Credential Theft Archives - GBHackers Security | #1 Globally Trusted Cyber Security News Platform

OilRig Hackers Exploiting Microsoft Exchange Server To Steal Login Details

Aman Mishra — Mon, 14 Oct 2024 16:01:06 +0000

Earth Simnavaz, an Iranian state-sponsored cyber espionage group, has recently intensified its attacks on critical infrastructure in the UAE and wider Gulf region. The group employs sophisticated techniques to gain unauthorized access and exfiltrate sensitive data, such as using a new backdoor to steal credentials via on-premises Microsoft Exchange servers by exploiting vulnerabilities like CVE-2024-30088 […]

The post OilRig Hackers Exploiting Microsoft Exchange Server To Steal Login Details appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

DCRAt Attacking Users Via HTML Smuggling To Steal Login Credentials

Varshini — Mon, 30 Sep 2024 14:45:00 +0000

In a new campaign that is aimed at users who speak Russian, the modular remote access tool (RAT) known as DCRat has been utilized. Delivered through HTML smuggling, a technique not previously seen with DCRat, the malware leverages its typical RAT capabilities to execute shell commands, log keystrokes, exfiltrate files, and steal credentials, which marks […]

The post DCRAt Attacking Users Via HTML Smuggling To Steal Login Credentials appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

Threat Actors Forcing victims Into Entering Login Credentials For Stealing

Aman Mishra — Thu, 19 Sep 2024 15:39:37 +0000

Recent intelligence indicates a new technique employed by stealers to trick victims into entering credentials directly into a browser, enabling subsequent theft from the browser’s credential store. This method, used in conjunction with StealC malware, was first observed in August 2024 and is primarily deployed by Amadey. The technique involves forcing victims to interact with […]

The post Threat Actors Forcing victims Into Entering Login Credentials For Stealing appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

New RansomHub Attack Killing Kaspersky’s TDSSKiller To Disable EDR

Aman Mishra — Wed, 11 Sep 2024 08:29:05 +0000

RansomHub has recently employed a novel attack method utilizing TDSSKiller and LaZagne, where TDSSKiller, traditionally used to disable EDR systems, was deployed to compromise network defenses. Subsequently, LaZagne was used to harvest credentials from compromised systems, which is unprecedented in RansomHub’s operations and was not documented in CISA’s recent advisory. The attack sequence began with […]

The post New RansomHub Attack Killing Kaspersky’s TDSSKiller To Disable EDR appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

Hackers Exploiting Docusign With Phishing Attack To Steal Credentials

Tushar Subhra — Sun, 19 May 2024 03:25:39 +0000

Hackers prefer phishing as it exploits human vulnerabilities rather than technical flaws which make it a highly effective and low-cost attack method. Phishing attacks can be easily scaled to target a large number of individuals, increasing the likelihood of success. Recently, cybersecurity analysts at Abnormal Security discovered that hackers are actively exploiting DocuSign with customizable […]

The post Hackers Exploiting Docusign With Phishing Attack To Steal Credentials appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.