GB Hacker
-
NSA Warns of Cloud Attacks on Authentication Mechanisms
The US National Security Agency (NSA) published a security advisory, warning about two techniques abused by threat actors for escalating attacks...
-
Supply-chain Attack Targeting Certification Authority in Southeast Asia
ESET Researchers revealed a supply-chain attack occurred on the website of the Vietnam Government Certification Authority (VGCA): ca.gov.vn....
-
Microsoft Breached in Suspected Russian Hack Using SolarWinds
Yesterday we had reported that SolarWinds appeared to have been hacked by Russian attackers. Today we have another victim related to this...
-
What is XSS (Cross Site Scripting) ? – A Detailed Understanding the Type of XSS
XSS is a very commonly exploited vulnerability type which is very widely spread and easily detectable and also it is one of the important...
-
How to Ensure Mobile App Security: Key Risks & Top Practises
Building an app today doesn’t end with finding the right technologies and implementing features in a user-friendly user interface. Today,...
-
Russian Hackers Breached US govt, FireEye in a Supply Chain Attack
When the National Security Council meets at the White House on a Saturday, you know that the hack is very serious. The US Treasury and Commerce...
-
PgMiner Botnet Attacks PostgreSQL Databases to Install a Cryptocurrency Miner
Unit 42 researchers at Paloalto discovered a cryptocurrency mining botnet named “PGMiner”. It is a Linux based cryptocurrency botnet that...
-
Flaws with PoS Terminals Let Attackers Execute Arbitrary Code
Researchers describe the intense vulnerabilities in the two biggest Point of Sales (PoS) vendors, Verifone, and Ingenico. The affected devices...
-
WordPress Easy WP SMTP zero-day Vulnerability Exposes Hundreds of Thousands of Sites to Hack
Easy WP SMTP, a WordPress plugin, with more than 500,000 installations, allows one to configure and send all outgoing mails via a SMTP server,...
-
Adrozek Malware Silently Hijacks Microsoft Edge, Google Chrome, Yandex, and Firefox Browsers
Google Chrome, Firefox, Microsoft Edge, and Yandex have become the most recent targets of an ongoing malware campaign, called Adrozek, as...
-
Facebook Takedown Infrastructure of Hacker Groups Targeting Various Government Entities
Bangladesh and Vietnam based hackers were caught by Facebook recently for hacking into its users’ accounts and taking control of the pages....
-
Russian APT28 Hackers Uses COVID-19 Lures to Deliver Zebrocy Malware via VHD File
The security firm Intezer revealed COVID-19 phishing lures that were used to deliver the Go version of Zebrocy. Zebrocy is mainly used against...