Chinese electronic manufacturer and Apple partner Luxshare Precision Industry has allegedly been breached by affiliates of the RansomHub ransomware-as-a-service outfit. Luxshare is one of the primary assemblers of Apple’s wireless earbuds, iPhones, and Vision Pro devices, as well as a…
Webinar: How Smart MSSPs Using AI to Boost Margins with Half the Staff
Every managed security provider is chasing the same problem in 2026 — too many alerts, too few analysts, and clients demanding “CISO-level protection” at SMB budgets. The truth? Most MSSPs are running harder, not smarter. And it’s breaking their margins.…
EU Unveils Cybersecurity Overhaul with Proposed Update to Cybersecurity Act
The EU’s Cybersecurity Act 2.0 will aim to address some of the challenges of the current CSA, including the slow rollout of certification schemes This article has been indexed from www.infosecurity-magazine.com Read the original article: EU Unveils Cybersecurity Overhaul with…
Carlsberg Event Wristband Leaked PII, Researcher Told Not to Disclose
A poorly secured wristband system used at a Carlsberg exhibition allowed access to visitor photos, videos, and full names. Attempts to report the issue were ignored for months. This article has been indexed from Hackread – Cybersecurity News, Data Breaches,…
EU’s New Cybersecurity Act Could Ban High-Risk Suppliers
This sweeping update introduces measures to identify and potentially exclude “high-risk” third countries and companies across 18 essential sectors. The post EU’s New Cybersecurity Act Could Ban High-Risk Suppliers appeared first on TechRepublic. This article has been indexed from Security…
Anthropic MCP Server Flaws Lead to Code Execution, Data Exposure
Impacting Anthropic’s official MCP server, the vulnerabilities can be exploited through prompt injections. The post Anthropic MCP Server Flaws Lead to Code Execution, Data Exposure appeared first on SecurityWeek. This article has been indexed from SecurityWeek Read the original article:…
Cyber Insights 2026: API Security – Harder to Secure, Impossible to Ignore
API cybersecurity will be a ping pong ball, battered between the rackets of AI-assisted attackers and AI-assisted defenders. The post Cyber Insights 2026: API Security – Harder to Secure, Impossible to Ignore appeared first on SecurityWeek. This article has been…
Crooks impersonate LastPass in campaign to harvest master passwords
Password manager LastPass warns of an active phishing campaign impersonating the service to steal users’ master passwords. LastPass warned users about an active phishing campaign that began around January 19, 2026. Attackers impersonate the service with emails claiming urgent maintenance…
Enterprise-Grade Identity Verification for AI-Enhanced Workflows
Enterprise-grade identity verification is critical for AI-driven businesses to prevent fraud, ensure compliance, and secure digital identities across onboarding, access control, and automated workflows. The post Enterprise-Grade Identity Verification for AI-Enhanced Workflows appeared first on Security Boulevard. This article has…
Exposure Assessment Platforms Signal a Shift in Focus
Gartner® doesn’t create new categories lightly. Generally speaking, a new acronym only emerges when the industry’s collective “to-do list” has become mathematically impossible to complete. And so it seems that the introduction of the Exposure Assessment Platforms (EAP) category is…
Brazil Tells xAI To Remove Sexualised Grok Content
Country’s authorities tell xAI to stop Grok chatbot from circulating sexualised images of real people, including minors This article has been indexed from Silicon UK Read the original article: Brazil Tells xAI To Remove Sexualised Grok Content
Oracle’s First 2026 CPU Delivers 337 New Security Patches
Oracle’s January 2026 CPU resolves roughly 230 unique vulnerabilities across more than 30 products. The post Oracle’s First 2026 CPU Delivers 337 New Security Patches appeared first on SecurityWeek. This article has been indexed from SecurityWeek Read the original article:…
IT Security News Hourly Summary 2026-01-21 12h : 13 posts
