security

CanisterWorm’s latest evolution turns TeamPCP’s cloud-native toolkit into a geopolitically tuned wiper, capable of bricking entire Kubernetes clusters when it lands on systems configured for Iran. The campaign reuses the same Internet Computer Protocol (ICP) canister C2 and backdoor infrastructure seen in the earlier Trivy and NPM CanisterWorm incidents. However, it now adds selective destruction […]

The post TeamPCP Unleashes Iran-Targeted CanisterWorm Kubernetes Wiper appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

Security researcher Aleksandr Zhurnakov from PT Security has discovered a critical exploit chain in Dell Wyse Management Suite. By combining seemingly minor logic flaws, an attacker can achieve unauthenticated remote code execution. This attack targets the On-Premises version of the software, impacting both Standard and Pro editions. Vulnerability Details The exploit relies on two newly […]

The post Dell Wyse Management Flaws Could Lead to Full System Compromise appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

An out-of-bounds read vulnerability can be exploited remotely without authentication to read sensitive information from memory.

The post Critical Citrix NetScaler Vulnerability Poised for Exploitation, Security Firms Warn appeared first on SecurityWeek.

TP-Link recently published a critical security advisory addressing four high-severity vulnerabilities in its Archer series routers. The flaws impact the Archer NX200, NX210, NX500, and NX600 models. If successfully exploited, these vulnerabilities enable threat actors to bypass authentication, execute unauthorised operating system commands, and manipulate sensitive device configuration files. Vulnerability Details The advisory highlights a […]

The post Multiple Vulnerabilities in TP-Link Devices Enable Arbitrary Command Execution appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

The hackers stole internal IDs, names, email addresses, and business partner IDs from an internal management system.

The post Mazda Says Employee, Partner Information Stolen in Cyberattack appeared first on SecurityWeek.

U.S. Institutions and the Dark Web: What’s Being Sold and Who’s Buying? The modern Dark Web has evolved from a fragmented collection of independent hackers into a highly sophisticated, industrialized economy. The Dark Web market features established business practices, including specialized labor (such as Initial Access Brokers or malware developers), escrow systems, vendor reputation scores, […]