1010.cx – Page 59 – cybersecurity / defense / intelligence

Fake Adobe Document Cloud Pages Spread ScreenConnect Malware

·

adobe, cyber security, Cyber Security News, Malware

Hackers are actively exploiting trust in Adobe Document Cloud by using fake delivery pages to install remote access malware. The campaign leverages a sophisticated phishing kit named “RatPressto,” which abuses compromised WordPress sites and legitimate software to evade detection while targeting financial organizations. The attack begins with phishing emails that appear to be standard corporate […]

The post Fake Adobe Document Cloud Pages Spread ScreenConnect Malware appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

¶¶¶¶¶

¶¶¶¶¶

¶¶¶¶¶

¶¶¶¶¶

¶¶¶¶¶
Samba Security Flaw Lets Attackers Execute Code Remotely

·

CVE/vulnerability, cyber security, Cyber Security News, vulnerability

A critical security vulnerability in Samba’s printing subsystem has been disclosed, allowing unauthenticated attackers to execute arbitrary code remotely on affected servers. Tracked as CVE-2026-4480, the flaw carries a maximum CVSS score of 10.0, highlighting its severe impact on confidentiality, integrity, and availability. The issue affects Samba print servers configured with the “print command” and […]

The post Samba Security Flaw Lets Attackers Execute Code Remotely appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

¶¶¶¶¶

¶¶¶¶¶

¶¶¶¶¶

¶¶¶¶¶

¶¶¶¶¶
Zapocalypse Attack Lets Threat Actors Hijack Zapier Accounts

·

cyber security, Cyber Security News

“Zapocalypse” is a newly disclosed attack chain that shows how attackers could have abused Zapier’s “Code by Zapier” feature to move from a single sandboxed Python step to a potential full-scale Zapier account takeover. The research, carried out by Token Security, is notable because it did not rely on any unknown zero‑days or exotic primitives. […]

The post Zapocalypse Attack Lets Threat Actors Hijack Zapier Accounts appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

¶¶¶¶¶

¶¶¶¶¶

¶¶¶¶¶

¶¶¶¶¶

¶¶¶¶¶
OpenVPN Connect macOS Vulnerability Allows Remote Command Execution

·

CVE/vulnerability, cyber security, Cyber Security News, macOS, vulnerability

OpenVPN has released a critical security update for its macOS client after researchers uncovered a vulnerability that could allow remote command execution on affected systems. The issue, tracked as CVE-2026-9560, impacts the privileged helper component in OpenVPN Connect and has been fixed in version 3.8.2 (build 6009), released on May 25, 2026. OpenVPN Connect macOS […]

The post OpenVPN Connect macOS Vulnerability Allows Remote Command Execution appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

¶¶¶¶¶

¶¶¶¶¶

¶¶¶¶¶

¶¶¶¶¶

¶¶¶¶¶
Claude Opus 4.8 Released With Advanced Engineering-Level Coding Capabilities

·

AI, cyber security, Cyber Security News

Anthropic has announced the release of Claude Opus 4.8, a major upgrade to its flagship AI model that introduces advanced engineering-level coding capabilities and improved autonomous task execution. The latest version builds on Opus 4.7, focusing on enhanced reasoning, longer independent operation, and more transparent decision-making. These improvements are expected to affect both software development […]

The post Claude Opus 4.8 Released With Advanced Engineering-Level Coding Capabilities appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

¶¶¶¶¶

¶¶¶¶¶

¶¶¶¶¶

¶¶¶¶¶

¶¶¶¶¶
Fake Video Player Updates Spread Miner and RAT Malware

·

cyber security, Cyber Security News, Malware

Hackers are actively exploiting illegal streaming platforms to distribute advanced malware, using fake video player updates as a lure to infect unsuspecting users. The attack begins when users attempt to play a video on compromised streaming websites. Instead of playback, a message appears claiming the video player plugin is outdated, prompting users to download an […]

The post Fake Video Player Updates Spread Miner and RAT Malware appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

¶¶¶¶¶

¶¶¶¶¶

¶¶¶¶¶

¶¶¶¶¶

¶¶¶¶¶
Fake Codex Remote UI Steals OpenAI Auth Tokens

·

cyber security, Cyber Security News, OpenAI

A newly uncovered supply chain attack is leveraging a legitimate-looking developer tool, codexui-android, to silently steal OpenAI Codex authentication tokens, highlighting a growing trend where threat actors build credible software to mask malicious intent. Unlike typical typosquatting or disposable malware packages, this tool delivers real functionality, making it attractive to developers. However, investigators found that for […]

The post Fake Codex Remote UI Steals OpenAI Auth Tokens appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

¶¶¶¶¶

¶¶¶¶¶

¶¶¶¶¶

¶¶¶¶¶

¶¶¶¶¶
Kimsuky Deploys HTTPSpy, Expands Arsenal with HelloDoor and VS Code Tunnels

·

The North Korean state-sponsored threat actor known as Kimsuky (aka Velvet Chollima) has been attributed to a fresh set of cyber attacks targeting South Korean military and corporate entities through March and April 2026. “Kimsuky employed a range of tailored social engineering tactics, such as spoofing security software installation pages and crafting a fake Webex meeting page that leveraged

¶¶¶¶¶

¶¶¶¶¶

¶¶¶¶¶

¶¶¶¶¶

¶¶¶¶¶
MicrosoftSystem64 Malware Abuses Hugging Face for Stealthy Data Theft

·

cyber security, Cyber Security News, Malware

A sophisticated supply chain attack targeting the npm ecosystem has been uncovered, involving a malicious package named js-logger-pack that evolved into a powerful cross-platform malware loader. First observed in early April 2026, the package went through 29 incremental versions, gradually transforming from a seemingly benign logging utility into a full-scale information stealer and remote access Trojan. Despite […]

The post MicrosoftSystem64 Malware Abuses Hugging Face for Stealthy Data Theft appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

¶¶¶¶¶

¶¶¶¶¶

¶¶¶¶¶

¶¶¶¶¶

¶¶¶¶¶
Carnival Cruise Breach Leaks Sensitive Customer Information

·

cyber security, Cyber Security News, Data Breach

Carnival Corporation has disclosed a significant data breach impacting approximately 5.99 million individuals, raising serious concerns about data security within the global travel and hospitality sector. The incident, officially reported to the Maine Attorney General’s office, involved unauthorized access to sensitive customer information for 9,746 Maine residents. Carnival Cruise Breach According to regulatory filings, the […]

The post Carnival Cruise Breach Leaks Sensitive Customer Information appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

¶¶¶¶¶

¶¶¶¶¶

¶¶¶¶¶

¶¶¶¶¶

¶¶¶¶¶