MATLOCK.CA
44Articles
5Categories
2026-01-02Date
πŸ›
Apache NuttX Flaw Allows Attackers to Crash Embedded Systems
GBHACKERS.COM — 02 Jan 2026
πŸ›
GNU Wget2 Vulnerability Enables Remote File Overwrite Attacks
GBHACKERS.COM — 02 Jan 2026
πŸ›
CISA Issues Warning on WHILL Model C2 Wheelchair Takeover Vulnerabilities
GBHACKERS.COM — 02 Jan 2026
πŸ›
CVE-2024-3177 Bypassing mountable secrets policy imposed by the ServiceAccount admission plugin
MSRC.MICROSOFT.COM — 02 Jan 2026
πŸ›
CVE-2024-30896 InfluxDB OSS 2.x through 2.7.11 stores the administrative operator token under the default organization which allows authorized users with read access to the authorization resource of the default organization to retrieve the operator token. InfluxDB OSS 1.x, Enterprise, Cloud, Cloud Dedicated and Clustered are not affected. NOTE: The researcher states that InfluxDB allows allAccess administrators to retrieve all raw tokens via an "influx auth ls" command. The supplier indicates that the organizations feature is operating as intended and that users may choose to add users to non-default organizations. A future release of InfluxDB 2.x will remove the ability to retrieve tokens from the API.
MSRC.MICROSOFT.COM — 02 Jan 2026
πŸ›
CVE-2025-6270 HDF5 H5FSsection.c H5FS__sect_find_node heap-based overflow
MSRC.MICROSOFT.COM — 02 Jan 2026
πŸ›
CVE-2024-56738 GNU GRUB (aka GRUB2) through 2.12 does not use a constant-time algorithm for grub_crypto_memcmp and thus allows side-channel attacks.
MSRC.MICROSOFT.COM — 02 Jan 2026
⚠️
Wie KI die Cybersicherheit neu gestaltet
CSOONLINE.COM — 02 Jan 2026
⚠️
Cybersecurity skills matter more than headcount in the AI era
CSOONLINE.COM — 02 Jan 2026
⚠️
Cybercriminals Abuse Google Cloud Email Feature in Multi-Stage Phishing Campaign
THEHACKERNEWS.COM — 02 Jan 2026
⚠️
RondoDox Botnet Exploiting React2Shell Vulnerability
SECURITYWEEK.COM — 02 Jan 2026
⚠️
Two cybersecurity experts plead guilty to running ransomware operation
KEVCSOONLINE.COM — 02 Jan 2026
⚠️
Google Tasks Feature Exploited in New Sophisticated Phishing Campaign
GBHACKERS.COM — 02 Jan 2026
⚠️
RondoDoX Botnet Abuses React2Shell Vulnerability for Malware Deployment
GBHACKERS.COM — 02 Jan 2026
⚠️
RondoDox botnet exploits React2Shell flaw to breach Next.js servers
SH.ITJUST.WORKS — 2 Jan 2026
⚠️
The Kimwolf Botnet is Stalking Your Local Network
KREBSONSECURITY.COM — 02 Jan 2026
⚠️
Critical vulnerability in IBM API Connect could allow authentication bypass | CSO Online
SH.ITJUST.WORKS — 2 Jan 2026
⚠️
Over 10K Fortinet firewalls exposed to actively exploited 2FA bypass
KEVBLEEPINGCOMPUTER.COM — 02 Jan 2026
⚠️
Defending the Boundaryless Cloud: Understanding Threats That Matter - SWN #543
YOUTUBE.COM — 2026-01-02
πŸ”₯
Covenant Health Data Breach Impacts 478,000 Individuals
SECURITYWEEK.COM — 02 Jan 2026
πŸ”₯
Two US Cybersecurity Pros Plead Guilty Over Ransomware Attacks
KEVSECURITYWEEK.COM — 02 Jan 2026
πŸ”₯
The ROI Problem in Attack Surface Management
THEHACKERNEWS.COM — 02 Jan 2026
πŸ”₯
Transparent Tribe Launches New RAT Attacks Against Indian Government and Academia
THEHACKERNEWS.COM — 02 Jan 2026
πŸ”₯
Handala Hackers Breach Telegram Accounts Linked to Israeli Officials
GBHACKERS.COM — 02 Jan 2026
πŸ”₯
Hacker Group Claims Responsibility for Alleged Tokyo FM Broadcasting Breach
GBHACKERS.COM — 02 Jan 2026
πŸ”₯
Cognizant Faces Multiple US Class-Action Lawsuits After TriZetto Data Breach
GBHACKERS.COM — 02 Jan 2026
πŸ”₯
Cryptocurrency theft attacks traced to 2022 LastPass breach
BLEEPINGCOMPUTER.COM — 02 Jan 2026
πŸ”₯
Covenant Health says May data breach impacted nearly 478,000 patients
BLEEPINGCOMPUTER.COM — 02 Jan 2026
πŸ•΅οΈ
Careto Hacker Group Resurfaces After a Decade, Unleashing New Attack Techniques
GBHACKERS.COM — 02 Jan 2026
πŸ•΅οΈ
The Attacks That Defined 2025
INFOSEC.PUB — 2 Jan 2026
πŸ•΅οΈ
Adobe ColdFusion Servers Targeted in Coordinated Campaign
SECURITYWEEK.COM — 02 Jan 2026
πŸ•΅οΈ
Flock Exposes Its AI-Enabled Surveillance Cameras
SCHNEIER.COM — 2026-01-02
πŸ•΅οΈ
Cardano Users Warned of Possible Phishing Attempt Posing as β€˜Eternl Desktop’ Update
GBHACKERS.COM — 02 Jan 2026
πŸ•΅οΈ
Threat Actors Test a Highly Obfuscated, Modified Variant of the Shai Hulud Malware
GBHACKERS.COM — 02 Jan 2026
πŸ•΅οΈ
Just a moment...
SH.ITJUST.WORKS — 2 Jan 2026
πŸ•΅οΈ
Trust Wallet Chrome Extension Hack Drains $8.5M via Shai-Hulud Supply Chain Attack
SH.ITJUST.WORKS — 2 Jan 2026
πŸ•΅οΈ
Popular extensions caught poaching user chats with AI | Cybernews
SH.ITJUST.WORKS — 2 Jan 2026
πŸ•΅οΈ
Cybersecurity Skills Gap: Myth?
YOUTUBE.COM — 2026-01-02
πŸ•΅οΈ
Hackers drain $3.9M from Unleash Protocol after multisig hijack
SH.ITJUST.WORKS — 2 Jan 2026
πŸ•΅οΈ
Friday Squid Blogging: Squid Found in Light Fixture
SCHNEIER.COM — 2026-01-02
πŸ•΅οΈ
AI's Data Security Challenge
YOUTUBE.COM — 2026-01-02
πŸ“‘
Trust Wallet links $8.5 million crypto theft to Shai-Hulud NPM attack
BLEEPINGCOMPUTER.COM — 02 Jan 2026
πŸ“‘
Google is testing a new image AI and it's going to be its fastest model
BLEEPINGCOMPUTER.COM — 02 Jan 2026
πŸ“‘
Debugging DNS response times with tshark, (Fri, Jan 2nd)
ISC.SANS.EDU — 02 Jan 2026