Top Security News for Today
EDRStartupHinder: EDR Startup Process Blocker
https://www.reddit.com/r/netsec/comments/1q9vvbz/edrstartuphinder_edr_startup_process_blocker/
Two CVEs, Zero Ego: A Mailpit Story
https://www.reddit.com/r/netsec/comments/1qa8e6i/two_cves_zero_ego_a_mailpit_story/
Grok's image edits spark sexualised deepfakes and regulator probes worldwide
https://www.reddit.com/r/netsec/comments/1qagif3/groks_image_edits_spark_sexualised_deepfakes_and/
Client-side encrypted file sharing with Argon2id and AES-256-GCM
https://www.reddit.com/r/netsec/comments/1qahx46/clientside_encrypted_file_sharing_with_argon2id/
Relaying NFS4 from inside a container
https://www.reddit.com/r/netsec/comments/1qahvtm/relaying_nfs4_from_inside_a_container/
WTF Are Abliterated Models? Uncensored LLMs Explained
https://www.reddit.com/r/netsec/comments/1qakrb5/wtf_are_abliterated_models_uncensored_llms/
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
EDRStartupHinder: EDR Startup Process Blocker
https://www.reddit.com/r/netsec/comments/1q9vvbz/edrstartuphinder_edr_startup_process_blocker/
Two CVEs, Zero Ego: A Mailpit Story
https://www.reddit.com/r/netsec/comments/1qa8e6i/two_cves_zero_ego_a_mailpit_story/
Grok's image edits spark sexualised deepfakes and regulator probes worldwide
https://www.reddit.com/r/netsec/comments/1qagif3/groks_image_edits_spark_sexualised_deepfakes_and/
Client-side encrypted file sharing with Argon2id and AES-256-GCM
https://www.reddit.com/r/netsec/comments/1qahx46/clientside_encrypted_file_sharing_with_argon2id/
Relaying NFS4 from inside a container
https://www.reddit.com/r/netsec/comments/1qahvtm/relaying_nfs4_from_inside_a_container/
WTF Are Abliterated Models? Uncensored LLMs Explained
https://www.reddit.com/r/netsec/comments/1qakrb5/wtf_are_abliterated_models_uncensored_llms/
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
Reddit
From the netsec community on Reddit: EDRStartupHinder: EDR Startup Process Blocker
Explore this post and more from the netsec community
Top Security News for Today
UK launches formal investigation into X over ‘nudification’ of children images
https://therecord.media/uk-launches-formal-investigation-x-grok-images
12th January – Threat Intelligence Report
https://research.checkpoint.com/2026/12th-january-threat-intelligence-report/
Corrupting LLMs Through Weird Generalizations
https://www.schneier.com/blog/archives/2026/01/corrupting-llms-through-weird-generalizations.html
Analyzing a Multi-Stage AsyncRAT Campaign via Managed Detection and Response
https://www.trendmicro.com/en_us/research/26/a/analyzing-a-a-multi-stage-asyncrat-campaign-via-mdr.html
Dutch court sentences hacker who used port systems to smuggle cocaine to 7 years
https://therecord.media/dutch-court-sentences-hacker-who-smuggled-cocaine-ports
Sweden detains ex-military IT consultant suspected of spying for Russia
https://therecord.media/sweden-detains-it-consultant-russia
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
UK launches formal investigation into X over ‘nudification’ of children images
https://therecord.media/uk-launches-formal-investigation-x-grok-images
12th January – Threat Intelligence Report
https://research.checkpoint.com/2026/12th-january-threat-intelligence-report/
Corrupting LLMs Through Weird Generalizations
https://www.schneier.com/blog/archives/2026/01/corrupting-llms-through-weird-generalizations.html
Analyzing a Multi-Stage AsyncRAT Campaign via Managed Detection and Response
https://www.trendmicro.com/en_us/research/26/a/analyzing-a-a-multi-stage-asyncrat-campaign-via-mdr.html
Dutch court sentences hacker who used port systems to smuggle cocaine to 7 years
https://therecord.media/dutch-court-sentences-hacker-who-smuggled-cocaine-ports
Sweden detains ex-military IT consultant suspected of spying for Russia
https://therecord.media/sweden-detains-it-consultant-russia
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
therecord.media
UK launches formal investigation into X over ‘nudification’ of children images
The move follows an eruption of complaints that began earlier this month when the platform’s artificial intelligence tool Grok was used to create sexual images of non-consenting people in response to user requests.
