Tag: gbhackers

Empire 6.3.0 Released as Updated Post-Exploitation Framework for Red Teams Researcher has officially released Empire 6.3.0, a significant update to the widely used post-exploitation and adversary emulation framework designed for Red Teams and Penetration Testers. This latest… Go to gbhackers.com

Apple Confirms Zero-Day Exploitation in Targeted Attacks on iPhone Users Apple has issued critical security patches addressing two actively exploited zero-day vulnerabilities affecting iPhone and iPad devices. The tech giant confirmed that both flaws… Go to gbhackers.com

Kali Linux 2025.4 Released Featuring 3 New Hacking Tools and Wifipumpkin3 The release of Kali Linux 2025.4 marks a significant milestone for the ethical hacking distribution, bringing major architectural changes and a suite of fresh tools. This… Go to gbhackers.com

Hackers Launch Rust-Based Luca Stealer Targeting Linux and Windows Cybercriminals are increasingly abandoning traditional programming languages like C and C++ in favor of modern alternatives such as Rust, Golang, and Nim. This strategic… Go to gbhackers.com

Hackers Target Windows Systems Using Phantom Stealer Hidden in ISO Files Seqrite Labs has uncovered an active Russian phishing campaign that delivers Phantom information-stealing malware through malicious ISO files embedded in fake payment confirmation emails…. Go to gbhackers.com

New JSCEAL Infostealer Malware Targets Windows Systems to Steal Login Credentials A sophisticated information-stealing tool known as JSCEAL has evolved significantly in recent months, deploying advanced anti-analysis techniques and hardened command-and-control infrastructure to target users… Go to gbhackers.com

MITRE Unveils 2025’s Top 25 Most Dangerous Software Weaknesses MITRE has released its annual Common Weakness Enumeration (CWE) Top 25 Most Dangerous Software Weaknesses list for 2025, identifying the most critical vulnerabilities affecting software development… Go to gbhackers.com

Research Findings on the Fate of Data Stolen in Phishing Attacks New research from Kaspersky has mapped the complete lifecycle of data stolen during phishing attacks, revealing a sophisticated “shadow market conveyor belt” where victim… Go to gbhackers.com

CISA Issues New Guidance for Securing UEFI Secure Boot on Enterprise Devices The Cybersecurity and Infrastructure Security Agency has released critical guidance on managing UEFI Secure Boot configurations across enterprise systems. The comprehensive advisory addresses growing… Go to gbhackers.com

Security Alert: 19 Fake PNG Extensions Found in VS Code Marketplace ReversingLabs (RL) researchers have identified a sophisticated supply chain campaign involving 19 malicious Visual Studio Code (VS Code) extensions. The campaign, which has been… Go to gbhackers.com

New “Spiderman” Phishing Kit Lets Hackers Build Fake Bank Login Pages Instantly A sophisticated phishing toolkit dubbed “Spiderman” has emerged as a significant threat to European banking customers, enabling cybercriminals to create convincing fake login pages… Go to gbhackers.com

644K+ Websites at Risk Due to Critical React Server Components Flaw The Shadowserver Foundation has issued an urgent update regarding the critical “React2Shell” vulnerability, identifying a massive attack surface that remains exposed to potential exploitation…. Go to gbhackers.com

Parrot 7.0 Beta Introduces Debian 13 and a Fully Redesigned Desktop Parrot Security OS has unveiled its highly anticipated 7.0 beta release, marking a significant milestone with the integration of Debian 13 and a complete… Go to gbhackers.com

Threat Actors Exploit ChatGPT and Grok Conversations to Deliver AMOS Stealer The cybersecurity landscape has reached a troubling inflection point. On December 5, 2025, Huntress identified a sophisticated campaign deploying the Atomic macOS Stealer (AMOS)… Go to gbhackers.com

Akira Group Targets Hyper-V and VMware ESXi with Ransomware Exploiting Vulnerabilities Hypervisors the invisible backbone of modern corporate IT have become the new primary battleground for ransomware groups. According to new data from Huntress, attacks… Go to gbhackers.com

New Vishing Attack Exploits Microsoft Teams and QuickAssist to Deploy .NET Malware A sophisticated vishing campaign has emerged that combines social engineering with legitimate Microsoft tools to establish command execution chains leading to multi-stage .NET malware… Go to gbhackers.com

