Category: GBHackers On Security

Read the original article: Most Important Web Server Penetration Testing Checklist Web server pentesting performing under 3 major category which is identity, Analyse, Report Vulnerabilities such as authentication weakness, configuration errors, protocol Relation vulnerabilities.  1.  “Conduct a serial of methodical…

Read more →

Read the original article: APT Hackers Using Malicious Autodesk 3ds Max Software Plugin to Hack Architecture Firm Systems Recently, the APT hackers exploited a vulnerability in the conventional 3D computer graphics Autodesk software in sequence to begin a new cyber-espionage…

Read more →

Read the original article: Firefox 80.0 Released with Several Security Fixes and Performance Updates Recently, Mozilla Foundation has released Firefox 80.0 that comes with several security fixes and performance updates. But this new version didn’t offer too many exciting features;…

Read more →

Read the original article: CWE Top 25 – Mitre Released Top 25 Most Dangerous Software Bugs Recently, Mitre released the top 25 most dangerous software bugs 2020; this list is a definitive list of the most popular and impactful issues…

Read more →

Read the original article: Most Important Security Tools and Resources For Security Researchers and Malware Analyst Security Professionals always need to learn many tools, techniques, and concepts to analyze sophisticated Threats and current cyber attacks. Here we are going to…

Read more →

Read the original article: Operating Systems Can be Detected Using Ping Command Operating Systems can be detected using Ping Command, Ping is a computer network administration software utility, which used to find the Availability of a host on an Internet…

Read more →

Read the original article: A Complete Guide to Perform External Penetration Testing on Your Client Network | Step-by-Step Methods This write-up walks us through one of my many journeys in my external penetration testing and how I compromised the organization…

Read more →

Read the original article: Former Uber CISO Joseph Sullivan Charged for Helping Hackers for 2016 UBER Hack Recently, the former security chief of Uber, Joseph Sullivan, was Charged for helping hackers for the 2016 UBER hack. He has been charged…

Read more →

Read the original article: Alert!! Critical Bugs in Cisco Products Let Hackers Execute Arbitrary Code to Gain Admin Access Recently, Cisco has released several security updates to address and fix different vulnerabilities in multiple Cisco products. All these vulnerabilities allow…

Read more →

Read the original article: New Jenkins Vulnerability Let Hackers Steal Sensitive Information By Obtain HTTP Response Headers Recently, the security experts have detected a new vulnerability in Jenkins Server that was termed as CVE-2019-17638. This vulnerability could occur in memory…

Read more →

Read the original article: Kali Linux 2020.3 Released with New Bluetooth Arsenal, Shells and Updated Tools Icons – Download Now!! Offensive security Released Kali Linux 2020.3 along with a new Bluetooth Arsenal shell and updated tools icons and more. This…

Read more →

Read the original article: Kali Linux 2020.3 Released with New Bluetooth Arsenal, Shells and Updated Tools Offensive security Released Kali Linux 2020.3 along with a new Bluetooth Arsenal shell and updated tools icons and more. This new release has several…

Read more →

Read the original article: EmoCrash – Researchers Exploited a Bug in Emotet Malware to Stop its Distribution EmoCrash: Recently, the cybersecurity researchers have detected and exploited a bug with infamous Emotet malware to stop its distribution. Emotet is one of…

Read more →

Read the original article: U.S Gov Warns that Hackers Using Phishing Emails Used to Deploy KONNI Malware using Weaponized Word Documents U.S CISA recently noticed that hackers using Phishing Emails to deploy KONNNI malware with the help of weaponized Microsoft…

Read more →

Read the original article: Parrot Security OS 4.10 Released Metasploit 6.0 and Updates for Hacking Tools Parrot security has announced the release of Parrot Security OS 4.10, which makes the distribution more reliable and more secure. The Parrot Security Operating…

Read more →

Read the original article: 10 Best Free Password Manager to Secure Your Password For 2020 Free Password Manager always helps to make Strong passwords to protect your devices, online banking accounts and other data sources from unauthorized access. In this…

