1010.cx – Page 17 – cybersecurity / defense / intelligence

Payroll Pirate Campaign Uses AiTM Session Hijacking to Bypass MFA and Redirect Salaries

·

cyber security, Cyber Security News

A financially motivated campaign dubbed “Payroll Pirate” has emerged using advanced phishing and adversary-in-the-middle (AiTM) session hijacking to bypass multifactor authentication (MFA) and reroute payroll disbursements. This operation targets payroll and HR portals at mid-market and enterprise organizations, chaining credential theft, real-time session interception, and subtle profile changes to siphon funds without triggering conventional alarms. […]

The post Payroll Pirate Campaign Uses AiTM Session Hijacking to Bypass MFA and Redirect Salaries appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

¶¶¶¶¶

¶¶¶¶¶

¶¶¶¶¶

¶¶¶¶¶

¶¶¶¶¶
Jenkins RCE Flaw Exploited by Attackers in the Wild

·

CVE/vulnerability, cyber security, Cyber Security News, vulnerability

A remote code execution (RCE) vulnerability in Jenkins, tracked as CVE-2026-53435, is now actively exploited in the wild. The flaw, stemming from insecure deserialization during Jenkins’ config.xml processing, allows unauthenticated or low-privileged attackers to execute arbitrary code on vulnerable instances, posing a severe risk to organizations that rely on the popular CI/CD automation server. Jenkins RCE Flaw […]

The post Jenkins RCE Flaw Exploited by Attackers in the Wild appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

¶¶¶¶¶

¶¶¶¶¶

¶¶¶¶¶

¶¶¶¶¶

¶¶¶¶¶
Handala Hacking Group Claims Breach of California Water Service

·

California, Cyber Attack, Cyber Crime, Cyber-Attacks, cybersecurity, Data Breaches, Handala, Iran, Water

The Handala hacking group claims it has targeted California Water Service, leaking 5GB of customer database and GPS network files in its latest infrastructure attack.

¶¶¶¶¶

¶¶¶¶¶

¶¶¶¶¶

¶¶¶¶¶

¶¶¶¶¶
Windows 11 Update Causes System Freezes, Triggers BitLocker Recovery, and Breaks OneDrive

·

cyber security, Cyber Security News, Windows

Windows 11 cumulative update KB5094126, released on June 9, 2026, for builds 26200.8655 and 26100.8655, is triggering a wave of user reports about system freezes, forced BitLocker recovery screens, and broken OneDrive integration in File Explorer on some devices. While Microsoft positions the patch as a critical security and reliability update, early feedback suggests serious […]

The post Windows 11 Update Causes System Freezes, Triggers BitLocker Recovery, and Breaks OneDrive appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

¶¶¶¶¶

¶¶¶¶¶

¶¶¶¶¶

¶¶¶¶¶

¶¶¶¶¶
Velvet Ant Hackers Backdoor OpenSSH and PAM to Spy on Critical Infrastructure Network

·

cyber security, Cyber Security News

A long-running, highly disciplined intrusion attributed to the China-nexus actor known as Velvet Ant has been revealed as a near-decade campaign of silent access that culminated in the replacement of core authentication components OpenSSH binaries and PAM modules across a segregated critical-infrastructure network. The intrusion chain began with compromises of internet-facing systems where the operator […]

The post Velvet Ant Hackers Backdoor OpenSSH and PAM to Spy on Critical Infrastructure Network appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

¶¶¶¶¶

¶¶¶¶¶

¶¶¶¶¶

¶¶¶¶¶

¶¶¶¶¶
The Onboarding Password Mistake That Creates Unnecessary Risk

·

Employee onboarding is a busy time for IT teams. New starters need devices, accounts, access permissions, and passwords, all delivered within a tight timeframe. That usually means sharing a temporary “first-day” password so employees can access systems for the first time. The issue is that these passwords don’t always stay temporary. They may be sent over email or SMS, reused across accounts,

¶¶¶¶¶

¶¶¶¶¶

¶¶¶¶¶

¶¶¶¶¶

¶¶¶¶¶
152 Chrome Wallpaper Extensions with 105K Installs Linked to Adware and Fake Traffic

·

Cybersecurity researchers have discovered a network of 152 Google Chrome extensions that act as new tab live wallpaper add-ons to distribute a potentially unwanted program (PUP) family. The cluster spans 38 separate Chrome Web Store publisher accounts and three brand backends: tabplugins[.]com, yowgames[.]com, and chromewallpaper[.]com. They have been collectively installed 105,000 times. The

¶¶¶¶¶

¶¶¶¶¶

¶¶¶¶¶

¶¶¶¶¶

¶¶¶¶¶
New DPAPISnoop Tool Enables Extraction of CREDHIST Hashes From Windows Systems

·

cyber security, Cyber Security News, Windows

A newly enhanced version of the open-source DPAPISnoop tool is drawing attention in the security community after researchers demonstrated its ability to extract offline-crackable hashes from Windows DPAPI credential history (CREDHIST) files, potentially exposing historical password material and enabling deeper insight into user password patterns over time. New DPAPISnoop Tool Developed by Nettitude’s CyberLabs team, […]

The post New DPAPISnoop Tool Enables Extraction of CREDHIST Hashes From Windows Systems appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

¶¶¶¶¶

¶¶¶¶¶

¶¶¶¶¶

¶¶¶¶¶

¶¶¶¶¶
Over 50 Android Apps Found Spreading MagicAd Trojan via Official Stores

·

Android, Cyber Attack, cybersecurity, Doctor Web, GetApps, MagicAd, Malware, Samsung, Security, TROJAN, Xiaomi

Over 50 Android apps on official stores spread MagicAd trojan, using system tricks to force background ads even after infected apps are closed.

¶¶¶¶¶

¶¶¶¶¶

¶¶¶¶¶

¶¶¶¶¶

¶¶¶¶¶
Popular WordPress Plugin Scripts Tampered to Plant Hidden Backdoors on Sites

·

An attacker tampered with trusted JavaScript files used by WordPress sites running PushEngage, OptinMonster, and TrustPulse, turning those files into a way to break into the sites. When a site administrator was logged in as the file loaded, the code created an admin account under the attacker’s control and installed a hidden plugin that opened a way back in. Ordinary visitors did not trigger it

¶¶¶¶¶

¶¶¶¶¶

¶¶¶¶¶

¶¶¶¶¶

¶¶¶¶¶