logo

GBHackers

ID: 57db9278-026e-5389-b875-0a7aa44bc51f

STIX ID: identity--57db9278-026e-5389-b875-0a7aa44bc51f

Feed Type: rss

Earliest post: 2024-01-02

Latest post: 2026-07-13

Cybersecurity tutorials, hacking techniques, threat research, and practical defensive guidance — all aimed at helping security professionals stay sharp and informed.

01/01/2020
07/14/2026
Title Date Published Describes IncidentAuthorVisible
Jscrambler npm Supply Chain Attack Steals Cloud Credentials and Crypto Wallet Secrets2026-07-13TrueDivyaTrue
Exposed Server Unmasks Evilginx Operators Stealing Microsoft 365 Sessions and OAuth Tokens2026-07-13TrueMayura KathirTrue
Operation Capsule Vault Uses Malicious ISO Files and Process Injection to Deliver RokRAT2026-07-13TrueMayura KathirTrue
New GhostCommit Technique Hides Exploits in Images to Evade AI Code Reviewers2026-07-13TrueDivyaTrue
Windows Device ID Helped Authorities Track Scattered Spider Hacking Group Member2026-07-07TrueDivyaTrue
Critical BeyondTrust Authentication Flaws Expose Remote Support Appliances to Attacks2026-07-07TrueDivyaTrue
Google Gemini Live API Flaw Allows RCE via Unconstrained Ephemeral Tokens2026-07-07TrueDivyaTrue
Cavern Manticore Malware Uses Low-Detection .NET Modules for Reconnaissance and Lateral Movement2026-07-07TrueMayura KathirTrue
Microsoft Edge High-Severity Vulnerability Allows Remote Code Execution2026-07-07TrueDivyaTrue
Hackers Use Trusted Microsoft Domain and One-Time Codes to Hijack Corporate Accounts2026-07-06TrueMayura KathirTrue
Veeam Backup BinaryFormatter Flaw Enables Remote Code Execution2026-07-06TrueDivyaTrue
Go-Based Gentlemen Ransomware Uses PsExec, WMIC, and PowerShell Remoting for Network Propagation2026-07-06TrueMayura KathirTrue
SilverFox Campaign Turns ValleyRAT Into Multi-Stage Malware With Rootkit Capabilities2026-07-06TrueMayura KathirTrue
FIFA World Cup Phishing Scam Uses Fake Reward Pages to Steal Credit Card Data2026-07-06TrueMayura KathirTrue
Microsoft Warns Windows 11 Enterprise Devices May Boot to Black Screen After Updates2026-07-06TrueDivyaTrue
IBM WebSphere Application Server Hit by Critical XSS and Path Traversal Vulnerabilities2026-07-06TrueDivyaTrue
SSH Attackers Use Single Exec Commands to Bypass Interactive Honeypot Analysis2026-07-06TrueDivyaTrue
Armored Likho APT Deploys BusySnake Stealer Against Government and Power Sector Targets2026-07-04TrueMayura KathirTrue
Avalon Malware Uses Legal Document Lure to Deliver CrownX Ransomware Capabilities2026-07-04TrueMayura KathirTrue
Verified X Sponsored Ad Spreads Mac Malware While ConsentFix Hijacks Microsoft 365 Accounts2026-07-04TrueMayura KathirTrue
Fake Google Play Store Pages Use Trusted Brand Names to Push Gambling PWAs2026-07-03TrueMayura KathirTrue
Fake Google and Cloudflare Verification Pages Spread StealC, HijackLoader, and NetSupport Malware2026-07-03TrueDivyaTrue
Microsoft Exchange SSRF Vulnerability Lets Low-Privileged Attackers Read Arbitrary Files2026-07-03TrueDivyaTrue
Hackers Use Fake API Documentation to Trick AI Agents Into Sending Crypto Payments2026-07-03TrueMayura KathirTrue
FBI Says TeamPCP Uses Trojanized Updates to Steal Cloud Tokens, SSH Keys, and Kubernetes Secrets2026-07-03TrueMayura KathirTrue
ChatGPT Guardrail Bypass Vulnerability Exposes LFI Risk Through Download Flow2026-07-03TrueDivyaTrue
Hackers Use Compromised Websites and transcript.pdf.js Lure to Deliver PureLog Stealer2026-07-03TrueMayura KathirTrue
CitrixBleed Vulnerability Exploitation Within 24 Hours of Disclosure2026-07-03TrueDivyaTrue
Hackers Compromise GitHub Maintainer Accounts to Publish PolinRider-Infected Package Versions2026-07-03TrueMayura KathirTrue
Phishing Campaign Uses Fake Invoice PDF to Drop AsyncRAT, VenomRAT, and XWorm2026-07-02TrueMayura KathirTrue
950 Oracle E-Business Suite Instances Exposed as CVE-2026-46817 Attacks Observed in the Wild2026-07-02TrueDivyaTrue
EvilTokens-Linked ARToken Panel Exposes 80+ APIs for Microsoft 365 Token Theft2026-07-02TrueMayura KathirTrue
CISA Adds Actively Exploited Microsoft SharePoint Vulnerability to KEV Catalog2026-07-02TrueDivyaTrue
Hackers Use Geofenced Webpages to Deliver Ousaban Banking Trojan in Spain and Portugal2026-07-02TrueMayura KathirTrue
JetBrains Patches Critical Hub Authentication Bypass and Account Takeover Vulnerabilities2026-07-02TrueDivyaTrue
ValleyRAT Uses RC4 Encryption, Donut Shellcode, and rundll32 Injection for Stealth2026-07-02TrueMayura KathirTrue
Apple Hide My Email Vulnerability Lets Attackers Reveal Users’ Real Email Addresses2026-07-02TrueDivyaTrue
Scattered Spider Hacker Arrested in Finland and Extradited to U.S. Over Cyber Intrusion Charges2026-07-02TrueDivyaTrue
Malicious Google Notes Extension Swaps Crypto Wallet Addresses During Transactions2026-07-01TrueMayura KathirTrue
MacSync Stealer Hijacks macOS via Fake Claude Code Google Ads – Full Attack Chain Exposed2026-07-01TrueDivyaTrue
ToddyCat Uses Shadow Token via Remote Debug to Compromise Gmail Accounts2026-07-01TrueMayura KathirTrue
FCC Bans Chinese-Produced Network Equipment Linked to Cyber and Espionage Risks2026-07-01TrueDivyaTrue
CISA Adds Actively Exploited SimpleHelp Vulnerability to KEV Catalog2026-07-01TrueDivyaTrue
The Gentlemen Ransomware Targets Large Corporations and Critical Infrastructure Worldwide2026-07-01TrueMayura KathirTrue
Critical Linux Kernel Flaw Allows Unprivileged Users to Gain Full Root Access2026-06-27TrueEswarTrue
Cloud Bucket Hijacking Lets Attackers Silently Exfiltrate AWS, Google Cloud Data2026-06-27TrueEswarTrue
Linux Kernel DirtyClone Vulnerability Lets Local Attackers Gain Root Privileges2026-06-27TrueEswarTrue
Amazon Q Developer Vulnerability Allows Code Execution via Malicious Repositories2026-06-27TrueEswarTrue
Water and Wastewater Systems Become Strategic Targets for Russia, China, and Iran2026-06-26TrueMayura KathirTrue
China-Linked Malware Found in Counterfeit USB Drives Used on Japan Defense Force Classified Networks2026-06-26TrueDivyaTrue

1–50 of 1471