🚨 CISA KEV 1[−]
6 Jan KEVCISA KEV Catalog Expanded 20% in 2025, Topping 1,480 Entries - SecurityWeeksubmitted by kid to cybersecurity 1 points | 0 comments https://www.securityweek.com/cisa-kev-catalog-expanded-20-in-2025-topping-1480-entries/SH.ITJUST.WORKS
🐛 COMMON VULNERABILITIES AND EXPOSURES 8[−]
6 JanNew n8n Vulnerability (9.9 CVSS) Lets Authenticated Users Execute System CommandsA new critical security vulnerability has been disclosed in n8n, an open-source workflow automation platform, that could enable an authenticated attacker to execute arbitrary system commands on the underlying host. The vulnerability, tracked as CVE-2025-68668, is rated 9.9 on the…THEHACKERNEWS.COM
6 JanCritical AdonisJS Bodyparser Flaw (CVSS 9.2) Enables Arbitrary File Write on ServersUsers of the "@adonisjs/bodyparser" npm package are being advised to update to the latest version following the disclosure of a critical security vulnerability that, if successfully exploited, could allow a remote attacker to write arbitrary files on the server. Tracked as CVE-20…THEHACKERNEWS.COM
6 JanOpen WebUI bug turns the ‘free model’ into an enterprise backdoorSecurity researchers have flagged a high-severity flaw in Open WebUI , a self-hosted enterprise interface for large language models, that allows external model servers connected via its Direct Connections feature to inject malicious code and hijack AI workloads. The issue, tracke…CSOONLINE.COM
6 JanCritical Dolby Vulnerability Patched in AndroidThe flaw is tracked as CVE-2025-54957 and its existence came to light in October 2025 after it was discovered by Google researchers. The post Critical Dolby Vulnerability Patched in Android appeared first on SecurityWeek .SECURITYWEEK.COM
6 JanNew n8n Vulnerability Allows Attackers to Execute Arbitrary CommandsA critical vulnerability has been discovered in n8n, an open-source automation and workflow platform, that could allow authenticated users to execute arbitrary commands on vulnerable systems. The flaw, tracked as CVE-2025-68668, affects all n8n versions from 1.0.0 to 1.999.999 an…GBHACKERS.COM
6 JanCritical AdonisJS Vulnerability Allows Remote Attackers to Write Files on ServerA critical path traversal vulnerability has been discovered in AdonisJS’s multipart file handling, potentially allowing remote attackers to write arbitrary files to server locations outside the intended upload directory. The vulnerability, tracked as CVE-2026-21440, affects…GBHACKERS.COM
6 JanmacOS Flaw Allows TCC Bypass, Exposing Sensitive User InformationApple’s accessibility framework has been found vulnerable to a critical Transparency, Consent, and Control (TCC) bypass that exposes sensitive user data and enables arbitrary AppleScript execution. Researchers have disclosed CVE-2025-43530, a vulnerability in the ScreenRead…GBHACKERS.COM
6 JanUnpatched Firmware Flaw Exposes TOTOLINK EX200 to Full Remote Device TakeoverThe CERT Coordination Center (CERT/CC) has disclosed details of an unpatched security flaw impacting TOTOLINK EX200 wireless range extender that could allow a remote authenticated attacker to gain full control of the device. The flaw, CVE-2025-65606 (CVSS score: N/A), has been ch…THEHACKERNEWS.COM
⚠️ VULNERABILITY DISCLOSURE 19[−]
6 Jan6 strategies for building a high-performance cybersecurity teamLongtime security chief George Gerchow had sought top-notch security engineers and developers to build his team. Gerchow considered these workers “superstars” — and they proved him right in many ways. They were ambitious go-getters “who came in and absolutely killed it. They’d do…CSOONLINE.COM
6 Jan168: LoDThe Legion of Doom (LoD) wasn’t just a “hacker group”, it captured the essence of underground hacking in the 80s/90s. BBSes, phreaking, rival crews, and the crackdowns that changed everything. From those humble beginnings came a legacy that still echoes through modern security cu…DARKNETDIARIES.COM
6 JanThe Upsides and Downsides of LLM-Generated Code - Chris Wysopal - ASW #364Developers are adding LLMs to their code creation toolboxes, using them to assist with writing and reviewing code. Chris Wysopal talks about the security downsides of relying on LLMs and how appsec needs to adapt to dealing with more code at a faster pace. Resources - https://www…YOUTUBE.COM