Top Security News for Today
Kremlin-linked hackers pose as charities to spy on Ukraine’s military
https://therecord.media/kremlin-linked-hackers-pose-as-charities-spy-ukraine
Suspected ransomware attack threatens one of South Korea’s largest companies
https://therecord.media/kyowon-group-south-korea-suspected-ransomware-attack
Senior military cyber operator removed from Russia task force
https://therecord.media/senior-military-cyber-op-removed-russia-task-force
Ukraine parliament approves resignation of security service chief in major reshuffle
https://therecord.media/ukraine-parliament-approves-resignation-sbu-chief
Tennessee man to plead guilty to hacking Supreme Court’s electronic case filing system
https://therecord.media/guilty-plea-hacking-supreme-court-case-filing-system
More than 40 countries impacted by North Korea IT worker scams, crypto thefts
https://therecord.media/40-countries-impacted-nk-it-thefts-united-nations
How Microsoft builds privacy and security to work hand-in-hand
https://www.microsoft.com/en-us/security/blog/2026/01/13/how-microsoft-builds-privacy-and-security-to-work-hand-in-hand/
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
Kremlin-linked hackers pose as charities to spy on Ukraine’s military
https://therecord.media/kremlin-linked-hackers-pose-as-charities-spy-ukraine
Suspected ransomware attack threatens one of South Korea’s largest companies
https://therecord.media/kyowon-group-south-korea-suspected-ransomware-attack
Senior military cyber operator removed from Russia task force
https://therecord.media/senior-military-cyber-op-removed-russia-task-force
Ukraine parliament approves resignation of security service chief in major reshuffle
https://therecord.media/ukraine-parliament-approves-resignation-sbu-chief
Tennessee man to plead guilty to hacking Supreme Court’s electronic case filing system
https://therecord.media/guilty-plea-hacking-supreme-court-case-filing-system
More than 40 countries impacted by North Korea IT worker scams, crypto thefts
https://therecord.media/40-countries-impacted-nk-it-thefts-united-nations
How Microsoft builds privacy and security to work hand-in-hand
https://www.microsoft.com/en-us/security/blog/2026/01/13/how-microsoft-builds-privacy-and-security-to-work-hand-in-hand/
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
therecord.media
Kremlin-linked hackers pose as charities to spy on Ukraine’s military
Victims were prompted to download what appeared to be documents but were, in fact, executable files, often packaged in password-protected archives.
Top Security News for Today
Fortinet Forticlient EMS RCE CVE-2025-59922 and one IMG tag to rule them all
https://www.reddit.com/r/netsec/comments/1qciz0v/fortinet_forticlient_ems_rce_cve202559922_and_one/
Patch Tuesday, January 2026 Edition
https://krebsonsecurity.com/2026/01/patch-tuesday-january-2026-edition/
Cyberattack forces Belgian hospital to transfer critical care patients
https://therecord.media/belgium-hospital-cyberattack-antwerp-az-monica
Federal agencies ordered to patch Microsoft Desktop Windows Manager bug
https://therecord.media/desktop-windows-manager-vulnerability-added-to-cisa-list
Sicarii Ransomware: Truth vs Myth
https://research.checkpoint.com/2026/sicarii-ransomware-truth-vs-myth/
Multiple XSS in Meta Conversion API Gateway Leading to Zero-Click Account Takeover
https://www.reddit.com/r/netsec/comments/1qcpsp9/multiple_xss_in_meta_conversion_api_gateway/
Inside RedVDS: How a single virtual desktop provider fueled worldwide cybercriminal operations
https://www.microsoft.com/en-us/security/blog/2026/01/14/inside-redvds-how-a-single-virtual-desktop-provider-fueled-worldwide-cybercriminal-operations/
Microsoft named a Leader in IDC MarketScape for Unified AI Governance Platforms
