ICYMI: 2026-01-08
Latest Headlines
WhatsApp Worm Spreads Astaroth Banking Trojan Across Brazil via Contact Auto-Messaging
China-Linked UAT-7290 Targets Telecoms with Linux Malware and ORB Nodes
ThreatsDay Bulletin: RustFS Flaw, Iranian Ops, WebUI RCE, Cloud Leaks, and 12 More Stories
Cisco Patches ISE Security Vulnerability After Public PoC Exploit Release
Researchers Uncover NodeCordRAT Hidden in npm Bitcoin-Themed Packages
Coolify Discloses 11 Critical Flaws Enabling Full Server Compromise on Self-Hosted Instances
OpenAI Launches ChatGPT Health with Isolated, Encrypted Health Data Controls
CISA Flags Microsoft Office and HPE OneView Bugs as Actively Exploited
CrowdStrike to Buy Identity Security Firm SGNL for $740 Million in Cash
Blackbird.AI Raises $28 Million for Narrative Intelligence Platform
Critical Vulnerability Exposes n8n Instances to Takeover Attacks
Researchers Expose WHILL Wheelchair Safety Risks via Remote Hacking
What tools help reduce fraud or friendly fraud for online businesses?
UAT-7290 Hackers Attacking Critical Infrastructure Entities in South Asia
ChatGPT Health – A Dedicated Space for Health Queries With Strong Privacy and Security
Hackers Launched 8.1 Million Attack Sessions to React2Shell Vulnerability
New Phishing Attack Impersonate as DocuSign Deploys Stealthy Malware on Windows Systems
Microsoft Enforces Mandatory MFA for Microsoft 365 Admin Center Logins
New ChatGPT Flaws Allow Attackers to Exfiltrate Sensitive Data from Gmail, Outlook, and GitHub
Trump Signals U.S. Cyber Role in Caracas Blackout During Maduro Capture
Microsoft Unveils a New Tool to Migrate from Slack to Microsoft Teams
New OAuth-Based Attack Let Hackers Bypass Microsoft Entra Authentication Flows to Steal Keys
Gmail’s new AI Inbox uses Gemini, but Google says it won’t train AI on user emails
New China-linked hackers breach telcos using edge device exploits
FBI warns about Kimsuky hackers using QR codes to phish U.S. orgs
VMware ESXi zero-days likely exploited a year before disclosure
Texas court blocks Samsung from tracking TV viewing, then vacates order
Microsoft Exchange Online outage blocks access to mailboxes via IMAP4
Microsoft to enforce MFA for Microsoft 365 admin center sign-ins
Cisco warns of Identity Service Engine flaw with exploit code
CISA tags max severity HPE OneView flaw as actively exploited
– MTZ