Thursday, April 17, 2025
Follow us On Linkedin

Cyber Security News

2 Apple Zero-Day Vulnerabilities Actively Exploited in “Extremely” Sophisticated iOS Attacks

Balaji - 0
Apple has urgently rolled out iOS 18.4.1 and iPadOS 18.4.1 to patch two zero-day vulnerabilities that were actively exploited in “extremely sophisticated” attacks aimed...
CISA Extend Funding to MITRE

CISA Extend Funding to MITRE to Keep CVE Program Running

Balaji - 0
The Cybersecurity and Infrastructure Security Agency (CISA) has extended funding to the MITRE Corporation, ensuring the continued operation of the Common Vulnerabilities and Exposures...

Windows Task Scheduler Vulnerabilities Allow Attackers Gain Admin Account Control

Balaji - 0
New vulnerabilities in Windows Task Scheduler's schtasks.exe let attackers bypass UAC, alter metadata, modify event logs, and evade detection.These actions map to MITRE...

Windows NTLM Vulnerability (CVE-2025-24054) Actively Exploit in the Wild to Hack Systems

Balaji - 0
A critical vulnerability in Microsoft Windows, identified as CVE-2025-24054, has been actively exploited in the wild since March 19, 2025, targets organizations worldwide.The flaw,...
Server-Side Phishing Attacks

Server-Side Phishing Attacks Target Employee and Member Portals to Steal Login Credentials

Aman Mishra - 0
Attackers have been deploying server-side phishing schemes to compromise employee and member login portals across various enterprises.This strategic shift to server-side operations is designed...
Online PDF Converters Tricking Users

Beware! Online PDF Converters Tricking Users into Installing Password-Stealing Malware

Aman Mishra - 0
CloudSEK's Security Research team, a sophisticated cyberattack leveraging malicious online PDF converters has been demonstrated to target individuals and organizations globally.This attack, previously hinted...
Interlock Ransomware

Interlock Ransomware Uses Multi-Stage Attack Through Legitimate Websites to Deliver Malicious Browser Updates

Aman Mishra - 0
The Interlock ransomware intrusion set has escalated its operations across North America and Europe with sophisticated techniques.Not falling under the typical Ransomware-as-a-Service (RaaS) category,...
Load more

Supply Chain Attack Prevention

SIEM as a Service

Recent News

Researchers Expose Medusa Ransomware Group’s Onion Site

Researchers Expose Medusa Ransomware Group’s Onion Site

Aman Mishra - 0
Researchers have successfully infiltrated the digital fortress of one of the most prolific ransomware groups, Medusa Locker.Known for targeting critical sectors like healthcare, education,...

Microsoft Teams File Sharing Unavailable Due to Unexpected Outage

Divya - 0
Microsoft Teams users across the globe are experiencing significant disruptions in file-sharing capabilities due to an unexpected outage, impacting workplace communication and collaboration.A wave...
Android Malware

Hackers Imitate Google Chrome Install Page on Google Play to Distribute Android Malware

Aman Mishra - 0
Cybersecurity experts have unearthed an intricate cyber campaign that leverages deceptive websites posing as the Google Play Store to distribute Android malware.These websites,...

VMware ESXi 8.0 Update 3e Is Now Free — Here’s What’s New

Divya - 0
VMware has announced that ESXi 8.0 Update 3e, the latest version of its industry-leading hypervisor, is now available for download at no cost.Released on April 10,...

Linux Firewall IPFire 2.29 Launches with Post-Quantum Encryption and System Enhancements

Divya - 0
The open-source Linux firewall solution, IPFire, has officially released its latest version, IPFire 2.29 - Core Update 193.This landmark update introduces cutting-edge post-quantum encryption capabilities for...

2 Apple Zero-Day Vulnerabilities Actively Exploited in “Extremely” Sophisticated iOS Attacks

Balaji - 0
Apple has urgently rolled out iOS 18.4.1 and iPadOS 18.4.1 to patch two zero-day vulnerabilities that were actively exploited in “extremely sophisticated” attacks aimed...
Xworm Payload Execution Path

Unmasking Xworm Payload Execution Path through Jailbreaking a Malicious JScript Loader

Kaaviya - 0
Security researchers are analyzing a sophisticated malware delivery mechanism that uses a JScript loader to deploy different payloads based on the victim's geographic location....
WordPress Sites

Rogue Account‑Creation Flaw Leaves 100 K WordPress Sites Exposed

Aman Mishra - 0
A severe vulnerability has been uncovered in the SureTriggers WordPress plugin, which could leave over 100,000 websites at risk.The issue, discovered by security researcher...

