Category: gbhackers

F5 NGINX Plus & Open‑Source Flaw Lets Attackers Execute Code via MP4 File F5 has disclosed a high-severity vulnerability (CVE-2026-32647) in the NGINX ngx_http_mp4_module that allows attackers execute arbitrary code or cause a denial-of-service (DoS) using crafted MP4 files…. Go to gbhackers.com

New Study Reveals How Infostealer Infections Lead to Dark Web Exposure in Just 48… New research is shedding light on how infostealer malware turns a single careless click into full-blown credential exposure on dark web marketplaces in less… Go to gbhackers.com

511,000+ End-of-Life IIS Instances Found Online, Raising Security Risks Security researchers at The Shadowserver Foundation have identified a massive internet-facing attack surface, discovering more than 511,000 End-of-Life Microsoft Internet Information Services (IIS) instances… Go to gbhackers.com

Oblivion RAT Masquerades as Play Store Update to Spy on Android Users A newly discovered Android remote access trojan (RAT) called Oblivion RAT is raising concerns across the mobile threat landscape. Marketed as a malware-as-a-service (MaaS)… Go to gbhackers.com

CISA Warns of Craft CMS Code Injection Flaw Exploited in Active Attacks The Cybersecurity and Infrastructure Security Agency (CISA) has officially added a critical vulnerability affecting Craft CMS to its Known Exploited Vulnerabilities (KEV) catalog. Tracked… Go to gbhackers.com

Hackers Exploit Quest KACE SMA Flaw to Harvest Credentials Security Researchers have detected active exploitation targeting unpatched Quest KACE Systems Management Appliance (SMA) instances. Starting the week of March 9, 2026, threat actors… Go to gbhackers.com

MioLab MacOS Stealer Expands With ClickFix, Wallet Theft, Team APIs As Apple’s macOS footprint grows in both consumer and enterprise environments, dedicated infostealers like MioLab (aka Nova) show that Macs are no longer a… Go to gbhackers.com

Oracle Fixes High-Severity RCE Vulnerability Affecting Identity and Web Services Platforms Oracle recently issued an urgent security alert regarding a critical Remote Code Execution (RCE) flaw that impacts both Oracle Identity Manager and Oracle Web… Go to gbhackers.com

Trivy Vulnerability Scanner Compromised to Inject Malicious Scripts That Steal Credentials A highly sophisticated supply chain attack has successfully compromised the official Trivy GitHub Actions repository, severely impacting continuous integration environments. Discovered on March 19,… Go to gbhackers.com

Chrome Security Update Fixes 26 Vulnerabilities Enabling Remote Malicious Code Execution Google has released a critical security update for its Chrome desktop web browser, addressing 26 distinct vulnerabilities that could enable attackers to execute malicious… Go to gbhackers.com

Copyright Complaint Lures Linked to New PureLog Stealer Credential Theft Wave Threat actors are actively distributing the PureLog Stealer through a sophisticated, multi-stage attack campaign disguised as legal copyright violation notices. This information-stealing malware is… Go to gbhackers.com

FBI and CISA Flag Russian Cyber Operations Targeting Select Individuals via Signal The Federal Bureau of Investigation (FBI) and the Cybersecurity and Infrastructure Security Agency (CISA) have recently released a joint cybersecurity advisory regarding a widespread… Go to gbhackers.com

New Critical Jenkins Vulnerabilities Put CI/CD Servers at Risk of RCE Exploits The Jenkins project released a critical security advisory addressing multiple vulnerabilities in its core automation server and the LoadNinja plugin. These flaws expose continuous… Go to gbhackers.com

Bamboo Data Center and Server Vulnerability Enables Remote Code Execution Atlassian has officially resolved a high-severity Remote Code Execution (RCE) vulnerability within its Bamboo Data Centre application. Officially tracked as CVE-2026-21570, this critical security… Go to gbhackers.com

