Category: GBHackers

The Hidden Backbone of a Ransomware Operation
19
Jan
2026

The Hidden Backbone of a Ransomware Operation

The leaks tied to the BlackBasta ransomware group and Russian hosting company Media Land pulled back the curtain on something…

Share: X : The Hidden Backbone of a Ransomware OperationFacebook : The Hidden Backbone of a Ransomware OperationLinkedin : The Hidden Backbone of a Ransomware OperationReddit : The Hidden Backbone of a Ransomware OperationTelegram : The Hidden Backbone of a Ransomware OperationWhatsApp : The Hidden Backbone of a Ransomware OperationEmail : The Hidden Backbone of a Ransomware Operation
Microsoft January 2026 Security Update Triggers Credential Prompt Failures in Remote Desktop
19
Jan
2026

Microsoft January 2026 Security Update Triggers Credential Prompt Failures in Remote Desktop

Microsoft’s January 2026 security update has disrupted enterprise Remote Desktop infrastructure, triggering widespread credential prompt failures that prevent users from accessing Azure Virtual…

Share: X : Microsoft January 2026 Security Update Triggers Credential Prompt Failures in Remote DesktopFacebook : Microsoft January 2026 Security Update Triggers Credential Prompt Failures in Remote DesktopLinkedin : Microsoft January 2026 Security Update Triggers Credential Prompt Failures in Remote DesktopReddit : Microsoft January 2026 Security Update Triggers Credential Prompt Failures in Remote DesktopTelegram : Microsoft January 2026 Security Update Triggers Credential Prompt Failures in Remote DesktopWhatsApp : Microsoft January 2026 Security Update Triggers Credential Prompt Failures in Remote DesktopEmail : Microsoft January 2026 Security Update Triggers Credential Prompt Failures in Remote Desktop
Python-Based Recon Toolkit Aims to Boost Security Intelligence
19
Jan
2026

Python-Based Recon Toolkit Aims to Boost Security Intelligence

Security researchers and penetration testers gain a comprehensive open-source reconnaissance platform with the release of Argus v2.0, a Python-based information…

Share: X : Python-Based Recon Toolkit Aims to Boost Security IntelligenceFacebook : Python-Based Recon Toolkit Aims to Boost Security IntelligenceLinkedin : Python-Based Recon Toolkit Aims to Boost Security IntelligenceReddit : Python-Based Recon Toolkit Aims to Boost Security IntelligenceTelegram : Python-Based Recon Toolkit Aims to Boost Security IntelligenceWhatsApp : Python-Based Recon Toolkit Aims to Boost Security IntelligenceEmail : Python-Based Recon Toolkit Aims to Boost Security Intelligence
Mandiant Publishes Rainbow Tables That Crack NTLMv1 Admin Passwords
19
Jan
2026

Mandiant Publishes Rainbow Tables That Crack NTLMv1 Admin Passwords

Mandiant has publicly released comprehensive rainbow tables designed to crack Net-NTLMv1 authentication hashes, addressing a critical security gap that has persisted for…

Share: X : Mandiant Publishes Rainbow Tables That Crack NTLMv1 Admin PasswordsFacebook : Mandiant Publishes Rainbow Tables That Crack NTLMv1 Admin PasswordsLinkedin : Mandiant Publishes Rainbow Tables That Crack NTLMv1 Admin PasswordsReddit : Mandiant Publishes Rainbow Tables That Crack NTLMv1 Admin PasswordsTelegram : Mandiant Publishes Rainbow Tables That Crack NTLMv1 Admin PasswordsWhatsApp : Mandiant Publishes Rainbow Tables That Crack NTLMv1 Admin PasswordsEmail : Mandiant Publishes Rainbow Tables That Crack NTLMv1 Admin Passwords
The Tool Access 11 Chrome Web Store listing claims to "restrict access to special tools" and help "limit user
19
Jan
2026

