In December 2025, data from France’s Pass’Sport program was posted to a popular hacking forum. Initially misattributed to CAF (the French family allowance fund), the data contained 6.5M unique email addresses affecting 3.5M households. The data also included names, phone…
SECURITY AFFAIRS MALWARE NEWSLETTER ROUND 80
Security Affairs Malware newsletter includes a collection of the best articles and research on malware in the international landscape Malware Newsletter Gogs 0-Day Exploited in the Wild SHADOW#REACTOR – Text-Only Staging, .NET Reactor, and In-Memory Remcos RAT Deployment “Untrustworthy Fund”:…
Security Affairs newsletter Round 559 by Pierluigi Paganini – INTERNATIONAL EDITION
A new round of the weekly Security Affairs newsletter has arrived! Every week, the best security articles from Security Affairs are free in your email box. Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press. Ukraine–Germany…
IT Security News Hourly Summary 2026-01-18 15h : 2 posts
2 posts were published in the last hour 13:34 : Black Basta Under Pressure After Ukraine Germany Enforcement Operation 13:34 : Malicious Chrome Extensions Target Enterprise HR and ERP Platforms to Steal Credentials
Black Basta Under Pressure After Ukraine Germany Enforcement Operation
Investigators say the Black Basta ransomware campaign left a trail of disruption that extended across Europe and beyond, impacting everything from hospital wards to industrial production lines that were abruptly halted, resulting in a temporary ban of internet and…
Malicious Chrome Extensions Target Enterprise HR and ERP Platforms to Steal Credentials
One after another, suspicious Chrome add-ons began appearing under false pretenses – each masquerading as helpful utilities. These were pulled from public view only after Socket, a cybersecurity group, traced them back to a single pattern of abuse. Instead…
IT Security News Hourly Summary 2026-01-18 12h : 2 posts
2 posts were published in the last hour 11:2 : Microsoft January 2026 Security Update Causes Credential Prompt Failures in Remote Desktop Connections 10:32 : Will 2026 See a ‘ChatGPT Moment’ for Microchip Implants?
Microsoft January 2026 Security Update Causes Credential Prompt Failures in Remote Desktop Connections
Microsoft has released an out-of-band emergency update to resolve a critical issue affecting Remote Desktop connections on Windows client devices. The problem emerged immediately following the installation of the January 2026 security update, identified as KB5074109. Administrators and users reported…
Will 2026 See a ‘ChatGPT Moment’ for Microchip Implants?
As Hollywood imagines our future, are brain and human microchip implants nearing a “ChatGPT moment” in 2026? Medical progress collides with privacy fears and state bans. The post Will 2026 See a ‘ChatGPT Moment’ for Microchip Implants? appeared first on…
Week in review: PoC for FortiSIEM flaw released, Rakuten Viber CISO/CTO on messaging risks
Here’s an overview of some of last week’s most interesting news, articles, interviews and videos: What security teams can learn from torrent metadata Security teams often spend time sorting through logs and alerts that point to activity happening outside corporate…
IT Security News Hourly Summary 2026-01-18 09h : 2 posts
2 posts were published in the last hour 8:4 : “How many states are there in the United States?”, (Sun, Jan 18th) 7:31 : ISO 9001:
“How many states are there in the United States?”, (Sun, Jan 18th)
I've seen many API requests for different LLMs in the honeypot logs. This article has been indexed from SANS Internet Storm Center, InfoCON: green Read the original article: “How many states are there in the United States?”, (Sun, Jan 18th)
ISO 9001:
What is ISO 9001? ISO 9001 is recognized globally as the standard for Quality Management Systems (QMS). Its full name is ISO 9001:2015, indicating the most recent revision published in 2015 by the International Organization for Standardization (ISO). This framework…
IT Security News Hourly Summary 2026-01-18 06h : 1 posts
1 posts were published in the last hour 4:31 : Mandiant Releases Rainbow Tables Enabling NTLMv1 Admin Password Hacking
Mandiant Releases Rainbow Tables Enabling NTLMv1 Admin Password Hacking
Google-owned Mandiant has publicly released a comprehensive dataset of Net-NTLMv1 rainbow tables, marking a significant escalation in demonstrating the security risks of legacy authentication protocols. The release underscores an urgent message: organizations must immediately migrate away from Net-NTLMv1, a deprecated…
IT Security News Hourly Summary 2026-01-18 00h : 1 posts
1 posts were published in the last hour 22:55 : IT Security News Daily Summary 2026-01-17
IT Security News Daily Summary 2026-01-17
40 posts were published in the last hour 20:5 : IT Security News Hourly Summary 2026-01-17 21h : 1 posts 19:31 : Ukraine–Germany operation targets Black Basta, Russian leader wanted 18:31 : NDSS 2025 – ScopeVerif: Analyzing The Security Of…
IT Security News Hourly Summary 2026-01-17 21h : 1 posts
1 posts were published in the last hour 19:31 : Ukraine–Germany operation targets Black Basta, Russian leader wanted
Ukraine–Germany operation targets Black Basta, Russian leader wanted
Police in Ukraine and Germany identified Black Basta suspects and issued an international wanted notice for the group’s alleged Russian leader. Ukrainian and German police raided homes linked to alleged Black Basta ransomware members, identifying two Ukrainian suspects. Law enforcement…
NDSS 2025 – ScopeVerif: Analyzing The Security Of Android’s Scoped Storage Via Differential Analysis
Session 9A: Android Security 2 Authors, Creators & Presenters: Zeyu Lei (Purdue University), Güliz Seray Tuncay (Google), Beatrice Carissa Williem (Purdue University), Z. Berkay Celik (Purdue University), Antonio Bianchi (Purdue University) PAPER ScopeVerif: Analyzing the Security of Android’s Scoped Storage…
Cybersecurity Falls Behind as Threat Scale Outpaces Capabilities
Cyber defence is entering its 2026 year with the balance of advantage increasingly being determined by speed rather than sophistication. With the window between intrusion and impact now measured in minutes rather than days instead of days, the advantage is…
Black Basta Ransomware Leader Added to EU Most Wanted and INTERPOL Red Notice
Ukrainian and German law enforcement authorities have identified two Ukrainians suspected of working for the Russia-linked ransomware-as-a-service (RaaS) group Black Basta. In addition, the group’s alleged leader, a 35-year-old Russian national named Oleg Evgenievich Nefedov (Нефедов Олег Евгеньевич), has been…
IT Security News Hourly Summary 2026-01-17 18h : 4 posts
4 posts were published in the last hour 17:4 : Let’s Encrypt has made 6-day IP-based TLS certificates Generally Available 16:31 : China-linked APT UAT-8837 targets North American critical infrastructure 16:9 : Your 100 Billion Parameter Behemoth is a Liability…
Let’s Encrypt has made 6-day IP-based TLS certificates Generally Available
Let’s Encrypt, a key provider of free TLS certificates, has rolled out short-lived and IP address-based certificates for general use. These new options became available starting in early 2026, addressing long-standing issues in certificate security. Short-lived certificates last just 160…