Category: GBHackers

Socelars Malware Targets Windows Systems to Steal Sensitive Data
10
Feb
2026

Socelars Malware Targets Windows Systems to Steal Sensitive Data

Security researchers are tracking Socelars, an information-stealing Trojan aimed at Windows users that focuses on quietly harvesting browser-based access rather than…

Share: X : Socelars Malware Targets Windows Systems to Steal Sensitive DataFacebook : Socelars Malware Targets Windows Systems to Steal Sensitive DataLinkedin : Socelars Malware Targets Windows Systems to Steal Sensitive DataReddit : Socelars Malware Targets Windows Systems to Steal Sensitive DataTelegram : Socelars Malware Targets Windows Systems to Steal Sensitive DataWhatsApp : Socelars Malware Targets Windows Systems to Steal Sensitive DataEmail : Socelars Malware Targets Windows Systems to Steal Sensitive Data
UNC1069 Targets Financial Firms With New Tools and AI-Driven Social Engineering Attacks
10
Feb
2026

UNC1069 Targets Financial Firms With New Tools and AI-Driven Social Engineering Attacks

North Korean threat actor UNC1069 has escalated attacks against the cryptocurrency and decentralized finance (DeFi) sector using sophisticated AI-powered social…

Share: X : UNC1069 Targets Financial Firms With New Tools and AI-Driven Social Engineering AttacksFacebook : UNC1069 Targets Financial Firms With New Tools and AI-Driven Social Engineering AttacksLinkedin : UNC1069 Targets Financial Firms With New Tools and AI-Driven Social Engineering AttacksReddit : UNC1069 Targets Financial Firms With New Tools and AI-Driven Social Engineering AttacksTelegram : UNC1069 Targets Financial Firms With New Tools and AI-Driven Social Engineering AttacksWhatsApp : UNC1069 Targets Financial Firms With New Tools and AI-Driven Social Engineering AttacksEmail : UNC1069 Targets Financial Firms With New Tools and AI-Driven Social Engineering Attacks
VoidLink Linux C2 Uses LLM-Generated Malware with Kernel-Level Stealth
10
Feb
2026

VoidLink Linux C2 Uses LLM-Generated Malware with Kernel-Level Stealth

VoidLink represents a concerning evolution in malware development: a sophisticated Linux command-and-control framework that shows clear signs of being built with AI…

Share: X : VoidLink Linux C2 Uses LLM-Generated Malware with Kernel-Level StealthFacebook : VoidLink Linux C2 Uses LLM-Generated Malware with Kernel-Level StealthLinkedin : VoidLink Linux C2 Uses LLM-Generated Malware with Kernel-Level StealthReddit : VoidLink Linux C2 Uses LLM-Generated Malware with Kernel-Level StealthTelegram : VoidLink Linux C2 Uses LLM-Generated Malware with Kernel-Level StealthWhatsApp : VoidLink Linux C2 Uses LLM-Generated Malware with Kernel-Level StealthEmail : VoidLink Linux C2 Uses LLM-Generated Malware with Kernel-Level Stealth
Windows Error Reporting Flaw Allows Attackers to Elevate Privileges
10
Feb
2026

Windows Error Reporting Flaw Allows Attackers to Elevate Privileges

A newly documented Windows vulnerability, CVE-2026-20817, impacts the Windows Error Reporting Service (WER) and enables local privilege escalation. The issue…

Share: X : Windows Error Reporting Flaw Allows Attackers to Elevate PrivilegesFacebook : Windows Error Reporting Flaw Allows Attackers to Elevate PrivilegesLinkedin : Windows Error Reporting Flaw Allows Attackers to Elevate PrivilegesReddit : Windows Error Reporting Flaw Allows Attackers to Elevate PrivilegesTelegram : Windows Error Reporting Flaw Allows Attackers to Elevate PrivilegesWhatsApp : Windows Error Reporting Flaw Allows Attackers to Elevate PrivilegesEmail : Windows Error Reporting Flaw Allows Attackers to Elevate Privileges
Attackers Weaponize Windows Shortcut Files to Deploy Global Group Ransomware
10
Feb
2026

