EncryptHub Turns Brave Support Into a Dropper; MMC Flaw Completes the Run

Trustwave SpiderLabs researchers have uncovered a sophisticated EncryptHub campaign that ingeniously abuses the Brave Support platform to deliver malicious payloads, leveraging the recently disclosed CVE-2025-26633 vulnerability in Microsoft Management Console (MMC). Dubbed MSC EvilTwin, this flaw enables attackers to execute arbitrary code via manipulated .msc files, allowing EncryptHub also known as LARVA-208 or Water Gamayun […]

The post EncryptHub Turns Brave Support Into a Dropper; MMC Flaw Completes the Run appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

The original article found on GBHackers Security | #1 Globally Trusted Cyber Security News Platform Read More

Cyber Security News

North Korean Kimsuky Hackers Suffer Data Breach as Insiders Leak Information Online

cyberbytes
August 12, 2025
0

A member of North Korea’s notorious Kimsuky espionage group has experienced a significant data breach after insiders leaked hundreds of gigabytes of internal files and […]

Cyber Security News

GitHub Copilot ‘CamoLeak’ AI Attack Exfiltrates Data

cyberbytes
October 9, 2025
0

While GitHub has advanced protections for its built-in AI agent, a researcher came up with a creative proof-of-concept (PoC) attack for exfiltrating code and secrets […]

Cyber Security News

O2 VoLTE Flaw Allows Tracking of Customers’ Locations Through Phone Calls

cyberbytes
May 20, 2025
0

Significant privacy vulnerability in O2 UK’s Voice over LTE (VoLTE) implementation was recently discovered, allowing any caller to access precise location data of call recipients. […]

Share this:

Related Posts

North Korean Kimsuky Hackers Suffer Data Breach as Insiders Leak Information Online

Share this:

GitHub Copilot ‘CamoLeak’ AI Attack Exfiltrates Data

Share this:

O2 VoLTE Flaw Allows Tracking of Customers’ Locations Through Phone Calls

Share this: