Windows Archives - GBHackers Security | #1 Globally Trusted Cyber Security News Platform

CRON#TRAP Campaign Attacks Windows Machine With Weaponized Linux Virtual Machine

Tushar Subhra — Wed, 06 Nov 2024 12:17:25 +0000

Weaponized Linux virtual machines are used for offensive cybersecurity purposes, such as “penetration testing” or “exploiting vulnerabilities.” These setups often use the tools and frameworks that are designed for ethical hacking. Securonix researchers recently detected CRON#TRAP campaign that has been attacking Windows machines with weaponized Linux virtual machines. Technical analysis CRON#TRAP is a sophisticated cyber […]

The post CRON#TRAP Campaign Attacks Windows Machine With Weaponized Linux Virtual Machine appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

New Windows Downgrade Attack Let Hackers Downgrade Patched Systems To Exploits

Aman Mishra — Tue, 29 Oct 2024 13:12:05 +0000

The researcher discovered a vulnerability in the Windows Update process that allowed them to downgrade critical system components, including DLLs, drivers, and the NT kernel. This enabled the attacker to bypass security measures like Secure Boot and expose previously patched vulnerabilities. There are many ways to disable VBS, including Credential Guard and HVCI, even with […]

The post New Windows Downgrade Attack Let Hackers Downgrade Patched Systems To Exploits appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

Exploiting Windows MiniFilter to Bypass EDR Protection

Tushar Subhra — Wed, 18 Sep 2024 14:29:24 +0000

Windows Minifilter drivers are a type of file system filter driver that operates within the Windows operating system to manage and modify I/O operations without direct access to the file system. They utilize the Filter Manager, which simplifies their development by providing a consistent interface for handling various file operations. Researchers at Tier Zero Security […]

The post Exploiting Windows MiniFilter to Bypass EDR Protection appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

CISA Warns of Windows MSHTML & Progress WhatsUp Gold Flaw Exploited Widely

Divya — Tue, 17 Sep 2024 11:13:00 +0000

The Cybersecurity and Infrastructure Security Agency (CISA) has issued an urgent warning regarding two critical vulnerabilities affecting Microsoft Windows MSHTML and Progress WhatsUp Gold. These vulnerabilities, identified as CVE-2024-43461 and CVE-2024-6670, are reportedly being exploited widely, posing significant risks to users and organizations worldwide. CVE-2024-43461: Microsoft Windows MSHTML Platform Spoofing Vulnerability The first vulnerability, CVE-2024-43461, […]

The post CISA Warns of Windows MSHTML & Progress WhatsUp Gold Flaw Exploited Widely appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

Earth Lusca Using Multiplatform Backdoor to Attack Windows & Linux Machines

Tushar Subhra — Thu, 05 Sep 2024 12:47:02 +0000

Earth Lusca is a suspected China-based cyber espionage group active since at least April 2019. Besides this, hackers often target Windows and Linux machines primarily due to their widespread use and potential for financial gain. Trend Micro security experts recently uncovered a sophisticated new Golang-based backdoor named “KTLVdoor,” deployed by the Chinese threat actor Earth […]

The post Earth Lusca Using Multiplatform Backdoor to Attack Windows & Linux Machines appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

Voldemort Threat Actors Abusing Google Sheets to Attack Windows Users

Divya — Fri, 30 Aug 2024 11:36:24 +0000

Researchers from Proofpoint have uncovered a sophisticated cyberattack campaign leveraging Google Sheets as a command and control (C2) platform. Dubbed “Voldemort” by the researchers, this campaign targets Windows users globally, employing a novel attack chain that combines both common and rare techniques to deliver custom malware. This article delves into the intricacies of the campaign, […]

The post Voldemort Threat Actors Abusing Google Sheets to Attack Windows Users appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

.NET-based Snake Keylogger Attack Windows Using Weaponized Excel Documents

Divya — Fri, 30 Aug 2024 09:36:50 +0000

Researchers uncovered a sophisticated phishing campaign that exploits a .NET-based Snake Keylogger variant. This attack leverages weaponized Excel documents to infiltrate Windows systems, posing significant threats to user data security. This article delves into the mechanics of the attack, the techniques employed by the malware, and the implications for users and organizations. Understanding Snake Keylogger […]

The post .NET-based Snake Keylogger Attack Windows Using Weaponized Excel Documents appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

Lazarus Hacker Group Exploited Microsoft Windows Zero-day

Divya — Mon, 19 Aug 2024 13:08:55 +0000

The notorious Lazarus hacker group has been identified as exploiting a zero-day vulnerability in Microsoft Windows, specifically targeting the Windows Ancillary Function Driver for WinSock (AFD.sys). This vulnerability, cataloged as CVE-2024-38193, was discovered by researchers Luigino Camastra and Milanek in early June 2024. The flaw allowed the group to gain unauthorized access to sensitive system […]

The post Lazarus Hacker Group Exploited Microsoft Windows Zero-day appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

BeaverTail Malware Attacking Windows Users Via Weaponized Games

Kaaviya — Mon, 19 Aug 2024 04:29:45 +0000

Researchers uncovered a new malware campaign dubbed BeaverTail, a North Korean cyber espionage malware family primarily focusing on job seekers. Initially identified as a JavaScript-based info stealer, it has since morphed into a native macOS version that pretends to be legitimate software like the MiroTalk video call service. This malware is designed to steal confidential […]

The post BeaverTail Malware Attacking Windows Users Via Weaponized Games appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

CrowdStrike Update Triggers Widespread Windows BSOD Crashes

Divya — Fri, 19 Jul 2024 08:40:57 +0000

A recent update from cybersecurity firm CrowdStrike has caused significant disruptions for Windows users, leading to widespread reports of Blue Screen of Death (BSOD) errors. The issue, affecting multiple versions of the company’s sensor software, has prompted urgent investigations and a swift response from CrowdStrike’s engineering team. A report from the Reddit platform states that […]

The post CrowdStrike Update Triggers Widespread Windows BSOD Crashes appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.