ICYMI: 2026-01-27
Latest Headlines
WhatsApp Rolls Out Lockdown-Style Security Mode to Protect Targeted Users From Spyware
Experts Detect Pakistan-Linked Cyber Campaigns Aimed at Indian Government Entities
ClickFix Attacks Expand Using Fake CAPTCHAs, Microsoft Scripts, and Trusted Web Services
CTEM in Practice: Prioritization, Validation, and Outcomes That Matter
Microsoft Office Zero-Day (CVE-2026-21509) - Emergency Patch Issued for Active Exploitation
Critical Grist-Core Vulnerability Allows RCE Attacks via Spreadsheet Formulas
China-Linked Hackers Have Used the PeckBirdy JavaScript C2 Framework Since 2023
He Leaked the Secrets of a Southeast Asian Scam Compound. Then He Had to Get Out Alive
Revealed: Leaked Chats Expose the Daily Life of a Scam Compound’s Enslaved Workforce
Memcyco Raises $37 Million for Anti-Impersonation Technology
Over 100 Organizations Targeted in ShinyHunters Phishing Campaign
‘PackageGate’ Flaws Open JavaScript Ecosystem to Supply Chain Attacks
Cyber Insights 2026: Quantum Computing and the Potential Synergy With Advanced AI
Microsoft Patches Office Zero-Day Likely Exploited in Targeted Attacks
Attackers Hijacking Official GitHub Desktop Repository to Distribute Malware as Official Installer
Instagram, Facebook, and WhatsApp to Test New Premium Subscriptions
G_Wagon npm Package Attacking Users to Exfiltrates Browser Credentials using Obfuscated Payload
Hackers Using Teams to Deliver Malicious Content Posing as Microsoft Services
Canva, Atlassian, Epic Games Among the 100+ Enterprises Targeted by ShinyHunters Group
Attackers Exploiting React2Shell Vulnerability to Attack IT Sectors
Your Tier 1 Analyst at SOC Team Is Failing at Effective Triage. That’s a Business Problem
Hackers are Leveraging SEO Poisoning to Attack Users Looking for Legitimate Tools
MEDUSA Security Testing Tool With 74 Scanners and 180+ AI Agent Security Rules
6000+ Vulnerable SmarterTools SmarterMail Servers Exposed to Actively Exploited RCE Vulnerability
Fortinet blocks exploited FortiCloud SSO zero day until patch is ready
Chinese Mustang Panda hackers deploy infostealers via CoolClient backdoor
WinRAR path traversal flaw still exploited by numerous hackers
Nike investigates data breach after extortion gang leaks files
Critical sandbox escape flaw found in popular vm2 NodeJS library
From Cipher to Fear: The psychology behind modern ransomware extortion
Over 6,000 SmarterMail servers exposed to automated hijacking attacks
Have I Been Pwned: SoundCloud data breach impacts 29.8 million accounts
– MTZ