6 JanTaiwan says Chinese cyber attacks on critical infrastructure are up 113% daily since 2023submitted by Hotznplotzn to cybersecurity 1 points | 0 comments https://industrialcyber.co/critical-infrastructure/taiwans-nsb-says-chinese-cyber-attacks-on-critical-infrastructure-are-up-113-daily-since-2023/ cross-posted from: lemmy.sdf.org/post/48582192 Archived New data from …SH.ITJUST.WORKS
6 JanTaiwan says Chinese cyber attacks on critical infrastructure are up 113% daily since 2023submitted by Hotznplotzn to cybersecurity 1 points | 0 comments https://industrialcyber.co/critical-infrastructure/taiwans-nsb-says-chinese-cyber-attacks-on-critical-infrastructure-are-up-113-daily-since-2023/ cross-posted from: lemmy.sdf.org/post/48582192 Archived New data from …INFOSEC.PUB
6 JanNordVPN Denies Breach After Hacker Claims Access to Salesforce Dev Data – Hackread – Cybersecurity News, Data Breaches, AI, and Moresubmitted by kid to cybersecurity 1 points | 0 comments https://hackread.com/nordvpn-denies-breach-hacker-salesforce-dev-data/SH.ITJUST.WORKS
6 JanFake Booking Emails Redirect Hotel Staff to Fake BSoD Pages Delivering DCRatSource: Securonix Cybersecurity researchers have disclosed details of a new campaign dubbed PHALT#BLYX that has leveraged ClickFix-style lures to display fixes for fake blue screen of death (BSoD) errors in attacks targeting the European hospitality sector. The end goal of the mu…THEHACKERNEWS.COM
6 Jan"MongoBleed": Exploit for critical vulnerability in MongoDB makes attacks easiersubmitted by cypherpunks to cybersecurity 1 points | 0 comments https://www.heise.de/en/news/MongoBleed-Exploit-for-critical-vulnerability-in-MongoDB-makes-attacks-easier-11125127.htmlSH.ITJUST.WORKS
6 JanCopilot, Recall, and Other AI Tools Can Be Removed from Windows 11 with New ToolA new community tool is giving Windows 11 users far more control over Microsoft’s growing stack of AI features. An open‑source project called RemoveWindowsAI now lets administrators and power users disable or strip out components such as Copilot, Recall, and other AI integrations…GBHACKERS.COM
6 JanThreat Actors Exploit Office Assistant to Deliver Malicious Mltab Browser PluginA sophisticated malware campaign has been discovered exploiting Office Assistant, a widely used AI-powered productivity software in China, to distribute a malicious browser plugin that hijacks user traffic and exfiltrates sensitive information. The RedDrip Team from QiAnXin Techn…GBHACKERS.COM
6 JanThreat Actors Exploit Commodity Loader in Targeted Email Campaigns Against OrganizationsCyble Research and Intelligence Labs (CRIL) has identified a sophisticated, multi-stage attack campaign deploying a shared commodity loader across multiple threat actor groups. The operation demonstrates advanced operational security and represents a significant threat to manufac…GBHACKERS.COM
6 JanCursor, Windsurf & Google Antigravity IDEs Linked to Malicious Extension ExposureA critical supply chain vulnerability has been discovered affecting millions of developers using popular AI-powered IDEs, including Cursor, Windsurf, and Google Antigravity. Security researchers revealed that these coding environments were actively recommending non-existent exten…GBHACKERS.COM
6 JanHow generative AI accelerates identity attacks against Active DirectoryGenerative AI is accelerating password attacks against Active Directory, making credential abuse faster and more effective. Specops Software explains how AI-driven cracking techniques exploit weak and predictable AD passwords. [...]BLEEPINGCOMPUTER.COM
6 Jan"MongoBleed": Exploit for critical vulnerability in MongoDB makes attacks easiersubmitted by cm0002 to cybersecurity 3 points | 0 comments https://www.heise.de/en/news/MongoBleed-Exploit-for-critical-vulnerability-in-MongoDB-makes-attacks-easier-11125127.htmlINFOSEC.PUB
6 JanPhishing actors exploit complex routing and misconfigurations to spoof domainsThreat actors are exploiting complex routing scenarios and misconfigured spoof protections to send spoofed phishing emails, crafted to appear as internally sent messages. The post Phishing actors exploit complex routing and misconfigurations to spoof domains appeared first on Mic…MICROSOFT.COM
