Cybersecurity Feed

Cyber Security News — 25/01/2026, 09:36:40

Hackers Use ‘rn’ Typo Trick to Impersonate Microsoft and Marriott in New Phishing Attack Click here

BleepingComputer — 25/01/2026, 03:28:42

Sandworm hackers linked to failed wiper attack on Poland’s energy systems Click here

Cyber Security News — 24/01/2026, 22:14:45

CISA Warns of Critical VMware vCenter RCE Vulnerability Exploited in Attacks CVE-2024-37079 Critical Click here

BleepingComputer — 24/01/2026, 20:53:46

Konni hackers target blockchain engineers with AI-built malware Click here

The Hacker News — 24/01/2026, 16:39:00

Multi-Stage Phishing Campaign Targets Russia with Amnesia RAT and Ransomware High Click here

SecurityWeek — 24/01/2026, 14:15:43

Nike Probing Potential Security Incident as Hackers Threaten to Leak Data Click here

Cyber Security News — 24/01/2026, 14:00:44

Threat Actors Leverage SharePoint Services in Sophisticated AiTM Phishing Campaign Critical Click here

The Hacker News — 24/01/2026, 13:51:00

New DynoWiper Malware Used in Attempted Sandworm Attack on Polish Power Sector Click here

The Hacker News — 24/01/2026, 13:39:00

CISA Adds Actively Exploited VMware vCenter Flaw CVE-2024-37079 to KEV Catalog CVE-2024-37079 Critical Click here

Cyber Security News — 24/01/2026, 10:01:39

Microsoft Shares BitLocker Keys with FBI to Unlock Encrypted Laptops in Guam Fraud Investigation Click here

Cyber Security News — 24/01/2026, 09:44:21

Hackers Exploiting telnetd Vulnerability for Root Access – Public PoC Released CVE-2026-24061 Critical Click here

BleepingComputer — 24/01/2026, 05:05:03

ShinyHunters claim hacks of Okta, Microsoft SSO accounts for data theft Click here

darkreading — 24/01/2026, 02:34:17

Swipe, Plug-in, Pwned: Researchers Find New Ways to Hack Vehicles Click here

darkreading — 24/01/2026, 02:26:42

Exploited Zero-Day Flaw in Cisco UC Could Affect Millions CVE-2026-20045 Critical Click here

Cyber Security News — 24/01/2026, 00:49:39

20,000 WordPress Sites Affected by Backdoor Vulnerability Allowing Malicious Admin User Creation CVE-2026-0920 High Click here

Cyber Security News — 24/01/2026, 00:35:57

Threat Actors Weaponizes LNK File to Deploy MoonPeak Malware Attacking Windows Systems Click here

BleepingComputer — 24/01/2026, 00:17:31

CISA confirms active exploitation of four enterprise software bugs Click here

Cyber Security News — 23/01/2026, 23:26:52

Fake Captcha Ecosystem Exploits Trusted Web Infrastructure to Deliver Malware Critical Click here

BleepingComputer — 23/01/2026, 22:08:54

US to deport Venezuelans who emptied bank ATMs using malware Click here

BleepingComputer — 23/01/2026, 21:51:46

Hackers exploit critical telnetd auth bypass flaw to get root High Click here

The Hacker News — 23/01/2026, 20:54:00

CISA Updates KEV Catalog with Four Actively Exploited Software Vulnerabilities CVE-2025-68645 Critical Click here

BleepingComputer — 23/01/2026, 20:29:58

What an AI-Written Honeypot Taught Us About Trusting Machines Click here

SOC Prime — 23/01/2026, 19:45:14

CVE-2026-24061: Decade-Old Vulnerability in GNU InetUtils telnetd Enables Remote Root Access CVE-2026-24061 Critical Click here

SecurityWeek — 23/01/2026, 19:30:07

Fortinet Confirms FortiCloud SSO Exploitation Against Patched Devices Click here

SecurityWeek — 23/01/2026, 19:23:29

In Other News: €1.2B GDPR Fines, Net-NTLMv1 Rainbow Tables, Rockwell Security Notice Click here

SecurityWeek — 23/01/2026, 18:49:11

Phishers Abuse SharePoint in New Campaign Targeting Energy Sector Click here

BleepingComputer — 23/01/2026, 18:20:11

Hackers get $1,047,000 for 76 zero-days at Pwn2Own Automotive 2026 Critical Click here

The Hacker News — 23/01/2026, 18:00:00

Fortinet Confirms Active FortiCloud SSO Bypass on Fully Patched FortiGate Firewalls Click here

All CISA Advisories — 23/01/2026, 17:30:00

CISA Adds One Known Exploited Vulnerability to Catalog CVE-2024-37079 Critical Click here

