Category: GBHackers

Microsoft Releases New Guidance to Combat the Shai-Hulud 2.0 Supply Chain Threat
10
Dec
2025

Microsoft Releases New Guidance to Combat the Shai-Hulud 2.0 Supply Chain Threat

Microsoft has published comprehensive guidance addressing the Shai-Hulud 2.0 supply chain attack, one of the most significant cloud-native ecosystem compromises…

Gemini Zero-Click Flaw Let Attackers Access Gmail, Calendar, and Google Docs
10
Dec
2025

Gemini Zero-Click Flaw Let Attackers Access Gmail, Calendar, and Google Docs

A critical vulnerability in Google Gemini Enterprise and Vertex AI Search, dubbed GeminiJack, that allows attackers to exfiltrate sensitive corporate data…

Threat Actors Exploit ChatGPT and Grok Conversations to Deliver AMOS Stealer
10
Dec
2025

Threat Actors Exploit ChatGPT and Grok Conversations to Deliver AMOS Stealer

The cybersecurity landscape has reached a troubling inflection point. On December 5, 2025, Huntress identified a sophisticated campaign deploying the…

Parrot 7.0 Beta Introduces Debian 13 and a Fully Redesigned Desktop
10
Dec
2025

Parrot 7.0 Beta Introduces Debian 13 and a Fully Redesigned Desktop

Parrot Security OS has unveiled its highly anticipated 7.0 beta release, marking a significant milestone with the integration of Debian…

Cybercriminals Use Fake Game Updates on Itch.io and Patreon to Push Lumma Stealer
10
Dec
2025

Cybercriminals Use Fake Game Updates on Itch.io and Patreon to Push Lumma Stealer

The indie gaming community faces a new and sophisticated threat. Malicious actors are exploiting itch.io and Patreon to distribute the…

AI-Powered Analysis Exposes Massive 5,000-Domain Chinese Malware Operation
10
Dec
2025

AI-Powered Analysis Exposes Massive 5,000-Domain Chinese Malware Operation

DomainTools Investigations has released critical findings detailing the expansion of a massive malware-delivery network targeting Chinese-speaking users worldwide. The long-running…

High-Risk Ivanti EPM Vulnerability Opens Door to Admin Session Hijacking
10
Dec
2025

High-Risk Ivanti EPM Vulnerability Opens Door to Admin Session Hijacking

A critical stored cross-site scripting (XSS) vulnerability in Ivanti Endpoint Manager (EPM) enables unauthenticated attackers to hijack administrator sessions by…

Microsoft Copilot Outage Disrupts UK and Europe With Access Failures and Broken Features
10
Dec
2025

Microsoft Copilot Outage Disrupts UK and Europe With Access Failures and Broken Features

Microsoft Copilot, the AI tool many businesses use daily, is facing significant problems today. Users in the United Kingdom and…

Custom QWCrypt Locker for Data Exfiltration and Ransomware Deployment
10
Dec
2025

Custom QWCrypt Locker for Data Exfiltration and Ransomware Deployment

Between February 2024 and August 2025, security researchers uncovered a significant campaign orchestrated by the GOLD BLADE threat group, previously…

Threat Actors Poison SEO to Spread Fake Microsoft Teams Installer
10
Dec
2025

Threat Actors Poison SEO to Spread Fake Microsoft Teams Installer

The Chinese advanced persistent threat (APT) group Silver Fox (also known as Void Arachne) has launched a sophisticated search engine…

Zoom Rooms on Windows and macOS Exposed to Privilege Escalation and Data Leakage Flaws
10
Dec
2025

Zoom Rooms on Windows and macOS Exposed to Privilege Escalation and Data Leakage Flaws

Zoom has released security patches addressing two critical vulnerabilities in Zoom Rooms deployments on both Windows and macOS. The vulnerabilities…

Makop Ransomware Targets RDP Systems Using AV Killer and Additional Exploits
10
Dec
2025

Makop Ransomware Targets RDP Systems Using AV Killer and Additional Exploits

Makop, a ransomware strain derived from Phobos, continues to pose a significant threat by exploiting exposed Remote Desktop Protocol (RDP)…