Organized Traffer Gang on the Rise Targeting Web3 Employees and Crypto Holders
#MarkoPolo
https://hybrid-analysis.blogspot.com/2026/01/organized-traffer-gang-on-rise.html

Novel Fake CAPTCHA Chain Delivering Amatera Stealer
#AmateraStealer
https://blackpointcyber.com/blog/novel-fake-captcha-chain-delivering-amatera-stealer/

PDFSIDER Malware - Exploitation of DLL Side-Loading for AV and EDR Evasion
#PDFSIDER
https://www.resecurity.com/blog/article/pdfsider-malware-exploitation-of-dll-side-loading-for-av-and-edr-evasion

MacSync Stealer Returns: SEO Poisoning and Fake GitHub Repositories Target macOS Users
#MacSyncStealer
https://daylight.ai/blog/macsync-stealer-returns-seo-poisoning

ShinyHunters claims Okta customer breaches, leaks data belonging to 3 orgs
#ShinyHunters #Okta
https://www.theregister.com/2026/01/23/shinyhunters_claims_okta_customer_breaches/

TikTok US venture to collect precise user location data
#TikTok
https://www.bbc.com/news/articles/cvgnj7v2rr5o

ESET Research: Sandworm behind cyberattack on Poland’s power grid in late 2025
#Sandworm
https://www.welivesecurity.com/en/eset-research/eset-research-sandworm-cyberattack-poland-power-grid-late-2025/

Inside a Multi-Stage Windows Malware Campaign
#AmnesiaRAT #defendnot
https://www.fortinet.com/blog/threat-research/inside-a-multi-stage-windows-malware-campaign

Hackers exploit critical telnetd auth bypass flaw to get root
#CVE_2026_24061
https://www.bleepingcomputer.com/news/security/hackers-exploit-critical-telnetd-auth-bypass-flaw-to-get-root/

Spanish judge closes NSO Group spyware probe due to lack of cooperation from Israel
#NSOGroup
https://therecord.media/spanish-judge-closes-nso-group-spyware-probe-israel

KONNI Adopts AI to Generate PowerShell Backdoors
#Konni
https://research.checkpoint.com/2026/konni-targets-developers-with-ai-malware/

When Ransomware Makes a Mistake Inside INC Ransomware’s Backup Infrastructure
#INCRansomware
https://cybercentaurs.com/blog/when-ransomware-makes-a-mistake-inside-inc-ransomwares-backup-infrastructure/

Watering Hole Attack Targets EmEditor Users with Information-Stealing Malware
#EmEditor
https://www.trendmicro.com/en_us/research/26/a/watering-hole-attack-targets-emeditor-users.html#

Foxit, Epic Games Store, MedDreams vulnerabilities
#FoxitPDFEditor #CVE_2025_57779 #CVE_2025_58085 #CVE_2025_59488
https://blog.talosintelligence.com/foxi-and-epic-games/

CVE-2026-20045: Critical Zero-Day in Cisco Products Is Actively Exploited in the Wild
#CVE_2026_20045
https://socprime.com/blog/cve-2026-20045-vulnerability/

From Protest to Peril Cellebrite Used Against Jordanian Civil Society
#Cellebrite
https://citizenlab.ca/research/from-protest-to-peril-cellebrite-used-against-jordanian-civil-society/

Resurgence of a multi‑stage AiTM phishing and BEC campaign abusing SharePoin
#Microsoft365
https://www.microsoft.com/en-us/security/blog/2026/01/21/multistage-aitm-phishing-bec-campaign-abusing-sharepoint/

PurpleBravo’s Targeting of the IT Software Supply Chain
#PurpleBravo
https://www.recordedfuture.com/research/purplebravos-targeting-it-software-supply-chain

Zoom and GitLab Release Security Updates Fixing RCE, DoS, and 2FA Bypass Flaws
#Zoom #CVE_2026_22844
https://thehackernews.com/2026/01/zoom-and-gitlab-release-security.html

Kimwolf Botnet Lurking in Corporate, Govt. Networks
#Kimwolf
https://krebsonsecurity.com/2026/01/kimwolf-botnet-lurking-in-corporate-govt-networks/