GBHackers on Security | #1 Globally Trusted Cyber Security News Platform

A recent cybersecurity presentation at BSides London 2024 has unveiled a sophisticated attack technique known as Bring Your Own Trusted Binary (BYOTB). This method leverages legitimate, trusted binaries to evade detection by advanced security measures such as Endpoint Detection and Response (EDR) systems and firewalls. The findings, presented by cybersecurity researcher David Kennedy of Jumpsec […]

The post New ‘BYOTB’ Attack Exploits Trusted Binaries to Evade Detection, Researchers Reveal appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

A severe security vulnerability, tracked as CVE-2025-23369, has been identified in GitHub Enterprise Server (GHES), allowing attackers to bypass SAML authentication and impersonate other user accounts. This flaw exploits quirks in the libxml2 library used during SAML response validation, enabling unauthorized access to accounts, including those with administrative privileges. The vulnerability arises from improper handling […]

The post SAML Bypass Authentication on GitHub Enterprise Servers to Login as Other User Account appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

NanoCore, a notorious Remote Access Trojan (RAT), continues to pose a significant threat to Windows systems. This malware, known for its espionage capabilities and modular design, is being leveraged by cybercriminals to exfiltrate sensitive data, control infected systems, and maintain persistence using advanced techniques. A recent analysis of a NanoCore sample (MD5 hash: 18B476D37244CB0B435D7B06912E9193) sheds […]

The post NanoCore RAT Attack Windows Using Task Scheduler to Captures keystrokes, screenshots appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

In a concerning development, cybercriminals are leveraging Google Tag Manager (GTM), a legitimate tool widely used by eCommerce websites, to deploy malicious scripts designed to steal credit card information. This attack vector, often referred to as Magecart or e-skimming, has been observed targeting platforms like Magento, WordPress, and OpenCart, among others. The abuse of GTM […]

The post Hackers Exploiting Google Tag Managers to Steal Credit Card from eCommerce Sites appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

A routine physical penetration test conducted by cybersecurity professionals took an unexpected turn when armed police officers arrested two security experts during a simulated breach of a corporate office in Malta. Physical penetration testing is a critical component of cybersecurity assessments. It evaluates not only technical defenses but also physical access controls and human response […]

The post Penetration Testers Arrested During Approved Physical Penetration Testing appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

Sensitive credentials from Cisco’s internal network and domain infrastructure were reportedly made public due to a significant data breach. According to a Cyber Press Research report, the new Kraken ransomware group has allegedly leaked a dataset on their dark web blog, which appears to be a dump of hashed passwords from a Windows Active Directory […]

The post Cisco Data Breach – Ransomware Group Allegedly Breached Internal Network appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

Linus Torvalds, lead developer of the Linux kernel, announced the second release candidate (rc2) of Linux Kernel 6.14, providing developers and enthusiasts with a glimpse at the latest updates and fixes in the kernel’s development cycle. The announcement was made on the Linux Kernel Mailing List (LKML) on Sunday, February 9, 2025. This release follows […]

The post Linux Kernel 6.14-rc2 Released – What’s Newly Added ! appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

Serious vulnerabilities in Zimbra Collaboration Suite (ZCS), a popular enterprise email and collaboration platform, have raised alarm in the cybersecurity community. Security researchers have identified several critical flaws that allow attackers to access sensitive data and compromise user accounts. With millions of businesses relying on Zimbra for email services, these vulnerabilities pose significant risks. Key […]

The post Critical Zimbra Flaws Allow Attackers to Gain Unauthorized Access to Sensitive Data appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

The Tor Project has officially unveiled Tor Browser 14.0.6, now accessible for download from the Tor Browser download page and its distribution directory. The latest update introduces critical fixes and enhancements, ensuring a smoother and more secure browsing experience for users. Here’s a detailed look at what’s new in this release. Key Updates in Tor Browser 14.0.6 The standout […]

The post Tor Browser 14.0.6 Released, What’s New! appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

A newly discovered vulnerability in AnyDesk, the popular remote desktop software, has sparked serious cybersecurity concerns. Identified as CVE-2024-12754 and tracked under ZDI-24-1711, this flaw allows local attackers to exploit a mechanism to handle Windows background images, potentially escalating their privileges to administrative levels. Researchers warn that this vulnerability poses a significant risk to sensitive […]

The post Hackers Exploit AnyDesk Vulnerability to Gain Admin Access – PoC Released appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