Malicious VS Code on Microsoft Registry Steals WiFi Passwords and Captures Screens Security researchers at Koi Security have uncovered a sophisticated malware campaign targeting developers through the Visual Studio Code Marketplace. The attack uses two seemingly… Go to gbhackers.com

SAP Security Patch Day Fixes Critical Flaws in Solution Manager, NetWeaver & More SAP has released its December 2025 Security Patch Day updates, addressing 14 new security notes that fix multiple critical and high‑severity vulnerabilities across key… Go to gbhackers.com

AI-Driven Tools Uncover GhostPenguin Backdoor Attacking Linux Servers A sophisticated Linux backdoor named GhostPenguin has been discovered by Trend Micro Research, evading detection for over four months after its initial submission to… Go to gbhackers.com

Exposing the Core Functionalities of QuasarRAT: Encrypted Configuration and Obfuscation Techniques In the second installment of the “Advent of Configuration Extraction” series, security researchers have unwrapped QuasarRAT, a widely-deployed .NET remote access trojan (RAT), revealing… Go to gbhackers.com

NVIDIA and Lakera AI Propose Unified Framework for Agent Safety NVIDIA and Lakera AI have introduced a groundbreaking unified security and safety framework designed to address the emerging challenges posed by autonomous AI agents… Go to gbhackers.com

Apple, Google, and Samsung May Soon Activate Always-On GPS in India India’s government is considering a controversial proposal that could require smartphone manufacturers to enable satellite location tracking on all devices permanently. The plan has… Go to gbhackers.com

Hackers Exploit Multiple Ad Networks to Distribute Triada Malware to Android Users Adex, the anti-fraud and traffic-quality platform operating under AdTech Holding, has successfully identified and neutralized a sophisticated, multi-year malware operation linked to the infamous… Go to gbhackers.com

US Contributes to 44% of Cyber Attacks; Public Administration Targeted for Financial Gains Global cybercrime is accelerating toward a projected cost of 15.63 trillion dollars by 2029, up from an estimated 10.5 trillion dollars today, as criminals… Go to gbhackers.com

Indonesia’s Gambling Industry Reveals Clues of Nationwide Cyber Involvement A massive Indonesian-speaking cybercrime operation spanning over 14 years has been uncovered, revealing a sophisticated infrastructure that shows hallmarks of state-level backing and resources… Go to gbhackers.com

Critical Cal.com Flaw Allows Attackers to Bypass Authentication Using Fake TOTP Codes Cal.com has disclosed a critical authentication bypass vulnerability that could allow attackers to gain unauthorized access to user accounts by exploiting a flaw in… Go to gbhackers.com

Shanya EDR Killer: The New Favorite Tool for Ransomware Operators A sophisticated new “packer-as-a-service” tool known as Shanya has emerged in the cybercriminal underground, rapidly becoming a preferred weapon for major ransomware groups looking… Go to gbhackers.com

Critical React2Shell RCE Flaw Actively Exploited to Run Malicious Code A critical remote code execution vulnerability in React Server Components has emerged as an active exploitation target, with security researchers observing widespread automated attacks… Go to gbhackers.com

Critical Vulnerabilities Found in GitHub Copilot, Gemini CLI, Claude, and Other AI Tools Affect… A groundbreaking security research project has uncovered a new class of vulnerabilities affecting virtually every major AI-powered integrated development environment (IDE) and coding assistant… Go to gbhackers.com

2.15M Next.js Web Services Exposed Online, Active Attacks Reported – Update Immediately Security teams worldwide are rushing to patch systems after the disclosure of a critical React vulnerability, CVE-2025-55182, widely known as “React2Shell.” The flaw affects… Go to gbhackers.com

FvncBot Android Malware Steals Keystrokes and Injects Harmful Payloads A newly discovered Android banking trojan, FvncBot, has emerged as a sophisticated threat targeting mobile banking users in Poland. Researchers from Intel 471 first… Go to gbhackers.com

Avast Antivirus Sandbox Vulnerabilities Allow Privilege Escalation SAFA researchers uncovered four kernel heap overflow vulnerabilities in Avast Antivirus’s aswSnx.sys driver, designated CVE-2025-13032, affecting versions before 25.3 on Windows. These flaws originate from… Go to gbhackers.com

Threat Actors Distribute CoinMiner Malware through USB Drives to Infect Workstations Cybercriminals continue to exploit USB drives as infection vectors, with recent campaigns delivering sophisticated CoinMiner malware that establishes persistent cryptocurrency-mining operations on compromised workstations…. Go to gbhackers.com