CISA Warns Cisco Secure Firewall Management Center 0-Day Is Being Exploited in Ransomware Attacks The Cybersecurity and Infrastructure Security Agency has issued an urgent warning regarding a critical zero-day vulnerability affecting heavily relied-upon Cisco security products. Tracked officially… Go to gbhackers.com

Microsoft Introduces Teams Upgrades to Improve Windows App Performance on ioS and Android Microsoft has officially announced the general availability of new Microsoft Teams optimizations designed specifically for the Windows App on both iOS and Android operating… Go to gbhackers.com

Navia Confirms Data Breach Exposing Sensitive Information of 2.7 Million Users Navia Benefit Solutions has confirmed a significant data breach impacting nearly 2.7 million individuals. The incident resulted from unauthorised access to the company’s systems,… Go to gbhackers.com

Horabot Returns in Mexico, Spreading via Phishing and Email Worm Attacks Horabot has resurfaced in Mexico with a more complex, multi‑stage kill chain that blends fake CAPTCHA lures, living-off-the-land scripting, and an email worm‑style spreader… Go to gbhackers.com

OpenWebUI Servers Targeted in Attacks Using AI Payloads to Steal Data A recent campaign has targeted improperly secured Open WebUI systems, allowing threat actors to deploy malicious artificial intelligence payloads. Open WebUI is a highly popular… Go to gbhackers.com

Pyronut Package Backdoors Telegram Bots With RCE Malicious ‘Pyronut’ is a trojanized Python package that backdoors Telegram bots and userbots, giving attackers remote code execution over both the Telegram session and… Go to gbhackers.com

Open VSX Extension Delivers RAT and Stealer via GitHub Downloader An Open VSX extension used by thousands of developers has been caught silently pulling a full-featured remote access trojan and infostealer from GitHub. The… Go to gbhackers.com

CISA Adds Exploited Zimbra Collaboration Suite Flaw to Warning List The Cybersecurity and Infrastructure Security Agency (CISA) has officially added a critical vulnerability affecting the Zimbra Collaboration Suite (ZCS) to its Known Exploited Vulnerabilities… Go to gbhackers.com

OpenAI Introduces GPT-5.4 Mini and Nano for Faster, Lightweight AI Performance OpenAI has officially launched GPT-5.4 mini and GPT-5.4 nano, introducing high-efficiency models optimized for automated workflows, coding subagents, and latency-sensitive deployments. These models are… Go to gbhackers.com

Critical Telnetd Vulnerability Enables Remote Code Execution Attacks A critical buffer overflow vulnerability has been discovered in the GNU InetUtils telnetd daemon. Tracked as CVE-2026-32746, the flaw carries a maximum CVSS 3.1… Go to gbhackers.com

ForceMemo Hijacks GitHub Accounts, Backdoors Python Repos ForceMemo is an active software supply‑chain campaign hijacking GitHub accounts and silently backdooring Python repositories via force‑pushed commits that look legitimate in the web… Go to gbhackers.com

Ubuntu Desktop Vulnerability Lets Attackers Escalate Privileges to Full Root Access The Qualys Threat Research Unit (TRU) has disclosed a critical Local Privilege Escalation (LPE) vulnerability affecting default installations of Ubuntu Desktop version 24.04 and… Go to gbhackers.com

Iran Cyber Ops Merge With PsyOps and EW Amid Escalating Conflict A new phase of the Iran war is unfolding in which ballistic missiles, drones, electronic warfare, and cyber operations are being deployed in parallel,… Go to gbhackers.com

CISA Issues Alert on Wing FTP Server Vulnerability Used in Attacks The Cybersecurity and Infrastructure Security Agency (CISA) has issued an urgent security alert regarding a critical vulnerability in the Wing FTP Server. On March… Go to gbhackers.com

