CISA has added one new vulnerability to its Known Exploited Vulnerabilities (KEV) Catalog, based on evidence of active exploitation. CVE-2026-20045 Cisco Unified Communications Products Code Injection Vulnerability This type of vulnerability is a frequent attack vector for malicious cyber actors…
Fully patched FortiGate firewalls are getting compromised via CVE-2025-59718?
CVE-2025-59718, a critical authentication bypass flaw that attackers exploited in December 2025 to compromise FortiGate appliances, appears to persist in newer, purportedly fixed releases of the underlying FortiOS. According to Fortinet, CVE-2025-59718 had been fixed in FortiOS versions 7.6.4 or…
IT Security News Hourly Summary 2026-01-21 21h : 6 posts
6 posts were published in the last hour 19:31 : Zoom fixed critical Node Multimedia Routers flaw 19:31 : Hackers Weaponized 2,500+ Security Tools to Terminate Endpoint Protection Before Deploying Ransomware 19:15 : The AI Security Maturity Model for AI-First Development…
Zoom fixed critical Node Multimedia Routers flaw
Zoom addressed a critical security vulnerability, tracked as CVE-2026-22844, that could result in remote code execution. Cloud-based video conferencing and online collaboration platform Zoom released security updates to address multiple vulnerabilities, including command injection, tracked as CVE-2026-22844 (CVSS score of…
Hackers Weaponized 2,500+ Security Tools to Terminate Endpoint Protection Before Deploying Ransomware
A large-scale campaign is turning a trusted Windows security driver into a weapon that shuts down protection tools before ransomware and remote access malware are dropped. The attacks abuse truesight.sys, a kernel driver from Adlice Software’s RogueKiller antivirus, and use…
The AI Security Maturity Model for AI-First Development Teams
The post The AI Security Maturity Model for AI-First Development Teams appeared first on Security Boulevard. This article has been indexed from Security Boulevard Read the original article: The AI Security Maturity Model for AI-First Development Teams
Technical Architecture Guide: Fixing Code Issues Early to Protect Developer Flow
The post Technical Architecture Guide: Fixing Code Issues Early to Protect Developer Flow appeared first on Security Boulevard. This article has been indexed from Security Boulevard Read the original article: Technical Architecture Guide: Fixing Code Issues Early to Protect…
Executive Brief: Questions AI is Creating that Security Can’t Answer Today
The post Executive Brief: Questions AI is Creating that Security Can’t Answer Today appeared first on Security Boulevard. This article has been indexed from Security Boulevard Read the original article: Executive Brief: Questions AI is Creating that Security Can’t…
NDSS 2025 – Dissecting Payload-Based Transaction Phishing On Ethereum
Authors, Creators & Presenters: Zhuo Chen (Zhejiang University), Yufeng Hu (Zhejiang University), Bowen He (Zhejiang University), Dong Luo (Zhejiang University), Lei Wu (Zhejiang University), Yajin Zhou (Zhejiang University) PAPER Dissecting Payload-Based Transaction Phishing On Ethereum In recent years, a more…
20,000 WordPress Sites Affected by Backdoor Vulnerability in LA-Studio Element Kit for Elementor WordPress Plugin
On January 12th, 2026, we received a submission for a Backdoor vulnerability in the LA-Studio Element Kit for Elementor, a WordPress plugin with more than 20,000+ active installations. This vulnerability makes it possible for an unauthenticated attacker to create malicious…
Surveillance and ICE Are Driving Patients Away From Medical Care, Report Warns
A new EPIC report says data brokers, ad-tech surveillance, and ICE enforcement are among the factors leading to a “health privacy crisis” that is eroding trust and deterring people from seeking care. This article has been indexed from Security Latest…
Don’t click on the LastPass ‘create backup’ link – it’s a scam
Phishing campaign tries to reel in master passwords Password managers make great targets for attackers because they can hold many of the keys to your kingdom. Now, LastPass has warned customers about phishing emails claiming that action is required ahead…
