Category: GBHackers

Cross-Platform Ransomware Now Targeting Windows, Linux, and ESXi Systems
16
Feb
2026

Cross-Platform Ransomware Now Targeting Windows, Linux, and ESXi Systems

LockBit’s new 5.0 version is actively attacking Windows, Linux, and ESXi systems, using a unified yet highly optimized ransomware framework…

Share: X : Cross-Platform Ransomware Now Targeting Windows, Linux, and ESXi SystemsFacebook : Cross-Platform Ransomware Now Targeting Windows, Linux, and ESXi SystemsLinkedin : Cross-Platform Ransomware Now Targeting Windows, Linux, and ESXi SystemsReddit : Cross-Platform Ransomware Now Targeting Windows, Linux, and ESXi SystemsTelegram : Cross-Platform Ransomware Now Targeting Windows, Linux, and ESXi SystemsWhatsApp : Cross-Platform Ransomware Now Targeting Windows, Linux, and ESXi SystemsEmail : Cross-Platform Ransomware Now Targeting Windows, Linux, and ESXi Systems
Matryoshka Clickfix Variant Targets macOS Users, Deploys New Stealer Malware
16
Feb
2026

Matryoshka Clickfix Variant Targets macOS Users, Deploys New Stealer Malware

A new variant of the “ClickFix” social engineering campaign specifically targeting macOS users. Codenamed Matryoshka a reference to its multiple nested…

Share: X : Matryoshka Clickfix Variant Targets macOS Users, Deploys New Stealer MalwareFacebook : Matryoshka Clickfix Variant Targets macOS Users, Deploys New Stealer MalwareLinkedin : Matryoshka Clickfix Variant Targets macOS Users, Deploys New Stealer MalwareReddit : Matryoshka Clickfix Variant Targets macOS Users, Deploys New Stealer MalwareTelegram : Matryoshka Clickfix Variant Targets macOS Users, Deploys New Stealer MalwareWhatsApp : Matryoshka Clickfix Variant Targets macOS Users, Deploys New Stealer MalwareEmail : Matryoshka Clickfix Variant Targets macOS Users, Deploys New Stealer Malware
FileZen Flaw Allows Attackers to Execute Commands Remotely
16
Feb
2026

FileZen Flaw Allows Attackers to Execute Commands Remotely

A high-severity vulnerability in FileZen, a file transfer solution developed by Soliton Systems K.K., enables authenticated attackers to remotely execute…

Share: X : FileZen Flaw Allows Attackers to Execute Commands RemotelyFacebook : FileZen Flaw Allows Attackers to Execute Commands RemotelyLinkedin : FileZen Flaw Allows Attackers to Execute Commands RemotelyReddit : FileZen Flaw Allows Attackers to Execute Commands RemotelyTelegram : FileZen Flaw Allows Attackers to Execute Commands RemotelyWhatsApp : FileZen Flaw Allows Attackers to Execute Commands RemotelyEmail : FileZen Flaw Allows Attackers to Execute Commands Remotely
CISA Issues Alert on ZLAN ICS Flaws Enabling Full Device Takeover
16
Feb
2026

CISA Issues Alert on ZLAN ICS Flaws Enabling Full Device Takeover

The Cybersecurity and Infrastructure Security Agency (CISA) has issued a critical advisory regarding significant security flaws discovered in industrial networking…

Share: X : CISA Issues Alert on ZLAN ICS Flaws Enabling Full Device TakeoverFacebook : CISA Issues Alert on ZLAN ICS Flaws Enabling Full Device TakeoverLinkedin : CISA Issues Alert on ZLAN ICS Flaws Enabling Full Device TakeoverReddit : CISA Issues Alert on ZLAN ICS Flaws Enabling Full Device TakeoverTelegram : CISA Issues Alert on ZLAN ICS Flaws Enabling Full Device TakeoverWhatsApp : CISA Issues Alert on ZLAN ICS Flaws Enabling Full Device TakeoverEmail : CISA Issues Alert on ZLAN ICS Flaws Enabling Full Device Takeover
Attackers Exploit Critical BeyondTrust Flaw to Seize Full Active Directory Control
16
Feb
2026

Attackers Exploit Critical BeyondTrust Flaw to Seize Full Active Directory Control

