China-Linked APT Exploited Sitecore Zero-Day in Critical Infrastructure Intrusions
Ravie LakshmananJan 16, 2026Zero-Day / Cyber Espionage A threat actor likely aligned…
LOTUSLITE Backdoor Targets U.S. Policy Entities Using Venezuela-Themed Spear Phishing
Ravie LakshmananJan 16, 2026Malware / Cyber Espionage Security experts have disclosed details…
Your Digital Footprint Can Lead Right to Your Front Door
The Hacker NewsJan 16, 2026Privacy / Data Protection You lock your doors…
Black Basta Ransomware Leader Added to EU Most Wanted and INTERPOL Red Notice
Ravie LakshmananJan 17, 2026Law Enforcement / Cybercrime Ukrainian and German law enforcement…
OpenAI to Show Ads in ChatGPT for Logged-In U.S. Adults on Free and Go Plans
Jan 17, 2026Ravie LakshmananArtificial Intelligence / Data Privacy OpenAI on Friday said…
GootLoader Malware Uses 500–1,000 Concatenated ZIP Archives to Evade Detection
Jan 16, 2026Ravie LakshmananMalvertising / Threat Intelligence The JavaScript (aka JScript) malware…
Five Malicious Chrome Extensions Impersonate Workday and NetSuite to Hijack Accounts
Cybersecurity researchers have discovered five new malicious Google Chrome web browser extensions…
Cisco Patches Zero-Day RCE Exploited by China-Linked APT in Secure Email Gateways
Jan 16, 2026Ravie LakshmananVulnerability / Web Security Cisco on Thursday released security…
AWS CodeBuild Misconfiguration Exposed GitHub Repos to Potential Supply Chain Attacks
A critical misconfiguration in Amazon Web Services (AWS) CodeBuild could have allowed…