Five Chrome Extensions Used to Hijack Enterprise HR and ERP Systems

Socket’s Threat Research Team has uncovered a coordinated Chrome extension campaign targeting enterprise HR and ERP platforms, including Workday, NetSuite,…

Share: X : Five Chrome Extensions Used to Hijack Enterprise HR and ERP SystemsFacebook : Five Chrome Extensions Used to Hijack Enterprise HR and ERP SystemsLinkedin : Five Chrome Extensions Used to Hijack Enterprise HR and ERP SystemsReddit : Five Chrome Extensions Used to Hijack Enterprise HR and ERP SystemsTelegram : Five Chrome Extensions Used to Hijack Enterprise HR and ERP SystemsWhatsApp : Five Chrome Extensions Used to Hijack Enterprise HR and ERP SystemsEmail : Five Chrome Extensions Used to Hijack Enterprise HR and ERP Systems
PDFSIDER Malware Actively Exploited to Evade Antivirus and EDR Defenses
19
Jan
2026

PDFSIDER Malware Actively Exploited to Evade Antivirus and EDR Defenses

Security researchers have identified a sophisticated backdoor malware variant, PDFSIDER, that leverages DLL side-loading to evade endpoint detection and response…

Share: X : PDFSIDER Malware Actively Exploited to Evade Antivirus and EDR DefensesFacebook : PDFSIDER Malware Actively Exploited to Evade Antivirus and EDR DefensesLinkedin : PDFSIDER Malware Actively Exploited to Evade Antivirus and EDR DefensesReddit : PDFSIDER Malware Actively Exploited to Evade Antivirus and EDR DefensesTelegram : PDFSIDER Malware Actively Exploited to Evade Antivirus and EDR DefensesWhatsApp : PDFSIDER Malware Actively Exploited to Evade Antivirus and EDR DefensesEmail : PDFSIDER Malware Actively Exploited to Evade Antivirus and EDR Defenses
Researchers Hijack Hacker Domain Using Name Server Delegation
19
Jan
2026

Researchers Hijack Hacker Domain Using Name Server Delegation

Security researchers from Infoblox have successfully intercepted millions of malicious push notification advertisements by exploiting a DNS misconfiguration technique known…

Share: X : Researchers Hijack Hacker Domain Using Name Server DelegationFacebook : Researchers Hijack Hacker Domain Using Name Server DelegationLinkedin : Researchers Hijack Hacker Domain Using Name Server DelegationReddit : Researchers Hijack Hacker Domain Using Name Server DelegationTelegram : Researchers Hijack Hacker Domain Using Name Server DelegationWhatsApp : Researchers Hijack Hacker Domain Using Name Server DelegationEmail : Researchers Hijack Hacker Domain Using Name Server Delegation
New “BodySnatcher” Flaw Allows Full ServiceNow User Impersonation
19
Jan
2026

New “BodySnatcher” Flaw Allows Full ServiceNow User Impersonation

Security researcher has disclosed a critical vulnerability in ServiceNow’s Virtual Agent API and Now Assist AI Agents application, tracked as…

Share: X : New “BodySnatcher” Flaw Allows Full ServiceNow User ImpersonationFacebook : New “BodySnatcher” Flaw Allows Full ServiceNow User ImpersonationLinkedin : New “BodySnatcher” Flaw Allows Full ServiceNow User ImpersonationReddit : New “BodySnatcher” Flaw Allows Full ServiceNow User ImpersonationTelegram : New “BodySnatcher” Flaw Allows Full ServiceNow User ImpersonationWhatsApp : New “BodySnatcher” Flaw Allows Full ServiceNow User ImpersonationEmail : New “BodySnatcher” Flaw Allows Full ServiceNow User Impersonation
Threat Actors Abuse Browser Extensions to Deliver Fake Warning Messages
19
Jan
2026

Threat Actors Abuse Browser Extensions to Deliver Fake Warning Messages

Threat intelligence researchers at Huntress have uncovered a sophisticated browser extension campaign orchestrated by the KongTuke threat actor group, featuring…