A critical vulnerability, CVE-2026-1731, affecting self-hosted BeyondTrust Remote Support and Privileged Remote Access deployments. This security flaw allows unauthenticated attackers…

Share: X : Attackers Exploit Critical BeyondTrust Flaw to Seize Full Active Directory ControlFacebook : Attackers Exploit Critical BeyondTrust Flaw to Seize Full Active Directory ControlLinkedin : Attackers Exploit Critical BeyondTrust Flaw to Seize Full Active Directory ControlReddit : Attackers Exploit Critical BeyondTrust Flaw to Seize Full Active Directory ControlTelegram : Attackers Exploit Critical BeyondTrust Flaw to Seize Full Active Directory ControlWhatsApp : Attackers Exploit Critical BeyondTrust Flaw to Seize Full Active Directory ControlEmail : Attackers Exploit Critical BeyondTrust Flaw to Seize Full Active Directory Control
Lotus Blossom Hackers Breach Official Notepad++ Hosting Infrastructure
16
Feb
2026

Lotus Blossom Hackers Breach Official Notepad++ Hosting Infrastructure

Between June and December 2025, a state-sponsored threat group known as Lotus Blossom quietly hijacked the official hosting infrastructure used…

Share: X : Lotus Blossom Hackers Breach Official Notepad++ Hosting InfrastructureFacebook : Lotus Blossom Hackers Breach Official Notepad++ Hosting InfrastructureLinkedin : Lotus Blossom Hackers Breach Official Notepad++ Hosting InfrastructureReddit : Lotus Blossom Hackers Breach Official Notepad++ Hosting InfrastructureTelegram : Lotus Blossom Hackers Breach Official Notepad++ Hosting InfrastructureWhatsApp : Lotus Blossom Hackers Breach Official Notepad++ Hosting InfrastructureEmail : Lotus Blossom Hackers Breach Official Notepad++ Hosting Infrastructure
REMnux v8 Linux Toolkit Released With AI-Powered Malware Analysis Capabilities
14
Feb
2026

REMnux v8 Linux Toolkit Released With AI-Powered Malware Analysis Capabilities

The landscape of malware analysis has taken a significant leap forward with the official release of REMnux v8. This popular…

Share: X : REMnux v8 Linux Toolkit Released With AI-Powered Malware Analysis CapabilitiesFacebook : REMnux v8 Linux Toolkit Released With AI-Powered Malware Analysis CapabilitiesLinkedin : REMnux v8 Linux Toolkit Released With AI-Powered Malware Analysis CapabilitiesReddit : REMnux v8 Linux Toolkit Released With AI-Powered Malware Analysis CapabilitiesTelegram : REMnux v8 Linux Toolkit Released With AI-Powered Malware Analysis CapabilitiesWhatsApp : REMnux v8 Linux Toolkit Released With AI-Powered Malware Analysis CapabilitiesEmail : REMnux v8 Linux Toolkit Released With AI-Powered Malware Analysis Capabilities
CVE-2025-64712 in Unstructured.io Puts Amazon, Google, and Tech Giants at Risk of Remote Code Execution
13
Feb
2026

CVE-2025-64712 in Unstructured.io Puts Amazon, Google, and Tech Giants at Risk of Remote Code Execution

A newly disclosed critical flaw, CVE-2025-64712 (CVSS 9.8), in Unstructured.io’s “unstructured” ETL library could let attackers perform arbitrary file writes and potentially…

Share: X : CVE-2025-64712 in Unstructured.io Puts Amazon, Google, and Tech Giants at Risk of Remote Code ExecutionFacebook : CVE-2025-64712 in Unstructured.io Puts Amazon, Google, and Tech Giants at Risk of Remote Code ExecutionLinkedin : CVE-2025-64712 in Unstructured.io Puts Amazon, Google, and Tech Giants at Risk of Remote Code ExecutionReddit : CVE-2025-64712 in Unstructured.io Puts Amazon, Google, and Tech Giants at Risk of Remote Code ExecutionTelegram : CVE-2025-64712 in Unstructured.io Puts Amazon, Google, and Tech Giants at Risk of Remote Code ExecutionWhatsApp : CVE-2025-64712 in Unstructured.io Puts Amazon, Google, and Tech Giants at Risk of Remote Code ExecutionEmail : CVE-2025-64712 in Unstructured.io Puts Amazon, Google, and Tech Giants at Risk of Remote Code Execution
Phishing Campaigns Target Users with Fake Meeting Invites and Update Alerts via Zoom, Teams, and Google Meet
13
Feb
2026

