8Articles
6Categories
2026-01-29Date
🚨 CISA KEV 1[−]
29 Jan KEVCISA Adds One Known Exploited Vulnerability to CatalogCISA has added one new vulnerability to its Known Exploited Vulnerabilities (KEV) Catalog , based on evidence of active exploitation. CVE-2026-1281 Ivanti Endpoint Manager Mobile (EPMM) Code Injection Vulnerability This type of vulnerability is a frequent attack vector for malici…CISA.GOV
🐛 COMMON VULNERABILITIES AND EXPOSURES 1[−]
29 JanCVE-2026-20960 PowerApps Desktop Client Remote Code Execution VulnerabilityCorrected Download links in the Security Updates table. This is an informational change only.MSRC.MICROSOFT.COM
⚠️ VULNERABILITY DISCLOSURE 2[−]
29 JanSilent Brothers | Ollama Hosts Form Anonymous AI Network Beyond Platform GuardrailsAnalysis of 175,000 open-source AI hosts across 130 countries reveals a vast compute layer susceptible to resource hijacking and code execution attacks.SENTINELONE.COM
29 JanBuilding cryptographic agility into SigstoreSoftware signatures carry an invisible expiration date. The container image or firmware you sign today might be deployed for 20 years, but the cryptographic signature protecting it may become untrustworthy within 10 years. SHA-1 certificates become worthless, weak RSA keys are ba…TRAILOFBITS.COM
🔥 INCIDENT REPORTING 1[−]
29 JanSmashing Security podcast #452: The dark web’s worst assassins, and Pegasus in the dockIn episode 452, a London-based YouTuber wins a landmark court case against Saudi Arabia after his phone was hacked with Pegasus spyware — exposing how a single, seemingly harmless text message can turn a smartphone into a round-the-clock surveillance device. Plus, we go looking f…GRAHAMCLULEY.COM
🕵️ THREAT INTELLIGENCE 2[−]
29 JanMY TAKE: Transparent vs. opaque — edit Claude’s personalized memory, or trust ChatGPT’s blindly?After two years of daily ChatGPT use, I recently started experimenting with Claude, Anthropic’s competing AI assistant. Related: Microsofts see a ‘protopian’ AI future Claude is four to five times slower generating responses. But something emerged that matters m…LASTWATCHDOG.COM
29 JanECDSA Encryptionsubmitted by Maximuse to security 4 points | 0 comments https://certera.com/blog/what-is-ecdsa-encryption-how-does-it-work/ ECDSA is like a digital bouncer. It uses wild curves to prove u signed the txn without actually showing your password. If the math vibes, the money moves. B…PROGRAMMING.DEV
📡 INFOSEC NEWS 1[−]
29 JanHacking attack leaves Russian car owners locked out of their vehiclesImagine the scene. It's a cold Monday morning in Moscow. You walk out to your car, coffee in hand, ready to face the day. You press the button to unlock your car, and ... nothing happens. You try again. Still nothing. The alarm starts blaring. You can't turn it off. Read more in …FORTRA.COM