Read more →

Read the original article: NSA Revealed A Russian APT28 Hackers Made Previously Undisclosed Stealthy “Drovorub” Linux Malware Recently, NSA, along with FBI, has revealed a Russian APT28 Linux malware named “Drovorub.” The experts asserted that this malware is managed by…

Read more →

Read the original article: Security Information and Event Management (SIEM) – A Detailed Explanation SIEM software products and services combine security information management (SIM) and security event management (SEM). They provide real-time analysis of security alerts generated by network hardware…

Read more →

Read the original article: Critical Code Execution Flaws With Adobe Acrobat and Reader – Update Now!! Adobe has released updates that fix twenty-six vulnerabilities in the Adobe Acrobat, Reader, and Lightroom products. Out of 26 flaws, 11 are rated as…

Read more →

Read the original article: Citrix Warns That Hackers May Exploit the New Patched Flaw Quickly Citrix released an update covering multiple vulnerabilities in Citrix Endpoint Management (CEM) also referred to as XenMobile. Chaining the vulnerabilities allows an unauthenticated remote attacker…

Read more →

Read the original article: Citrix Warns That Hackers May Exploit the New Patched Flaw Quickly Citrix released an update covering multiple vulnerabilities in Citrix Endpoint Management (CEM) also referred to as XenMobile. Chaining the vulnerabilities allows an unauthenticated remote attacker…

Read more →

Read the original article: Critical Code Execution Flaws With Adobe Acrobat and Reader – Update Now!! Adobe has released updates that fix twenty-six vulnerabilities in the Adobe Acrobat, Reader, and Lightroom products. Out of 26 flaws, 11 are rated as…

Read more →

Read the original article: Hacking Zoom – Researchers Discovered Multiple Security Vulnerabilities in Zoom Zoom is the popular video conferencing app that grew rapidly and it has more than 200M by the mid-2020. The popularity of the app made it…

Read more →

Read the original article: Hackers Abuse Microsoft Teams Updater to Install Malware Using Living off the Land Technique A new flaw with Microsoft Teams Updater allows attackers to install and run malware from a remote location Using Living off the…

Read more →

Read the original article: Black Hat USA 2020: Dangerous Wi-Fi KrØØk Vulnerability Affected More wi-fi chipset Than Previously Disclosed The security researchers have recently detected that small Qualcomm and MediaTek Wi-Fi chips are vulnerable to the latest variants of the…

Read more →

Read the original article: Reddit Massive Hack – Multiple Subreddits Compromised Posting pro-Trump Messages Reddit suffered a massive hack, multiple subreddits have been defaced during the last 24 hours, and the attackers posted messages supporting Donald Trump’s reelection campaign. Reddit…

Read more →

Read the original article: A Complete Malware Analysis Tutorials, Cheatsheet & Tools list for Security Professionals Analyzing the malware to breakdown its function and infection routine is a kind of tough job. here we describing the complete Malware Analysis Tutorials,…

Read more →

Read the original article: TOP 11 Deep Web Search Engine Alternative for Google and Bing 2020 Deep Web Search Engine is an alternative search engine when we need to search something, then Google or Bing will the first choice hit…

Read more →

Read the original article: EtherOops – A New Attack Let Hackers Exploit a Bug in Ethernet Cables to Bypass Firewall and NATs Researchers unveiled a very new method that helps to exploit a vulnerability in Ethernet cables to bypass firewalls…

Read more →

Read the original article: Lesser-Known Ways to Improve Your Website Security From Cyber Attacks In many cases, the simplest solutions are the best ones as well. However, when it comes to protecting your website from unauthorized access, you may want…

Read more →

Read the original article: US GOV Exposes Chinese Espionage Malware “TAIDOOR” Secretly Used To For a Decade Recently, the U.S. government exposed Chinese surveillance malware “TAIDOOR” that are secretly used by the Chinese government for a decade. There has been…

Read more →

Read the original article: Hackers Abuse Windows Feature To Launch WastedLocker Ransomware to Evade Detection Recently one of the most dangerous ransomware, WastedLocker, owes its success to a unique bypass mechanism for security solutions and tools that block ransomware. Initially,…

Read more →

Read the original article: Macro Pack – Automatize Obfuscation and Generation of Malicious Office Documents Malware delivery trends change every day. For the last few years, we have observed various hacker groups like ( APT12 to Turla ) uses various…

Read more →

Read the original article: What is DNS Attack and How Does it Works? DNS Attack is a type of cyber attack that exploits the weakness or vulnerability in Domain name system. Today, the internet has turned into an integral part…

Read more →

Read the original article: SIEM Better Visibility for SOC Analyst to Handle an Incident with Event ID We are in the complex world where attacks are increasing day by day, so today the cyber intelligence depends on SIEM as a part…

Read more →

Read the original article: A Complete Penetration Testing & Hacking Tools List for Hackers & Security Professionals Penetration testing & Hacking Tools are more often used by security industries to test the vulnerabilities in network and applications. Here you can find…

Read more →

Read the original article: Most Important Android Penetration Testing Tools for Pentesters & Security Professionals Android security testing is more often used by security industries to test the vulnerabilities in Android applications. Here you can find the Comprehensive Android Penetration…

Read more →

Read the original article: Author Behind FastPOS Malware Pleads Guilty for Infecting PoS Systems Worldwide A 30-year-old Moldovan citizen Valerian Chiochiu (30), aka Onassis pleaded guilty for creating FastPOS malware and infecting several PoS Systems Worldwide. The FastPOS malware was…

Read more →

Read the original article: Operator Behind the Most Infamous GandCrab Ransomware Arrested in Belarus Law enforcement agencies from Great Britain and Romania Cyber division have identified one of the operators behind the infamous GandCrab Ransomware attack. The Man who has…

Read more →

Read the original article: Three Men Including 17-Yr Old “MasterMind” Charged in Connection With The Infamous Twitter Hack Prosecutors have announced charges against three individuals for their roles in the Twitter hack that occurred on July 15, 2020. The infamous…

Read more →

Read the original article: Three Men Charged in Connection with the Infamous Twitter Hack Prosecutors have announced charges against three individuals for their roles in the Twitter hack that occurred on July 15, 2020. The infamous hack affected several high-profile…

Read more →

Read the original article: Most Important Computer Forensics Tools for Hackers and Security Professionals Computer Forensics tools are more often used by security industries to test the vulnerabilities in network and applications by collecting the evidence to find an indicator…

Read more →

Read the original article: Most Important Cyber Attack Techniques that often used by Hackers The cyber attack occurs on a daily basis, and these can range from attacks on tech giants to individuals falling foul to the many scams which…

Read more →

Read the original article: BootHole Vulnerability Affects Millions of Windows and Linux Systems – Allows Attackers to Install Stealthy Malware Security researchers uncovered a new vulnerability dubbed “BootHole” present in the GRUB2 bootloader utilized by Windows and Linux systems. Attackers…

Read more →

Read the original article: Zoom Flaw Let Hackers to Crack Private Meeting Passwords A new Zoom Flaw allows hackers to crack the 6 digits numeric password that used to secure Zoom private meetings. The vulnerability was discovered by Tom Anthony,…

Read more →

Read the original article: OkCupid Vulnerabilities Let Hackers to Steal the Personal and Sensitive Data of Users OkCupid is one of the most popular dating apps that has more than 50 million registered users and used in 110 countries. The…

Read more →

Read the original article: Lazarus Hacking Groups Behind the Targeted VHD Ransomware Attacks Lazarus hacker group is known for its attack on Sony Pictures in 2014, the group is financially motivated and know to be active since 2009. The Lazarus…

Read more →

Read the original article: Ensiko – A PHP Based Web Shell with Ransomware Capabilities Attacks PHP Installation Researchers observed a new PHP web shell dubbed Ensiko with ransomware capabilities that attack PHP installed on platforms such as Linux, Windows, macOS,…

Read more →

Read the original article: CISA Warns that More than 62,000 QNAP NAS Devices Affected with QSnatch Malware CISA and NCSC warn that more than 62,000 QNAP NAS devices infected with a malware strain known as QSnatch. All QNAP NAS devices…

