GBHackers On Security

San Francisco, USA, March 25th, 2026, CyberNewswire Cybersecurity Insiders today announced the winners of the 2026 Cybersecurity Excellence Awards during RSA Conference, recognizing leading cybersecurity companies, products, and professionals. This year’s defining theme was AI security, drawing more nominations and more intense competition than any other, with entries spanning AI governance, agentic security, runtime protection, The post 2026 Cybersecurity Excellence Awards Winners Announced during RSA Conference as AI Security Dominates appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

China-linked threat actors have been identified targeting Southeast Asian military networks in a long-running cyber espionage campaign focused on intelligence collection and operational surveillance. The activity, tracked as CL-STA-1087, demonstrates a highly disciplined approach that combines custom malware, stealth techniques, and long-term persistence. Rather than large-scale data theft, the attackers focus on high-value intelligence such The post China-Backed Hackers Target Southeast Asian Military Systems in Ongoing Spy Campaign appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

A sophisticated, multi-stage delivery framework leveraging obfuscated Visual Basic Script (VBS) files, fileless PowerShell loaders, and payloads hidden within PNG images. The activity was initially detected by LevelBlue’s Managed Detection and Response (MDR) SOC through a SentinelOne alert involving a suspicious VBS file. The file, identified as Name_File.vbs, was located in a public downloads directory The post Obfuscated VBS and PNG Loaders Power New Open Directory Malware Campaign with RAT Payloads appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

Mirai-based botnets have evolved from simple IoT malware into large-scale DDoS and proxy abuse platforms that now underpin record-breaking attacks and stealthy cybercrime operations. In total, over 21,000 C2 servers were observed between July and December 2025, with a notable shift towards abusing bots as residential proxies in addition to classic DDoS use. This growth The post Mirai Botnets Evolve Into Major DDoS and Proxy Abuse Threats appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

A critical security flaw in GoHarbor’s Harbor container registry exposes organizations to severe supply chain attacks. Tracked as CVE-2026-4404, this vulnerability stems from hardcoded default credentials that remain active unless manually altered by an administrator. Harbor functions as an open-source, OCI-compliant registry project designed to store, sign, and manage container images. Because it plays a The post GoHarbor Issues Urgent Patch for Harbor Flaw Allowing Full Registry Compromise appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

Mozilla released Firefox 149.0 to the Release channel, bringing a significant set of privacy and security enhancements to the browser. The standout feature of this update is the integration of a free, built-in VPN designed to protect users on public networks and secure sensitive browsing activities. The new built-in VPN routes web traffic through a The post Mozilla Releases Firefox 149.0 With Free Built‑In VPN Offering 50 GB Monthly Data appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

Linux-focused ransomware Pay2Key is actively targeting enterprise servers, VMware ESXi virtualization hosts, and cloud workloads, underscoring how far Linux ransomware has evolved beyond simple file lockers. Originally known for fast, human-operated Windows intrusions against Israeli and Brazilian organizations, Pay2Key has re-emerged as a ransomware-as-a-service (RaaS) with explicit support for Linux environments. Recent research shows that newer The post Linux Ransomware Pay2Key Targets Servers, Virtualization Hosts, and Cloud Workloads appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

F5 has disclosed a high-severity vulnerability (CVE-2026-32647) in the NGINX ngx_http_mp4_module that allows attackers execute arbitrary code or cause a denial-of-service (DoS) using crafted MP4 files. This flaw impacts NGINX Plus and NGINX Open Source deployments where the MP4 streaming module is explicitly enabled in the server configuration. Vulnerability Details The security flaw, tracked as CVE-2026-32647, is The post F5 NGINX Plus & Open‑Source Flaw Lets Attackers Execute Code via MP4 File appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

A critical vulnerability dubbed “PolyShell” is actively being exploited across Magento and Adobe Commerce platforms. Discovered by the Sansec Forensics Team and published on March 17, 2026, this flaw allows unauthenticated attackers to upload executable files via the platform’s REST API. Because no official patch currently exists for production versions, thousands of online stores are The post Hackers Exploiting Magento Flaw to Execute Remote Code and Seize Full Account Access appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

A recent SmartApeSG campaign observed on March 24, 2026, highlights the growing sophistication of ClickFix-based attack chains, which deliver multiple remote access trojans (RATs) and information stealers through a staged infection process. The infection begins with the ClickFix technique, where victims are redirected from a compromised legitimate website to a fake CAPTCHA page. This page The post SmartApeSG ClickFix Campaign Spreads Remcos, NetSupport RAT, StealC, Sectop RAT appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.