Skip to main content
FreeIntelHub
Feed Threat Feed Search Trending
Intelligence CVE Priority Vulnerability IOC Lookup IOC Feed YARA Rules Phishing Lookup Exploit Lookup Pastes Dark Web
Adversaries Threat Groups Software Campaigns
Explore Dashboard Geo Map Heatmap MITRE ATT&CK
Browse Sources Vendors Categories Sectors
RSS API
FreeIntelHub
/
Sign In

GBHackers

20 articles

GBHackers Campaigns Amazon Cloudflare Jun 25

Hackers Abuse Cloudflare-Hosted AWS Phishing Domains to Steal Console Logins

A concise but sophisticated phishing campaign that targeted AWS console users by abusing Cloudflare-hosted domains to deliver adversary-in-the-middle (AiTM) ...

T1566 T1078 T1557

GBHackers →

GBHackers General Microsoft Google Apple Amazon Linux Jun 25

Google Chrome Update Patches 18 Security Flaws, Including Critical WebGL and Autofill Vulnerabilities

Google has released Chrome version 149.0.

GBHackers →

GBHackers TTPs Apple Jun 25

DPRK-Linked macOS Implant Uses LaunchAgent Persistence and Python Stealer Module

The binary tracked as macOS.Gaslight as a Rust-based macOS implant and infostealer whose most novel features are analyst-directed prompt injection and a hard...

1 IOC

GBHackers →

GBHackers CVE Microsoft Apple Jun 25

Microsoft WinRE Vulnerability Allows Hackers to Bypass UEFI/BIOS Password Enforcement

A newly disclosed vulnerability in the Microsoft Windows Recovery Environment (WinRE) could allow attackers to bypass UEFI and BIOS password protections, exp...

1 IOC

GBHackers →

GBHackers Campaigns Microsoft Google Oracle Jun 25

Hackers Use Malicious Chrome Extension to Break Out of Browser Sandbox

A sophisticated malware campaign that combined a phishing lure, an obfuscated Windows JavaScript dropper, a malicious Google Chrome extension and a Native Me...

T1566

GBHackers →

GBHackers Campaigns Jun 25

Alibaba Accused of Illicitly Accessing Claude AI Models Using 25,000 Fraudulent Accounts

Anthropic has accused the Chinese technology conglomerate Alibaba of orchestrating a large-scale, coordinated operation to extract capabilities from its Clau...

GBHackers →

GBHackers Zero-Day Cisco Jun 25

Cisco Catalyst SD-WAN Manager Zero-Day Exploited to Gain Root Access via Malicious CSV Upload

Cisco Catalyst SD-WAN Manager instances are currently being targeted in a zero-day exploitation campaign that allows attackers to escalate their privileges t...

1 IOC

GBHackers →

GBHackers Supply Chain Jun 25

OpenClaw Supply Chain Risk Lets Attackers Abuse AI Agent Authority for Unauthorized Actions

OpenClaw’s agentic marketplace, ClawHub, was designed to accelerate AI-driven workflows by letting third-party “skills” extend an AI agent’s capabilities. Th...

GBHackers →

GBHackers Campaigns Jun 25

StrikeShark Campaign Uses New SharkLoader Malware to Deploy Cobalt Strike Beacon

During a recent investigation into activity affecting a diplomatic mission in Indonesia, researchers uncovered a previously undocumented loader family they n...

GBHackers →

GBHackers Ransomware Jun 25

Europol Disrupts Cybercrime-as-a-Service Networks Used for Ransomware and Financial Fraud

Europol, in collaboration with global law enforcement agencies and private sector partners, has successfully disrupted a significant cybercrime-as-a-service ...

GBHackers →

GBHackers General Amazon Jun 25

Agentic Red-Team Tools Flaws Let Hackers Steal API Keys, Escape Sandboxes, and Compromise Hosts

Agentic red-team tools designed for autonomous offensive security operations are themselves vulnerable, allowing attackers to steal API keys, weaponize the a...

GBHackers →

GBHackers Ransomware Zscaler Jun 24

ModeloRAT and Mistic Backdoor Activity Linked to Ransomware Initial Access Broker

The Python-based remote access trojan ModeloRAT and a newly observed stealth backdoor, dubbed Backdoor.Mistic, to activity consistent with an initial access ...

GBHackers →

GBHackers Campaigns Google Jun 24

Android Malware Campaign Uses Fake Document Reader App with 100K Google Play Downloads

Android Malware Campaign Uses Fake Document Reader App with 100K Google Play Downloads tracks a fresh Anatsa campaign that abused trust in a seemingly useful...

GBHackers →

GBHackers Supply Chain GitHub Jun 24

Grafana Confirms TanStack npm Supply Chain Attack Led to GitHub Repository Cloning

Grafana Labs has confirmed that a recent supply chain attack involving the TanStack npm ecosystem resulted in the cloning of its internal GitHub repositories...

T1195

GBHackers →

GBHackers Campaigns Microsoft Jun 24

Hackers Use Microsoft Teams-Themed Lures to Deploy Legitimate Remote Access Software

An active phishing campaign that impersonates Microsoft Teams to trick victims into downloading a legitimately signed remote access tool (RAT) preconfigured ...

T1566 T1592

GBHackers →

GBHackers Ransomware Microsoft Google Jun 24

Payouts King Initial Access Broker Deploys Edgecution Malware Through Malicious Edge Extension

A concerted campaign by an initial access broker with ties to the Payouts King ransomware ecosystem that leverages a novel browser-based delivery technique t...

GBHackers →

GBHackers CVE Microsoft Jun 24

PoC Released for Microsoft Exchange Server EWS InstallApp SSRF Vulnerability

A proof-of-concept exploit has been released for CVE-2026-45502, a server-side request forgery (SSRF) vulnerability in the Microsoft Exchange Server’s Exchan...

1 IOC

GBHackers →

GBHackers CVE Jun 24

Webmin Stored XSS Vulnerability Lets Attackers Exploit Root Users

A newly disclosed stored cross-site scripting (XSS) vulnerability in Webmin has raised significant security concerns, as it allows attackers with limited pri...

1 IOC

GBHackers →

GBHackers General Microsoft Linux Jun 24

Fable 5 AI Model Builds Bootable Windows Kernel in Rust in Just 38 Minutes

A newly released AI model, Claude Fable 5, has made a significant advancement in autonomous systems programming by generating a bootable Windows NT-style ker...

GBHackers →

GBHackers CVE Cisco Jun 24

Cisco Unified Communications Manager Flaw Exposes Systems to SSRF Attacks and Root Access

Cisco has disclosed a critical server-side request forgery (SSRF) vulnerability affecting its Unified Communications Manager (Unified CM) and Unified Communi...

1 IOC

GBHackers →

«Previous page 1 ... 10 11 12 13 14 ... 45 Next page»
FreeIntelHub · Open-source CTI platform

All articles belong to their respective owners. FreeIntelHub aggregates publicly available RSS feeds for informational purposes only. DMCA