Phishing Campaigns Target Users with Fake Meeting Invites and Update Alerts via Zoom, Teams, and Google Meet

An ongoing wave of phishing campaigns exploiting fake meeting invites from popular video conferencing platforms, including Zoom, Microsoft Teams, and…

Share: X : Phishing Campaigns Target Users with Fake Meeting Invites and Update Alerts via Zoom, Teams, and Google MeetFacebook : Phishing Campaigns Target Users with Fake Meeting Invites and Update Alerts via Zoom, Teams, and Google MeetLinkedin : Phishing Campaigns Target Users with Fake Meeting Invites and Update Alerts via Zoom, Teams, and Google MeetReddit : Phishing Campaigns Target Users with Fake Meeting Invites and Update Alerts via Zoom, Teams, and Google MeetTelegram : Phishing Campaigns Target Users with Fake Meeting Invites and Update Alerts via Zoom, Teams, and Google MeetWhatsApp : Phishing Campaigns Target Users with Fake Meeting Invites and Update Alerts via Zoom, Teams, and Google MeetEmail : Phishing Campaigns Target Users with Fake Meeting Invites and Update Alerts via Zoom, Teams, and Google Meet
Advanced Obfuscation and Rhysida Ransomware Ties Uncovered
13
Feb
2026

Advanced Obfuscation and Rhysida Ransomware Ties Uncovered

OysterLoader, also tracked as Broomstick and CleanUp, is a multi‑stage loader malware written in C++ and actively leveraged in campaigns…

Share: X : Advanced Obfuscation and Rhysida Ransomware Ties UncoveredFacebook : Advanced Obfuscation and Rhysida Ransomware Ties UncoveredLinkedin : Advanced Obfuscation and Rhysida Ransomware Ties UncoveredReddit : Advanced Obfuscation and Rhysida Ransomware Ties UncoveredTelegram : Advanced Obfuscation and Rhysida Ransomware Ties UncoveredWhatsApp : Advanced Obfuscation and Rhysida Ransomware Ties UncoveredEmail : Advanced Obfuscation and Rhysida Ransomware Ties Uncovered
Chrome Extensions Infect 500K Users to Hijack VKontakte Accounts
13
Feb
2026

Chrome Extensions Infect 500K Users to Hijack VKontakte Accounts

A long-running Chrome extension malware campaign has silently hijacked more than 500,000 VKontakte (VK) accounts, forcing users into attacker-controlled groups,…

Share: X : Chrome Extensions Infect 500K Users to Hijack VKontakte AccountsFacebook : Chrome Extensions Infect 500K Users to Hijack VKontakte AccountsLinkedin : Chrome Extensions Infect 500K Users to Hijack VKontakte AccountsReddit : Chrome Extensions Infect 500K Users to Hijack VKontakte AccountsTelegram : Chrome Extensions Infect 500K Users to Hijack VKontakte AccountsWhatsApp : Chrome Extensions Infect 500K Users to Hijack VKontakte AccountsEmail : Chrome Extensions Infect 500K Users to Hijack VKontakte Accounts
Malicious Chrome AI Extensions Target 260,000 Users with Injected Iframes
13
Feb
2026

Malicious Chrome AI Extensions Target 260,000 Users with Injected Iframes

As AI tools like ChatGPT, Claude, Gemini, and Grok gain mainstream adoption, cybercriminals are weaponizing their popularity to distribute malicious…

Share: X : Malicious Chrome AI Extensions Target 260,000 Users with Injected IframesFacebook : Malicious Chrome AI Extensions Target 260,000 Users with Injected IframesLinkedin : Malicious Chrome AI Extensions Target 260,000 Users with Injected IframesReddit : Malicious Chrome AI Extensions Target 260,000 Users with Injected IframesTelegram : Malicious Chrome AI Extensions Target 260,000 Users with Injected IframesWhatsApp : Malicious Chrome AI Extensions Target 260,000 Users with Injected IframesEmail : Malicious Chrome AI Extensions Target 260,000 Users with Injected Iframes