Attackers Weaponize Windows Shortcut Files to Deploy Global Group Ransomware

A high-volume phishing campaign leveraging the Phorpiex botnet has been distributing GLOBAL GROUP ransomware through weaponized Windows shortcut files. The…

Share: X : Attackers Weaponize Windows Shortcut Files to Deploy Global Group RansomwareFacebook : Attackers Weaponize Windows Shortcut Files to Deploy Global Group RansomwareLinkedin : Attackers Weaponize Windows Shortcut Files to Deploy Global Group RansomwareReddit : Attackers Weaponize Windows Shortcut Files to Deploy Global Group RansomwareTelegram : Attackers Weaponize Windows Shortcut Files to Deploy Global Group RansomwareWhatsApp : Attackers Weaponize Windows Shortcut Files to Deploy Global Group RansomwareEmail : Attackers Weaponize Windows Shortcut Files to Deploy Global Group Ransomware
15,200 OpenClaw Control Panels Exposed Online with Full System Access
10
Feb
2026

15,200 OpenClaw Control Panels Exposed Online with Full System Access

A critical security oversight has left thousands of AI agents wide open to the public internet. 15,200 instances of the…

Share: X : 15,200 OpenClaw Control Panels Exposed Online with Full System AccessFacebook : 15,200 OpenClaw Control Panels Exposed Online with Full System AccessLinkedin : 15,200 OpenClaw Control Panels Exposed Online with Full System AccessReddit : 15,200 OpenClaw Control Panels Exposed Online with Full System AccessTelegram : 15,200 OpenClaw Control Panels Exposed Online with Full System AccessWhatsApp : 15,200 OpenClaw Control Panels Exposed Online with Full System AccessEmail : 15,200 OpenClaw Control Panels Exposed Online with Full System Access
Fancy Bear Exploits Microsoft Zero-Day to Deploy Backdoors and Email Stealers
10
Feb
2026

Fancy Bear Exploits Microsoft Zero-Day to Deploy Backdoors and Email Stealers

Fancy Bear has launched a sophisticated campaign exploiting a critical zero-day vulnerability in Microsoft RTF files to target users across…

Share: X : Fancy Bear Exploits Microsoft Zero-Day to Deploy Backdoors and Email StealersFacebook : Fancy Bear Exploits Microsoft Zero-Day to Deploy Backdoors and Email StealersLinkedin : Fancy Bear Exploits Microsoft Zero-Day to Deploy Backdoors and Email StealersReddit : Fancy Bear Exploits Microsoft Zero-Day to Deploy Backdoors and Email StealersTelegram : Fancy Bear Exploits Microsoft Zero-Day to Deploy Backdoors and Email StealersWhatsApp : Fancy Bear Exploits Microsoft Zero-Day to Deploy Backdoors and Email StealersEmail : Fancy Bear Exploits Microsoft Zero-Day to Deploy Backdoors and Email Stealers
25 Million Users Affected as AI Chat Platform Leaks 300 Million Messages
10
Feb
2026

25 Million Users Affected as AI Chat Platform Leaks 300 Million Messages

“Chat & Ask AI,” a highly popular mobile application available on both Google Play and the Apple App Store, has…

Share: X : 25 Million Users Affected as AI Chat Platform Leaks 300 Million MessagesFacebook : 25 Million Users Affected as AI Chat Platform Leaks 300 Million MessagesLinkedin : 25 Million Users Affected as AI Chat Platform Leaks 300 Million MessagesReddit : 25 Million Users Affected as AI Chat Platform Leaks 300 Million MessagesTelegram : 25 Million Users Affected as AI Chat Platform Leaks 300 Million MessagesWhatsApp : 25 Million Users Affected as AI Chat Platform Leaks 300 Million MessagesEmail : 25 Million Users Affected as AI Chat Platform Leaks 300 Million Messages
Bloody Wolf Cybercrime Group Uses NetSupport RAT to Breach Organizations
10
Feb
2026

