Exploit Brokers By Forgebound Research - Tech and Hacking News Commentary

Zero-Click iPhone Horror: Pegasus Spyware Attack Against Exiled Russian Journalist In today's episode we dive and explore the alarming cyberattack that targeted an exiled Russian journalist through a zero-click iPhone exploit, leading to the deployment of the notorious Pegasus spyware. This incident sheds light on the escalating cybersecurity threats journalists face and the increasingly sophisticated methods employed by hackers. 🔍 Highlights: An overview of the Pegasus spyware: what it is and who it's been used against. The vulnerability of iPhones and overview of common zero-click exploits used. The real-world impact on journalists and the broader implications for press freedom. Join us as we break down this incident, discuss its broader significance, and provide a developer's point of view of these threats. Source: Zero-Click Exploit Pegasus https://www.darkreading.com/mobile/nation-state-actor-used-0-click-exploit-to-drop-pegasus-spyware-on-russian-journalist-s-iphone iOS Sandbox https://support.apple.com/guide/security/security-of-runtime-process-sec15bfe098e/web

We are unveiling the Threat: Chaes Malware's Attack on Banking and Financial Apps. We discuss the breadth of the attack and go over details as they were shared with "TheHackerNews". Join us as we help shed light on the increasing amount of malware and cyber attacks. #hackingnews #cybersecurity #malware #cyberattack #infosec #technews Source: https://thehackernews.com/2023/09/new-python-variant-of-chaes-malware.html

Beware! Roblox developers are being tricked by imitation npm packages, and your security is at risk. This video is a warning to all Roblox developers, and it's essential that you take steps to protect yourself from this type of attack. Stay safe online and make sure to keep your passwords safe! Source: https://www.darkreading.com/vulnerabilities-threats/luna-grabber-malware-targets-roblox-gaming-devs Luna grabber https://github.com/Smug246/Luna-Grabber Roblox: https://corporate.roblox.com/parents/

In the Dark Side of Hacking, we take a look at how Russian Hackers have shifted their focus to attacking infrastructure rather than individuals after being identified and putting victims through panic. Google AI launches a new bug hunting strategy called Fuzzing, which uses a machine learning algorithm to search for flaws in software. Fuzzing is a more targeted approach to bug hunting that can be used to find vulnerabilities before they are exploited. Article: https://exploitbrokers.com/hacking-news/hn-12-the-dark-side-of-hacking-russian-hackers-infrastructural-shift-and-google-ais-fuzzing/ 🔍 Minecraft's BleedingPipe Vulnerability: Breaking down the dangerous vulnerability found in popular mods and how to protect your server. Details here ➡️ Sources: https://www.bleepingcomputer.com/news/security/hackers-exploit-bleedingpipe-rce-to-target-minecraft-servers-players/ MMPA: https://blog.mmpa.info/posts/bleeding-pipe/ 🕵️ BlueCharlie's Evasive Moves: Dive deep into how this Russian APT actor shifts tactics and what this means for cybersecurity ➡️ Source: https://www.darkreading.com/attacks-breaches/russian-apt-bluecharlie-swaps-infrastructure-to-evade-detection Blue Charlie Higher Up: https://www.nisos.com/blog/coldriver-group-report/ Infrastructure switch up: https://www.recordedfuture.com/bluecharlie-previously-tracked-as-tag-53-continues-to-deploy-new-infrastructure-in-2023 🤖 Google's AI Bug Hunter: Learn how Google is utilizing AI to push the boundaries of vulnerability discovery ' ➡️ Source https://security.googleblog.com/2023/08/ai-powered-fuzzing-breaking-bug-hunting.html 🍎 New Mac Malware Alert: Unmasking the new variant of XLoader hiding in a productivity app ➡️ Source https://thehackernews.com/2023/08/new-variant-of-xloader-macos-malware.html 🔔 If you enjoyed this episode of Exploit Brokers, consider subscribing to get notified of our latest updates! Share with others to raise awareness! #Minecraft #BleedingPipe #BlueCharlie #APT #GoogleAI #Cybersecurity #MacMalware #XLoader #ExploitBrokers #hackingnews #googleai #russianhacking

Hey guys T-Mobile got hacked, PayPal gets hit by a massive credential stuffing attack, a new android malware that is an evolution of an existing banking malware, and a phone ad scheme that infected real apps. All this in this episode of Exploit Broker's Hacking News Round up. You're not going to want to miss this. Show Notes: https://exploitbrokers.com/podcasts/hn11/

Intro Hey guys and welcome to Exploit Brokers where we break down articles, recap recent hacking events, and give insight on the technical aspects of the hacking events. I will explain things and give my opinion on tech and hacking events so let's get started. Show Notes: https://exploitbrokers.com/podcasts/hn10

Freakout Botnet is taking over DVRs, Ricochet has security community concerned, MyKings botnet is going strong, and a popular streaming site Twitch has been hacked, so let's login. Show Notes: https://exploitbrokers.com/podcasts/hn09 #hacker #hackingnews #exploitbrokers #exploitbrokerspodcast #CyberSec #ethicalhacking #ethicalhacker #RansomwareNews #TwitchHack #Botnets #MaliciousCode

IT Multinational Corporation Cognizant hit with Ransomware, Scams round up in April, Pulse VPN Patch is not patchy enough, and over 700 developer libraries contains malicious code We have some interesting stuff to cover, so let's login. Show Notes: https://exploitbrokers.com/podcasts/hn08 #hacker #hackingnews #exploitbrokers #exploitbrokerspodcast #CyberSec #ethicalhacking #ethicalhacker #RansomwareNews #Ruby #MaliciousCode

HN07 reports on the Kaspersky's finding about malicious Textbooks, a new Marriott data breach, Covid19 scamming, and Anatomy of a Skimming As a Service MageCart skimmer. All the show notes can be found at https://exploitbrokers.com/podcasts/hn07 . #cybersec #ethicalhacking #ethicalhacker #COVID-19 #DataBreach #MageCart

HN06 reports on the Croatian Government hack, a new undetectable golang malware as well as a cloud flare outage and Christmas hackers being jailed. All the show notes can be found at https://exploitbrokers.com/podcasts/hn06 . #cybersec #ethicalhacking #ethicalhacker #croatiahacked #golangmalware

HN05 reports on NASA getting hacked, a new ransomware alert. As well as wetrasnfer sending files to the wrong people and a new steam phishing campaign aimed at gamers. All the show notes can be found at https://exploitbrokers.com/podcasts/HN05 #hackingnews #hacking #infosec #cybersec #securitypodcast #ethicalhacking #ethicalhacker #nasahacked #loocipher