SecurityWeek — 23/01/2026, 17:17:24

Organizations Warned of Exploited Zimbra Collaboration Vulnerability Critical Click here

SecurityWeek — 23/01/2026, 17:03:22

Infotainment, EV Charger Exploits Earn Hackers $1M at Pwn2Own Automotive 2026 Click here

The Hacker News — 23/01/2026, 16:48:00

Phishing Attack Uses Stolen Credentials to Install LogMeIn RMM for Persistent Access Click here

BleepingComputer — 23/01/2026, 16:09:03

Fortinet confirms critical FortiCloud auth bypass not fully patched High Click here

SecurityWeek — 23/01/2026, 16:04:09

Fresh SmarterMail Flaw Exploited for Admin Access Click here

SecurityWeek — 23/01/2026, 14:35:58

2 Venezuelans Convicted in US for Using Malware to Hack ATMs Click here

The Hacker News — 23/01/2026, 13:55:00

Microsoft Flags Multi-Stage AitM Phishing and BEC Attacks Targeting Energy Firms Click here

darkreading — 23/01/2026, 03:43:49

Risky Chinese Electric Buses Spark Aussie Gov't Review Click here

BleepingComputer — 23/01/2026, 03:13:43

Okta SSO accounts targeted in vishing-based data theft attacks Click here

darkreading — 23/01/2026, 02:48:42

Fortinet Firewalls Hit With Malicious Configuration Changes Click here

The Hacker News — 22/01/2026, 23:30:00

New Osiris Ransomware Emerges as New Strain Using POORTRY Driver in BYOVD Attack High Click here

The Hacker News — 22/01/2026, 22:00:00

Critical GNU InetUtils telnetd Flaw Lets Attackers Bypass Login and Gain Root Access CVE-2026-24061 Click here

darkreading — 22/01/2026, 21:35:18

Latin American Orgs Lack Confidence in Cyber Defenses, Skills Click here

SOC Prime — 22/01/2026, 20:05:28

CVE-2026-20045: Critical Zero-Day in Cisco Products Is Actively Exploited in the Wild CVE-2026-20045 Critical Click here

The Hacker News — 22/01/2026, 19:53:00

ThreatsDay Bulletin: Pixel Zero-Click, Redis RCE, China C2s, RAT Ads, Crypto Scams & 15+ Stories High Click here

Check Point Research — 22/01/2026, 19:24:08

KONNI Adopts AI to Generate PowerShell Backdoors Click here

All CISA Advisories — 22/01/2026, 17:30:00

EVMAPA CVE-2025-54816 Medium Click here

All CISA Advisories — 22/01/2026, 17:30:00

Rockwell Automation CompactLogix 5370 CVE-2025-11743 Click here

All CISA Advisories — 22/01/2026, 17:30:00

CISA Adds Four Known Exploited Vulnerabilities to Catalog CVE-2025-31125 Critical Click here

All CISA Advisories — 22/01/2026, 17:30:00

Delta Electronics DIAView CVE-2026-0975 Click here

All CISA Advisories — 22/01/2026, 17:30:00

Johnson Controls Inc. iSTAR Configuration Utility (ICU) tool CVE-2025-26386 Click here

All CISA Advisories — 22/01/2026, 17:30:00

Weintek cMT X Series HMI EasyWeb Service CVE-2025-14750 Medium Click here

All CISA Advisories — 22/01/2026, 17:30:00

AutomationDirect CLICK Programmable Logic Controller CVE-2025-67652 Click here

All CISA Advisories — 22/01/2026, 17:30:00

Hubitat Elevation Hubs CVE-2026-1201 Click here

Unit 42 — 22/01/2026, 16:30:22

The Next Frontier of Runtime Assembly Attacks: Leveraging LLMs to Generate Phishing JavaScript in Real Time Click here

The Hacker News — 22/01/2026, 15:16:00

SmarterMail Auth Bypass Exploited in the Wild Two Days After Patch Release Critical Click here

SANS Internet Storm Center, InfoCON: green — 22/01/2026, 14:01:30

Is AI-Generated Code Secure?, (Thu, Jan 22nd) Medium Click here

The Hacker News — 22/01/2026, 11:25:00

Automated FortiGate Attacks Exploit FortiCloud SSO to Alter Firewall Configurations Click here