MuddyWater Hackers Use UDPGangster Backdoor to Bypass Network Defenses on Windows The MuddyWater threat group has escalated its cyber espionage operations by deploying UDPGangster, a sophisticated UDP-based backdoor designed to infiltrate Windows systems while systematically… Go to gbhackers.com

CISA, NSA Alert on BRICKSTORM Malware Targeting VMware ESXi and Windows Systems The Cybersecurity and Infrastructure Security Agency (CISA) and the National Security Agency (NSA), joined by Canadian cyber authorities, have issued a joint alert warning… Go to gbhackers.com

New Stealthy Linux Malware Merges Mirai-based DDoS Botnet with Fileless Cryptominer Cybersecurity researchers uncover a sophisticated Linux campaign that blends legacy botnet capabilities with modern evasion techniques. A newly discovered Linux malware campaign is demonstrating the… Go to gbhackers.com

New SVG Technique Enables Highly Interactive Clickjacking Attacks A security researcher has unveiled a novel web exploitation technique dubbed “SVG clickjacking,” which significantly elevates the sophistication of traditional user-interface redress attacks. Unlike… Go to gbhackers.com

Threat Actors Exploit Foxit PDF Reader to Seize System Access and Steal Data A sophisticated malware campaign is leveraging a weaponized Foxit PDF Reader to target job seekers through email-based attacks, deploying ValleyRAT. This remote access trojan… Go to gbhackers.com

New Phishing Campaign Impersonates India’s Income Tax Department to Distribute AsyncRAT In November 2025, security researchers at Raven AI identified a sophisticated zero-day phishing campaign impersonating the Income Tax Department of India, targeting enterprises across… Go to gbhackers.com

Critical React and Next.js Flaw Lets Remote Attackers Run Malicious Code A critical security vulnerability affecting React Server Components allows unauthenticated attackers to execute malicious code on servers running popular web frameworks. The flaw, tracked as… Go to gbhackers.com

Operation DupeHike: DuperRunner Malware Attack on Employees The SEQRITE APT-Team has recently uncovered a sophisticated cyberattack campaign designated as Operation DupeHike, targeting Russian corporate entities with precision and technical sophistication. The… Go to gbhackers.com

29.7 Tbps DDoS Attack by Aisuru Botnet Becomes the Largest Ever Recorded A new and dangerous botnet named “Aisuru” has shattered world records by launching a Distributed Denial of Service (DDoS) attack that peaked at an… Go to gbhackers.com

Malicious VSCode Extension Deploys Anivia Loader and OctoRAT In late November 2025, a sophisticated supply-chain attack leveraging the Visual Studio Code extension ecosystem came to light, demonstrating how threat actors are increasingly… Go to gbhackers.com

Hackers Actively Exploit New Windows LNK 0-Day Vulnerability A newly discovered security flaw in Windows shortcut files is being actively used by hackers to target diplomatic organisations. The vulnerability allows attackers to conceal… Go to gbhackers.com

Threat Actors Using Matanbuchus Downloader to Deliver Ransomware and Maintain Persistence Threat actors are increasingly abusing the Matanbuchus malicious downloader as a key enabler for hands-on-keyboard ransomware operations, using its backdoor-like capabilities to deliver secondary… Go to gbhackers.com

Authorities Seize Domains Linked to Tai Chang Cryptocurrency Investment Scam The United States Justice Department has seized a website domain used to steal money from Americans through fake cryptocurrency investments. The domain, tickmilleas.com, was… Go to gbhackers.com

New Stealth K.G.B RAT Marketed by Threat Actors on Underground Forums Threat actors on an underground cybercrime forum are allegedly promoting a new remote access Trojan (RAT) bundle dubbed “K.G.B RAT + Crypter + HVNC,”… Go to gbhackers.com

Critical Elementor Plugin Flaw Allows Attackers to Seize WordPress Admin Control A severe privilege escalation vulnerability in the King Addons for Elementor WordPress plugin has exposed thousands of websites to complete administrative compromise. The flaw,… Go to gbhackers.com

New “Executive Award” Scam Exploits ClickFix to Deliver Stealerium Malware A sophisticated new phishing campaign is targeting company executives with a double-pronged attack that steals credentials and deploys information-stealing malware in a single coordinated… Go to gbhackers.com

