TECHZONE™
الذهاب إلى القناة على Telegram
TECHZONE CYBERNEWS && UPDATES Wᴇʟᴄᴏᴍᴇ Tᴏ TECHZONE™ ✔️Infosec Facts ✔️Cheatsheets ✔️Free Courses ✔️Open source tools ✔️Tech news
إظهار المزيد593
المشتركون
-124 ساعات
-27 أيام
-830 أيام
أرشيف المشاركات
593
Children and chatbots: What parents should know
https://www.welivesecurity.com/en/kids-online/children-chatbots-what-parents-should-know/
As children turn to AI chatbots for answers, advice, and companionship, questions emerge about their safety, privacy, and emotional development
593
CISA Updates KEV Catalog with Four Actively Exploited Software Vulnerabilities
https://thehackernews.com/2026/01/cisa-updates-kev-catalog-with-four.html
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Thursday added four security flaws to its Known Exploited Vulnerabilities (KEV) catalog, citing evidence of active exploitation in the wild.
The list of vulnerabilities is as follows -
CVE-2025-68645 (CVSS score: 8.8) - A PHP remote file inclusion vulnerability in Synacor Zimbra Collaboration Suite (ZCS) that could allow a
593
Common Apple Pay scams, and how to stay safe
https://www.welivesecurity.com/en/scams/common-apple-pay-scams-how-stay-safe/
Here’s how the most common scams targeting Apple Pay users work and what you can do to stay one step ahead
593
Fortinet Confirms Active FortiCloud SSO Bypass on Fully Patched FortiGate Firewalls
https://thehackernews.com/2026/01/fortinet-confirms-active-forticloud-sso.html
Fortinet has officially confirmed that it's working to completely plug a FortiCloud SSO authentication bypass vulnerability following reports of fresh exploitation activity on fully-patched firewalls.
"In the last 24 hours, we have identified a number of cases where the exploit was to a device that had been fully upgraded to the latest release at the time of the attack, which suggested a new
593
TikTok Forms U.S. Joint Venture to Continue Operations Under 2025 Executive Order
https://thehackernews.com/2026/01/tiktok-forms-us-joint-venture-to.html
TikTok on Friday officially announced that it formed a joint venture that will allow the hugely popular video-sharing application to continue operating in the U.S.
The new venture, named TikTok USDS Joint Venture LLC, has been established in compliance with the Executive Order signed by U.S. President Donald Trump in September 2025, the platform said. The new deal will see TikTok's Chinese
593
Phishing Attack Uses Stolen Credentials to Install LogMeIn RMM for Persistent Access
https://thehackernews.com/2026/01/phishing-attack-uses-stolen-credentials.html
Cybersecurity researchers have disclosed details of a new dual-vector campaign that leverages stolen credentials to deploy legitimate Remote Monitoring and Management (RMM) software for persistent remote access to compromised hosts.
"Instead of deploying custom viruses, attackers are bypassing security perimeters by weaponizing the necessary IT tools that administrators trust," KnowBe4 Threat
593
Microsoft Flags Multi-Stage AitM Phishing and BEC Attacks Targeting Energy Firms
https://thehackernews.com/2026/01/microsoft-flags-multi-stage-aitm.html
Microsoft has warned of a multi‑stage adversary‑in‑the‑middle (AitM) phishing and business email compromise (BEC) campaign targeting multiple organizations in the energy sector.
"The campaign abused SharePoint file‑sharing services to deliver phishing payloads and relied on inbox rule creation to maintain persistence and evade user awareness," the Microsoft Defender Security Research Team said.
593
New Osiris Ransomware Emerges as New Strain Using POORTRY Driver in BYOVD Attack
https://thehackernews.com/2026/01/new-osiris-ransomware-emerges-as-new.html
Cybersecurity researchers have disclosed details of a new ransomware family called Osiris that targeted a major food service franchisee operator in Southeast Asia in November 2025.
The attack leveraged a malicious driver called POORTRY as part of a known technique referred to as bring your own vulnerable driver (BYOVD) to disarm security software, the Symantec and Carbon Black Threat Hunter
593
Critical GNU InetUtils telnetd Flaw Lets Attackers Bypass Login and Gain Root Access
https://thehackernews.com/2026/01/critical-gnu-inetutils-telnetd-flaw.html
A critical security flaw has been disclosed in the GNU InetUtils telnet daemon (telnetd) that went unnoticed for nearly 11 years.
The vulnerability, tracked as CVE-2026-24061, is rated 9.8 out of 10.0 on the CVSS scoring system. It affects all versions of GNU InetUtils from version 1.9.3 up to and including version 2.7.
"Telnetd in GNU Inetutils through 2.7 allows remote authentication bypass
593
ThreatsDay Bulletin: Pixel Zero-Click, Redis RCE, China C2s, RAT Ads, Crypto Scams & 15+ Stories
https://thehackernews.com/2026/01/threatsday-bulletin-pixel-zero-click.html
Most of this week’s threats didn’t rely on new tricks. They relied on familiar systems behaving exactly as designed, just in the wrong hands. Ordinary files, routine services, and trusted workflows were enough to open doors without forcing them.