https://www.microsoft.com/en-us/security/blog/2026/01/14/microsoft-named-a-leader-in-idc-marketscape-for-unified-ai-governance-platforms/
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
Fortinet Forticlient EMS RCE CVE-2025-59922 and one IMG tag to rule them all
https://www.reddit.com/r/netsec/comments/1qciz0v/fortinet_forticlient_ems_rce_cve202559922_and_one/
Patch Tuesday, January 2026 Edition
https://krebsonsecurity.com/2026/01/patch-tuesday-january-2026-edition/
Cyberattack forces Belgian hospital to transfer critical care patients
https://therecord.media/belgium-hospital-cyberattack-antwerp-az-monica
Federal agencies ordered to patch Microsoft Desktop Windows Manager bug
https://therecord.media/desktop-windows-manager-vulnerability-added-to-cisa-list
Sicarii Ransomware: Truth vs Myth
https://research.checkpoint.com/2026/sicarii-ransomware-truth-vs-myth/
Multiple XSS in Meta Conversion API Gateway Leading to Zero-Click Account Takeover
https://www.reddit.com/r/netsec/comments/1qcpsp9/multiple_xss_in_meta_conversion_api_gateway/
Inside RedVDS: How a single virtual desktop provider fueled worldwide cybercriminal operations
https://www.microsoft.com/en-us/security/blog/2026/01/14/inside-redvds-how-a-single-virtual-desktop-provider-fueled-worldwide-cybercriminal-operations/
Microsoft named a Leader in IDC MarketScape for Unified AI Governance Platforms
https://www.microsoft.com/en-us/security/blog/2026/01/14/microsoft-named-a-leader-in-idc-marketscape-for-unified-ai-governance-platforms/
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
Reddit
From the netsec community on Reddit: Fortinet Forticlient EMS RCE CVE-2025-59922 and one IMG tag to rule them all
Explore this post and more from the netsec community
Top Security News for Today
The Promptware Kill Chain: How Prompt Injections Gradually Evolved Into a Multi-Step Malware
https://therecord.media/germany-cyber-dome-israel
New Vulnerability in n8n
https://www.schneier.com/blog/archives/2026/01/new-vulnerability-in-n8n.html
Introducing ÆSIR: Finding Zero-Day Vulnerabilities at the Speed of AI
https://www.trendmicro.com/en_us/research/26/a/aesir.html
Elon Musk’s X says it will block Grok from making sexual images
https://therecord.media/musk-x-grok-block-sexual
A 0-click exploit chain for the Pixel 9 Part 1: Decoding Dolby
https://projectzero.google/2026/01/pixel-0-click-part-1.html
A 0-click exploit chain for the Pixel 9 Part 2: Cracking the Sandbox with a Big Wave
https://projectzero.google/2026/01/pixel-0-click-part-2.html
A 0-click exploit chain for the Pixel 9 Part 3: Where do we go from here?
https://projectzero.google/2026/01/pixel-0-click-part-3.html
Google to pay $8.25 million to settle lawsuit alleging children’s privacy violations
https://therecord.media/google-youtube-lawsuit-settle
CVE-2026-20965: Cymulate Research Labs Discovers Token Validation Flaw that Leads to Tenant-Wide RCE in Azure Windows Admin Center
https://www.reddit.com/r/netsec/comments/1qdmwad/cve202620965_cymulate_research_labs_discovers/
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
The Promptware Kill Chain: How Prompt Injections Gradually Evolved Into a Multi-Step Malware
https://therecord.media/germany-cyber-dome-israel
New Vulnerability in n8n
https://www.schneier.com/blog/archives/2026/01/new-vulnerability-in-n8n.html
Introducing ÆSIR: Finding Zero-Day Vulnerabilities at the Speed of AI
https://www.trendmicro.com/en_us/research/26/a/aesir.html
Elon Musk’s X says it will block Grok from making sexual images
https://therecord.media/musk-x-grok-block-sexual
A 0-click exploit chain for the Pixel 9 Part 1: Decoding Dolby
https://projectzero.google/2026/01/pixel-0-click-part-1.html
A 0-click exploit chain for the Pixel 9 Part 2: Cracking the Sandbox with a Big Wave
https://projectzero.google/2026/01/pixel-0-click-part-2.html
A 0-click exploit chain for the Pixel 9 Part 3: Where do we go from here?
