GBHackers On Security

Masslogger – A Campaign that Exfiltrates Passwords from Microsoft Outlook, Google Chrome, and ...

Mon, 01 Mar 2021 14:09:00 GMT

Cisco Talos discovered a campaign utilizing a variant of the Masslogger trojan designed to retrieve and exfiltrate user credentials from multiple sources such as Microsoft Outlook, Google Chrome and instant messengers. The recurrence of a credential-stealing campaign affects Windows systems and have been found to have targeted users in Turkey, Latvia, and Italy primarily but […]

The post Masslogger – A Campaign that Exfiltrates Passwords from Microsoft Outlook, Google Chrome, and Instant Messengers appeared first on GBHackers On Security.

Lazarus hacker Group Attack Defence Industries with custom-made Malware ThreatNeedle

Sun, 28 Feb 2021 07:09:56 GMT

Lazarus has now added the defence industry to its growing list of victims. Lazarus is a North Korean hacking group that has been active since 2009. The group has primarily been linked with ransomware campaigns, cyberespionage, and attacks against the cryptocurrency market. Researchers at Kaspersky were made aware of the attack on the defence industry […]

The post Lazarus hacker Group Attack Defence Industries with custom-made Malware ThreatNeedle appeared first on GBHackers On Security.

Malicious Firefox Extension that Allows Attackers to Access and Control Users’ Gmail Accounts

Sat, 27 Feb 2021 07:07:46 GMT

Proofpoint Threat Research has tracked low-volume phishing campaigns targeting Tibetan organizations globally. In January and February 2021, experts observed threat actors aligned with the Chinese Communist Party’s state interests delivered a customized malicious Mozilla Firefox browser extension that facilitated access and control of users’ Gmail accounts. Proofpoint has named this malicious browser extension “FriarFox” and […]

The post Malicious Firefox Extension that Allows Attackers to Access and Control Users’ Gmail Accounts appeared first on GBHackers On Security.

Researchers Find a Way to Learn What Users Type in Video Calling

Fri, 26 Feb 2021 07:15:28 GMT

You are on an official video call. You share a joke with your coworker about your boss on private chat. You’ll both laugh and giggle over the joke. The call gets over, and you carry on with life as normal. The next day your boss calls you, and guess what, he wants to discuss the […]

The post Researchers Find a Way to Learn What Users Type in Video Calling appeared first on GBHackers On Security.

New PDF Vulnerability Let Attackers Bypass the Signature Validation in PDF and Replace Content

Thu, 25 Feb 2021 16:18:17 GMT

A team of researchers from the Ruhr-University Bochum in Germany has reported the attacks bypassing the signature validation in PDF. Digitally signed PDFs are used in contracts and invoices to guarantee the authenticity and integrity of their content. A user opening a signed PDF expects to see a warning in case of any modification. In […]

The post New PDF Vulnerability Let Attackers Bypass the Signature Validation in PDF and Replace Content appeared first on GBHackers On Security.

NSA Tools used by Chinese APT Hackers Before it Released Online

Thu, 25 Feb 2021 05:19:55 GMT

Check Point Research team revealed that the China-linked APT31 group known as Zirconium, used a tool dubbed Jian, which is a replica of NSA Equation Group‘s “EpMe” hacking tool, years back it was leaked online by Shadow Brokers hackers. According to the evidence collected on the various cyberespionage campaigns over the years, Kaspersky experts hypothesize […]

The post NSA Tools used by Chinese APT Hackers Before it Released Online appeared first on GBHackers On Security.

Kroger Data Breach – Hackers Stole Files that Shared Through Secure File Transfer Service

Tue, 23 Feb 2021 10:18:45 GMT

The Kroger Company is the United States’ largest supermarket by revenue and the second-largest general retailer. Kroger operates almost 2,750 supermarkets in 35 states. Kroger employs approximately 500,000 people and had over $122 billion in sales for 2019. The company has confirmed that it was impacted by the data security incident affecting Accellion, Inc. Accellion’s […]

The post Kroger Data Breach – Hackers Stole Files that Shared Through Secure File Transfer Service appeared first on GBHackers On Security.

Hackers Abuse Google Alerts to Promote a Fake Adobe Flash Player Update that Installs Malware

Tue, 23 Feb 2021 07:21:33 GMT

Google Alerts is a content change detection and notification service, offered by the search engine company Google. The service sends emails to the user when it finds new results, such as web pages, newspaper articles, blogs, or scientific research, that match the user’s search term. According to BleepingComputer, threat actors are using Google Alerts to […]

The post Hackers Abuse Google Alerts to Promote a Fake Adobe Flash Player Update that Installs Malware appeared first on GBHackers On Security.

Windows Registry Analysis – Tracking Every Activity That You Do on the Windows System

Mon, 22 Feb 2021 03:39:00 GMT

The purpose of this article is to provide you with a depth understanding of the Windows Registry and Wealth of information it holds. Today most administrators and forensic analysts, the registry probably looks like the entrance to a dark. Besides Configuration information, the Windows Registry holds information regarding recently accessed files and considerable information about […]

The post Windows Registry Analysis – Tracking Every Activity That You Do on the Windows System appeared first on GBHackers On Security.

Apple New Proxy Feature to Prevent Leaking IP Addresses to Google

Thu, 18 Feb 2021 04:17:26 GMT

With the upcoming iOS 14.5 update, Apple will roll out a feature that will ensure that Google is unable to obtain the IP addresses of iOS users. All of Safari’s Safe Browsing traffic will be re-routed through Apple-controlled proxy servers. This new feature has been confirmed by Maciej Stachowiak, Head of Webkit Engineering at Apple. […]

The post Apple New Proxy Feature to Prevent Leaking IP Addresses to Google appeared first on GBHackers On Security.

