Skip to content
Home
About Us
Team
Resources
Our Services
Endpoint Detection & Response
Cybersecurity Training
Security Assessments
Security Solutions
Why Raven?
Blog
Contact Us
X
The Hacker News
Malicious PyPI Package Masquerades as Chimera Module to Steal AWS, CI/CD, and macOS Data
June 16, 2025
Cybersecurity researchers have discovered a malicious package on the Python Package Index (PyPI) repository that's capable of harvesting sensitive developer-related information, such as credentials, configuration data, and environment variables, among others. The package, named chimera-sandbox-extensions, attracted 143 downloads and likely targeted users of a service called Chimera Sandbox,
Discord Invite Link Hijacking Delivers AsyncRAT and Skuld Stealer Targeting Crypto Wallets
June 14, 2025
A new malware campaign is exploiting a weakness in Discord's invitation system to deliver an information stealer called Skuld and the AsyncRAT remote access trojan. "Attackers hijacked the links through vanity link registration, allowing them to silently redirect users from trusted sources to malicious servers," Check Point said in a technical report. "The attackers combined […]
Over 269,000 Websites Infected with JSFireTruck JavaScript Malware in One Month
June 13, 2025
Cybersecurity researchers are calling attention to a "large-scale campaign" that has been observed compromising legitimate websites with malicious JavaScript injections. According to Palo Alto Networks Unit 42, these malicious injects are obfuscated using JSFuck, which refers to an "esoteric and educational programming style" that uses only a limited set of characters to write and execute
Ransomware Gangs Exploit Unpatched SimpleHelp Flaws to Target Victims with Double Extortion
June 13, 2025
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Thursday disclosed that ransomware actors are targeting unpatched SimpleHelp Remote Monitoring and Management (RMM) instances to compromise customers of an unnamed utility billing software provider. "This incident reflects a broader pattern of ransomware actors targeting organizations through unpatched versions of SimpleHelp
CTEM is the New SOC: Shifting from Monitoring Alerts to Measuring Risk
June 13, 2025
Introduction: Security at a Tipping Point Security Operations Centers (SOCs) were built for a different era, one defined by perimeter-based thinking, known threats, and manageable alert volumes. But today’s threat landscape doesn’t play by those rules. The sheer volume of telemetry, overlapping tools, and automated alerts has pushed traditional SOCs to the edge. Security teams […]
GBHackers Security | #1 Globally Trusted Cyber Security News Platform
Uncovering the Technique of Hiding Images in DNS TXT Entries
June 16, 2025
A curious technique has emerged: hiding images inside DNS TXT records. This approach, which at first glance seems unorthodox, leverages the flexibility of DNS TXT records to store arbitrary data, including the binary data that makes up an image. The method has gained attention among tech enthusiasts and security researchers, sparking discussions on platforms like Reddit […]
Google Cloud Suffers Major Disruption After API Management Error
June 16, 2025
Google Cloud experienced one of its most significant outages in recent years, disrupting a vast array of services and impacting millions of users and businesses worldwide. The disruption, which lasted for over three hours, was traced back to a critical error in Google Cloud’s API management system, highlighting the vulnerabilities inherent in modern cloud infrastructure. […]
IBM Backup Services Flaw Allows Hackers to Gain Elevated Access
June 16, 2025
A critical security vulnerability has been identified in IBM’s Backup, Recovery, and Media Services (BRMS) for IBM i, potentially exposing enterprise environments to privilege escalation attacks. The flaw, tracked as CVE-2025-33108, affects versions 7.4 and 7.5 of the BRMS software, which are widely used for automating backup and recovery operations on IBM i systems. Nature […]
KIA Ecuador Keyless Entry Systems Vulnerability Faces Major Theft Threat
June 16, 2025
A critical security flaw has been uncovered in the keyless entry systems (KES) widely used in KIA vehicles across Ecuador, exposing thousands of cars to a heightened risk of theft. The vulnerability, identified by independent hardware security researcher Danilo Erazo, centers on the use of outdated “learning code” technology in aftermarket key fobs homologated and […]
Kali Linux 2025.2 Released: New Tools, Smartwatch and Car Hacking Added
June 13, 2025
Kali Linux, the preferred distribution for security professionals, has launched its second major release of 2025, Kali Linux 2025.2, in June. This update introduces a restructured Kali Menu, upgraded desktop environments, 13 new tools, and significant Kali NetHunter advancements, including smartwatch Wi-Fi injection and a car hacking toolset. Here’s a concise look at the key […]
