Data Security

Data Security News | Infosec Blog | Information Security Tutorials

No Login Required: How Hackers Hijack Your System with Just One Keystroke: utilman.exe Exploit Explained

On: May 2, 2025

The Windows operating system includes several pre-login accessibility features, intended to support users with disabilities. One of these components, utilman.exe (Utility Manager), is designed to launch accessibility tools like NarratorRead More →

How to Send DKIM-Signed, 100% Legit Phishing Emails — Straight from Google That Bypass Everything

On: April 21, 2025

In: Data Security, Tutorials

Security researcher Nick Johnson (@nicksdjohnson) has revealed a highly sophisticated phishing attack that leverages two separate Google services — OAuth and Google Sites — to execute a multi-layered campaign capableRead More →

Inside SPIDER-X: The Hacktivist Group Waging Digital War Across Nations—Are You on Their List?

On: April 21, 2025

In: Data Security

SPIDER-X, a shadowy and controversial hacktivist group that surfaced in January 2023, has quickly established itself as a digital menace under the banner of anti-Zionism and pro-Palestinian ideology. Self-styled asRead More →

Rented from Hertz, Thrifty or Dollar? Hackers Should Have Your License, SSN, and Card Data

On: April 15, 2025

In: Data Security

Hertz Global Holdings has formally confirmed a significant data breach that compromised personal information—including driver’s license numbers and financial details—of its customers across the Hertz, Thrifty, and Dollar rental brands.Read More →

“Don’t Click That! The Latest Hacker Trick Looks Helpful But It’s a Trap”

On: April 8, 2025

In: Data Security, Technology

In 2024, a new kind of online trick called “ClickFix” has been fooling people into clicking on things they shouldn’t. Imagine you’re using your computer and suddenly a message popsRead More →

New Vulnerability in GCP Cloud Run Shows Why Least Privilege Isn’t Enough

On: April 3, 2025

In: Data Security, Vulnerabilities

A newly disclosed vulnerability dubbed ImageRunner, uncovered by Tenable Research, exposed a subtle yet powerful privilege escalation pathway in Google Cloud Platform’s Cloud Run service. The vulnerability, now patched byRead More →

Microsoft’s Store Let Ransomware Slip Through – Is Your VSCode Editor Safe?

On: March 21, 2025

In: Data Security

Two malicious Visual Studio Code (VSCode) extensions were recently discovered deploying early-stage ransomware, raising serious concerns about the security of Microsoft’s extension vetting process. Identified by cybersecurity firm ReversingLabs, theRead More →

“Arda” PowerLess Malware

On: March 7, 2025

In: Data Security, Incidents

A well-known hacking group called GreenCharlie (also known as APT42, TA453, or Mint Sandstorm) has set up new online infrastructure between January and February 2025, which is believed to beRead More →

“mr. Guram” is back

On: March 5, 2025

In: Data Security, Network Tools

A cybercriminal named “mr. Guram,” affiliated with the notorious “Ramp” group, has launched Mimic v.10, a new Ransomware-as-a-Service (RaaS) program, allowing hackers and Initial Access Brokers (IABs) to distribute ransomwareRead More →

“Hackers’ New Playbook: How MSFTRecon Uncovers Microsoft 365 and Azure Weaknesses Without a Password!”

On: February 26, 2025

In: Data Security, OSINT Tools

On February 21, 2025, cybersecurity expert Jason Haddix, from Arcanum Information Security, released MSFTRecon—a powerful tool designed to scan Microsoft 365 and Azure for security loopholes, misconfigurations, and attack pathsRead More →

Data Security

No Login Required: How Hackers Hijack Your System with Just One Keystroke: utilman.exe Exploit Explained

How to Send DKIM-Signed, 100% Legit Phishing Emails — Straight from Google That Bypass Everything

Inside SPIDER-X: The Hacktivist Group Waging Digital War Across Nations—Are You on Their List?

Rented from Hertz, Thrifty or Dollar? Hackers Should Have Your License, SSN, and Card Data

“Don’t Click That! The Latest Hacker Trick Looks Helpful But It’s a Trap”

New Vulnerability in GCP Cloud Run Shows Why Least Privilege Isn’t Enough

Microsoft’s Store Let Ransomware Slip Through – Is Your VSCode Editor Safe?

“Arda” PowerLess Malware

“mr. Guram” is back

“Hackers’ New Playbook: How MSFTRecon Uncovers Microsoft 365 and Azure Weaknesses Without a Password!”

TunnelCrack: Two serious vulnerabilities in VPNs discovered, had been dormant since 1996

How to easily hack TP-Link Archer AX21 Wi-Fi router

US Govt wants new label on secure IoT devices or wants to discourage use of Chinese IoT gadgets

24,649,096,027 (24.65 billion) account usernames and passwords have been leaked by cyber criminals till now in 2022

How Chinese APT hackers stole Lockheed Martin F-35 fighter plane to develop its own J-20 stealth fighter aircraft [VIDEO]

MFA? Irrelevant. CitrixBleed 2 Lets Hackers Take Over Without Logging In

MotW Bypassed: Zero Warning, Full Control – New WinRAR Flaw Silently Bypasses Windows Security

New Vulnerability in GCP Cloud Run Shows Why Least Privilege Isn’t Enough

Hackers Can Manipulate Your Heart Rate Monitor – Unbelievable Security Flaw!

FortiGate Firewalls Zero-Day Chaos: How Hackers Are Gaining Control of Firewalls Worldwide – Is Your Network at Risk?

Phishing 2.0: AI Tools Now Build Fake Login Pages That Fool Even Experts

How TokenBreak Technique Hacks OpenAI, Anthropic, and Gemini AI Filters — Step-by-Step Tutorial

Comparing Top 8 AI Code Assistants: Productivity Miracle or Security Nightmare. Can You Patent AI Code Based App?

No Login Required: How Hackers Hijack Your System with Just One Keystroke: utilman.exe Exploit Explained

How to Send DKIM-Signed, 100% Legit Phishing Emails — Straight from Google That Bypass Everything

A Malware That EDR Can’t See?If You Rely on Antivirus for Protection, Read This Before It’s Too Late!

WinRAR and ZIP File Exploits: This ZIP File Hack Could Let Malware Bypass Your Antivirus

5 Techniques Hackers Use to Jailbreak ChatGPT, Gemini, and Copilot AI systems

This Hacker Toolkit Can Breach Any Air-Gapped System – Here’s How It Works

Hacking Pagers to Explosions: Israel’s Covert Cyber-Physical Sabotage Operation Against Hezbollah!

How Lynx Ransomware Extorts Millions from U.S. Companies

A Malware That EDR Can’t See?If You Rely on Antivirus for Protection, Read This Before It’s Too Late!

Top 2 Malicious Python Packages You Must Avoid! Zebo-0.1.0 & Cometlogger-0.1

This Hacker Toolkit Can Breach Any Air-Gapped System – Here’s How It Works

Hackers’ Guide to Rogue VM Deployment: Lessons from the MITRE hack

Cyber Security Channel

US Govt wants new label on secure IoT devices or wants to discourage use of Chinese IoT gadgets

24,649,096,027 (24.65 billion) account usernames and passwords have been leaked by cyber criminals till now in 2022

How Chinese APT hackers stole Lockheed Martin F-35 fighter plane to develop its own J-20 stealth fighter aircraft [VIDEO]