6 JanKimwolf Android botnet abuses residential proxies to infect internal devicesThe Kimwolf botnet, an Android variant of the Aisuru malware, has grown to more than two million hosts, most of them infected by exploiting vulnerabilities in residential proxy networks to target devices on internal networks. [...]BLEEPINGCOMPUTER.COM
6 Jan KEVNew D-Link flaw in legacy DSL routers actively exploited in attacksThreat actors are exploiting a recently discovered command injection vulnerability that affects multiple D-Link DSL gateway routers that went out of support years ago. [...]BLEEPINGCOMPUTER.COM
6 JanWhen Seeing Isn’t Believing: AI Images, Breaking News and the New Misinformation PlaybookIn the early hours following reports of a U.S. military operation involving Venezuela, social media feeds were flooded with dramatic images and videos that appeared to show the capture of Venezuelan president Nicolás Maduro. Within minutes, AI-generated photos of Maduro being esc…KNOWBE4.COM
6 JanNordVPN Denies Data Breach?A data breach involving Salesforce development servers was initially reported. The risk of misunderstanding the nature of the breach could lead to unnecessary panic. How can companies better communicate the nature of data breaches to avoid misinformation? Subscribe to our podcast…YOUTUBE.COM
📢 SECURITY ADVISORIES 2[−]
6 JanSedgwick confirms breach at government contractor subsidiaryClaims administration and risk management company Sedgwick has confirmed that its federal contractor subsidiary, Sedgwick Government Solutions, was the victim of a security breach. [...]BLEEPINGCOMPUTER.COM
🔥 INCIDENT REPORTING 9[−]
6 JanWhiteDate - 6,076 breached accountsIn December 2025, the dating website "for a Europid vision" WhiteDate suffered a data breach that exposed 6k unique email addresses . The breach exposed extensive further personal information including data related to physical appearance, income, education and IQ.HAVEIBEENPWNED.COM
6 JanNordVPN Denies Breach After Hacker Leaks DataThe VPN company has conducted an investigation after a threat actor claimed to have hacked its systems. The post NordVPN Denies Breach After Hacker Leaks Data appeared first on SecurityWeek .SECURITYWEEK.COM
6 JanUS broadband provider Brightspeed investigates breach claimssubmitted by kid to cybersecurity 2 points | 0 comments https://www.bleepingcomputer.com/news/security/us-broadband-provider-brightspeed-investigates-breach-claims/SH.ITJUST.WORKS
6 JanDozens of Major Data Breaches Linked to Single Threat ActorThe initial access broker (IAB) relies on credentials exfiltrated using information stealers to hack organizations. The post Dozens of Major Data Breaches Linked to Single Threat Actor appeared first on SecurityWeek .SECURITYWEEK.COM
6 JanA Cyberattack Was Part of the US Assault on VenezuelaWe don’t have many details : President Donald Trump suggested Saturday that the U.S. used cyberattacks or other technical capabilities to cut power off in Caracas during strikes on the Venezuelan capital that led to the capture of Venezuelan President Nicolás Maduro. If tru…SCHNEIER.COM
6 JanTwo Chrome Extensions Caught Stealing ChatGPT and DeepSeek Chats from 900,000 UsersCybersecurity researchers have discovered two new malicious extensions on the Chrome Web Store that are designed to exfiltrate OpenAI ChatGPT and DeepSeek conversations alongside browsing data to servers under the attackers' control. The names of the extensions, which collectivel…THEHACKERNEWS.COM
6 JanIntroducing the Microsoft Defender Experts Suite: Elevate your security with expert-led servicesAnnouncing Microsoft Defender Experts Suite, a integrated set of expert-led services that helps security teams keep pace with modern cyberattacks. The post Introducing the Microsoft Defender Experts Suite: Elevate your security with expert-led services appeared first on Microsoft…MICROSOFT.COM
6 JanJaguar Land Rover wholesale volumes down 43% after cyberattackJaguar Land Rover (JLR) revealed this week that a September 2025 cyberattack led to a 43% decline in third-quarter wholesale volumes. [...]BLEEPINGCOMPUTER.COM
6 JanFounder of spyware maker pcTattletale pleads guilty to hacking and advertising surveillance softwareBryan Fleming, the founder of hacked stalkerware company pcTattletale, pleaded guilty to federal charges linked to the running of his now-defunct Michigan-based spyware company.TECHCRUNCH.COM
