Gurubaran, Author at GBHackers Security | #1 Globally Trusted Cyber Security News Platform

Researchers Detailed Credential Abuse Cycle

Gurubaran — Mon, 11 Nov 2024 11:11:46 +0000

Cybercriminals exploit leaked credentials, obtained through various means, to compromise systems and data, enabling them to gain unauthorized access. This can lead to data breaches, identity theft, and financial loss across diverse industries and geographic locations. Compromised credentials pose a significant security risk primarily due to data breaches and user negligence. In Q3 2024, they […]

The post Researchers Detailed Credential Abuse Cycle appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

Researchers Detailed Credential Abuse Cycle

Gurubaran — Wed, 06 Nov 2024 12:33:49 +0000

The United States Department of Justice has unsealed an indictment against Anonymous Sudan, a hacking group responsible for distributed denial-of-service attacks. LameDuck, a new threat actor, has carried out several massive distributed denial of service (DDoS) attacks to affect critical infrastructure, cloud providers, and various industries. The group leverages social media to amplify its impact […]

The post Researchers Detailed Credential Abuse Cycle appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

Rise Of Ransomware-As-A-Service Leads To Decline Of Custom Tools

Gurubaran — Wed, 06 Nov 2024 12:30:21 +0000

Ransomware-as-a-Service (RaaS) platforms have revolutionized the ransomware market. Unlike traditional standalone ransomware sales, RaaS offers a subscription-based model where attackers can access pre-built ransomware tools and infrastructure without significant upfront costs. These platforms provide user-friendly dashboards, customization options, and ongoing support, lowering the barrier of entry for cybercriminals, which has made ransomware attacks more accessible […]

The post Rise Of Ransomware-As-A-Service Leads To Decline Of Custom Tools appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

North Korean Hackers Employing New Tactic To Acruire Remote Jobs

Gurubaran — Wed, 06 Nov 2024 12:21:19 +0000

North Korean threat actors behind the Contagious Interview and WageMole campaigns have refined their tactics, enhancing the obfuscation of their scripts to evade detection. InvisibleFerret now boasts a dynamic RMM configuration and OS-specific persistence mechanisms, while Contagious Interview has expanded its arsenal with macOS applications, targeting a wider victim pool. These attacks have compromised over […]

The post North Korean Hackers Employing New Tactic To Acruire Remote Jobs appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

A Massive Hacking Toolkit From “You Dun” Threat Group Developed To Lauch Massive Cyber Attack

Gurubaran — Mon, 04 Nov 2024 11:58:04 +0000

The “You Dun” hacking group exploited vulnerable Zhiyuan OA software using SQL injection, leveraging tools like WebLogicScan, Vulmap, and Xray for reconnaissance. They further escalated privileges on compromised hosts with tools like traitor and CDK. Active Cobalt Strike server leaked, revealing its use in various cyberattacks, including ransomware deployment (LockBit 3) and data theft. The […]

The post A Massive Hacking Toolkit From “You Dun” Threat Group Developed To Lauch Massive Cyber Attack appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

Mozilla Warns Of Firefox Zero-Day Actively Exploited In Cyber Attacks

Gurubaran — Thu, 10 Oct 2024 14:43:02 +0000

A critical use-after-free vulnerability affecting Firefox and Firefox Extended Support Release (ESR) is being actively exploited in cyberattacks. With a CVSS base score of 9.8, the flaw is identified as Use-after-free in the Animation timeline component tracked as CVE-2024-9680 reported by Damien Schaeffer from ESET.“ An attacker was able to achieve code execution in the […]

The post Mozilla Warns Of Firefox Zero-Day Actively Exploited In Cyber Attacks appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

19.6K+ Public Zimbra Installations Vulnerable to Code Execution Attacks – CVE-2024-45519

Gurubaran — Mon, 07 Oct 2024 04:50:04 +0000

A critical vulnerability in Zimbra’s postjournal service, identified as CVE-2024-45519, has left over 19,600 public Zimbra installations exposed to remote code execution attacks. This vulnerability, with a CVSS score of 9.8, allows unauthenticated attackers to execute arbitrary commands on affected Zimbra installations, posing a significant threat to the security and integrity of these systems. Scans […]

The post 19.6K+ Public Zimbra Installations Vulnerable to Code Execution Attacks – CVE-2024-45519 appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

Octo2 Android Malware Attacking To Steal Banking Credentials

Gurubaran — Thu, 26 Sep 2024 09:10:30 +0000

The original threat actor behind the Octo malware family has released a new variant, Octo2, with enhanced stability for remote action capabilities to facilitate Device Takeover attacks. This new variant targets European countries and employs sophisticated obfuscation techniques, including the Domain Generation Algorithm (DGA), to evade detection and ensure the Trojan remains undetected. The Exobot […]

The post Octo2 Android Malware Attacking To Steal Banking Credentials appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

New Mallox Ransomware Linux Variant Attacking Enterprise Linux Servers

Gurubaran — Thu, 26 Sep 2024 09:00:15 +0000

Kryptina RaaS, a free and open-source RaaS platform for Linux, initially struggled to attract attention. Still, after a Mallox affiliate’s staging server was leaked in May 2024, Kryptina’s modified version, branded Mallox v1.0, gained prominence. The research examines the data exposed in the leak, highlighting differences between the original Kryptina RaaS (v2.2) and Mallox v1.0 […]

The post New Mallox Ransomware Linux Variant Attacking Enterprise Linux Servers appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

Beware Of Fake Verify You Are A Human Request That Delivers Malware

Gurubaran — Thu, 26 Sep 2024 08:57:39 +0000

Researchers observed two distinct instances where users were inadvertently led to malicious websites after conducting Google searches for video streaming services. These victims were redirected to malicious URLs that employed a deceptive tactic while attempting to access sports or movie content. The victims were presented with a prompt requesting human verification, which, upon completion, executed […]

The post Beware Of Fake Verify You Are A Human Request That Delivers Malware appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.