ICYMI: 2026-01-14
Latest Headlines
Researchers Null-Route Over 550 Kimwolf and Aisuru Botnet Command Servers
Hackers Exploit c-ares DLL Side-Loading to Bypass Security and Deploy Malware
Fortinet Fixes Critical FortiSIEM Flaw Allowing Unauthenticated Remote Code Execution
New Research: 64% of 3rd-Party Applications Access Sensitive Data Without Justification
Microsoft Fixes 114 Windows Flaws in January 2026 Patch, One Actively Exploited
Critical Node.js Vulnerability Can Cause Server Crashes via async_hooks Stack Overflow
PLUGGYAPE Malware Uses Signal and WhatsApp to Target Ukrainian Defense Forces
Verizon Outage Knocks Out US Mobile Service, Including Some 911 Calls
Trump Warned of a Tren de Aragua ‘Invasion.’ US Intel Told a Different Story
RedVDS Cybercrime Service Disrupted by Microsoft and Law Enforcement
Predator Spyware Turns Failed Attacks Into Intelligence for Future Exploits
Fortinet Patches Critical Vulnerabilities in FortiFone, FortiSIEM
Stealthy CastleLoader Malware Attacking US Government Agencies and Critical Infrastructure
Researchers Breakdown DragonForce Ransomware Along with Decryptor for ESXi and Windows Systems
New One-Click Microsoft Copilot Vulnerability Grants Attackers Undetected Access to Sensitive Data
North Korean Hackers use Code Abuse Tactics for ‘Contagious Interview’ Campaign
SpyCloud Launches Supply Chain Solution to Combat Rising Third-Party Identity Threats
LLMs are Accelerating the Ransomware Lifecycle to Gain Speed, Volume, and Multilingual Reach
GitGuardian Closes 2025 with Strong Enterprise Momentum, Protecting Millions of Developers Worldwide
Critical FortiSIEM Vulnerability(CVE-2025-64155) Enable Full RCE and Root Compromise
As Third-Party Vulnerabilities Rise, CISOs Accelerate Push for Security Modernization
VVS Stealer Attacking Discord Users to Exfiltrate Credentials and Tokens
OpenAI’s hidden ChatGPT Translate tool takes on Google Translate
South Korean giant Kyowon confirms data theft in ransomware attack
France fines Free Mobile €42 million over 2024 data breach incident
Exploit code public for critical FortiSIEM command injection flaw
Verizon Wireless outage puts phones in SOS mode without cell service
Microsoft updates Windows DLL that triggered security alerts
ConsentFix debrief: Insights from the new OAuth phishing attack
Reprompt attack hijacked Microsoft Copilot sessions for data theft
Cloud marketplace Pax8 accidentally exposes data on 1,800 MSP partners
Victorian Department of Education says hackers stole students’ data
Microsoft: Windows 365 update blocks access to Cloud PC sessions
Monroe University says 2024 data breach affects 320,000 people
– MTZ