The Hacker News — 22/01/2026, 09:36:00

Cisco Fixes Actively Exploited Zero-Day CVE-2026-20045 in Unified CM and Webex CVE-2026-20045 Critical Click here

darkreading — 22/01/2026, 03:30:37

'Contagious Interview' Attack Now Delivers Backdoor Via VS Code Click here

darkreading — 22/01/2026, 01:52:02

Phishing Campaign Zeroes in on LastPass Customers Click here

The Hacker News — 21/01/2026, 21:12:00

Zoom and GitLab Release Security Updates Fixing RCE, DoS, and 2FA Bypass Flaws CVE-2026-22844 High Click here

darkreading — 21/01/2026, 20:18:15

Complex VoidLink Linux Malware Created by AI Click here

SentinelLabs - We are hunters, reversers, exploit developers, and tinkerers shedding light on the world of malware, exploits, APTs, and cybercrime across all platforms. — 21/01/2026, 19:30:03

LABScon25 Replay | How to Bug Hotel Rooms v2.0 Click here

All CISA Advisories — 21/01/2026, 17:30:00

CISA Adds One Known Exploited Vulnerability to Catalog CVE-2026-20045 Critical Click here

Blogs on Information Technology, Network & Cybersecurity | Seqrite — 21/01/2026, 16:51:48

Why Data Deletion Should Not Be Executed by Privacy Software Click here

SANS Internet Storm Center, InfoCON: green — 21/01/2026, 15:20:34

Automatic Script Execution In Visual Studio Code, (Wed, Jan 21st) Click here

The Hacker News — 21/01/2026, 14:40:00

Chainlit AI Framework Flaws Enable Data Theft via File Read and SSRF Bugs Medium Click here

The Hacker News — 21/01/2026, 14:25:00

VoidLink Linux Malware Framework Built with AI Assistance Reaches 88,000 Lines of Code Click here

The Hacker News — 21/01/2026, 11:34:00

CERT/CC Warns binary-parser Bug Allows Node.js Privilege-Level Code Execution CVE-2026-1245 Click here

darkreading — 21/01/2026, 02:40:14

'CrashFix' Scam Crashes Browsers, Delivers Malware Click here

darkreading — 21/01/2026, 01:48:30

Mass Spam Attacks Leverage Zendesk Instances Click here

The Hacker News — 21/01/2026, 00:11:00

North Korea-Linked Hackers Target Developers via Malicious VS Code Projects Click here

Krebs on Security — 20/01/2026, 23:49:13

Kimwolf Botnet Lurking in Corporate, Govt. Networks Click here

darkreading — 20/01/2026, 23:34:28

Vulnerabilities Threaten to Break Chainlit AI Framework Click here

Unit 42 — 20/01/2026, 22:53:33

DNS OverDoS: Are Private Endpoints Too Private? Click here

darkreading — 20/01/2026, 21:22:35

Google Gemini Flaw Turns Calendar Invites Into Attack Vector Click here

darkreading — 20/01/2026, 21:17:19

Microsoft & Anthropic MCP Servers at Risk of RCE, Cloud Takeovers High Click here

The Hacker News — 20/01/2026, 19:25:00

Three Flaws in Anthropic MCP Git Server Enable File Access and Code Execution Click here

The Hacker News — 20/01/2026, 19:16:00

Hackers Use LinkedIn Messages to Spread RAT Malware Through DLL Sideloading Click here

All CISA Advisories — 20/01/2026, 17:30:00

Rockwell Automation Verve Asset Manager CVE-2025-14376 Click here

Cyble — 20/01/2026, 17:23:36

Critical Infrastructure Attacks Became Routine for Hacktivists in 2025 High Click here

The Hacker News — 20/01/2026, 17:18:00

Evelyn Stealer Malware Abuses VS Code Extensions to Steal Developer Credentials and Crypto Click here

The Hacker News — 20/01/2026, 16:15:00

Why Secrets in JavaScript Bundles are Still Being Missed Click here

SANS Internet Storm Center, InfoCON: green — 20/01/2026, 15:31:58

Add Punycode to your Threat Hunting Routine, (Tue, Jan 20th) Click here

Check Point Research — 20/01/2026, 14:57:54

VoidLink: Evidence That the Era of Advanced AI-Generated Malware Has Begun High Click here

Blogs on Information Technology, Network & Cybersecurity | Seqrite — 20/01/2026, 10:49:13

Operation DupeHike : UNG0902 targets Russian employees with DUPERUNNER and AdaptixC2 Medium Click here

The Hacker News — 19/01/2026, 18:47:00

⚡ Weekly Recap: Fortinet Exploits, RedLine Clipjack, NTLM Crack, Copilot Attack & More Click here

Blogs on Information Technology, Network & Cybersecurity | Seqrite — 19/01/2026, 18:31:44

Operation Covert Access: Weaponized LNK-Based Spear-Phishing Targeting Argentina’s Judicial Sector to Deploy a Covert RAT High Click here

