Category: GBHackers

Critical AVEVA Software Flaws Allow Remote Code Execution With SYSTEM Privileges
20
Jan
2026

Critical AVEVA Software Flaws Allow Remote Code Execution With SYSTEM Privileges

AVEVA has disclosed seven critical and high-severity vulnerabilities in its Process Optimization software (formerly ROMeo) that could enable attackers to…

Spear-Phishing Campaign Leverages Google Ads to Distribute EndRAT Malware
19
Jan
2026

Spear-Phishing Campaign Leverages Google Ads to Distribute EndRAT Malware

Genians Security Center has published an in-depth analysis of Operation Poseidon, a sophisticated APT campaign attributed to the Konni threat…

Attackers Rerouted Employee Pay Without Breaching IT Systems
19
Jan
2026

Attackers Rerouted Employee Pay Without Breaching IT Systems

An unnamed organization recently discovered that several employees’ paychecks had silently vanished not because of a ransomware attack, data-wiping malware,…

Attackers Abuse WSL2 to Operate Undetected on Windows Systems
19
Jan
2026

Attackers Abuse WSL2 to Operate Undetected on Windows Systems

Windows Subsystem for Linux (WSL) has transformed the developer experience on Windows. However, it has also quietly created a powerful…

Cybercriminals Impersonate Malwarebytes to Steal User Credentials
19
Jan
2026

Cybercriminals Impersonate Malwarebytes to Steal User Credentials

As part of an ongoing effort to highlight active and technically interesting intrusions, a new “Flash Hunting Findings” investigation has…

Windows SMB Client Vulnerability Exposes Organizations to Full Active Directory Compromise
19
Jan
2026

Windows SMB Client Vulnerability Exposes Organizations to Full Active Directory Compromise

A severe vulnerability in Windows Server Message Block (SMB) client authentication has emerged as a critical threat to Active Directory environments.  CVE-2025-33073,…

CIRO Confirms Data Breach Impacting 750,000 Canadian Investors
19
Jan
2026

CIRO Confirms Data Breach Impacting 750,000 Canadian Investors

The Canadian Investment Regulatory Organization (CIRO) has officially confirmed a significant data breach affecting approximately 750,000 Canadian investors, stemming from…

Pulsar RAT Abuses Memory-Only Execution and HVNC for Stealthy Remote Takeover
19
Jan
2026

Pulsar RAT Abuses Memory-Only Execution and HVNC for Stealthy Remote Takeover

Pulsar RAT, an advanced evolution of the open-source Quasar RAT, is actively targeting Windows systems with enhanced stealth capabilities and…

Visual Studio Code Abused in Sophisticated Multistage Malware Attacks
19
Jan
2026

Visual Studio Code Abused in Sophisticated Multistage Malware Attacks

A newly analyzed campaign dubbed “Evelyn Stealer” is turning the Visual Studio Code (VSC) extension ecosystem into an attack delivery…

Remcos RAT Campaign Uses Trojanized VeraCrypt Installers to Steal Credentials
19
Jan
2026

Remcos RAT Campaign Uses Trojanized VeraCrypt Installers to Steal Credentials

AhnLab Security Intelligence Center (ASEC) has identified an active Remcos RAT campaign targeting users in South Korea. The malware is…

The Hidden Backbone of a Ransomware Operation
19
Jan
2026

The Hidden Backbone of a Ransomware Operation

The leaks tied to the BlackBasta ransomware group and Russian hosting company Media Land pulled back the curtain on something…

Microsoft January 2026 Security Update Triggers Credential Prompt Failures in Remote Desktop
19
Jan
2026

Microsoft January 2026 Security Update Triggers Credential Prompt Failures in Remote Desktop

Microsoft’s January 2026 security update has disrupted enterprise Remote Desktop infrastructure, triggering widespread credential prompt failures that prevent users from accessing Azure Virtual…