Thursday, February 13, 2025
Follow us On Linkedin

Cyber Security News

Wordpress

Arbitrary File Upload Vulnerability in WordPress Plugin Let Attackers Hack 30,000 Website

Aman Mishra - 0
A subgroup of the Russian state-sponsored hacking group Seashell Blizzard, also known as Sandworm, has intensified its cyber operations through a campaign dubbed BadPilot.This...
Seashell Blizzard’s Attacks

BadPilot Attacking Network Devices to Expand Russian Seashell Blizzard’s Attacks

Aman Mishra - 0
A newly uncovered cyber campaign, dubbed "BadPilot," has been linked to a subgroup of the Russian state-sponsored hacking collective Seashell Blizzard, also known as...
Pyramid Pentesting Tool

Cybercriminals Exploit Pyramid Pentesting Tool for Covert C2 Communications

Aman Mishra - 0
Cybersecurity analysts have identified that hackers are leveraging the open-source Pyramid pentesting tool to establish stealthy command-and-control (C2) communications.Originally designed as a post-exploitation...
Local communities

Threat Actors in Russia, China, and Iran Targeting Local communities in the U.S

Aman Mishra - 0
Foreign adversaries, including Russia, China, and Iran, are intensifying their efforts to manipulate public opinion and destabilize local communities across the United States.These...
Phishing Attacks

New Phishing Attacks Abuses Webflow CDN & CAPTCHAs to Steal Credit Card details

Aman Mishra - 0
Netskope Threat Labs has uncovered a sophisticated phishing campaign targeting users across various industries, including technology, manufacturing, and banking.This campaign, active since mid-2024,...

30,000 WordPress Sites Exposed to Exploitation via File Upload Vulnerability

Divya - 0
A critical security vulnerability in the "Security & Malware scan by CleanTalk" plugin has left over 30,000 WordPress websites exposed to exploitation.The vulnerability, identified...

Palo Alto Firewall Flaw Exploited in RA World Ransomware Attacks

Divya - 0
A recent ransomware attack leveraging a vulnerability in Palo Alto Networks' PAN-OS firewall software (CVE-2024-0012) has raised significant concerns within the cybersecurity community.The attack,...
Load more

Supply Chain Attack Prevention

SIEM as a Service

Recent News

Local communities

Threat Actors in Russia, China, and Iran Targeting Local communities in the U.S

Aman Mishra - 0
Foreign adversaries, including Russia, China, and Iran, are intensifying their efforts to manipulate public opinion and destabilize local communities across the United States.These...
Facebook Phishing Attack

Massive Facebook Phishing Attack Targets Hundreds of Companies for Credential Theft

Aman Mishra - 0
A newly discovered phishing campaign targeting Facebook users has been identified by researchers at Check Point Software Technologies.The attack, which began in late...

RedNote App Security Flaw Exposes User Files on iOS and Android Devices

Divya - 0
Serious security vulnerabilities have been uncovered in the popular social media and content-sharing app, RedNote, compromising the privacy and security of millions of users...

Splunk Introduces “DECEIVE” an AI-Powered Honeypot to Track Cyber Threats

Divya - 0
Splunk has unveiled DECEIVE (DECeption with Evaluative Integrated Validation Engine), an innovative, AI-augmented honeypot that mimics real-world systems to lure and study cyber attackers.By leveraging advanced...
Microsoft Key Management Service (KMS)

Russian Hackers Leverages Weaponized Microsoft Key Management Service (KMS) to Hack Windows Systems

Aman Mishra - 0
In a calculated cyber-espionage campaign, the Russian state-sponsored hacking group Sandworm (APT44), linked to the GRU (Russia’s Main Intelligence Directorate), has been exploiting pirated...
BYOTB Attack

New ‘BYOTB’ Attack Exploits Trusted Binaries to Evade Detection, Researchers Reveal

Aman Mishra - 0
A recent cybersecurity presentation at BSides London 2024 has unveiled a sophisticated attack technique known as Bring Your Own Trusted Binary (BYOTB).This method...
Wordpress

Arbitrary File Upload Vulnerability in WordPress Plugin Let Attackers Hack 30,000 Website

Aman Mishra - 0
A subgroup of the Russian state-sponsored hacking group Seashell Blizzard, also known as Sandworm, has intensified its cyber operations through a campaign dubbed BadPilot.This...
Gcore Radar Report Reveals 56% Year-on-year Increase in DDoS Attacks

Gcore Radar Report Reveals 56% Year-on-year Increase in DDoS Attacks

Kaaviya - 0
Gcore, the global provider of edge AI, cloud, network, and security solutions has released its Q3-Q4 2024 Radar report on DDoS attack trends.The findings...
DeepSeek

Threat Actors Exploiting DeepSeek’s Popularity to Deploy Malware

Aman Mishra - 0
The meteoric rise of DeepSeek, a Chinese AI startup, has not only disrupted the AI sector but also attracted the attention of cybercriminals.Following...
Load more

Most Popular

How To Access Dark Web Anonymously and know its Secretive and Mysterious Activities

1
What is Deep WebThe deep web, invisible web, or hidden web are parts of the World Wide Web whose contents are not indexed by...

How to Build and Run a Security Operations Center (SOC Guide) – 2023

12
Today’s Cyber security operations center (CSOC) should have everything it needs to mount a competent defense of the ever-changing information technology (IT) enterprise.This includes...

Network Penetration Testing Checklist – 2024

0
Network Penetration Testing checklist determines vulnerabilities in the network posture by discovering open ports, troubleshooting live systems, and services, and grabbing system banners.The pen-testing helps...

Russian Hackers Bypass EDR to Deliver a Weaponized TeamViewer Component

0
TeamViewer's popularity and remote access capabilities make it an attractive target for those seeking to compromise systems for their gain.Threat actors target TeamViewer for...

Web Server Penetration Testing Checklist – 2024

0
Web server pentesting is performed under three significant categories: identity, analysis, and reporting vulnerabilities such as authentication weaknesses, configuration errors, and protocol relationship vulnerabilities. 1.  "Conduct a...

ATM Penetration Testing – Advanced Testing Methods to Find The Vulnerabilities

4
ATM Penetration testing, Hackers have found different approaches to hacking into ATM machines.Programmers are not restricting themselves to physical assaults, for example, money/card...

Operating Systems Can be Detected Using Ping Command

6
Operating Systems can be detected using Ping Command, Ping is a computer network administration software utility, used to find the Availability of a host...

Cloud Penetration Testing Checklist – 2024

1
Cloud Penetration Testing is a method of actively checking and examining the Cloud system by simulating the attack from the malicious code.Cloud computing is...

Web Application Penetration Testing Checklist – A Detailed Cheat Sheet

3
Web Application Pentesting is a method of identifying, analyzing, and Report the vulnerabilities which are existing in the Web application including buffer overflow, input...
Load more

Glossary

GBHackers on Security is a top cybersecurity news platform, delivering up-to-date coverage on breaches, emerging threats, malware, vulnerabilities, and global cyber incidents.

Company

Trending

Categories

Copyright @ 2016 - 2024 GBHackers On Security - All Rights Reserved