Share: X : Threat Actors Abuse Browser Extensions to Deliver Fake Warning MessagesFacebook : Threat Actors Abuse Browser Extensions to Deliver Fake Warning MessagesLinkedin : Threat Actors Abuse Browser Extensions to Deliver Fake Warning MessagesReddit : Threat Actors Abuse Browser Extensions to Deliver Fake Warning MessagesTelegram : Threat Actors Abuse Browser Extensions to Deliver Fake Warning MessagesWhatsApp : Threat Actors Abuse Browser Extensions to Deliver Fake Warning MessagesEmail : Threat Actors Abuse Browser Extensions to Deliver Fake Warning Messages
New Kerberos Relay Technique Exploits DNS CNAMEs to Bypass Existing Defenses
19
Jan
2026

New Kerberos Relay Technique Exploits DNS CNAMEs to Bypass Existing Defenses

A critical vulnerability in Windows Kerberos authentication that enables attackers to conduct credential-relay attacks by exploiting DNS CNAME records. Tracked…

Share: X : New Kerberos Relay Technique Exploits DNS CNAMEs to Bypass Existing DefensesFacebook : New Kerberos Relay Technique Exploits DNS CNAMEs to Bypass Existing DefensesLinkedin : New Kerberos Relay Technique Exploits DNS CNAMEs to Bypass Existing DefensesReddit : New Kerberos Relay Technique Exploits DNS CNAMEs to Bypass Existing DefensesTelegram : New Kerberos Relay Technique Exploits DNS CNAMEs to Bypass Existing DefensesWhatsApp : New Kerberos Relay Technique Exploits DNS CNAMEs to Bypass Existing DefensesEmail : New Kerberos Relay Technique Exploits DNS CNAMEs to Bypass Existing Defenses
GhostPoster Malware Targets Chrome Users via 17 Rogue Extensions
19
Jan
2026

GhostPoster Malware Targets Chrome Users via 17 Rogue Extensions

A sophisticated malware campaign has compromised users of Chrome, Firefox, and Edge by deploying 17 malicious extensions that employ advanced…

Share: X : GhostPoster Malware Targets Chrome Users via 17 Rogue ExtensionsFacebook : GhostPoster Malware Targets Chrome Users via 17 Rogue ExtensionsLinkedin : GhostPoster Malware Targets Chrome Users via 17 Rogue ExtensionsReddit : GhostPoster Malware Targets Chrome Users via 17 Rogue ExtensionsTelegram : GhostPoster Malware Targets Chrome Users via 17 Rogue ExtensionsWhatsApp : GhostPoster Malware Targets Chrome Users via 17 Rogue ExtensionsEmail : GhostPoster Malware Targets Chrome Users via 17 Rogue Extensions
Google Vertex AI Flaw Lets Low-Privilege Users Escalate to Service Agent Roles
17
Jan
2026

Google Vertex AI Flaw Lets Low-Privilege Users Escalate to Service Agent Roles

Security researchers have discovered critical privilege escalation vulnerabilities in Google’s Vertex AI platform that allow attackers with minimal permissions to…

Share: X : Google Vertex AI Flaw Lets Low-Privilege Users Escalate to Service Agent RolesFacebook : Google Vertex AI Flaw Lets Low-Privilege Users Escalate to Service Agent RolesLinkedin : Google Vertex AI Flaw Lets Low-Privilege Users Escalate to Service Agent RolesReddit : Google Vertex AI Flaw Lets Low-Privilege Users Escalate to Service Agent RolesTelegram : Google Vertex AI Flaw Lets Low-Privilege Users Escalate to Service Agent RolesWhatsApp : Google Vertex AI Flaw Lets Low-Privilege Users Escalate to Service Agent RolesEmail : Google Vertex AI Flaw Lets Low-Privilege Users Escalate to Service Agent Roles