ANY.RUN now integrates with OpenCTI, a cyber threat intelligence platform that allows automatic enrichment of OpenCTI observations with malware data directly from ANY.RUN analysis. Users can access indicators like TTPs, hashes, IPs, and domains without manual data source checks. The…
Tag: GBHackers on Security | #1 Globally Trusted Cyber Security News Platform
Multistage RA World Ransomware Exploits Group Policy Infrastructure
The RA World ransomware, previously known as the RA Group, has been a significant threat to organizations worldwide since its emergence in April 2023. Focusing on the healthcare and financial sectors, ransomware has predominantly targeted entities in the United States…
RedLine Malware Tops Charts by Hijacking 170M+ Passwords in the Last 6 Months
The cybersecurity landscape has been shaken by the discovery that a single piece of malware, known as RedLine, has stolen over 170 million passwords in the past six months. This alarming statistic has placed RedLine at the forefront of cyber…
Google Chrome to Roll Out Real-time Phishing Protection
Google has announced an upgrade to its Safe Browsing technology to provide Chrome users with real-time protection against phishing, malware, and other malicious sites. This enhancement is set to revolutionize how users navigate the web, ensuring safety without compromising privacy.…
Critical ChatGPT Plugins Flaw Let Attackers Gain Control Over Organization’s Account
Threat actors can exploit ChatGPT’s ecosystem for several illicit purposes, such as crafting prompts to generate malicious code, phishing lures, and disinformation content. Even threat actors can exploit ChatGPT’s exceptional capabilities to craft and launch a multitude of sophisticated and…
Hackers Exploit Windows SmartScreen Vulnerability to Install DarkGate Malware
The operators of DarkGate successfully leveraged a patched Windows Defender SmartScreen vulnerability, identified as CVE-2024-21412, as a zero-day attack to disseminate the complex and ever-evolving DarkGate malware. The vulnerability tracked as CVE-2024-21412, with a CVSS base score of 8.1, is a Microsoft Defender…
Hackers Claim 740GB of Data Stolen from Viber VOIP Platform
Viber, known for its encrypted messaging and voice services, boasts millions of users worldwide who rely on its platform for secure communication. The breach, if confirmed, represents one of the largest in recent history, potentially exposing a vast amount of…
Hackers Use Weaponized Lnk File to Deploy AutoIt Malware
Hackers have been found utilizing weaponized LNK files to deploy a strain of AutoIt malware, raising alarms across the cybersecurity community. Unpacking the LNK Malware The infection chain begins with a seemingly innocuous LNK file, which, upon closer inspection, reveals…
Combining Threat Intelligence Platforms & Sandboxes for Efficient Security Operations – A DFIR Guide
Organizations have many tools when investigating cyber threats, but two stand out: Threat Intelligence Platforms (TIPs) and sandboxes. Each solution provides distinct advantages, yet combining their capabilities can lead to a more practical approach to detecting, analyzing, and responding to…
Hackers Abuse Document Publishing (DDP) Websites to Launch Cyber Attacks
Threat actors have been observed hosting phishing documents on legitimate digital document publishing (DDP) sites as part of continuous session harvesting and credential attempts. Since DDP sites are unlikely to be blocked by web filters, have a good reputation, and…