Packagist Themes Deliver Trojanized jQuery in OphimCMS Supply Chain Attack A new OphimCMS supply chain attack in which six Packagist themes ship trojanized jQuery and other JavaScript to compromise site visitors rather than servers.​ Researchers… Go to gbhackers.com

Glassworm Malware Infects Popular React Native npm Packages A new Glassworm-linked supply chain attack has briefly turned two popular React Native npm packages into delivery vehicles for Windows credential-stealing malware. On March… Go to gbhackers.com

Angular XSS Vulnerability Threatens Thousands of Web Applications A high-severity Cross-Site Scripting (XSS) vulnerability, tracked as CVE-2026-32635, has been discovered in Angular, one of the world’s most widely used web application frameworks. … Go to gbhackers.com

Microsoft Launches AI-Driven Troubleshooting for Purview Data Lifecycle Tools Microsoft has officially released a new open-source tool designed to simplify how IT and security administrators manage data governance. Announced on March 16, 2026,… Go to gbhackers.com

ACRStealer Variant Deploys Syscall Evasion, TLS C2, Secondary Payloads New research reveals that a new ACRStealer variant is now being actively deployed as a final payload by HijackLoader, using low‑level syscalls, AFD-based networking,… Go to gbhackers.com

Fake FileZilla Downloads Spread RAT via Stealthy Multi-Stage Loader Fake FileZilla downloads are being used to deliver a stealthy Remote Access Trojan (RAT) through a multi‑stage loader, putting careless downloaders at high risk… Go to gbhackers.com

IBM Discovers ‘Slopoly’ AI-Generated Malware Linked to Hive0163 Ransomware Ransomware group Hive0163 is experimenting with a likely AI-generated malware framework, dubbed “Slopoly,” marking a visible shift toward AI-assisted tooling in attacks. While the… Go to gbhackers.com

Google Looker Studio Vulnerabilities Allow Attackers to Exfiltrate Data from Google Services Tenable Research recently uncovered “LeakyLooker,” a critical set of nine novel cross-tenant vulnerabilities within Google Looker Studio that enabled attackers to silently exfiltrate or… Go to gbhackers.com

Google Unveils Android 17 Advanced Protection Mode to Stop Malicious Services Google is preparing to launch Android 17, introducing a comprehensive suite of new features aimed at fundamentally improving device security, user privacy, and performance… Go to gbhackers.com

Authorities Shut Down Proxy Service Linked to Malware Campaign Targeting Thousands of Users  A coordinated international law enforcement operation successfully dismantled SocksEscort, a massive malicious residential proxy network. Led by the U.S. Justice Department alongside several European… Go to gbhackers.com

New Critical AdGuard Home Flaw Lets Attackers Bypass Authentication AdGuard Home, a highly popular network-wide ad and tracker blocking solution, has recently issued an emergency security hotfix to address a critical flaw. This… Go to gbhackers.com

Global Authorities Take Down 45,000 Malicious IPs Used in Ransomware Campaigns An unprecedented international law enforcement effort has successfully dismantled a massive cybercrime network. Coordinated by INTERPOL, the initiative targeted critical infrastructure used in phishing,… Go to gbhackers.com

GlassWorm Spreads via 72 Malicious Open VSX Extensions Hidden in Transitive Dependencies The GlassWorm malware campaign has evolved, significantly escalating its attacks on software developers. Instead of embedding malware directly into initial releases, the threat actors… Go to gbhackers.com

Starbucks Data Breach Exposes Personal Data of Hundreds of Users Starbucks Corporation recently disclosed a targeted cybersecurity incident that compromised the personal and financial information of 889 individuals. This internal platform is utilized by… Go to gbhackers.com

Critical CrackArmor Vulnerabilities Expose 12.6 Million Linux Servers to Full Root Takeover A newly disclosed set of nine vulnerabilities, dubbed “CrackArmor,” has exposed a critical flaw in AppArmor, a foundational Linux security module. AppArmor serves as the… Go to gbhackers.com