13 posts were published in the last hour 10:36 : AI Start-Up Humans& Raises $480m At $4.48bn Valuation 10:36 : Microsoft Teams External Domain Anomalies Allow Defenders to Detect Attackers at Earliest 10:36 : Hackers Extensively Abuses Visual Studio Code…
AI Start-Up Humans& Raises $480m At $4.48bn Valuation
With backgrounds at Anthropic, OpenAI, xAI, start-up’s co-founders seek AI that collaborates with humans rather than replacing them This article has been indexed from Silicon UK Read the original article: AI Start-Up Humans& Raises $480m At $4.48bn Valuation
Microsoft Teams External Domain Anomalies Allow Defenders to Detect Attackers at Earliest
Microsoft is rolling out a new security feature called the External Domains Anomalies Report for Teams, designed to help IT administrators identify and respond to suspicious external communications before they escalate into data breaches. This proactive monitoring tool, scheduled for…
Hackers Extensively Abuses Visual Studio Code to Execute Malicious Payloads on Victim System
Threat actors linked to North Korea have continued to expand their attack capabilities by weaponizing Microsoft Visual Studio Code, one of the world’s most popular code editors. The Contagious Interview campaign has evolved significantly, shifting from traditional social engineering tactics…
NSFOCUS Enters the Global Top Tier of DDoS Security: NSFOCUS DDoS Solutions Positioned in the MarketsandMarkets™ Star Quadrant
SANTA CLARA, Calif., Jan 21, 2026 – Recently, MarketsandMarkets™, a globally recognized market research and consulting firm, released its Global DDoS Protection and Mitigation Security Market Global Forecast to 2030 report, providing a comprehensive assessment of industry trends, technology evolution, and…
Linux users targeted by crypto thieves via hijacked apps on Snap Store
Cryptocurrency thieves have found a new way to turn trusted software packages for Linux on the Snap Store into crypto-stealing malware, Ubuntu contributor and former Canonical developer Alan Pope warned. SnapScope web app identifies malicious snaps (Source: Alan Pope) Instead…
Experts Welcome Global Cybersecurity Vulnerability Enumeration Launch
A new service, the Global Cybersecurity Vulnerability Enumeration (GCVE), offers an alternative to the US-led CVE This article has been indexed from www.infosecurity-magazine.com Read the original article: Experts Welcome Global Cybersecurity Vulnerability Enumeration Launch
Automatic Script Execution In Visual Studio Code, (Wed, Jan 21st)
Visual Studio Code is a popular open-source code editor[1]. But it's much more than a simple editor, it's a complete development platform that supports many languages and it is available on multiple platforms. Used by developers worldwide, it's a juicy…
EU Proposes Rules Locking Out ‘High-Risk’ Vendors
Huawei criticises proposed package that would force operators to phase out equipment made by vendors from high-risk countries This article has been indexed from Silicon UK Read the original article: EU Proposes Rules Locking Out ‘High-Risk’ Vendors
VoidLink Linux Malware Framework Built with AI Assistance Reaches 88,000 Lines of Code
The recently discovered sophisticated Linux malware framework known as VoidLink is assessed to have been developed by a single person with assistance from an artificial intelligence (AI) model. That’s according to new findings from Check Point Research, which identified operational…
Chainlit AI Framework Flaws Enable Data Theft via File Read and SSRF Bugs
Security vulnerabilities were uncovered in the popular open-source artificial intelligence (AI) framework Chainlit that could allow attackers to steal sensitive data, which may allow for lateral movement within a susceptible organization. Zafran Security said the high-severity flaws, collectively dubbed ChainLeak,…
North Korean Hackers Abuse VS Code Projects in Contagious Interview Campaign to Deploy Backdoors
North Korea–linked threat actors behind the long-running Contagious Interview campaign have been seen leveraging weaponized Microsoft Visual Studio Code (VS Code) projects to trick victims into installing a backdoor on their systems. According to Jamf Threat Labs, this activity…