What stands out is how little friction attackers now need. Some activity focused on quiet reach and coverage, others on timing and reuse. The emphasis
593
Filling the Most Common Gaps in Google Workspace Security
https://thehackernews.com/2026/01/filling-most-common-gaps-in-google.html
Security teams at agile, fast-growing companies often have the same mandate: secure the business without slowing it down. Most teams inherit a tech stack optimized for breakneck growth, not resilience. In these environments, the security team is the helpdesk, the compliance expert, and the incident response team all rolled into one.
Securing the cloud office in this scenario is all about
593
Malicious PyPI Package Impersonates SymPy, Deploys XMRig Miner on Linux Hosts
https://thehackernews.com/2026/01/malicious-pypi-package-impersonates.html
A new malicious package discovered in the Python Package Index (PyPI) has been found to impersonate a popular library for symbolic mathematics to deploy malicious payloads, including a cryptocurrency miner, on Linux hosts.
The package, named sympy-dev, mimics SymPy, replicating the latter's project description verbatim in an attempt to deceive unsuspecting users into thinking that they are
593
SmarterMail Auth Bypass Exploited in the Wild Two Days After Patch Release
https://thehackernews.com/2026/01/smartermail-auth-bypass-exploited-in.html
A new security flaw in SmarterTools SmarterMail email software has come under active exploitation in the wild, two days after the release of a patch.
The vulnerability, which currently does not have a CVE identifier, is tracked by watchTowr Labs as WT-2026-0001. It was patched by SmarterTools on January 15, 2026, with Build 9511, following responsible disclosure by the exposure management
593
Automated FortiGate Attacks Exploit FortiCloud SSO to Alter Firewall Configurations
https://thehackernews.com/2026/01/automated-fortigate-attacks-exploit.html
Cybersecurity company Arctic Wolf has warned of a "new cluster of automated malicious activity" that involves unauthorized firewall configuration changes on Fortinet FortiGate devices.
The activity, it said, commenced on January 15, 2026, adding it shares similarities with a December 2025 campaign in which malicious SSO logins on FortiGate appliances were recorded against the admin account from
593
Cisco Fixes Actively Exploited Zero-Day CVE-2026-20045 in Unified CM and Webex
https://thehackernews.com/2026/01/cisco-fixes-actively-exploited-zero-day.html
Cisco has released fresh patches to address what it described as a "critical" security vulnerability impacting multiple Unified Communications (CM) products and Webex Calling Dedicated Instance that it has been actively exploited as a zero-day in the wild.
The vulnerability, CVE-2026-20045 (CVSS score: 8.2), could permit an unauthenticated remote attacker to execute arbitrary commands on the
593
VoidLink Linux Malware Framework Built with AI Assistance Reaches 88,000 Lines of Code
https://thehackernews.com/2026/01/voidlink-linux-malware-framework-built.html
The recently discovered sophisticated Linux malware framework known as VoidLink is assessed to have been developed by a single person with assistance from an artificial intelligence (AI) model.
That's according to new findings from Check Point Research, which identified operational security blunders by malware's author that provided clues to its developmental origins. The latest insight makes
593
LastPass Warns of Fake Maintenance Messages Targeting Users’ Master Passwords
https://thehackernews.com/2026/01/lastpass-warns-of-fake-maintenance.html
LastPass is alerting users to a new active phishing campaign that's impersonating the password management service, which aims to trick users into giving up their master passwords.
The campaign, which began on or around January 19, 2026, involves sending phishing emails claiming upcoming maintenance and urging them to create a local backup of their password vaults in the next 24 hours. The
593
CERT/CC Warns binary-parser Bug Allows Node.js Privilege-Level Code Execution
https://thehackernews.com/2026/01/certcc-warns-binary-parser-bug-allows.html
A security vulnerability has been disclosed in the popular binary-parser npm library that, if successfully exploited, could result in the execution of arbitrary JavaScript.
The vulnerability, tracked as CVE-2026-1245 (CVSS score: N/A), affects all versions of the module prior to version 2.3.0, which addresses the issue. Patches for the flaw were released on November 26, 2025.
Binary-parser is a
593
Old habits die hard: 2025’s most common passwords were as predictable as ever
https://www.welivesecurity.com/en/cybersecurity/old-habits-die-hard-2025-most-common-passwords/
Once again, data shows an uncomfortable truth: the habit of choosing eminently hackable passwords is alive and well
593
North Korea-Linked Hackers Target Developers via Malicious VS Code Projects
https://thehackernews.com/2026/01/north-korea-linked-hackers-target.html
The North Korean threat actors associated with the long-running Contagious Interview campaign have been observed using malicious Microsoft Visual Studio Code (VS Code) projects as lures to deliver a backdoor on compromised endpoints.
The latest finding demonstrates continued evolution of the new tactic that was first discovered in December 2025, Jamf Threat Labs said.
"This activity involved