https://projectzero.google/2026/01/pixel-0-click-part-3.html
Google to pay $8.25 million to settle lawsuit alleging children’s privacy violations
https://therecord.media/google-youtube-lawsuit-settle
CVE-2026-20965: Cymulate Research Labs Discovers Token Validation Flaw that Leads to Tenant-Wide RCE in Azure Windows Admin Center
https://www.reddit.com/r/netsec/comments/1qdmwad/cve202620965_cymulate_research_labs_discovers/
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
therecord.media
Germany turns to Israel for a ‘cyber dome’ amid rising threats
Germany and Israel have signed a cyber and security cooperation agreement — a deal that Berlin hopes will lead to its own version of Israel’s so-called “cyber dome.”
Top Security News for Today
Police raid homes of alleged Black Basta hackers
https://therecord.media/police-raid-homes-of-alleged-black-basta-hackers
Jordanian initial access broker pleads guilty to helping target 50 companies
https://therecord.media/guilty-plea-initial-access-broker-r1z
Functional PoCs in less than a minute?
https://portswigger.net/blog/functional-pocs-in-less-than-a-minute
Your 100 Billion Parameter Behemoth is a Liability
https://www.trendmicro.com/en_us/research/26/a/your-100-billion-parameter-behemoth-is-a-liability.html
Using a shared library to hijack sudo's call to read to lift users' passwords
https://oxasploits.com/posts/post-exploitation-hijacking-sudo-read-library-call-to-lift-passwords/
StackWarp: Exploiting Stack Layout Vulnerabilities in Modern Processors
https://www.reddit.com/r/netsec/comments/1qehxzy/stackwarp_exploiting_stack_layout_vulnerabilities/
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
Police raid homes of alleged Black Basta hackers
https://therecord.media/police-raid-homes-of-alleged-black-basta-hackers
Jordanian initial access broker pleads guilty to helping target 50 companies
https://therecord.media/guilty-plea-initial-access-broker-r1z
Functional PoCs in less than a minute?
https://portswigger.net/blog/functional-pocs-in-less-than-a-minute
Your 100 Billion Parameter Behemoth is a Liability
https://www.trendmicro.com/en_us/research/26/a/your-100-billion-parameter-behemoth-is-a-liability.html
Using a shared library to hijack sudo's call to read to lift users' passwords
https://oxasploits.com/posts/post-exploitation-hijacking-sudo-read-library-call-to-lift-passwords/
StackWarp: Exploiting Stack Layout Vulnerabilities in Modern Processors
https://www.reddit.com/r/netsec/comments/1qehxzy/stackwarp_exploiting_stack_layout_vulnerabilities/
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
therecord.media
Police raid homes of alleged Black Basta hackers, hunt suspected Russian ringleader
Black Basta has been active since at least early 2022 and is believed to be responsible for extorting hundreds of companies, hospitals and public institutions worldwide — including Swiss industrial giant ABB and U.S. healthcare provider Ascension — causing…
Top Security News for Today
Account Takeover in Facebook mobile app due to usage of cryptographically unsecure random number generator and XSS in Facebook JS SDK
https://www.reddit.com/r/netsec/comments/1qg4kl7/account_takeover_in_facebook_mobile_app_due_to/
After the Takedown: Excavating Abuse Infrastructure with DNS Sinkholes
https://www.reddit.com/r/netsec/comments/1qgi29k/after_the_takedown_excavating_abuse/
XuanJia: A Comprehensive Virtualization-Based Code Obfuscator for Binary Protection
https://arxiv.org/abs/2601.10581
From Single to Multi-Agent Reasoning: Advancing GeneGPT for Genomics QA
https://arxiv.org/abs/2304.09720
Genetic Algorithm Based Combinatorial Optimization for the Optimal Design of Water Distribution Network of Gurudeniya Service Zone, Sri Lanka
https://arxiv.org/abs/2601.10848
