cybersecurity researchers have detected a new malware that is targeting the Xcode developers by adopting the platform’s scripting abilities so that it can install…

Read more →

Read the original article: Chinese Hackers Attacking Telecommunications Industry to Steal 5G Secrets The threat actors from China are now targeting the telecommunications organizations of Southeast Asia, Germany, Europe, the United States, India, and Vietnam. The main motive of the…

Read more →

Read the original article: How to Prevent wp-vcd malware Attacks on Your Website? If your WordPress security plugin is flagging your website with a message Backdoor: PHP/wp-vcd.5473 – malicious code; it is possible that your website is infected with wp-vcd…

Read more →

Read the original article: MuddyWater Hacker Group Utilize Legitimate File-Sharing Service to Distribute Malware In recent surveillance, a campaign has been witnessed by security researchers, the campaign is targeting companies in the Middle East and nearby regions. According to the…

Read more →

Read the original article: Microsoft Released a one-click Exchange Mitigation Tool to Mitigate Recently Disclosed ProxyLogon Vulnerabilities Microsoft has released a new, one-click mitigation tool, Microsoft Exchange On-Premises Mitigation Tool to allow customers to immediately address the vulnerabilities exploited in…

Read more →

Read the original article: Netgear JGS516PE Ethernet Switch Flaws let Attackers Execute Remote Code Recently, Netgear has published security updates to inscribe 15 severe vulnerabilities in its JGS516PE Ethernet switch. These flaws involve an unauthenticated remote code execution vulnerability which…

Read more →

Read the original article: Police Cracked Encrypted Messaging Platform led to Hundreds of Arrests Europol has recently arrested 78 people, among which 48 people are from Belgium and 30 from the Netherlands in an operation against several organized crime groups…

Read more →

Read the original article: Google Fixed yet Another Actively Exploited zero-day Vulnerability in the Chrome Browser Once again Google has fixed another Zero-day vulnerability in the Chrome browser, and this is the second vulnerability that has been recently fixed by…

Read more →

Read the original article: Researchers Found RedXOR Malware Linked to Chinese Hackers Security researchers at Intezer have recently discovered malware that has been continuously targeting Linux endpoints and servers. Apart from this, the malware that has been detected by the…

Read more →

Read the original article: Malware Dropper Found in 9 Malicious Android Apps on the Official Google Play store The new investigation of the cybersecurity firm Check Point Research (CPR), a malware dropper has been spreading through nine malicious apps on…

Read more →

Read the original article: Iranian Hackers Uses ScreenConnect Remote Access Tool to Target Government Agencies Recently, the Anomali Threat Research team has detected a campaign that has been targeting only government offices located in the United Arab Emirates (UAE). According…

Read more →

Read the original article: New Crypto-Miner Campaign Targets QNAP NAS Devices via the Unauthorized RCE Vulnerability The 360Netlab Threat Detection System reported attacks targeting the widely used QNAP NAS devices through the unauthorized remote command execution vulnerability (CVE-2020-2506 & CVE-2020-2507),…

Read more →

Read the original article: Russian Hackers Exploited Lithuanian Infrastructure to Launch Cyber-attacks Russia-linked APT groups leveraged the Lithuanian nation’s technology infrastructure to launch cyber-attacks against targets worldwide. A report by Lithuania’s intelligence service says  “Hacker groups linked to Russian intelligence…

Read more →

Read the original article: Linux Kernel Vulnerability that Allows Local Attackers to Escalate Privileges The Security Researcher Alexander Popov found vulnerabilities in the kernel of Linux operating systems that could allow an attacker to escalate local privileges on a victim’s…

Read more →

Read the original article: GoldMax, GoldFinder, and Sibot, are the 3 new Malwares Used by SolarWinds Hackers Microsoft continues its analysis and work with partners and customers to gather more information about the threat actor behind Solarwinds supply chain act…

Read more →

Read the original article: Attackers Utilized Weaponized Microsoft Office Documents to Deliver ObliqueRAT The Trojan in the ObliqueRAT campaigns are now being disguised in benign image files on hijacked websites. RAT stands for Remote Access Trojan.  Remote Access Trojan (RAT) is…

Read more →

Read the original article: New Ursnif Banking Malware Campaign Steals Credit Card, Banking, and Payment Information Avast Threat Labs researchers obtained information on possible victims of Ursnif malware. Ursnif is a banking trojan and a variant of the Gozi malware…

Read more →

Read the original article: Connections Between Four of 2020’s Biggest Ransomware Strains Found Chainalysis is a blockchain analysis company. They provide data, software, services, and research to government agencies, exchanges, financial institutions, and insurance and cybersecurity companies in over 50…

Read more →

Read the original article: Microsoft Issues Emergency Patch as Chinese Hackers Exploiting Exchange Server Flaws The Microsoft Security Response Center yesterday released several security updates for Microsoft Exchange Server. These updates were targeted at addressing vulnerabilities that have been used…

