hackers Archives

Tech Optimizer

January 15, 2026

Fake Grok app built using generative AI discovered spreading malware on macOS devices

Recent concerns have been raised about the Grok AI chatbot, associated with Elon Musk, due to reports of explicit and degrading content. A new strain of malware targeting Apple computers, linked to vulnerabilities in the Mac App Store, has been identified as part of the SimpleStealth campaign. Users are advised to download applications only from the official app store or reputable companies, as Grok is not considered reputable. Many antivirus programs have difficulty detecting this malware variant, making robust Mac antivirus software a wise investment. Apple's built-in security software, XProtect, provides some protection, but users should remain vigilant and enhance their cyber hygiene.

Tech Optimizer

January 10, 2026

Protect Yourself From the macOS Flaw that Bypasses Apple Privacy Controls

A newly identified macOS vulnerability, tracked as CVE-2025-43530, poses a significant risk by circumventing Apple’s privacy controls, potentially exposing users to malicious actors. This flaw arises from two vulnerabilities that allow hackers unauthorized access to systems by exploiting Apple-signed services and a timing gap in process verification. Hackers can execute AppleScript commands and access user files and microphone audio without triggering warnings. The VoiceOver screen reader service is a primary target for exploitation. Users are advised to update to macOS Tahoe 26.2, review app permissions, consider third-party antivirus solutions, and avoid downloading untrusted files to enhance security.

Winsage

January 7, 2026

Hackers Use Fake Windows BSOD To Spread Malware

Security researchers have identified a social engineering campaign that mimics the Windows Blue Screen of Death (BSOD) to deceive users into installing a remote access Trojan (RAT). The campaign, named PHALT#BLYX, begins with phishing emails that appear to be legitimate cancellation notices from travel websites, leading victims to a fake login page and an interactive CAPTCHA. This culminates in a full-screen imitation of the BSOD, prompting users to follow instructions that ultimately allow attackers to gain control of their computers. The attackers use a “ClickFix” process that involves executing commands through native Windows tools like PowerShell and MSBuild, making detection more challenging. The malware delivered is an obfuscated version of DCRat, which provides attackers with remote control capabilities, keylogging, and the ability to download additional malware. The campaign primarily targets hotels and hospitality businesses in Europe, exploiting the urgency of front-desk staff to respond to apparent technical issues. Indicators of a fake BSOD include the ability to interact with the screen, requests to execute commands via Windows tools, and the presence of CAPTCHA prompts. Organizations are advised to train employees, implement application control, enhance email and web defenses, and prepare for incident response to mitigate risks associated with such attacks.

AppWizard

January 5, 2026

Rainbow Six Siege X seemingly compromised again as players hit with brain rot-inspired 67-day ‘bans’

Ubisoft's Rainbow Six Siege X has experienced multiple security breaches, leading to the game being taken offline, a server rollback, and a temporary marketplace shutdown. Following a significant hack that flooded players with in-game currency, a subsequent incident involved players receiving false notifications of in-game bans for harassment, with absurd durations like 67 days. Players also encountered modified messages mimicking standard reporting notifications. The official server status page indicates ongoing authentication and matchmaking outages, with connectivity marked as 'degraded.' Ubisoft has not yet provided a detailed response to these hacking attempts.

Tech Optimizer

December 30, 2025

Hackers Advertised VOID ‘AV Killer’ with Kernel-level Termination Claims

A new threat actor named Crypt4You is promoting a tool called VOID KILLER on underground forums and dark web marketplaces. VOID KILLER is designed as a kernel-level antivirus and endpoint detection response process killer, specifically engineered to bypass existing security defenses. It targets the core of operating systems to dismantle protective barriers, posing a significant challenge to contemporary defensive architectures. VOID KILLER can terminate Windows Defender and around fifty consumer-grade antivirus solutions without detection, utilizing polymorphic build techniques to evade signature-based detection systems. It features automatic User Account Control (UAC) bypass mechanisms and can inject any executable file, making it compatible with various malware families. Custom builds of VOID KILLER are priced at three hundred dollars, and payment is accepted in cryptocurrencies. Organizations using Windows Defender, consumer antivirus software, and advanced EDR solutions face increased risk exposure due to this tool.