United Kingdom has reportedly ordered Apple to create a backdoor allowing access to all encrypted content stored in its iCloud service. The demand, issued under the U.K.’s controversial Investigatory Powers Act of 2016, has raised alarm among privacy advocates and tech experts. If implemented, this order would allow British authorities to bypass encryption protections not […]

The post UK Pressures Apple to Create Global Backdoor To Spy on Encrypted iCloud Access appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

Large Language Models (LLMs) are transforming penetration testing (pen testing), leveraging their advanced reasoning and automation capabilities to simulate sophisticated cyberattacks. Recent research demonstrates how autonomous LLM-driven systems can effectively perform assumed breach simulations in enterprise environments, particularly targeting Microsoft Active Directory (AD) networks. These advancements mark a significant departure from traditional pen testing methods, […]

The post Autonomous LLMs Reshaping Pen Testing: Real-World AD Breaches and the Future of Cybersecurity appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

Semantic communication systems, powered by Generative AI (GAI), are transforming the way information is transmitted by focusing on the meaning of data rather than raw content. Unlike traditional communication methods, these systems encode semantic features such as text, images, or speech into low-dimensional vectors, significantly reducing bandwidth usage while maintaining the integrity of transmitted information. […]

The post Securing GAI-Driven Semantic Communications: A Novel Defense Against Backdoor Attacks appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

A recent wave of cyberattacks has revealed the exploitation of Microsoft Internet Information Services (IIS) servers by threat actors deploying the BadIIS malware. This campaign, attributed to Chinese-speaking groups, leverages IIS vulnerabilities to manipulate search engine optimization (SEO) rankings and distribute malicious content. The attackers have targeted organizations across Asia, including India, Thailand, and Vietnam, […]

The post Cybercriminals Target IIS Servers to Spread BadIIS Malware appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

Cybercriminals are increasingly exploiting image and video files to deliver malware, leveraging advanced techniques like steganography and social engineering. These methods allow attackers to embed malicious code within seemingly harmless multimedia files, bypassing traditional security measures and deceiving unsuspecting users. Hackers have used image-based malware to distribute tools like VIP Keylogger and 0bj3ctivity Stealer, which […]

The post Hackers Leveraging Image & Video Attachments to Deliver Malware appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

A new wave of scareware attacks has emerged, targeting unsuspecting mobile users with fake antivirus applications designed to exploit fear and trick victims into downloading malicious software. Scareware, a type of digital fraud, employs social engineering tactics to alarm users with fabricated warnings about security threats, ultimately coercing them into taking risky actions. Scareware: A […]

The post New Scareware Attack Targeting Mobile Users to Deploy Malicious Antivirus Apps appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

The National Security Agency (NSA) has officially released Ghidra 11.3, the latest iteration of its open-source software reverse engineering (SRE) framework. Known for its robust capabilities in analyzing compiled code across multiple platforms, including Windows, macOS, and Linux, this release introduces significant enhancements aimed at improving performance and usability for cybersecurity professionals. One of the […]

The post Ghidra 11.3 Released – A Major Update to NSA’s Open-Source Tool appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

A critical zero-day vulnerability has been discovered in Microsoft Sysinternals tools, posing a serious security threat to IT administrators and developers worldwide. The vulnerability enables attackers to exploit DLL injection techniques to execute malicious code, putting systems at risk of compromise. Despite being disclosed to Microsoft over 90 days ago, the issue remains unresolved, leaving users reliant on manual […]

The post Microsoft Sysinternals 0-Day Vulnerability Enables DLL Injection Attacks on Windows appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added a critical 0-day vulnerability affecting the popular file compression utility, 7-Zip, to its Known Exploited Vulnerabilities (KEV) Catalog. The vulnerability, identified as CVE-2025-0411, highlights a severe flaw that allows attackers to bypass the Mark-of-the-Web (MotW) security feature and execute arbitrary code on targeted systems. Details […]

The post 7-Zip 0-Day Flaw Added to CISA’s List of Actively Exploited Vulnerabilities appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

A critical security vulnerability has been identified and disclosed in the Logsign Unified SecOps Platform, allowing remote attackers to bypass authentication mechanisms. The vulnerability tracked as CVE-2025-1044, has been assigned a CVSS score of 9.8, placing it in the “Critical” severity category. Vulnerability Details This security flaw resides within Logsign’s Unified SecOps Platform, a tool widely […]

The post Logsign Vulnerability Allows Remote Attackers to Bypass Authentication appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.