🕵️ THREAT INTELLIGENCE 21[−]
6 JanISC Stormcast For Tuesday, January 6th, 2026 https://isc.sans.edu/podcastdetail/9754, (Tue, Jan 6th)(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.ISC.SANS.EDU
6 JanCybersecurity M&A Roundup: 30 Deals Announced in December 2025Significant cybersecurity M&A deals announced by Akamai, Red Hat, Checkmarx, Silent Push, and ServiceNow. The post Cybersecurity M&A Roundup: 30 Deals Announced in December 2025 appeared first on SecurityWeek .SECURITYWEEK.COM
6 JanCritical 'MongoBleed' Bug Under Active Attack, Patch Nowsubmitted by kid to cybersecurity 2 points | 0 comments https://www.darkreading.com/cloud-security/mongobleed-bug-active-attack-patchSH.ITJUST.WORKS
6 JanBluetooth Headphone Jacking: A Key to Your Phonesubmitted by cypherpunks to cybersecurity 4 points | 0 comments https://media.ccc.de/v/39c3-bluetooth-headphone-jacking-a-key-to-your-phoneSH.ITJUST.WORKS
6 JanClickFix attack uses fake Windows BSOD screens to push malwaresubmitted by kid to cybersecurity 3 points | 0 comments https://www.bleepingcomputer.com/news/security/clickfix-attack-uses-fake-windows-bsod-screens-to-push-malware/SH.ITJUST.WORKS
6 JanMalware Campaign Abuses Booking.com Against Hospitality Sectorsubmitted by kid to cybersecurity 2 points | 0 comments https://securityboulevard.com/2026/01/malware-campaign-abuses-booking-com-against-hospitality-sector/SH.ITJUST.WORKS
6 JanRisks of OOB Access via IP KVM Devices - SANS ISCsubmitted by kid to cybersecurity 2 points | 0 comments https://isc.sans.edu/diary/Risks%20of%20OOB%20Access%20via%20IP%20KVM%20Devices/32598SH.ITJUST.WORKS
6 JanSophisticated ClickFix Campaign Targeting Hospitality SectorFake Booking reservation cancellations and fake BSODs trick victims into executing malicious code leading to RAT infections. The post Sophisticated ClickFix Campaign Targeting Hospitality Sector appeared first on SecurityWeek .SECURITYWEEK.COM
6 JanWhatsApp Vulnerabilities Leaks User’s Metadata Including Device’s Operating Systemsubmitted by kid to cybersecurity 2 points | 0 comments https://cybersecuritynews.com/whatsapp-device-fingerprinting/SH.ITJUST.WORKS
6 JanThere Were BGP Anomalies During The Venezuela Blackoutsubmitted by kid to cybersecurity 1 points | 0 comments https://loworbitsecurity.com/radar/radar16/SH.ITJUST.WORKS
6 JanResearchers Trap Scattered Lapsus$ Hunters in HoneypotUsing fake accounts and synthetic data to lure the hackers, the researchers gathered information on their servers. The post Researchers Trap Scattered Lapsus$ Hunters in Honeypot appeared first on SecurityWeek .SECURITYWEEK.COM
6 JanCloudEyE MaaS Downloader and Cryptor Infects Over 100,000 Users GloballyESET Research has uncovered a significant surge in CloudEye malware detections, with a 30-fold increase in the second half of 2025. The security firm detected more than 100,000 infection attempts over the six months, signaling a widespread threat affecting organizations globally.…GBHACKERS.COM
6 JanConnex IT Partners with AccuKnox for Zero Trust CNAPP Security in Southeast AsiaMenlo Park, India, January 6th, 2026, CyberNewsWire AccuKnox, a global leader in Zero Trust Cloud-Native Application Protection Platforms (CNAPP), has appointed Connex Information Technologies as its authorised distribution partner across South and Southeast Asia. The partnership…GBHACKERS.COM
6 JanNew ClickFix Attack Uses Fake BSOD to Trick Users into Running Malicious CodeSecuronix threat researchers have uncovered a stealthy malware campaign, tracked as PHALT#BLYX, targeting the hospitality sector with a sophisticated “ClickFix” social engineering tactic. This ongoing campaign specifically targets European organizations during the bus…GBHACKERS.COM
6 JanCyber Risk Trends for 2026: Building Resilience, Not Just DefensesWe can’t outpace the adversary by trying to stop every attack, but we can outlast them by engineering systems and culture to take a punch and try to quickly rebound. The post Cyber Risk Trends for 2026: Building Resilience, Not Just Defenses appeared first on SecurityWeek .SECURITYWEEK.COM
6 JanBluetooth Headphone Jacking: A Key to Your Phonesubmitted by cm0002 to cybersecurity 1 points | 0 comments https://media.ccc.de/v/39c3-bluetooth-headphone-jacking-a-key-to-your-phoneINFOSEC.PUB
