Skip to main content
FreeIntelHub
Feed Threat Feed Search Trending
Intelligence CVE Priority Vulnerability IOC Lookup IOC Feed YARA Rules Phishing Lookup Exploit Lookup Pastes Dark Web
Adversaries Threat Groups Software Campaigns
Explore Dashboard Geo Map Heatmap MITRE ATT&CK
Browse Sources Vendors Categories Sectors
RSS API
FreeIntelHub
/
Sign In

GBHackers

20 articles

GBHackers Malware Jun 26

China-Linked Malware Found in Counterfeit USB Drives Used on Japan Defense Force Classified Networks

Japan’s defense infrastructure has faced scrutiny following an investigation that revealed members of the Japan Self-Defense Forces (JSDF) used counterfeit U...

GBHackers →

GBHackers CVE GitHub Docker Jun 26

FOSSBilling Flaw Lets Admin Attackers Abuse DI Container for SQL Access and RCE

A critical server-side template injection (SSTI) vulnerability in FOSSBilling, tracked as CVE-2026-28496, is exposing instances to potential full database co...

T1190 1 IOC

GBHackers →

GBHackers CVE Jun 26

Hackers Exploit WinRAR CVE-2025-8088 to Plant Startup Shortcut and Run PowerShell Loader

Hackers have weaponized a WinRAR path-traversal flaw tracked as CVE-2025-8088 to silently plant a Startup shortcut and run a multi-stage PowerShell loader th...

T1592 1 IOC

GBHackers →

GBHackers Phishing Jun 26

Scammers Abuse Shopify to Send Fake Invoices and Steal Credentials via Fake Support Calls

Scammers are increasingly exploiting Shopify’s ecosystem and its Shop order-tracking app to deliver fraudulent invoices directly into users’ purchase histori...

T1566 T1204

GBHackers →

GBHackers General Apple Jun 26

Russian Authorities Used Cellebrite UFED to Break Into Human Rights Activist’s iPhone

Russian authorities leveraged Cellebrite’s Universal Forensic Extraction Device (UFED) to gain access to a detained human rights activist’s iPhone, according...

GBHackers →

GBHackers Malware Jun 26

KuinaExtractor Stealer Targets Browser Data, Crypto Wallets, Roblox, Steam, and Discord

A previously undocumented Rust-based infostealer they call KuinaExtractor, a family that has evolved from a capable early prototype into a hardened, stealth-...

GBHackers →

GBHackers General Google Apple SAP Jun 26

WhatsApp Adds Security Warning Before Users Start Chat With Unknown Numbers

WhatsApp has introduced a new proactive security feature that warns users before they start conversations with unknown phone numbers. This update, currently ...

GBHackers →

GBHackers Campaigns Jun 26

Chinese-Speaking Hackers Deploy TinyRCT Backdoor Against Critical Energy Infrastructure

A Chinese-speaking threat cluster tracked as CL-STA-1062 has deployed a newly discovered .NET backdoor, TinyRCT, in targeted campaigns against government and...

GBHackers →

GBHackers General Jun 26

ChatGPT 5.6 Release Reportedly Delayed Following Trump Administration Security Request

OpenAI has reportedly delayed the full public release of its next-generation AI model, GPT-5.6, following a formal request from the Trump administration to l...

GBHackers →

GBHackers General Microsoft Jun 26

Windows Secure Boot Certificate Expiry Exposes Billions of PCs to Bootkit and Firmware Security Risks

Microsoft’s long-planned Secure Boot certificate rollover has reached a critical milestone, impacting more than just routine updates. The Microsoft Corporati...

GBHackers →

GBHackers CVE Amazon Cisco Jun 26

CISA Adds Actively Exploited Cisco Unified CM Flaws to KEV Catalog

The U.S.

1 IOC

GBHackers →

GBHackers Malware Oracle GitHub Jun 26

Mini Shai-Hulud Worm Poisons LeoPlatform npm Packages to Steal Developer and CI/CD Secrets

A fresh supply-chain wave tied to the Mini Shai-Hulud, Miasma, and Hades malware families is actively poisoning npm packages in the LeoPlatform and RStreams ...

GBHackers →

GBHackers Campaigns Jun 26

Hackers Use Malicious Minecraft Fabric Mods to Deploy LoaderClient and WeedHack Stealer

Hackers are weaponizing malicious Minecraft Fabric mods to deliver LoaderClient. This stage-one malware loader steals session data and hands it off to the We...

GBHackers →

GBHackers General Jun 25

Agentic AI Pentesting Platforms Comparison

Agentic AI transforms Penetration Testing from a periodic consulting practice to a continuous validation discipline. While traditional pentests remain releva...

GBHackers →

GBHackers CVE Jun 25

ManageEngine AD360 Integrated Products Hit by Account Takeover Vulnerability

ManageEngine has disclosed a critical account takeover vulnerability, tracked as CVE-2026-11374, affecting various integrated products within its AD360 ident...

1 IOC

GBHackers →

GBHackers TTPs Jun 25

LokiBot Malware Uses API Hashing and 3DES-Encrypted C2 to Hide Infostealer Activity

LokiBot, a long-lived infostealer first advertised in May 2015, continues to evolve. Recent samples demonstrate deliberate attempts to evade static detection...

T1573 T1592

GBHackers →

GBHackers General Google Jun 25

Gemini 3.5 Flash Now Supports Agentic Computer Use for Enterprise Automation Tasks

Google has announced a significant enhancement to its AI platform with the release of Gemini 3.5 Flash, which now includes native support for agentic compute...

GBHackers →

GBHackers Malware Amazon Jun 25

Shai-Hulud Hades Payload Hits 20 Leo/RStreams npm Packages in Fresh Supply Chain Attack

A fresh supply-chain wave by the Shai-Hulud/Hades family that infected 20 npm packages in the Leo/RStreams ecosystem, an AWS-native event streaming SDK widel...

T1195

GBHackers →

GBHackers CVE Jun 25

Langflow RCE Flaw Lets Attackers Execute Arbitrary Python Code Without Authentication

A critical unauthenticated remote code execution (RCE) vulnerability in Langflow, tracked as CVE-2026-33017, is being actively exploited in the wild within h...

T1190 1 IOC

GBHackers →

GBHackers Advisory Jun 25

Curl 8.21.0 Released With 18 Security Fixes

The curl project has announced the release of version 8.21.

GBHackers →

«Previous page 1 ... 9 10 11 12 13 ... 45 Next page»
FreeIntelHub · Open-source CTI platform

All articles belong to their respective owners. FreeIntelHub aggregates publicly available RSS feeds for informational purposes only. DMCA