A fully exposed command-and-control (C2) panel for a previously undocumented remote access trojan (RAT) framework dubbed Auraboros, supporting live audio streaming, intensive keylogging, browser credential theft, and multi-cookie hijacking all accessible over the internet with zero authentication. Further inspection revealed “Auraboros C2 Station,” a polished single-page dashboard that immediately loads victim data and live controls without […]

The post Auraboros RAT Adds Live Audio, Keylogging, and Cookie Theft via Open C2 Panel appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

DinDoor is a newly documented backdoor that abuses the Deno JavaScript runtime and MSI installer files to execute attacker‑controlled code while sidestepping traditional detection controls quietly. Hiding behind trusted runtimes and common Windows tooling gives threat actors a flexible way to deploy fileless or low‑footprint malware into enterprise environments. Instead of shipping a conventional compiled […]

The post DinDoor Backdoor Exploits Deno and MSI Installers to Slip Past Detection appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

A direct operational link between Iran’s MuddyWater espionage group and the Russian TAG-150 CastleRAT malware-as-a-service (MaaS) platform, showing how state and criminal ecosystems are now tightly intertwined. Investigators recovered 15 malware samples, including at least two CastleRAT “builds” and a PowerShell script named reset.ps1 that deploys a previously undocumented JavaScript/Node.js agent dubbed ChainShell. On this server, two native […]

The post Hackers Tie Iranian Espionage to CastleRAT and ChainShell appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.