Unpatched SHAREit Flaw Let Attackers Execute Remote Code

Thu, 18 Feb 2021 04:04:53 GMT

SHAREit app is owned by Smart Media4U Technology Pte. Ltd. which is a global technology company in Singapore. SHAREit was originally made by Chinese tech giant Lenovo. The company produces an app, also called SHAREit, which is compatible with various smartphone platforms that allow users to share files between devices directly. Experts from Trend […]

The post Unpatched SHAREit Flaw Let Attackers Execute Remote Code appeared first on GBHackers On Security.

5 Considerations When Implementing A SOC Program

Wed, 17 Feb 2021 16:58:44 GMT

As cyberattacks become more sophisticated than ever, establishing a security operations center (SOC) has become essential. The SOC is a central IT center from where you can coordinate your cybersecurity response. Thanks to the varied nature of threats these days, many companies find it useful to implement a variety of third party solutions that specialize […]

The post 5 Considerations When Implementing A SOC Program appeared first on GBHackers On Security.

How Web Application Security Solution Helps Businesses of any size, from all Different Industry ...

Wed, 17 Feb 2021 15:10:59 GMT

A web application security solution can help businesses protect their apps and website from potential cyberthreats. Businesses of all sizes, across industries and verticals, depend on a web app security solution that stops cyber attackers from taking advantage of any vulnerabilities in their applications. Some common web application cyberattacks include SQL injections, remote command execution, data breaches, […]

The post How Web Application Security Solution Helps Businesses of any size, from all Different Industry Verticals? appeared first on GBHackers On Security.

Microsoft Says SolarWinds Supply Chain Attack is the Work of 1,000-plus Developers

Wed, 17 Feb 2021 06:29:34 GMT

Brad Smith, Microsoft’s President, earlier this week stated that Microsoft had deep-dived into SolarWinds’ hack. The investigation into this malicious attack has revealed that more than 1,000 engineers have probably worked on this attack. Brad Smith further goes on to state that the attack is “the largest and most sophisticated attack the world has ever […]

The post Microsoft Says SolarWinds Supply Chain Attack is the Work of 1,000-plus Developers appeared first on GBHackers On Security.

Romance Scam Reached a Record of $304 Million Losses in 2020

Wed, 17 Feb 2021 06:23:03 GMT

The Federal Trade Commission (FTC) says people have reported losing more money on romance scams than on any other fraud type identified in Sentinel. “ In 2020, reported losses to romance scams reached a record $304 million, up about 50% from 2019. For an individual, that meant a median dollar loss of $2,500. From 2016 […]

The post Romance Scam Reached a Record of $304 Million Losses in 2020 appeared first on GBHackers On Security.

Operators Behind Egregor Ransomware Arrested by Ukrainian, French Police

Tue, 16 Feb 2021 04:14:36 GMT

French and Ukrainian law enforcement agencies have joined forces to arrest several members of the Egregor ransomware operation in Ukraine. The arrest was carried out early this week. The regional daily Ouest France, the video game giant Ubisoft and the transporter Gefco were the victims of the arrested group. Who Arrested? Ransom payments to individuals […]

The post Operators Behind Egregor Ransomware Arrested by Ukrainian, French Police appeared first on GBHackers On Security.

Yandex Data Breach – Employee Caught Selling Access to User Accounts

Tue, 16 Feb 2021 03:56:35 GMT

Yandex N.V. is a Russian Dutch-domiciled multinational corporation providing Internet-related products and services including transportation, search and information services, eCommerce, navigation, mobile applications, and online advertising. They provide over 70 services. Yandex is the popular leading search engine and E-mail provider in Russia. They announced that a data breach had been discovered during routine screening […]

The post Yandex Data Breach – Employee Caught Selling Access to User Accounts appeared first on GBHackers On Security.

What Is Cyber Threat Hunting?

Mon, 15 Feb 2021 09:01:00 GMT

Intro to Hunting: What it is and why it is important Threat hunting has been around for a while, but only recently it has become a sort of buzzword in cybersecurity circles. Besides security professionals, more and more organizations recognize that proactive hunting needs to play a role in their overall security practices. Threat hunting […]

The post What Is Cyber Threat Hunting? appeared first on GBHackers On Security.

Google Published a Research Blog About who are the People Prone to cyber-attacks via Email

Sun, 14 Feb 2021 03:13:47 GMT

Earlier this week, Google had published a research blog about who are the people and regions most prone to cyber-attacks via email. The blog states that Google stops more than 100 million harmful mails (spam), from reaching Gmail users. There were several malicious attackers who sought to profit from the pandemic, as more than 18 […]

The post Google Published a Research Blog About who are the People Prone to cyber-attacks via Email appeared first on GBHackers On Security.

Antivirus Firm Exposed Internal Log data Generated by their Products

Fri, 12 Feb 2021 10:01:42 GMT

EMSISOFT, Antivirus Firm revealed a data breach on one of their test systems. The company used the system to evaluate and benchmark possible solutions relating to the storage and management of the log data generated by their products and services. Quickly after becoming aware of the breach, the company took the affected system offline and […]

The post Antivirus Firm Exposed Internal Log data Generated by their Products appeared first on GBHackers On Security.