PsExec and Renamed Backup Tools Enabled Data Theft Before INC Ransomware Attack A ransomware intrusion in which attackers used legitimate Windows tools and a renamed backup utility to quietly stage and exfiltrate sensitive data before deploying… Go to gbhackers.com

Two Newly Discovered Chrome Zero-Days Exploited in the Wild to Run Malicious Code Google has released an urgent security update for its Chrome desktop browser to address two critical zero-day vulnerabilities. Tracked as CVE-2026-3909 and CVE-2026-3910, both… Go to gbhackers.com

Apple Releases Emergency iOS 15.8.7 Update to Block ‘Coruna’ Exploit Kit Apple has rolled out an emergency security update, iOS 15.8.7 and iPadOS 15.8.7, to protect users of older iPhones and iPads from a sophisticated… Go to gbhackers.com

Iran War Bait Fuels TA453, TA473 Phishing Campaigns TA453, TA473, and several emerging threat clusters are exploiting breaking news about the Iran war to run highly targeted phishing campaigns against governments and… Go to gbhackers.com

Hackers Exploit CloudFlare Anti-Security to Steal Microsoft 365 Login Credentials A recent Microsoft 365 credential harvesting campaign shows how attackers are exploiting CloudFlare’s protective features to shield malicious phishing sites from security scanners and… Go to gbhackers.com

Splunk RCE Vulnerability Exposes Systems to Arbitrary Shell Command Execution by Attackers A high-severity Remote Command Execution (RCE) vulnerability has been discovered in Splunk Enterprise and Splunk Cloud Platform, exposing systems to severe security risks. Tracked… Go to gbhackers.com

CastleRAT Attack Leverages Deno JavaScript Runtime to Bypass Enterprise Defenses A sophisticated malware campaign that abuses the Deno JavaScript runtime to deliver CastleRAT, a powerful remote access trojan designed for espionage and data theft…. Go to gbhackers.com

Ericsson US Hit by Cyber Attack, Hackers Steal Personal Data of Employees and Customers Ericsson Inc., the United States subsidiary of the Swedish telecommunications giant, has confirmed a data breach affecting 15,661 of its employees and customers. The… Go to gbhackers.com

Palo Alto Cortex XDR Broker Vulnerability Exposes Systems to Sensitive Information Theft and Modification Palo Alto Networks has issued a security advisory regarding a newly discovered vulnerability in its Cortex XDR Broker Virtual Machine (VM). Tracked as CVE-2026-0231,… Go to gbhackers.com

Microsoft Active Directory Flaw Allows Attackers to Escalate Privileges Microsoft has released a critical security update addressing a high-severity elevation of privilege vulnerability in Active Directory Domain Services (AD DS). This flaw, patched… Go to gbhackers.com

BeatBanker Trojan Spreads via Phishing, Deploys Crypto Miner and RAT on Targeted Devices BeatBanker is a new Android malware campaign targeting users in Brazil, combining banking fraud, crypto‑mining, and, in its latest wave, full device takeover via… Go to gbhackers.com

Google Warns of AI‑Driven Adaptive Malware Rewriting Its Own Code The cybersecurity landscape experienced a major shift in 2025 as threat actors transitioned from experimenting with artificial intelligence to fully integrating it into real-world… Go to gbhackers.com

Instagram Down: Global Outage Prevents Users from Posting and Messaging A widespread technical outage has struck Instagram, leaving thousands of users globally unable to access the popular social media application. The disruption, which primarily… Go to gbhackers.com

Microsoft .NET 0-Day Flaw Opens Doors for Denial of Service Attacks Microsoft’s March 2026 Patch Tuesday has addressed a zero-day vulnerability in the .NET framework, officially tracked as CVE-2026-26127. Disclosed publicly before a patch was… Go to gbhackers.com