Read more →

Read the original article: India’s Second Digital Strike!! 47 More Chinese apps Banned for Data, Privacy Violations India has announced a ban of 47 Chinese apps which are mostly the clones of the 59 Chinese apps that banned in June.…

Read more →

Read the original article: Google adds New Security Features for Gmail, Meet and Chat – Additional Security Controls for Admins Google introduced new features for the G-Suite family of applications aimed to provide stronger security in Gmail, Meet, and Chat.…

Read more →

Read the original article: How To Perform External Black-box Penetration Testing in Organization with “ZERO” Information The objective was simple – see how susceptible the organization is from an external point of view and test the effectiveness of the security…

Read more →

Read the original article: REMnux – A Linux-based Malware Analysis Toolkit for Malware Researchers REMnux is a Linux distro for malware researchers that has a curated collection of free tools used for examining executables, documents, scripts, and other forms of…

Read more →

Read the original article: Hackers Exploited CVE-2020-3452 Flaw in Cisco ASA & FTD Within Hours After the Disclosure Cisco fixed a high-severity path traversal vulnerability CVE-2020-3452 with Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software.…

Read more →

Read the original article: Top 5 Best Adware Removal Tool to Block Annoying Ads in 2020 Adware Removal Tool is one of the most useful utilities used to block annoying ads on your favorite website and remove adware from your…

Read more →

Read the original article: Facebook Announced New Privacy and Security Feature for Messenger Facebook announced a new privacy feature that adds another layer of security to your private messages and stops people from accessing them. The new app lock feature…

Read more →

Read the original article: Hackers Accessed Direct Message Inbox of 36 High-profile Twitter Accounts Last week several high-profile Twitter accounts hacked including Biden, billionaires, and corporate accounts hacked in Bitcoin scam. The high-profile accounts were hijacked in a quick rapid…

Read more →

Read the original article: Chinese APT Group Attacks India and Hong Kong With New Variant of MgBot Malware & Android RAT Chinese state-sponsored hacking group targets India and Hong Kong with a unique phishing attack designed to convince the target.…

Read more →

Read the original article: Lazarus APT Group Uses Cross-platform Malware Framework to Launch Attack Against Corporate Entities Lazarus APT group believed to be run by the North Korean government, the group know to be active since 2009. The group is…

Read more →

Read the original article: 7 Best Security Factors to Consider When Choosing A Web Hosting To Protect Your Website Does your choice of a website hosting company impact your site’s security? The simple answer to this question is yes. There…

Read more →

Read the original article: Top 7 Vulnerability Database Sources to Trace New Vulnerabilities Vulnerability defined as the weakness that allows the attacker to enter in and harm, it may be a flaw in design or misconfiguration. In order to exploit…

Read more →

Read the original article: Top 10 Best App Locks and Privacy Lock for Android Devices in 2020 App Locks also are known as privacy lock is one of the most important privacy concerns for all mobile users. Smartphones are very…

Read more →

Read the original article: 1M e-learning Student Records Exposed Online From Misconfigured Cloud Storage More than 1 million e-learning users data exposed from a misconfigured and unencrypted Amazon S3 buckets and other types of servers. The exposed data can be…

Read more →

Read the original article: BadPower Attack – Hackers Invade a Fast Charger to Breakdown Your Device Fast Charging is a popular feature with most of the smartphones that let users charge their batteries faster than normal. The Fast Charging works…

Read more →

Read the original article: These are the Top 5 Publicly Available Hacking Tools Mostly used By Hackers Cyber Criminals are using various malicious tools for cyber-attacks based on the target’s strength to infiltrate the sensitive data and more often nowadays…

Read more →

Read the original article: OWASP top 10 Challenges 2020 – Security Risks and Vulnerabilities OWASP is an online community that deals with different security challenges and OWASP stands for the “Open Web Application Security Project.” So, while managing a website,…

Read more →

Read the original article: Emerging Mac Malware ThiefQuest Attacks macOS Devices, Encrypts Files, and Installs Keyloggers ThiefQuest is an exclusive malware for macOS, it has begun circulated on online piracy websites and digital download repositories. The malware is also known…

