ICYMI: 2026-01-30
Latest Headlines
Researchers Uncover Chrome Extensions Abusing Affiliate Links and Stealing ChatGPT Access
China-Linked UAT-8099 Targets IIS Servers in Asia with BadIIS SEO Malware
Ex-Google Engineer Convicted for Stealing 2,000 AI Trade Secrets for China Startup
SmarterMail Fixes Critical Unauthenticated RCE Flaw with CVSS 9.3 Score
Two Ivanti EPMM Zero-Day RCE Flaws Actively Exploited, Security Updates Released
In Other News: Paid for Being Jailed, Google’s $68M Settlement, CISA Chief’s ChatGPT Leak
Aisy Launches Out of Stealth to Transform Vulnerability Management
ICS Devices Bricked Following Russia-Linked Intrusion Into Polish Power Grid
UAT-8099 Targets Vulnerable IIS Servers Using Web Shells, PowerShell, and Region-Customized BadIIS
175,000 Exposed Ollama Hosts Enable Code Execution and External System Access
TAMECAT PowerShell-Based Backdoor Exfiltrates Login Credentials from Microsoft Edge and Chrome
Ex-Google Engineer Convicted of Stealing Google’s AI Secrets For China
Attackers Hijacked 200+ Websites Exploiting Magento Vulnerability to Gain Root-level Access
NVIDIA GPU Display Driver Vulnerabilities Allows Code Execution and Privilege Escalation
Attackers Using Hugging Face Hosting to Deliver Android RAT Payload
GhostChat Spyware Attacking Android Users Via WhatsApp to Exfiltrate Sensitive Details
Critical Ivanti Endpoint Manager 0-day RCE Vulnerabilities Actively Exploited in Attacks
Education-Themed Malicious Domains Linked to Bulletproof Hosting Infrastructure Exposed
Crypto wallets received a record $158 billion in illicit funds last year
Microsoft to disable NTLM by default in future Windows releases
Operation Switch Off dismantles major pirate TV streaming services
Microsoft fixes Outlook bug blocking access to encrypted emails
Windows 11 KB5074105 update fixes boot, sign-in, and activation issues
Microsoft links Windows 11 boot failures to failed December 2025 update
– MTZ