In February 2026, the cyber threat landscape experienced significant evolution with the emergence of new ransomware and remote access trojans (RATs), as well as enhanced phishing techniques. Two noteworthy ransomware families, GREENBLOOD and BQTLock, were identified for their destructive capabilities. GREENBLOOD is a Go-based ransomware that quickly encrypts files while employing self-deletion tactics to obscure forensic traces, and it threatens data leaks through a TOR site, amplifying the potential impact on businesses. BQTLock operates stealthily, integrating into trusted Windows processes to delay visible harm, thus complicating early detection. It employs process injection techniques, a User Account Control (UAC) bypass, and autorun persistence to escalate privileges before launching further attacks like credential theft and screen capturing.