Read more →

Read the original article: Twitter Hack – Hackers Downloaded Account’s Information of Eight Twitter Accounts The recent sensational incident of Twitter Hack shacking the cybersecurity community unlike any other attack that Twitter has ever faced. So many top profile influential profiles were…

Read more →

Read the original article: Phishing Attack Prevention: Best 10 Ways To Prevent Email Phishing Attacks No one wants to believe they’d fall victim to phishing attacks. However, phishing attacks are on the rise and are more sophisticated than ever. There’s…

Read more →

Read the original article: Hackers Massively Scanning for SAP Recon Vulnerability Last Week SAP releases updates to fix critical security vulnerability found in the SAP NetWeaver AS JAVA (LM Configuration Wizard) versions 7.30 to 7.50. The vulnerability can be tracked…

Read more →

Read the original article: Automated Web Application Security Tool “Acunetix ” Now Available on macOS & All Major OS Acunetix, a global leader in automated web application security, is now available on macOS. Customers can now harness the full power…

Read more →

Read the original article: Iranian Threat Group Exposes 40 GBs of their Training Video and Data Files Iranian threat group ITG18 known for targeting pharmaceutical companies and the U.S. presidential campaigns. IBM referred to the group as ITG18, whereas the…

Read more →

Read the original article: ATM “black box” – A New Attack to Dispense Money from ATM Terminal Attackers have adopted a new attack method that includes connecting an external device and also contains parts of the software stack of the…

Read more →

Read the original article: A New Zoom URL Flaw Let Hackers Mimic Organization’s Invitation Link Zoom is a popular video conferencing software across the globe that are used by individuals across the globe to work from and to stay in…

Read more →

Read the original article: Critical Cisco Security Flaws Allow Complete Router Firewall Takeover Cisco patched critical vulnerabilities with Cisco Small Business that allows a remote attacker to take full control of the high-privileged account. Also fixed a privilege escalation vulnerability…

Read more →

Read the original article: Twitter Hack – Barack Obama, Joe Biden, Elon Musk, Apple, and other Twitter Accounts Hacked Several high-profile Twitter accounts hacked including Biden, billionaires, and corporate accounts hacked in Bitcoin scam. The scam appeared to be a…

Read more →

Read the original article: Microsoft Patches Critical Wormable 17-Year-old Windows DNS Server Flaw that Affects Windows Server Versions 2003 to 2019 Microsoft patched a critical 17-Year-old vulnerability with Windows DNS Server that can be triggered by an attacker with malicious…

Read more →

Read the original article: Critical SAP Recon Vulnerability Affecting Over 40,000 Customers SAP released updates for critical security vulnerability found in the SAP NetWeaver AS JAVA (LM Configuration Wizard) versions 7.30 to 7.50. The vulnerability can be tracked as CVE-2020-6287…

Read more →

Read the original article: United States Secret Service Announces the Creation of Cyber Fraud Task Force The U.S. Department of Homeland Security is merging its Electronic Crimes Task Forces (ECTFs) and Financial Crimes Task Forces (FCTFs) into a single unified…

Read more →

Read the original article: Hackers Begin Targeting VPNs as The World Moves Remote – Here’s What You Need to Know Virtual private networks are an essential tool for any business that enables workers to connect to their corporate network remotely.…

Read more →

Read the original article: Personal Details of More than 40,000 USA Citizens along With SSNS Leaked on Darkweb A new threat intelligence report shows that more than 40,000 USA citizens along with their social security numbers exposed online. According to…

Read more →

Read the original article: Popular Home Routers Affected With Multiple Critical Security Flaws According to a new report, 127 routers developed by seven different Home Routers from large vendors affected with multiple critical security flaws. The examination was done by…

Read more →

Read the original article: Hackers Actively Scanning & Constantly Attempt To Exploit Citrix ADC Vulnerabilities Recently, the Citrix published a set of 11 vulnerabilities in its most popular products that includes Citrix ADC as well, new research found that the…