Bloody Wolf Cybercrime Group Uses NetSupport RAT to Breach Organizations

The latest campaign, they have switched to misusing a legitimate remote administration tool called NetSupport RAT. A cybercriminal group known…

Share: X : Bloody Wolf Cybercrime Group Uses NetSupport RAT to Breach OrganizationsFacebook : Bloody Wolf Cybercrime Group Uses NetSupport RAT to Breach OrganizationsLinkedin : Bloody Wolf Cybercrime Group Uses NetSupport RAT to Breach OrganizationsReddit : Bloody Wolf Cybercrime Group Uses NetSupport RAT to Breach OrganizationsTelegram : Bloody Wolf Cybercrime Group Uses NetSupport RAT to Breach OrganizationsWhatsApp : Bloody Wolf Cybercrime Group Uses NetSupport RAT to Breach OrganizationsEmail : Bloody Wolf Cybercrime Group Uses NetSupport RAT to Breach Organizations
Chinese Hackers Target Singapore Telecoms in Edge Device Compromise Campaign
10
Feb
2026

Chinese Hackers Target Singapore Telecoms in Edge Device Compromise Campaign

A massive, eleven-month campaign to root out sophisticated attackers from the nation’s critical infrastructure. The Cyber Security Agency of Singapore…

Share: X : Chinese Hackers Target Singapore Telecoms in Edge Device Compromise CampaignFacebook : Chinese Hackers Target Singapore Telecoms in Edge Device Compromise CampaignLinkedin : Chinese Hackers Target Singapore Telecoms in Edge Device Compromise CampaignReddit : Chinese Hackers Target Singapore Telecoms in Edge Device Compromise CampaignTelegram : Chinese Hackers Target Singapore Telecoms in Edge Device Compromise CampaignWhatsApp : Chinese Hackers Target Singapore Telecoms in Edge Device Compromise CampaignEmail : Chinese Hackers Target Singapore Telecoms in Edge Device Compromise Campaign
Threat Actors Using Ivanti EPMM Flaws to Install Stealth Backdoors
10
Feb
2026

Threat Actors Using Ivanti EPMM Flaws to Install Stealth Backdoors

A sophisticated new cyber campaign has been detected targeting Ivanti Endpoint Manager Mobile (EPMM) systems. Starting on February 4, 2026,…

Share: X : Threat Actors Using Ivanti EPMM Flaws to Install Stealth BackdoorsFacebook : Threat Actors Using Ivanti EPMM Flaws to Install Stealth BackdoorsLinkedin : Threat Actors Using Ivanti EPMM Flaws to Install Stealth BackdoorsReddit : Threat Actors Using Ivanti EPMM Flaws to Install Stealth BackdoorsTelegram : Threat Actors Using Ivanti EPMM Flaws to Install Stealth BackdoorsWhatsApp : Threat Actors Using Ivanti EPMM Flaws to Install Stealth BackdoorsEmail : Threat Actors Using Ivanti EPMM Flaws to Install Stealth Backdoors
DPRK IT Workers Use Stolen LinkedIn Identities to Secure Remote Employment
10
Feb
2026

DPRK IT Workers Use Stolen LinkedIn Identities to Secure Remote Employment

A new wave of identity fraud has hit the remote job market, with North Korean (DPRK) operatives adopting a sophisticated…

Share: X : DPRK IT Workers Use Stolen LinkedIn Identities to Secure Remote EmploymentFacebook : DPRK IT Workers Use Stolen LinkedIn Identities to Secure Remote EmploymentLinkedin : DPRK IT Workers Use Stolen LinkedIn Identities to Secure Remote EmploymentReddit : DPRK IT Workers Use Stolen LinkedIn Identities to Secure Remote EmploymentTelegram : DPRK IT Workers Use Stolen LinkedIn Identities to Secure Remote EmploymentWhatsApp : DPRK IT Workers Use Stolen LinkedIn Identities to Secure Remote EmploymentEmail : DPRK IT Workers Use Stolen LinkedIn Identities to Secure Remote Employment