SurxRAT Android Malware Uses LLMs for Phishing and Data Theft A new Android Remote Access Trojan (RAT) named SurxRAT, which is being sold as a commercial malware platform through a Telegram-based malware‑as‑a‑service (MaaS) ecosystem…. Go to gbhackers.com

OpenAI to Acquire Promptfoo to Address Vulnerabilities in AI Systems OpenAI has announced the acquisition of Promptfoo, an artificial intelligence security platform designed to help enterprises identify and fix vulnerabilities in their AI systems… Go to gbhackers.com

Cloudflare Pingora Flaws Enable Request Smuggling and Cache Poisoning Attacks In a recent security advisory, Cloudflare disclosed multiple HTTP request smuggling and cache poisoning vulnerabilities in its open-source Pingora framework. Tracked under the identifiers… Go to gbhackers.com

Gogs Flaw Could Let Attackers Quietly Overwrite Large File Storage Data A critical security vulnerability has been identified in Gogs, a widely used open-source self-hosted Git service. / Tracked as CVE-2026-25921, this flaw allows unauthenticated attackers… Go to gbhackers.com

OpenClaw Advisory Surge Highlights Blind Spot Between GitHub and CVE Vulnerability Tracking OpenClaw’s rapid rise has accidentally exposed how far GitHub’s advisory ecosystem has drifted from traditional CVE‑centric vulnerability tracking. Within roughly three weeks, the project published… Go to gbhackers.com

1-Click ZITADEL Vulnerability Could Allow Full System Takeover A critical Cross-Site Scripting (XSS) vulnerability has been discovered in ZITADEL, a popular open-source identity and access management platform. Tracked as CVE-2026-29191 with a… Go to gbhackers.com

Cybercrime Group in Vietnam Enables Massive Fraudulent Signups A wave of fraudulent account registrations to a cybercrime ecosystem operating out of Vietnam. These fake accounts are not just spam; they underpin large-scale… Go to gbhackers.com

ClipXDaemon Malware Targets Crypto Users in Linux X11 Sessions ClipXDaemon is a new Linux malware family that hijacks cryptocurrency clipboard data in X11 sessions, operating fully offline without any command‑and‑control (C2) infrastructure. It… Go to gbhackers.com

ExifTool Vulnerability Lets Malicious Images Trigger macOS Code Execution ExifTool is a ubiquitous open-source solution for reading, writing, and editing image metadata. It’s the go-to tool for photographers and digital archivists, and is… Go to gbhackers.com

Nginx UI Vulnerabilities Let Attackers Download Full System Backups A critical security flaw has been discovered in Nginx UI that allows unauthenticated threat actors to download and decrypt complete system backups. Tracked as… Go to gbhackers.com

OpenAI’s Codex Security Built to Automate Vulnerability Discovery and Remediation OpenAI has officially introduced Codex Security, an advanced application security agent designed to automate vulnerability discovery and remediation. Formerly known as Aardvark, the tool… Go to gbhackers.com

AVideo Platform Vulnerability Allows Hackers to Hijack Streams via Zero-Click Command Injection A highly critical security flaw has been disclosed in the AVideo platform, leaving media servers exposed to complete system takeover. Tracked as CVE-2026-29058, this… Go to gbhackers.com

RMM Tools Crucial for IT Operations, But Growing Threat as Attackers Weaponize Them Threat actors are increasingly weaponizing trusted administrative software to bypass security defenses. By exploiting legitimate software, cybercriminals gain persistent, hands-on-keyboard (HOK) access while hiding… Go to gbhackers.com

Claude AI Exposes 22 Firefox Vulnerabilities in Just Two Weeks Artificial intelligence has officially entered the realm of advanced vulnerability research, moving beyond simple code assistance to autonomous threat hunting. This highly accelerated discovery… Go to gbhackers.com

Malicious Browser Add‑on Targets imToken Users’ Private Keys Socket’s Threat Research Team has uncovered a highly deceptive Google Chrome extension designed to steal private keys and seed phrases from cryptocurrency users. The… Go to gbhackers.com

