TP-Link has patched several vulnerabilities in its Archer NX router series, including a critical-severity flaw that may allow attackers to bypass authentication and upload new firmware. […]
Linux-focused ransomware Pay2Key is actively targeting enterprise servers, VMware ESXi virtualization hosts, and cloud workloads, underscoring how far Linux ransomware has evolved beyond simple file lockers. Originally known for fast, human-operated Windows intrusions against Israeli and Brazilian organizations, Pay2Key has re-emerged as a ransomware-as-a-service (RaaS) with explicit support for Linux environments. Recent research shows that newer […]
The post Linux Ransomware Pay2Key Targets Servers, Virtualization Hosts, and Cloud Workloads appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.
Invincible Season 4, Episode 4 Review: Mark takes a trip to hell and meets Bruce Campbell. It’s less interesting than it sounds.
The new standard for Nintendo Switch 2 Editions.
F5 has disclosed a high-severity vulnerability (CVE-2026-32647) in the NGINX ngx_http_mp4_module that allows attackers execute arbitrary code or cause a denial-of-service (DoS) using crafted MP4 files. This flaw impacts NGINX Plus and NGINX Open Source deployments where the MP4 streaming module is explicitly enabled in the server configuration. Vulnerability Details The security flaw, tracked as CVE-2026-32647, is […]
The post F5 NGINX Plus & Open‑Source Flaw Lets Attackers Execute Code via MP4 File appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.
A critical vulnerability dubbed “PolyShell” is actively being exploited across Magento and Adobe Commerce platforms. Discovered by the Sansec Forensics Team and published on March 17, 2026, this flaw allows unauthenticated attackers to upload executable files via the platform’s REST API. Because no official patch currently exists for production versions, thousands of online stores are […]
The post Hackers Exploiting Magento Flaw to Execute Remote Code and Seize Full Account Access appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.
Romania Under DDoS Attacks: Weekly DDoS Threat Intelligence Analysis Analysis Period: March 17 – 23, 2026 Between March 17 and 23, 2026, SOCRadar identified an extensive coordinated DDoS campaign conducted by the pro-Russian threat actor NoName057(16) using their DDoSia attack tool. The campaign resulted in 13,716 recorded attack entries, targeting 148 unique domains and 134 […]
A recent SmartApeSG campaign observed on March 24, 2026, highlights the growing sophistication of ClickFix-based attack chains, which deliver multiple remote access trojans (RATs) and information stealers through a staged infection process. The infection begins with the ClickFix technique, where victims are redirected from a compromised legitimate website to a fake CAPTCHA page. This page […]
The post SmartApeSG ClickFix Campaign Spreads Remcos, NetSupport RAT, StealC, Sectop RAT appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.
Silverfort researchers recently uncovered a critical security flaw in ClawHub, the main public registry for the OpenClaw agent ecosystem. This vulnerability allowed attackers to artificially boost download numbers, pushing malicious code to the top of the search results. This created a massive supply chain risk that could allow threat actors to run dangerous code on […]
The post ClawHub Vulnerability Lets Attackers Manipulate Rankings to Become Top Skill appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.
Aleksei Volkov has been sentenced to 81 months in prison for his role in Yanluowang ransomware attacks.
The post US Prisons Russian Access Broker for Aiding Ransomware Attacks appeared first on SecurityWeek.