Blogs on Information Technology, Network & Cybersecurity | Seqrite — 19/01/2026, 18:02:39

Operation Nomad Leopard: Targeted Spear-Phishing Campaign Against Government Entities in Afghanistan Click here

The Hacker News — 19/01/2026, 17:25:00

DevOps & SaaS Downtime: The High (and Hidden) Costs for Cloud-First Businesses Click here

The Hacker News — 19/01/2026, 14:39:00

CrashFix Chrome Extension Delivers ModeloRAT Using ClickFix-Style Browser Crash Lures Click here

Check Point Research — 19/01/2026, 14:25:27

19th January – Threat Intelligence Report CVE-2025-37164 Critical Click here

The Hacker News — 19/01/2026, 12:23:00

Security Bug in StealC Malware Panel Let Researchers Spy on Threat Actor Operations Medium Click here

SANS Internet Storm Center, InfoCON: green — 18/01/2026, 13:16:26

"How many states are there in the United States?", (Sun, Jan 18th) Click here

Unit 42 — 17/01/2026, 05:30:00

Anatomy of an Attack: The Payroll Pirates and the Power of Social Engineering Click here

darkreading — 17/01/2026, 02:33:37

GootLoader Malware Uses 500–1,000 Concatenated ZIP Archives to Evade Detection Click here

SOC Prime — 16/01/2026, 19:39:06

CVE-2026-0227: Palo Alto Networks Fixes GlobalProtect DoS Flaw Allowing Remote Firewall Disruption CVE-2026-0227 Critical Click here

The Hacker News — 16/01/2026, 19:39:00

Five Malicious Chrome Extensions Impersonate Workday and NetSuite to Hijack Accounts Click here

darkreading — 16/01/2026, 19:30:00

AI System Reduces Attack Reconstruction Time From Weeks to Hours Click here

The Hacker News — 16/01/2026, 15:57:00

LOTUSLITE Backdoor Targets U.S. Policy Entities Using Venezuela-Themed Spear Phishing Click here

The Hacker News — 16/01/2026, 12:48:00

China-Linked APT Exploited Sitecore Zero-Day in Critical Infrastructure Intrusion Critical Click here

The Hacker News — 16/01/2026, 11:08:00

Cisco Patches Zero-Day RCE Exploited by China-Linked APT in Secure Email Gateways CVE-2025-20393 Critical Click here

darkreading — 16/01/2026, 02:56:18

Predator Spyware Sample Indicates 'Vendor-Controlled' C2 Click here

The Hacker News — 16/01/2026, 01:01:00

AWS CodeBuild Misconfiguration Exposed GitHub Repos to Potential Supply Chain Attacks Click here

darkreading — 16/01/2026, 00:40:05

Winter Olympics Could Share Podium With Cyberattackers Click here

security - Ars Technica — 15/01/2026, 23:16:40

Many Bluetooth devices with Google Fast Pair vulnerable to “WhisperPair” hack Click here

The Hacker News — 15/01/2026, 21:01:00

Critical WordPress Modular DS Plugin Flaw Actively Exploited to Gain Admin Access CVE-2026-23550 Critical Click here

The Hacker News — 15/01/2026, 20:39:00

Researchers Reveal Reprompt Attack Allowing Single-Click Data Exfiltration From Microsoft Copilot Click here

Threat Intelligence — 15/01/2026, 19:30:00

Closing the Door on Net-NTLMv1: Releasing Rainbow Tables to Accelerate Protocol Deprecation Medium Click here

SOC Prime — 15/01/2026, 18:28:16

CVE-2026-20805: Microsoft Fixes Actively Exploited Windows Desktop Manager Zero-Day CVE-2026-20805 Critical Click here

All CISA Advisories — 15/01/2026, 17:30:00

AVEVA Process Optimization CVE-2025-61937 High Click here

darkreading — 15/01/2026, 02:49:44

Retail, Services Industries Under Fire in Oceania Click here

darkreading — 15/01/2026, 00:37:30

Microsoft Disrupts Cybercrime Service RedVDS Click here

darkreading — 14/01/2026, 21:29:49

'VoidLink' Malware Poses Advanced Threat to Linux Systems Click here

SOC Prime — 14/01/2026, 19:57:20

UAC-0190 Attack Detection: Fake Charity Lures Used to Deploy the PLUGGYAPE Backdoor Against the Ukrainian Armed Forces Click here

Check Point Research — 14/01/2026, 19:54:07

Sicarii Ransomware: Truth vs Myth CVE-2025-64446 High Click here

SentinelLabs - We are hunters, reversers, exploit developers, and tinkerers shedding light on the world of malware, exploits, APTs, and cybercrime across all platforms. — 14/01/2026, 19:30:55