Tag: GBHackers Security | #1 Globally Trusted Cyber Security News Platform

Tax Phishing Emails Deliver In-Memory Malware to Windows Systems

Cybercriminals are leveraging tax-themed phishing emails to deploy sophisticated in-memory malware on Windows systems, bypassing traditional disk-based detection mechanisms. The attack cascade begins when victims receive phishing emails containing malicious attachments disguised as official tax documents, W-2 forms, or rejected…

Malicious npm Package ‘dbmux’ Targets Developers

Malware was discovered in the npm package dbmux. Any computer with this package installed or running should be considered fully compromised. The GitHub Advisory (GHSA-62wx-5f55-w8g2) characterizes the incident as severe: any machine with dbmux installed or executing it should be…

OpenClaw AI Agent Leaks Credentials in Phishing Simulation

Autonomous email agents can become high‑impact phishing victims, leaking cloud credentials and sensitive business data even when wrapped in explicit safety instructions. In a controlled lab deployment on the OpenClaw agent platform, an AI agent dubbed “Pinchy” failed multiple classic…

Hackers Use ClickFix Chain to Deploy MLTBackdoor Malware

A sophisticated new backdoor family, tracked as MLTBackdoor, that operators are deploying through a multi-stage ClickFix infection chain to establish footholds for ransomware and follow-on activity. The campaign begins with an automotive-themed ClickFix lure: when a victim copies, pastes, and…

Hackers Use TikTok and Instagram Reels to Push Fake Software Malware

An emerging phishing vector that weaponizes short-form social videos on TikTok and Instagram Reels to distribute malware and funnel victims to malicious download sites. Attackers publish polished “how-to” tutorials and casual user-style clips promising free premium software Spotify Premium, CapCut…

New BitB Phishing Attack Targets Microsoft 365 Logins

A new Browser-in-the-Browser (BitB) phishing campaign is abusing fake OAuth login windows to steal Microsoft 365 credentials, and its design is polished enough to bypass casual visual checks. The attack uses a draggable popup that mimics a real browser dialog.…

North Korea Hackers Weaponize GitHub to Target Developers

A sustained phishing campaign that leverages developer recruitment and code-review lures to deliver cross‑platform malware via attacker-controlled GitHub repositories. Tracked as UNK_DeadDrop and attributed with high confidence to a North Korea‑aligned actor, the operation targeted nearly 100 organizations across finance,…