6 JanHacker Conversations: Katie Paxton-Fear Talks Autism, Morality and HackingFrom dismantling online games as a child to uncovering real-world vulnerabilities, Katie Paxton-Fear explains how autism, curiosity, and a rejection of ambiguity shaped her path into ethical hacking. The post Hacker Conversations: Katie Paxton-Fear Talks Autism, Morality and Hack…SECURITYWEEK.COM
6 JanContinuous Risk Management: A NecessityContinuous risk management is now essential in AppSec. Ignoring this approach could lead to vulnerabilities in fast-evolving codebases. How will you adapt to the rapid changes in your code environment? Subscribe to our podcasts: https://securityweekly.com/subscribe #RiskManagemen…YOUTUBE.COM
6 JanCyberheistNews Vol 16 #01 AI & Cybersecurity in 2026: Top 10 Predictions for Threats and DefensesKNOWBE4.COM
6 JanUnlocking Value with App VisibilityApplication visibility offers security, business, and economic benefits. Without it, organizations risk inefficiencies and unmanaged app usage. How can companies leverage visibility for better control? Subscribe to our podcasts: https://securityweekly.com/subscribe #AppVisibility…YOUTUBE.COM
6 JanPornhub Redux, Enki, Grok, BSODs, NORDVPN, Kimwolf, Privacy , Aaran Leyland, and More - SWN #544Pornhub Redux, Enki, Grok, BSODs, NORDVPN, Kimwolf, Privacy in Rhode Island, Aaran Leyland, and More, on the Security Weekly News. Visit https://www.securityweekly.com/swn for all the latest episodes! Show Notes: https://securityweekly.com/swn-544YOUTUBE.COM
🌐 CYBER THREAT LANDSCAPE 1[−]
6 JanVS Code Forks Recommend Missing Extensions, Creating Supply Chain Risk in Open VSXPopular artificial intelligence (AI)-powered Microsoft Visual Studio Code (VS Code) forks such as Cursor, Windsurf, Google Antigravity, and Trae have been found to recommend extensions that are non-existent in the Open VSX registry, potentially opening the door to supply chain ri…THEHACKERNEWS.COM
🎙️ PODCASTS 1[−]
6 JanTool Review: Tailsnitch, (Tue, Jan 6th)In yesterday&#;x26;#;39;s podcast, I mentioned "tailsnitch", a new tool to audit Tailscale configurations. Tailscale is an easy-to-use overlay to Wireshark. It is probably best compared to STUN servers in VoIP in that it allows devices behind NAT to co…ISC.SANS.EDU
📡 INFOSEC NEWS 7[−]
6 JanCoinbase insider who sold customer data to criminals arrested in IndiaPolice in India have arrested a former Coinbase customer service agent who is believed to have been bribed by cybercriminal gangs to access sensitive customer information. Read more in my article on the Hot for Security blog.BITDEFENDER.COM
6 JanAre Copilot prompt injection flaws vulnerabilities or AI limits?Microsoft has pushed back against claims that multiple prompt injection and sandbox-related issues raised by a security engineer in its Copilot AI assistant constitute security vulnerabilities. The development highlights a growing divide between how vendors and researchers define…BLEEPINGCOMPUTER.COM
6 JanWhat is Identity Dark Matter?The Invisible Half of the Identity Universe Identity used to live in one place - an LDAP directory, an HR system, a single IAM portal. Not anymore. Today, identity is fragmented across SaaS, on-prem, IaaS, PaaS, home-grown, and shadow applications. Each of these environments carr…THEHACKERNEWS.COM
6 JanMicrosoft cancels plans to rate limit Exchange Online bulk emailsMicrosoft announced today that it has canceled plans to impose a daily limit of 2,000 external recipients on Exchange Online bulk email senders. [...]BLEEPINGCOMPUTER.COM
6 JanTaiwan says China's attacks on its energy sector increased tenfoldThe National Security Bureau in Taiwan says that China's attacks on the country's energy sector increased tenfold in 2025 compared to the previous year. [...]BLEEPINGCOMPUTER.COM
6 JanOpenAI is rolling out GPT-5.2 “Codex-Max” for some usersOpenAI is testing a new model for Codex, and it could be the company's best coding model yet. [...]BLEEPINGCOMPUTER.COM
6 JanOpenAI is reportedly getting ready to test ads in ChatGPTMultiple reports suggest that OpenAI is going ahead with its plans to add ads to ChatGPT, but the experiment will be initially limited to its employees. [...]BLEEPINGCOMPUTER.COM