Tech Optimizer

December 30, 2025

How To Protect Yourself From Cyber Attacks In The New Year: 10 Essential Tips

The holiday season sees increased online activity, making it a prime time for cybercriminals to exploit vulnerabilities. IT teams are often overwhelmed, and employees may be distracted, leading to a higher risk of phishing scams, ransomware attacks, and data breaches. Strategies to enhance digital security include using strong, unique passwords of at least 16 characters, enabling multi-factor authentication (MFA), being cautious with unfamiliar links, keeping devices updated with software patches, installing antivirus software, using secure networks (preferably with a VPN), enabling firewalls and endpoint protection, limiting user privileges, encrypting and backing up data, and reporting suspicious activity to relevant authorities.

AppWizard

December 29, 2025

Rainbow Six Siege X servers are back online after a hack completely shut down the game — Ubisoft rolling back free ultra-rare skins and billions of credits

Rainbow Six Siege servers and primary services have resumed operations after a hacking incident that led to a complete shutdown of the game. Players may experience a wait queue as services come back online. Those who accessed the game after December 27th at 19:49 UTC might temporarily lose access to their accounts due to measures taken to address the unintended distribution of in-game rewards during the hack. Players who did not log in between December 27th at 10:49 UTC and December 29th should see no changes to their inventory. Ubisoft is conducting an ongoing investigation into the breach, which is expected to continue for two weeks, and the Rainbow Six Siege marketplace will remain closed until further notice. The hacking incident allowed attackers to access the game's backend systems, enabling them to ban and unban players and distribute unlimited in-game credits and exclusive skins. Some players reported receiving up to two billion R6 credits and rare skins typically reserved for developers.

AppWizard

December 28, 2025

Rainbow Six Siege is under siege by hackers, Ubisoft forced to take all servers offline — players randomly received billions of credits, ultra-exclusive skins, and bans or unbans

Ubisoft has taken all Rainbow Six Siege servers offline due to a significant breach that has compromised the game's backend. The incident was confirmed on December 27 at approximately 9:10 AM EST, leading to an Unplanned Outage across all platforms. Players have reported receiving 2 billion R6 credits, Renown, exclusive developer-only skins, and the Glacier weapon skin. Additionally, numerous accounts, including those of high-profile streamers, have experienced random bans and unbans. Players are advised to remain offline and update their passwords as a precaution. The full extent of the breach is still unclear, marking it as one of the most impactful disruptions in recent gaming history.

TrendTechie

December 25, 2025

Хакеры скачали почти весь Spotify! Вы можете получить его через торрент, но размер файла вас просто поразит.

The hacker project Anna's Archive has claimed to have downloaded 99.6% of Spotify's music catalog, amounting to nearly 300 TB of data. They reportedly acquired about 86 million tracks, focusing on those with listener engagement, which they argue represents nearly all the music users actively listen to. Spotify confirmed that the accounts responsible for the breach have been deactivated and stated that they are implementing new measures to counter such attacks.

Tech Optimizer

December 24, 2025

Animated Malware Lures Evolve, Threatening Users’ Cybersecurity

Small businesses are increasingly targeted by cybercriminals, who are using sophisticated tactics such as animated lures to entice users into downloading malware. The HP Threat Insights Report highlights that small businesses, often perceived as easier targets due to limited resources, are particularly vulnerable. The rise of purchasable malware services allows inexperienced criminals to engage in cybercrime, broadening the range of potential threats. To combat these risks, small business owners are advised to invest in employee training on phishing tactics, implement robust cybersecurity measures, conduct regular security audits, and develop incident response plans. However, challenges such as limited budgets and lack of dedicated IT staff hinder their ability to enhance cybersecurity. Keeping informed about evolving threats is essential for protecting their operations.