Read more →

Read the original article: Is this website Safe : How to Check Website Safety to Avoid Cyber Threats Online is this website safe ? In this digital world, Check website safety is most important concern since there are countless malicious…

Read more →

Read the original article: Top 10 Best Linux Distributions In 2020 The Linux Distros is generally acknowledged as the third of the holy triplet of PC programs, simultaneously with Windows and macOS. Here we have provided you a top 10…

Read more →

Read the original article: Indian Army Asks Personnel to Removed 89 Apps Including Facebook, Instagram & Others Considering security and avoid leaking of sensitive data, the Indian Army asks personnel to remove 89 apps from their mobile phones before July…

Read more →

Read the original article: 100,000 WordPress Sites Impacted with Cross-Site Scripting(XSS) Flaw KingComposer, a WordPress plugin found installed with over 100,000 WordPress sites found vulnerable to Reflected Cross-Site Scripting. The vulnerability was found by the Wordfence security team with KingComposer…

Read more →

Read the original article: Zoom 0day Vulnerability Let Remote Attacker to Execute Arbitrary Code on Victim’s Computer A new remote code execution “0day” flaw with Zoom Client for Windows allows remote attackers to execute arbitrary code on Windows computer where…

Read more →

Read the original article: How to Protect Your Smart Home from IoT Threats? Our world is increasingly becoming digital as we are moving towards a society that is interconnected through a web of internet-enabled devices. We call this network or…

Read more →

Read the original article: Top 5 Best Dedicated Academy to Learn Ethical Hacking & Cyber Security Training Online 2020 Nowadays, hacking becomes known to everyone, as this term has been around for a great time now. Well, the very first…

Read more →

Read the original article: New Variant of Infamous Android Joker Malware Bypasses Google Play Security to Attack Users The Joker malware detected in early June 2019, it employs several tactics to bypass GooglePlay protection and to perform several malicious activities.…

Read more →

Read the original article: Beware!! 15 Billion Stolen Username & Passwords for Sale On the Dark Web New research indicates that more than 15 billion username and passwords are circulated on the dark web. This exposed credentials would result in…

Read more →

Read the original article: Critical Bugs with Citrix Allow Unauthenticated Code Injection, Privilege Escalation DoS & Data Theft Citrix patched 11 security flaws with Citrix ADC, Citrix Gateway, and Citrix SD-WAN WANOP edition. Out of that four bugs can be…

Read more →

Read the original article: Cerberus Android Banking Malware Mimic as Currency Converter App Found on Google Play Cerberus Android banking malware found on Google play targeting Android users, particularly in Spain. Cerberus spotted first in the year 2019, it is…

Read more →

Read the original article: Project Freta – New Free Microsoft Forensic Tool to Detect Malware & Rootkits in Linux Systems Microsoft launched a new Forensic tool dubbed Project Freta that helps the organization in discovering the undetected malware. Project Freta…

Read more →

Read the original article: Android Devices Infected with Undeletable Adware that Sits on System Partition Researchers observed that 14.8% of all Android users attacked by malware or adware still have infection left in the system partition. The problem is because…

Read more →

Read the original article: Most Important Network Penetration Testing Checklist Network Penetration Testing determines vulnerabilities in the network posture by discovering Open ports, Troubleshooting live systems, services and grabbing system banners. The pen-testing helps administrator to close unused ports, additional services,…

Read more →

Read the original article: North Korean State-Sponsored Hackers Inserted Malicious Code to Online Stores that Steals Buyers Payment Card Data A new report indicates that the web skimming attacks on popular US and European online stores linked with North Korean…

Read more →

Read the original article: Behave – A New Browser Extension to Find web sites that Perform Browser-Based Port Scans or Attack A new browser extension published dubbed Behave! that warns the user if the website tries to perform a port…

Read more →

Read the original article: 10 Best Vulnerability Scanning Tools For Penetration Testing – 2020 A Vulnerability Scanning Tools is one of the essential tools in IT departments Since vulnerabilities pop up every day and thus leaving a loophole for the…

Read more →