Aggregator

A newly identified social engineering attack dubbed “ClickFix” has emerged as a significant threat, leveraging meticulously crafted fake Cloudflare verification pages to trick users into executing malicious code on their devices. This phishing tactic, disguised as a routine security check, exploits the familiarity of Cloudflare’s Turnstile CAPTCHA interface to deceive users into running hidden PowerShell […]

The post ClickFix Attack Uses Fake Cloudflare Verification to Silently Deploy Malware appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

Healthcare giant Kettering Health, which manages 14 medical centers in Ohio, confirmed that the Interlock ransomware group breached its network and stole data in a May cyberattack. [...]

A vulnerability has been found in Kunbus Revolution Pi Webstatus up to 2.4.5 and classified as very critical. This vulnerability affects unknown code. The manipulation leads to incorrect type conversion. This vulnerability was named CVE-2025-41646. The attack can be initiated remotely. There is no exploit available.

A vulnerability, which was classified as problematic, was found in Linux Kernel up to 6.14.7. This affects the function io_uring_show_fdinfo. The manipulation leads to information disclosure. This vulnerability is uniquely identified as CVE-2025-38002. Access to the local network is required for this attack. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as problematic, has been found in Linux Kernel up to 6.15.0. Affected by this issue is some unknown functionality of the component net_sched. The manipulation of the argument cl_nactive leads to infinite loop. This vulnerability is handled as CVE-2025-38001. The attack needs to be initiated within the local network. There is no exploit available. It is recommended to upgrade the affected component.

DragonForce, a ransomware group first identified in fall 2023, has claimed over 120 victims in the past year, marking its rapid ascent as a formidable player in the ransomware ecosystem. Initially operating under a Ransomware-as-a-Service (RaaS) model, DragonForce has since pivoted to a ransomware cartel structure, as announced in March 2025 on its data leak […]

The post DragonForce Ransomware Reportedly Compromised Over 120 Victims in the Past Year appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

ClickFix добрался до России.

Alleged data breach of Ministry of Health of Peru