Google Fixes Android Zero-Day Flaws Actively Exploited in the Wild Google has released critical security patches addressing two high-severity zero-day vulnerabilities in Android that are currently being exploited in limited, targeted attacks. The vulnerabilities,… Go to gbhackers.com

Apache Struts Flaw Allows Attackers to Launch Disk Exhaustion Attacks A new security flaw has been found in Apache Struts, a popular open‑source web application framework used by many companies worldwide. The issue, tracked… Go to gbhackers.com

Glassworm Malware Targets OpenVSX and Microsoft Visual Studio with 24 New Malicious Packages Security threats rarely adhere to holiday schedules, and while developers may take time off, malicious actors are working overtime. A significant new wave of… Go to gbhackers.com

OpenAI Codex CLI Flaw Allows Attackers to Run Arbitrary Commands OpenAI’s Codex CLI, a command-line tool designed to bring AI-powered reasoning into developer workflows, contains a critical vulnerability that allows attackers to execute arbitrary… Go to gbhackers.com

4.3 Million Chrome and Edge Users Hacked in 7-Year ShadyPanda Malware Campaign Koi researchers have uncovered a seven-year browser extension operation that has silently compromised at least 4.3 million Chrome and Edge users worldwide. The threat… Go to gbhackers.com

APT36 Deploys Python-Based ELF Malware in Targeted Attacks on Indian Government Agencies Pakistan-linked cyberespionage group APT36 (Transparent Tribe) has escalated its campaign against Indian government institutions with the deployment of sophisticated Python-based ELF malware specifically designed… Go to gbhackers.com

PoC Released for Outlook “MonikerLink” RCE Flaw Allowing Remote Code Execution Security researchers have released a proof-of-concept (PoC) exploit for CVE-2024-21413, a critical remote code execution vulnerability in Microsoft Outlook dubbed “MonikerLink.” This flaw enables… Go to gbhackers.com

Linux 6.18 Rolls Out With Major Hardware Support Upgrades and Driver Enhancements Linus Torvalds has officially released Linux 6.18, the latest stable version of the Linux kernel. The announcement came on Sunday, November 30, 2025, marking… Go to gbhackers.com

Tomiris Hacker Group Unveils New Tools and Techniques for Global Attacks A new wave of cyberattacks has been discovered targeting government officials and diplomats across Russia and Central Asia. The group, which has been active… Go to gbhackers.com

Mystery OAST Tool Exploits 200 CVEs Using Google Cloud for Large-Scale Attacks A sophisticated threat actor has been operating a private Out-of-band Application Security Testing (OAST) service hosted on Google Cloud infrastructure to conduct a large-scale… Go to gbhackers.com

Albiriox Malware Emerges, Targeting Android Users for Full Device Takeover A dangerous new Android malware called Albiriox has been discovered by security researchers, posing a serious threat to mobile banking and cryptocurrency users worldwide. The malware… Go to gbhackers.com

Cybercriminals Register 18,000 Holiday-Themed Domains to Launch Seasonal Scams The holiday season has always been a magnet for increased online activity, but 2025 marks a new high-water mark in cybercrime intensity. FortiGuard Labs’… Go to gbhackers.com

Poland Arrests Suspected Russian Hacker Targeting Local Organizations’ Networks Polish authorities have made a significant move in their cybercrime enforcement efforts by detaining a Russian national suspected of conducting unauthorized cyber attacks against… Go to gbhackers.com

Gainsight Verifies Token Breach Linked to Salesforce Advisory, Issues New IOCs Gainsight, the leading customer success platform, has confirmed that a security incident involving its Salesforce integration compromised customer tokens for a small subset of… Go to gbhackers.com

ShinyHunters Develop Sophisticated New Ransomware-as-a-Service Tool In a significant escalation of the global cyber threat landscape, the notorious threat group ShinyHunters appears to be transitioning from data theft to full-scale… Go to gbhackers.com

New GreyNoise IP Checker Helps Users Identify Botnet Activity Cybersecurity firm GreyNoise has launched a new, free utility designed to answer a question most internet users never think to ask: Is my home… Go to gbhackers.com

Microsoft Blocks External Scripts in Entra ID Logins to Boost Security Microsoft has announced a significant security change to the Microsoft Entra ID sign-in experience that will block external scripts from running during user logins…. Go to gbhackers.com

London Councils Hit by Cyberattack, Disrupts IT and Telephone Lines The Royal Borough of Kensington and Chelsea (RBKC), Westminster City Council, and Hammersmith and Fulham Council confirmed they were targeted in the incident that… Go to gbhackers.com

