Aggregator

You must login to view this content

Threat actors, ranging from state-sponsored organizations to non-state actors, are using sophisticated cyber weapons to breach and destroy vital infrastructure in a time when digital and physical security are becoming more intertwined. These tools, often manifesting as malware agents like worms, viruses, and advanced persistent threats (APTs), exploit vulnerabilities in supervisory control and data acquisition […]

The post Threats Actors Use Sophisticated Hacking Tools to Destroy Organizations Critical Infrastructure appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

You must login to view this content

Researchers from The DFIR Report, collaborating with Proofpoint, have uncovered a resilient PHP-based variant of the Interlock ransomware group’s remote access trojan (RAT), marking a significant evolution from the previously documented JavaScript-driven NodeSnake. This adaptation, observed in campaigns linked to the LandUpdate808 threat cluster also known as KongTuke has been active since May 2025, exploiting […]

The post KongTuke Campaign Deploys Modified Interlock RAT Using FileFix Method Against Windows Environments appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

A threat actor using the handle “zeroplayer” advertised a previously unknown remote-code-execution (RCE) exploit for WinRAR on an underground forum.  The post, titled “WINRAR RCE 0DAY – 80,000$,” claims the flaw works “fully on the latest version of WinRAR and below,” is not related to the recently patched CVE-2025-6218, and is available exclusively through the […]

The post Hackers Allegedly Selling WinRAR 0-day Exploit on Dark Web Forums for $80,000 appeared first on Cyber Security News.