Apache ActiveMQ Flaw Enables DoS Attacks via Malformed Network Packets Security researchers have uncovered a significant vulnerability in Apache ActiveMQ, a popular open-source message broker used by enterprises to route data between applications. Tracked… Go to gbhackers.com

AWS-LC Flaw Exposes Amazon Users to Attacks by Bypassing Certificate Chain Validation Amazon issued a critical security bulletin (2026-005-AWS) detailing three high-severity vulnerabilities in AWS-LC, its open-source cryptographic library. Discovered through a coordinated disclosure process with… Go to gbhackers.com

FBI Detains U.S. Government Contractor in Massive $46 Million Fraud Scheme In a major law enforcement operation, authorities have arrested a U.S. government contractor accused of executing a massive cryptocurrency theft. John Daghita allegedly stole… Go to gbhackers.com

China-Nexus Hackers Target Telecommunication Providers with New Malware Attack A highly sophisticated China-linked threat actor, identified as UAT-9244, has been actively targeting critical telecommunications infrastructure across South America since 2024. Security researchers assess… Go to gbhackers.com

New Linux Rootkits Leverage Advanced eBPF and io_uring Techniques for Stealthy Attacks Linux rootkits have historically received less attention than their Windows counterparts, but the rapid adoption of Linux in cloud infrastructure, containers, and IoT devices… Go to gbhackers.com

Cisco Secure Firewall Management Flaw Allows Remote Code Execution Cisco recently disclosed a critical security vulnerability affecting its Secure Firewall Management Centre (FMC) software. This severe flaw carries a maximum severity score of… Go to gbhackers.com

Google Rolls Out Emergency Chrome Update to Patch 10 Critical Security Vulnerabilities Google released an urgent security update for its Chrome browser to address 10 vulnerabilities. Deployed on March 3, 2026, this stable channel update fixes… Go to gbhackers.com

ClickFix Campaign Exploits Fake LinkedIn VCs to Spread Malware Among Crypto and Web3 Experts A highly coordinated malware campaign that targets cryptocurrency and Web3 professionals through fake venture capital (VC) identities on LinkedIn. The operation combines advanced social… Go to gbhackers.com

Critical pac4j-jwt Authentication Bypass Vulnerability Allows Attackers to Impersonate Any User A critical security flaw in the popular Java authentication library pac4j-jwt allows attackers to completely bypass authentication and impersonate any user, including administrators. Tracked… Go to gbhackers.com

RedAlert Mobile Espionage Campaign Exploits Trojanized Rocket Alert App to Spy on Civilians A newly discovered mobile espionage operation dubbed “RedAlert” has surfaced amid the ongoing Israel–Iran conflict, exploiting wartime fear and dependency on early-warning systems. The campaign targets… Go to gbhackers.com

Phishing Campaign Uses Google Cloud to Host Malicious Redirects via GCS Bucket A sophisticated phishing campaign has recently emerged, leveraging Google Cloud’s trusted infrastructure to host malicious redirects. The campaign’s technical structure leverages Google Cloud Storage… Go to gbhackers.com

CISA Warns of VMware Aria Operations Vulnerability Actively Exploited in Attacks The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added a critical vulnerability affecting Broadcom’s VMware Aria Operations to its Known Exploited Vulnerabilities (KEV)… Go to gbhackers.com

IPVanish VPN for macOS Flaw Enables Privilege Escalation and Code Execution A high-severity security vulnerability has been discovered in the IPVanish VPN application for macOS. This flaw allows any unprivileged local user to execute arbitrary… Go to gbhackers.com

AzCopy Utility Misused for Data Exfiltration in Ongoing Ransomware Attacks Ransomware operators are increasingly abusing Microsoft’s trusted Azure data transfer utility, AzCopy, to quietly exfiltrate sensitive data before encryption, turning a routine cloud migration… Go to gbhackers.com