KawaiiGPT: A Free WormGPT Clone Using DeepSeek, Gemini, and Kimi-K2 Models A new open-source tool called KawaiiGPT has surfaced on GitHub, positioning itself as a “cute” but unrestricted version of artificial intelligence. Developed by a user known… Go to gbhackers.com

Black Friday Scammers Are Impersonating Major Brands to Steal Your Money Black Friday is supposed to be chaotic, sure, but not this chaotic. Amid genuine doorbusters and flash sales, a large-scale, highly polished scam campaign… Go to gbhackers.com

OpenAI Reveals Mixpanel Data Breach Exposing User Details OpenAI has publicly disclosed a security incident involving a data breach at Mixpanel, a third-party analytics provider previously used by the company for monitoring… Go to gbhackers.com

Chrome Extension Malware Secretly Adds Hidden SOL Fees to Solana Swap Transactions Security researchers at Socket have uncovered a deceptive Chrome extension called Crypto Copilot that masquerades as a legitimate Solana trading tool while secretly siphoning… Go to gbhackers.com

Massive Data Leak: ByteToBreach Offers Stolen Global Airline, Banking, and Government Records A cybercriminal operating under the alias ByteToBreach has emerged as a prominent figure in the underground data trade, orchestrating a series of high-profile breaches… Go to gbhackers.com

Threat Actors Use Fake Update Lures to Deploy SocGholish Malware In a significant escalation of cyber threats, Arctic Wolf Labs has identified a coordinated campaign in which the Russian-aligned RomCom threat group leverages the… Go to gbhackers.com

Hackers Launch Active Attacks on Telecom and Media Industries The telecommunications & media sector stands at the epicenter of a relentless cyber onslaught, as evidenced by CYFIRMA’s latest quarterly industry report. Leveraging telemetry-driven… Go to gbhackers.com

HashJack: A Novel Exploit Leveraging URL Fragments To Deceive AI Browsers Security researchers at Cato CTRL have uncovered HashJack. This innovative indirect prompt-injection attack hides harmful commands in the fragment portion of URLs after the… Go to gbhackers.com

Cobalt Strike 4.12 Adds New Injection, UAC Bypasses & C2 Features Fortra has officially released Cobalt Strike 4.12, introducing a comprehensive suite of new features designed to enhance red team operations and offensive security research. The… Go to gbhackers.com

VSCode Marketplace Hit by Rogue Prettier Extension Delivering Anivia Stealer A recently discovered malicious Visual Studio Code (VSCode) extension masquerading as the well-known “Prettier” formatter briefly infiltrated the official VSCode Marketplace, delivering a variant… Go to gbhackers.com

Microsoft Warns of Security Risks in New Agentic AI Feature Microsoft is sounding the alarm on critical security considerations as it introduces agentic AI capabilities to Windows through experimental features like Copilot Actions. The… Go to gbhackers.com

Russian and North Korean Hackers Forge Global Cyberattack Alliance State-sponsored hackers from Russia and North Korea are collaborating on shared infrastructure, marking a significant shift in cyber geopolitics. Security researchers have uncovered evidence… Go to gbhackers.com

Major Data Breach at Delta Dental of Virginia Hits Over 146,000 Customers’ Info Delta Dental of Virginia, a non-profit dental benefits organization based in Roanoke, has announced a significant data breach affecting approximately 145,918 individuals. The unauthorised… Go to gbhackers.com

Zapier’s NPM Account Hacked, Multiple Packages Infected with Malware Zapier’s NPM account has been successfully compromised, leading to the injection of the Shai Hulud malware into 425 packages currently distributed across the npm… Go to gbhackers.com

Linux 6.18-rc7 Released With New Bug Fixes and Driver Updates The Linux kernel development team has released version 6.18-rc7, marking another step toward the final 6.18 release expected next weekend. According to kernel maintainer… Go to gbhackers.com

LLMs Tools Like GPT-3.5-Turbo and GPT-4 Fuel the Development of Fully Autonomous Malware The rapid proliferation of large language models has transformed how organizations approach automation, coding, and research. Yet this technological advancement presents a double-edged sword:… Go to gbhackers.com

Iberia Airlines Hit by Data Breach Exposing Customer Personal Details Iberia Líneas Aéreas de España has disclosed a significant security incident involving unauthorized access to systems operated by an external service provider. The breach… Go to gbhackers.com

