Sportswear giant Nike is actively investigating a potential cybersecurity incident after WorldLeaks, a financially motivated ransomware group, claimed responsibility for a significant data breach affecting the company. The group announced the breach on its darknet leak site on January 22,…
Fortinet Confirms Critical FortiCloud SSO Vulnerability(CVE-2026-24858) Actively Exploited in the Wild
Fortinet has confirmed a critical authentication bypass vulnerability in its FortiCloud SSO feature, actively exploited in the wild under CVE-2026-24858. According to an advisory published on January 27, 2026, the flaw affects FortiOS, FortiManager, FortiAnalyzer, and FortiProxy. With a CVSSv3…
Chrome Security Update Patches Background Fetch API Vulnerability
Chrome versions 144.0.7559.109 and 144.0.7559.110 have been released to the stable channel, addressing a critical security vulnerability in the Background Fetch API. The update is rolling out across Windows, Mac, and Linux systems over the coming days and weeks, making…
Phantom Malware in Android Game Mods Hijacks Devices for Ad Fraud
Another day, another Android malware strain. This time, Phantom malware (aka Android.Phantom) is targeting users who install third-party gaming apps from unofficial sources. This article has been indexed from Hackread – Cybersecurity News, Data Breaches, AI, and More Read the…
Best IT Managed Services for Large Enterprises
Learn what defines top-tier enterprise managed IT services, why they matter, and how Mindcore Technologies meets large-scale business demands. This article has been indexed from Hackread – Cybersecurity News, Data Breaches, AI, and More Read the original article: Best IT…
Fake Python Spellchecker Packages on PyPI Delivered Hidden Remote Access Trojan
Cybersecurity researchers have discovered two malicious packages in the Python Package Index (PyPI) repository that masquerade as spellcheckers but contain functionality to deliver a remote access trojan (RAT). The packages, named spellcheckerpy and spellcheckpy, are no longer available for download,…
Google Warns of Active Exploitation of WinRAR Vulnerability CVE-2025-8088
Google on Tuesday revealed that multiple threat actors, including nation-state adversaries and financially motivated groups, are exploiting a now-patched critical security flaw in RARLAB WinRAR to establish initial access and deploy a diverse array of payloads. “Discovered and patched in…
Password Reuse in Disguise: An Often-Missed Risky Workaround
When security teams discuss credential-related risk, the focus typically falls on threats such as phishing, malware, or ransomware. These attack methods continue to evolve and rightly command attention. However, one of the most persistent and underestimated risks to organizational security…
Chinese Money Launderers Drive Global Ecosystem Worth $82bn
Chainalysis claims Chinese money launderers now account for 20% of global activity This article has been indexed from www.infosecurity-magazine.com Read the original article: Chinese Money Launderers Drive Global Ecosystem Worth $82bn
Researchers Uncover 454,000+ Malicious Open Source Packages
Sonatype warns that open source threats became industrialized with a surge in malicious packages in 2025 This article has been indexed from www.infosecurity-magazine.com Read the original article: Researchers Uncover 454,000+ Malicious Open Source Packages
IT Security News Hourly Summary 2026-01-28 12h : 7 posts
7 posts were published in the last hour 10:36 : Anthropic Raising $20bn At $350bn Valuation 10:36 : WhatsApp Boosts Account Security for At-Risk Individuals 10:36 : French government abandons Zoom and Microsoft Teams over security concerns 10:36 : n8n…
Anthropic Raising $20bn At $350bn Valuation
AI start-up Anthropic reportedly targeting $20bn for latest funding round, nearly double initial target, on strong investor demand This article has been indexed from Silicon UK Read the original article: Anthropic Raising $20bn At $350bn Valuation
WhatsApp Boosts Account Security for At-Risk Individuals
New Strict Account Settings allow users to block attachments and media and silence calls from unknown people. The post WhatsApp Boosts Account Security for At-Risk Individuals appeared first on SecurityWeek. This article has been indexed from SecurityWeek Read the original…
French government abandons Zoom and Microsoft Teams over security concerns
France intends to phase out non-European videoconferencing platforms such as Zoom and Microsoft Teams from its public administration, opting instead for a nationally developed solution due to security considerations. Ending the use of paid software licenses is expected to generate…
n8n adds Chat Hub to centralize AI access inside automation workflows
Teams using automation platforms are starting to treat conversational AI as another operational interface. That change is reflected in a new feature from n8n, which has introduced a built-in Chat Hub designed to let users interact with AI models and…
Samsung TriFold Comes To US Market, At A Cost
Samsung Galaxy Z TriFold double-hinged smartphone/tablet is a pioneer in US market in more ways than one, with price tag of nearly $3,000 This article has been indexed from Silicon UK Read the original article: Samsung TriFold Comes To US…
Android Phones Get AI-Powered Anti-Theft Features
Enhanced lockouts and stronger remote locking aim to make stolen devices far harder—and less profitable—for criminals. The post Android Phones Get AI-Powered Anti-Theft Features appeared first on TechRepublic. This article has been indexed from Security Archives – TechRepublic Read the…
McAfee upgrades Scam Detector to spot QR code scams and suspicious messages
McAfee announced upgrades to Scam Detector that improve protection across common scam channels. The enhanced tool helps users check QR code safety and identify suspicious direct messages across apps. In 2025, according to McAfee’s 2026 State of the Scamiverse report,…
UK To Spend £36m For AI Supercomputer Upgrade
AIRR supercomputing centre to see Dawn system upgraded with AMD AI chips, new high-performance system, under UK’s AI strategy This article has been indexed from Silicon UK Read the original article: UK To Spend £36m For AI Supercomputer Upgrade
PackageGate bugs let attackers bypass protections in NPM, PNPM, VLT, and Bun
Koi researchers found “PackageGate” flaws in NPM, PNPM, VLT, and Bun that let attackers perform supply chain attacks and run malicious code. Security firm Koi uncovered a set of vulnerabilities collectively tracked as “PackageGate” affecting major JavaScript package managers like…
Fake CAPTCHA Attack Leverages Microsoft Application Virtualization (App-V) to Deploy Malware
A newly discovered campaign demonstrates a sophisticated approach to delivering information-stealing malware through a combination of social engineering and legitimate Windows components. The attack begins with a deceptive CAPTCHA prompt that tricks users into executing commands manually through the Windows…
Chinese National Jailed to 46 Months for Laundering Millions of Dollars Stolen from American Investors
A Chinese national named Jingliang Su has been sentenced to 46 months in prison for his involvement in a major cryptocurrency fraud scheme targeting American investors. On January 27, 2026, federal courts ordered Su to serve his sentence and pay…
WhatsApp Denies Lawsuit Claim and Confirms Messages are Device-encrypted and Private
WhatsApp has strongly denied a new class-action lawsuit accusing Meta of secretly accessing users’ end-to-end encrypted messages, labeling the claims as false and baseless. The messaging giant reiterated that messages remain private through device-based encryption via the open-source Signal protocol.…
APTs, Cybercriminals Widely Exploiting WinRAR Vulnerability
Russian and Chinese state-sponsored threat actors have been exploiting CVE-2025-8088 since July 2025. The post APTs, Cybercriminals Widely Exploiting WinRAR Vulnerability appeared first on SecurityWeek. This article has been indexed from SecurityWeek Read the original article: APTs, Cybercriminals Widely Exploiting…