Iranian APT Groups Intensify Cyberattacks on Critical Infrastructure Amid Rising Geopolitical Tensions A dramatic escalation in Middle Eastern tensions began last week with Operation Lion’s Roar, a joint U.S.-Israeli military strike on Iranian nuclear and military… Go to gbhackers.com

Hackers Exploit Telegram for Initial Access to Corporate VPN, RDP, and Cloud Systems Hackers are increasingly abusing Telegram as an initial access marketplace, turning stealer logs and leaked credentials into direct entry points for corporate VPN, RDP,… Go to gbhackers.com

Fortinet FortiGate Devices Targeted by CyberStrikeAI, Allowing Hackers to Bypass Security Threat intelligence researchers at Team Cymru have uncovered an open-source AI-powered offensive security tool called CyberStrikeAI, actively used to target Fortinet FortiGate devices at… Go to gbhackers.com

Malvertising Campaign Spreads AMOS ‘malext’ macOS Infostealer via Fake Text-Sharing Ads A large-scale malvertising operation targets macOS users with fake Google Ads leading to malicious text-sharing sites. These lures deliver the AMOS infostealer variant, dubbed… Go to gbhackers.com

MS-Agent Vulnerability Exposes AI Agents to Remote Hijacking, Granting Full System Control A critical vulnerability has been discovered in the MS-Agent framework, a lightweight software tool used to build and run autonomous AI agents. Tracked as… Go to gbhackers.com

Epic Fury Cyber Shock: Iran’s Internet Down, Hacktivists Hit Back On Feb. 28, 2026, the United States and Israel launched coordinated military operations against Iran, codenamed Operation Epic Fury by the U.S. and Operation… Go to gbhackers.com

Project Compass Operation Cracks Down on “The Com” Cybercrime Collective – 30 Arrested, 179… An international law enforcement operation named Project Compass has launched a major offensive against “The Com,” a dangerous transnational virtual network (TVN). The operation,… Go to gbhackers.com

Middle East AWS Outage Sends Shockwaves Through Cloud Infrastructure Service A severe infrastructure incident in the Middle East has triggered a massive Amazon Web Services (AWS) outage, disrupting critical cloud operations across the region…. Go to gbhackers.com

OCRFix Botnet Uses ClickFix Phishing and EtherHiding to Mask Blockchain C2 Infrastructure OCRFix is a multi-stage botnet Trojan campaign that abuses a fake Tesseract OCR download site, ClickFix-style PowerShell execution, and EtherHiding on BNB Smart Chain… Go to gbhackers.com

Angular SSR Flaw Enables Unauthorized Server-Side Requests in Web Apps A critical vulnerability has been discovered in Angular Server-Side Rendering (SSR) that could allow attackers to perform Server-Side Request Forgery (SSRF) and Header Injection… Go to gbhackers.com

Hackers Launch Massive SonicWall Firewall Attack Using 4,000+ IP Addresses Hackers are actively mapping SonicWall firewalls worldwide, launching more than 84,000 SonicOS scanning sessions from over 4,000 unique IP addresses in just four days… Go to gbhackers.com

Fake Zoom and Google Meet Phishing Campaigns Deploy Teramind Surveillance Software Threat actors are executing sophisticated phishing campaigns that impersonate Zoom and Google Meet to silently deploy Teramind onto Windows devices. While Teramind is a… Go to gbhackers.com

Study Finds 87% of Organizations Exposed to Attacks Due to Known Vulnerabilities The 2026 State of DevSecOps report reveals a critical tension between development velocity and security. While organizations rapidly adopt AI-assisted coding, many fail to… Go to gbhackers.com

Stored XSS Vulnerability in RustFS Console Puts S3 Admin Credentials at Risk A critical security flaw has been identified in the RustFS Console, exposing administrators to a high risk of account takeover. Tracked as CVE-2026-27822, this… Go to gbhackers.com