PoC Published for W3 Total Cache Flaw Exposing 1M+ Sites to RCE Security researchers have published a proof-of-concept exploit for a critical remote code execution vulnerability in W3 Total Cache, one of WordPress’s most popular caching… Go to gbhackers.com

CISA Issues Warning as Hackers Target Oracle Identity Manager RCE Flaw The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added a new Oracle vulnerability to its Known Exploited Vulnerabilities (KEV) catalog, warning that attackers… Go to gbhackers.com

Hackers Use Salesforce Gainsight Breach to Access Data from More Than 200 Companies Salesforce has disclosed a significant security incident involving unauthorized access to customer data through compromised Gainsight-published applications. The breach, detected in mid-November 2025, potentially… Go to gbhackers.com

CrowdStrike Fires Employee for Leaking Internal System Info to Hackers Cybersecurity giant CrowdStrike has terminated an employee who allegedly shared sensitive internal system information with a notorious hacking collective. The incident involved the leak… Go to gbhackers.com

Metasploit Releases New Exploit for Fresh FortiWeb 0-Day Vulnerabilities Rapid7’s Metasploit team has released a new exploit module targeting critical zero-day vulnerabilities in Fortinet’s FortiWeb web application firewall, chaining two security flaws to… Go to gbhackers.com

Critical Azure Bastion Vulnerability Lets Attackers Bypass Login and Gain Higher Privileges Microsoft disclosed a critical authentication bypass vulnerability in Azure Bastion, its managed remote access service, enabling attackers to escalate privileges to administrative levels with… Go to gbhackers.com

Xillen Stealer: Advanced Features Bypass AI Detection and Steal Password Manager Data The Python-based information-stealing tool Xillen Stealer has reached versions 4 and 5, significantly expanding its targeting capabilities and functionality across platforms. Documented initially by… Go to gbhackers.com

AI-Driven Obfuscated Malicious Apps Bypassing Antivirus Detection to Deliver Malicious Payloads Cybersecurity researchers have identified a sophisticated malware campaign leveraging artificial intelligence to enhance obfuscation techniques, enabling malicious applications to circumvent traditional antivirus detection systems…. Go to gbhackers.com

Dark Web Job Market Evolved – Prioritizes Practical Skills Over Formal Education The underground labor market has undergone a significant transformation. According to new research analyzing 2,225 job-related posts collected from shadow forums between January 2023… Go to gbhackers.com

North Korean Kimsuky and Lazarus Teams Target Critical Sectors with Zero-Day Exploits North Korea’s two most formidable APT groups Kimsuky and Lazarus have established a coordinated operational framework that combines intelligence gathering with large-scale cryptocurrency theft…. Go to gbhackers.com

The Gentlemen” Ransomware Group Deploys Dual-Extortion Tactics, Encrypting and Exfiltrating Data Cybereason Threat Intelligence Team has uncovered a sophisticated ransomware operation known as “The Gentlemen,” which emerged around July 2025 and quickly established itself as… Go to gbhackers.com

CISA Alerts on Fortinet FortiWeb Vulnerability Exploited in Real-World Attacks The Cybersecurity and Infrastructure Security Agency (CISA) has issued an urgent alert regarding a critical OS command injection vulnerability in Fortinet FortiWeb, warning that… Go to gbhackers.com

Chinese PlushDaemon Hackers Exploit EdgeStepper Tool to Hijack Legitimate Updates and Redirect to Malicious… ESET researchers have uncovered a sophisticated attack chain orchestrated by the China-aligned threat actor PlushDaemon, revealing how the group leverages a previously undocumented network… Go to gbhackers.com

Hackers Exploit Tuoni C2 Framework to Stealthily Deploy In-Memory Payloads In October 2025, Morphisec’s anti-ransomware prevention platform detected and neutralized a sophisticated cyberattack targeting a major U.S. real estate company. The campaign showcased the… Go to gbhackers.com

Single Click on CAPTCHA Triggers Destructive Akira Ransomware Attack on Malicious Website A sophisticated Akira ransomware attack orchestrated by the Howling Scorpius group recently left a global data storage and infrastructure company grappling with massive operational… Go to gbhackers.com

Critical FortiWeb WAF Flaw Actively Exploited to Establish Admin Access and Seize Total Control Fortinet has released urgent security updates to address a critical vulnerability in its FortiWeb Web Application Firewall (WAF) that is being actively exploited in… Go to gbhackers.com