Read more →

Read the original article: Hackers Use SEO Techniques to Push Gootloader Malware Via Google The Javascript-based infection framework for the Gootkit RAT increasingly delivers a wider variety of malware, including ransomware payloads. The delivery system for the Gootkit information stealer…

Read more →

Read the original article: SolarWinds CEO Blames Intern for ‘solarwinds123’ Password Leak that Led to Biggest Cyber Attack in 2020 “solarwinds123”, the password that is believed to be the root cause of the biggest cyber hack of 2020. Top executives…

Read more →

Read the original article: Masslogger – A Campaign that Exfiltrates Passwords from Microsoft Outlook, Google Chrome, and Instant Messengers Cisco Talos discovered a campaign utilizing a variant of the Masslogger trojan designed to retrieve and exfiltrate user credentials from multiple…

Read more →

Read the original article: Lazarus hacker Group Attack Defence Industries with custom-made Malware ThreatNeedle Lazarus has now added the defence industry to its growing list of victims. Lazarus is a North Korean hacking group that has been active since 2009.…

Read more →

Read the original article: Malicious Firefox Extension that Allows Attackers to Access and Control Users’ Gmail Accounts Proofpoint Threat Research has tracked low-volume phishing campaigns targeting Tibetan organizations globally. In January and February 2021, experts observed threat actors aligned with…

Read more →

Read the original article: Researchers Find a Way to Learn What Users Type in Video Calling You are on an official video call. You share a joke with your coworker about your boss on private chat. You’ll both laugh and…

Read more →

Read the original article: New PDF Vulnerability Let Attackers Bypass the Signature Validation in PDF and Replace Content A team of researchers from the Ruhr-University Bochum in Germany has reported the attacks bypassing the signature validation in PDF. Digitally signed…

Read more →

Read the original article: NSA Tools used by Chinese APT Hackers Before it Released Online Check Point Research team revealed that the China-linked APT31 group known as Zirconium, used a tool dubbed Jian, which is a replica of NSA Equation…

Read more →

Read the original article: Kroger Data Breach – Hackers Stole Files that Shared Through Secure File Transfer Service The Kroger Company is the United States’ largest supermarket by revenue and the second-largest general retailer. Kroger operates almost 2,750 supermarkets in…

Read more →

Read the original article: Hackers Abuse Google Alerts to Promote a Fake Adobe Flash Player Update that Installs Malware Google Alerts is a content change detection and notification service, offered by the search engine company Google. The service sends emails…

Read more →

Read the original article: Windows Registry Analysis – Tracking Every Activity That You Do on the Windows System The purpose of this article is to provide you with a depth understanding of the Windows Registry and Wealth of information it…

Read more →

Read the original article: Unpatched SHAREit Flaw Let Attackers Execute Remote Code SHAREit app is owned by Smart Media4U Technology Pte. Ltd. which is a global technology company in Singapore. SHAREit was originally made by Chinese tech giant Lenovo.  …

Read more →

Read the original article: Apple New Proxy Feature to Prevent Leaking IP Addresses to Google With the upcoming iOS 14.5 update, Apple will roll out a feature that will ensure that Google is unable to obtain the IP addresses of…

Read more →

Read the original article: 5 Considerations When Implementing A SOC Program As cyberattacks become more sophisticated than ever, establishing a security operations center (SOC) has become essential. The SOC is a central IT center from where you can coordinate your…

Read more →

Read the original article: How Web Application Security Solution Helps Businesses of any size, from all Different Industry Verticals? A web application security solution can help businesses protect their apps and website from potential cyberthreats. Businesses of all sizes, across industries and…

Read more →

Read the original article: Romance Scam Reached a Record of $304 Million Losses in 2020 The Federal Trade Commission (FTC) says people have reported losing more money on romance scams than on any other fraud type identified in Sentinel. “…

Read more →

Read the original article: Microsoft Says SolarWinds Supply Chain Attack is the Work of 1,000-plus Developers Brad Smith, Microsoft’s President, earlier this week stated that Microsoft had deep-dived into SolarWinds’ hack. The investigation into this malicious attack has revealed that…

Read more →

Read the original article: Operators Behind Egregor Ransomware Arrested by Ukrainian, French Police French and Ukrainian law enforcement agencies have joined forces to arrest several members of the Egregor ransomware operation in Ukraine. The arrest was carried out early this…

Read more →

Read the original article: Yandex Data Breach – Employee Caught Selling Access to User Accounts Yandex N.V. is a Russian Dutch-domiciled multinational corporation providing Internet-related products and services including transportation, search and information services, eCommerce, navigation, mobile applications, and online…

Read more →

Read the original article: Google Published a Research Blog About who are the People Prone to cyber-attacks via Email Earlier this week, Google had published a research blog about who are the people and regions most prone to cyber-attacks via…

Read more →

Read the original article: Antivirus Firm Exposed Internal Log data Generated by their Products EMSISOFT, Antivirus Firm revealed a data breach on one of their test systems. The company used the system to evaluate and benchmark possible solutions relating to…

Read more →