Beast
You must login to view this content
Aggregator
Qilin Ransomware Gains Momentum with Legal Assistance Option for Affiliates
1 month 1 week ago
The Qilin ransomware gang has introduced a “Call Lawyer” feature for its affiliates, announced on a Russian-speaking darknet forum. This Ransomware-as-a-Service (RaaS) enhancement provides on-demand legal assistance during extortion negotiations, leveraging the perceived authority of legal counsel to amplify pressure on victims. According to the gang’s post, affiliates can invoke Qilin’s “legal department” to offer […]
The post Qilin Ransomware Gains Momentum with Legal Assistance Option for Affiliates appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.
Aman Mishra
Beast
1 month 1 week ago
You must login to view this content
cohenido
Beast
1 month 1 week ago
You must login to view this content
cohenido
Beast
1 month 1 week ago
You must login to view this content
cohenido
Beast
1 month 1 week ago
You must login to view this content
cohenido
Beast
1 month 1 week ago
You must login to view this content
cohenido
Beast
1 month 1 week ago
You must login to view this content
cohenido
Vulnhuntr: A tool to identify remotely exploitable vulnerabilities using LLMs and static code analysis
1 month 1 week ago
Vulnhuntr: A tool to identify remotely exploitable vulnerabilities using LLMs and static code analysis
Dark Web Informer - Cyber Threat Intelligence
CVE-2025-49704 | Microsoft SharePoint code injection (EUVD-2025-20554 / Nessus ID 241554)
1 month 1 week ago
A vulnerability, which was classified as very critical, has been found in Microsoft SharePoint. This issue affects some unknown processing. The manipulation leads to code injection.
The identification of this vulnerability is CVE-2025-49704. The attack may be initiated remotely. Furthermore, there is an exploit available.
It is recommended to apply a patch to fix this issue.
vuldb.com
CVE-2025-49706 | Microsoft SharePoint Server improper authentication (EUVD-2025-20552 / Nessus ID 241554)
1 month 1 week ago
A vulnerability has been found in Microsoft SharePoint Server and classified as critical. Affected by this vulnerability is an unknown functionality. The manipulation leads to improper authentication.
This vulnerability is known as CVE-2025-49706. The attack can be launched remotely. Furthermore, there is an exploit available.
It is recommended to apply a patch to fix this issue.
vuldb.com
New Choicejacking Attack Steals Data from Phones via Public Chargers
1 month 1 week ago
Choicejacking is a new USB attack that tricks phones into sharing data at public charging stations, bypassing security prompts in milliseconds.
Waqas
В пробирке создан мини-мозг с зачатками всех отделов... и он почти научился думать
1 month 1 week ago
Шизофрения? Аутизм? Держитесь.
Hackers leak images and comments from women dating safety app Tea
1 month 1 week ago
The dating safety app Tea was hacked, leaking images, posts, and comments of thousands of users who shared anonymous “red flag” reports on men. Tea is a women-only dating safety app launched in 2023 that lets users assess and review potential partners using real-time safety tools, not matchmaking. The app has over 1.6 million members […]
Pierluigi Paganini
Joint cyber security advisory on Scattered Spider
1 month 1 week ago
Scattered Spider is a cyber criminal group that targets large organizations and their contracted information technology help desks.
Canadian Centre for Cyber Security
Qwins Ltd: Bulletproof Hosting Provider Powering Global Malware Campaigns
1 month 1 week ago
Security researchers may have discovered a reliable hosting company run by Qwins Ltd. that supports a broad range of international malware operations in a recent analysis resulting from standard follow-up on Lumma infostealer infections. Lumma, consistently ranking among the top five malware families according to platforms like abuse.ch and ANY.RUN, provided an abundant source of […]
The post Qwins Ltd: Bulletproof Hosting Provider Powering Global Malware Campaigns appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.
Aman Mishra
40 лет вы думали, что играете в Тетрис? А на самом деле — сталкиваетесь с пределами Вселенной
1 month 1 week ago
Некоторые комбинации в игре не просто сложные: они вне границ вычислимого.
Mapping Mayhem: Security’s Blind Spots in Identity Security
1 month 1 week ago
For years, primarily driven by regulatory compliance mandates, such as the Sarbanes-Oxley Act of 2002, identity and access management has been treated as a regulatory compliance exercise, rather than the security exercise it should be — and simply checking off compliance requirements leaves many organizations with a dangerous and false sense of security. This is..
The post Mapping Mayhem: Security’s Blind Spots in Identity Security appeared first on Security Boulevard.
George V. Hulme
GOLD BLADE remote DLL sideloading attack deploys RedLoader
1 month 1 week ago
Attacks surged in July 2025 after the threat group updated its process to combine malicious LNK files and a recycled WebDAV technique
mindimcdowell
Unveiling 0bj3ctivityStealer’s Execution Chain: New Capabilities and Exfiltration Techniques Exposed
1 month 1 week ago
In the ever-evolving infostealer landscape, 0bj3ctivityStealer emerges as a formidable threat, blending advanced obfuscation with targeted data exfiltration. Discovered earlier this year by HP Wolf Security researchers, this .NET-based malware has been observed in proactive threat hunting by the Trellix Advanced Research Center, revealing a novel phishing-driven campaign. The infection initiates through spearphishing emails themed […]
The post Unveiling 0bj3ctivityStealer’s Execution Chain: New Capabilities and Exfiltration Techniques Exposed appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.
Aman Mishra