IBM Aspera Faspex Flaw Allows Injection of Malicious JavaScript in Web UI

Divya - 0
A significant security vulnerability has been identified in IBM Aspera Faspex 5, a popular file exchange solution.The flaw, designated as CVE-2025-3423, allows attackers to...
Load more

Most Popular

2 Apple Zero-Day Vulnerabilities Actively Exploited in “Extremely” Sophisticated iOS Attacks

0
Apple has urgently rolled out iOS 18.4.1 and iPadOS 18.4.1 to patch two zero-day vulnerabilities that were actively exploited in “extremely sophisticated” attacks aimed...

Windows Task Scheduler Vulnerabilities Allow Attackers Gain Admin Account Control

0
New vulnerabilities in Windows Task Scheduler's schtasks.exe let attackers bypass UAC, alter metadata, modify event logs, and evade detection.These actions map to MITRE...

CISA Extend Funding to MITRE to Keep CVE Program Running

0
The Cybersecurity and Infrastructure Security Agency (CISA) has extended funding to the MITRE Corporation, ensuring the continued operation of the Common Vulnerabilities and Exposures...

Windows NTLM Vulnerability (CVE-2025-24054) Actively Exploit in the Wild to Hack Systems

0
A critical vulnerability in Microsoft Windows, identified as CVE-2025-24054, has been actively exploited in the wild since March 19, 2025, targets organizations worldwide.The flaw,...

Server-Side Phishing Attacks Target Employee and Member Portals to Steal Login Credentials

0
Attackers have been deploying server-side phishing schemes to compromise employee and member login portals across various enterprises.This strategic shift to server-side operations is designed...

Beware! Online PDF Converters Tricking Users into Installing Password-Stealing Malware

0
CloudSEK's Security Research team, a sophisticated cyberattack leveraging malicious online PDF converters has been demonstrated to target individuals and organizations globally.This attack, previously hinted...

Interlock Ransomware Uses Multi-Stage Attack Through Legitimate Websites to Deliver Malicious Browser Updates

0
The Interlock ransomware intrusion set has escalated its operations across North America and Europe with sophisticated techniques.Not falling under the typical Ransomware-as-a-Service (RaaS) category,...

Researchers Expose Medusa Ransomware Group’s Onion Site

0
Researchers have successfully infiltrated the digital fortress of one of the most prolific ransomware groups, Medusa Locker.Known for targeting critical sectors like healthcare, education,...

CISA Extends Support a Last Minute to CVE Program, Averting Global Cybersecurity Crisis

0
CISA announced an eleventh-hour contract extension with MITRE Corporation to maintain the Common Vulnerabilities and Exposures (CVE) program, narrowly avoiding a lapse in federal...
Load more

Glossary

cyber security

New ‘Waiting Thread Hijacking’ Malware Technique Evades Modern Security Measures

Kaaviya -
cyber security

Cybercriminals Exploit Search Results to Steal Credit Card Information

Kaaviya -
cyber security

Chinese Hackers Unleash New BRICKSTORM Malware to Target Windows and Linux Systems

Aman Mishra -
cyber security

HelloKitty Ransomware Returns, Launching Attacks on Windows, Linux, and ESXi Environments

Aman Mishra -
Cyber Attack

DOGE ‘Big Balls’ Ransomware Utilizes ZIP-Based LNK Shortcuts and BYOVD Techniques for Stealthy Attacks

Kaaviya -
cyber security

GOFFEE Deploys PowerModul in Coordinated Strikes on Government and Energy Networks

Aman Mishra -
cyber security

Chinese eCrime Group Targets Users in 120+ Countries to Steal Banking Credentials

Aman Mishra -
cyber security

Threat Actors Manipulate Search Results to Lure Users to Malicious Websites

Aman Mishra -
Browser

Tycoon 2FA Phishing Kit Uses Advanced Evasion Techniques to Bypass Endpoint Detection Systems

Aman Mishra -
cyber security

Hacktivist Group Becomes More Sophisticated, Targets Critical Infrastructure to Deploy Ransomware

Aman Mishra -
cryptocurrency

Threat Actors Exploit Legitimate Crypto Packages to Deliver Malicious Code

Aman Mishra -
Cyber Attack

Threat Actors Launch Active Attacks on Semiconductor Firms Using Zero-Day Exploits

Aman Mishra -

GBHackers on Security is a top cybersecurity news platform, delivering up-to-date coverage on breaches, emerging threats, malware, vulnerabilities, and global cyber incidents.

Company

Trending

Categories

Copyright @ 2016 - 2025 GBHackers On Security - All Rights Reserved