What Happens When Spyware Hits a Phone and How to Stay Safe
Although advanced spyware attacks do not affect most smartphone users, cybersecurity researchers stress that awareness is essential as these tools continue to spread globally. Even individuals who are not public figures are advised to remain cautious. In December, hundreds…
RCE flaw in Cisco enterprise communications products probed by attackers (CVE-2026-20045)
Cisco has fixed a critical remote code execution vulnerability (CVE-2026-20045) in some of its unified communications solutions that’s being targeted by attackers in the wild, the company announced on Wednesday via a security advisory. About CVE-2026-20045 CVE-2026-20045 is a code…
GNU InetUtils Telnetd Flaw Lets Attackers Log In as Root
A GNU InetUtils telnetd flaw lets attackers log in as root without a password. The post GNU InetUtils Telnetd Flaw Lets Attackers Log In as Root appeared first on eSecurity Planet. This article has been indexed from eSecurity Planet Read…
Microsoft Investigating Issue Impacting Exchange Online, Teams, and M365 Suite
Microsoft has confirmed it is actively investigating a new service incident affecting multiple core services within the Microsoft 365 ecosystem. The company acknowledged the disruption on Wednesday evening, following reports of connectivity issues and service degradation for users relying on…
New AI Malware Era Begins as Advanced VoidLink Malware Emerges as the First Fully AI-Driven Threat Framework
The cybersecurity landscape has entered a dangerous new chapter with the discovery of VoidLink, the first documented advanced malware framework built almost entirely by artificial intelligence. Unlike earlier attempts where inexperienced hackers used AI to create basic malicious tools, VoidLink…
North Korean PurpleBravo Campaign Targeted 3,136 IP Addresses via Fake Job Interviews
As many as 3,136 individual IP addresses linked to likely targets of the Contagious Interview activity have been identified, with the campaign claiming 20 potential victim organizations spanning artificial intelligence (AI), cryptocurrency, financial services, IT services, marketing, and software development…
Can you use too many LOLBins to drop some RATs?
An attempt to drop two RATs on a system used an uncanny assortment of legitimate Windows tools. This article has been indexed from Malwarebytes Read the original article: Can you use too many LOLBins to drop some RATs?
IT Security News Hourly Summary 2026-01-21 18h : 4 posts
4 posts were published in the last hour 17:4 : Oracle WebLogic Proxy Bug Enables Unauthenticated Remote Compromise 17:4 : Researchers Uncovered LockBit’s 5.0 Latest Affiliate Panel and Encryption Variants 16:34 : ACME flaw in Cloudflare allowed attackers to reach…
Oracle WebLogic Proxy Bug Enables Unauthenticated Remote Compromise
CVE-2026-21962 lets unauthenticated attackers remotely compromise Oracle WebLogic proxies. The post Oracle WebLogic Proxy Bug Enables Unauthenticated Remote Compromise appeared first on eSecurity Planet. This article has been indexed from eSecurity Planet Read the original article: Oracle WebLogic Proxy Bug…
Researchers Uncovered LockBit’s 5.0 Latest Affiliate Panel and Encryption Variants
LockBit, one of the most dangerous ransomware groups in the world, has released its newest version despite facing serious law enforcement actions. The group’s operations continue moving forward, displaying fresh variants that target different computer systems and platforms. Recently, leaked…
ACME flaw in Cloudflare allowed attackers to reach origin servers
Cloudflare fixed a flaw in its ACME validation logic that could let attackers bypass security checks and access protected origin servers. Cloudflare fixed a flaw in its ACME HTTP-01 validation logic that could let attackers bypass security checks and reach…
CyberNut Closes $5M Growth Capital for K-12 Security Awareness Training
CyberNut emerged from stealth in May 2024 with $800k in pre-seed funding for its cybersecurity platform. The post CyberNut Closes $5M Growth Capital for K-12 Security Awareness Training appeared first on SecurityWeek. This article has been indexed from SecurityWeek Read…