Chatting with Confidants or Corporations? Privacy Management with AI Companions
https://arxiv.org/abs/2601.10754
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
Account Takeover in Facebook mobile app due to usage of cryptographically unsecure random number generator and XSS in Facebook JS SDK
https://www.reddit.com/r/netsec/comments/1qg4kl7/account_takeover_in_facebook_mobile_app_due_to/
After the Takedown: Excavating Abuse Infrastructure with DNS Sinkholes
https://www.reddit.com/r/netsec/comments/1qgi29k/after_the_takedown_excavating_abuse/
XuanJia: A Comprehensive Virtualization-Based Code Obfuscator for Binary Protection
https://arxiv.org/abs/2601.10581
From Single to Multi-Agent Reasoning: Advancing GeneGPT for Genomics QA
https://arxiv.org/abs/2304.09720
Genetic Algorithm Based Combinatorial Optimization for the Optimal Design of Water Distribution Network of Gurudeniya Service Zone, Sri Lanka
https://arxiv.org/abs/2601.10848
Chatting with Confidants or Corporations? Privacy Management with AI Companions
https://arxiv.org/abs/2601.10754
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
Reddit
From the netsec community on Reddit: Account Takeover in Facebook mobile app due to usage of cryptographically unsecure random…
Posted by smaury - 133 votes and 13 comments
Top Security News for Today
"AI-Powered Surveillance in Schools"
https://www.schneier.com/blog/archives/2026/01/ai-powered-surveillance-in-schools.html
"Iranian State TV Feed Reportedly Hijacked to Air Anti-Regime Messages"
https://therecord.media/iran-state-television-reported-hack-opposition
"From Extension to Infection: An In-Depth Analysis of the Evelyn Stealer Campaign Targeting Software Developers"
https://www.trendmicro.com/en_us/research/26/a/analysis-of-the-evelyn-stealer-campaign.html
"Write-up: Cloudflare Zero-day: Accessing Any Host Globally"
https://www.reddit.com/r/netsec/comments/1qh5osi/writeup_cloudflare_zeroday_accessing_any_host/
"synthetic vulnerabilities — security flaws unique to AI-generated code"
https://www.reddit.com/r/netsec/comments/1qh1dsq/synthetic_vulnerabilities_security_flaws_unique/
"Japanese AI Agent System on Human Papillomavirus Vaccination: System Design"
https://arxiv.org/abs/2601.10718
"Do You Trust Me? Cognitive-Affective Signatures of Trustworthiness in Large Language Models"
https://arxiv.org/abs/2601.10719
"Verified Design of Robotic Autonomous Systems using Probabilistic Model Checking"
https://arxiv.org/abs/2601.10720
"Collaborative Continuum Robots: A Survey"
https://arxiv.org/abs/2601.10721
"Too Helpful to Be Safe: User-Mediated Attacks on Planning and Web-Use Agents"
https://arxiv.org/abs/2601.10758
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
"AI-Powered Surveillance in Schools"
https://www.schneier.com/blog/archives/2026/01/ai-powered-surveillance-in-schools.html
"Iranian State TV Feed Reportedly Hijacked to Air Anti-Regime Messages"
https://therecord.media/iran-state-television-reported-hack-opposition
"From Extension to Infection: An In-Depth Analysis of the Evelyn Stealer Campaign Targeting Software Developers"
https://www.trendmicro.com/en_us/research/26/a/analysis-of-the-evelyn-stealer-campaign.html
"Write-up: Cloudflare Zero-day: Accessing Any Host Globally"
https://www.reddit.com/r/netsec/comments/1qh5osi/writeup_cloudflare_zeroday_accessing_any_host/
"synthetic vulnerabilities — security flaws unique to AI-generated code"
https://www.reddit.com/r/netsec/comments/1qh1dsq/synthetic_vulnerabilities_security_flaws_unique/
"Japanese AI Agent System on Human Papillomavirus Vaccination: System Design"
https://arxiv.org/abs/2601.10718
"Do You Trust Me? Cognitive-Affective Signatures of Trustworthiness in Large Language Models"
https://arxiv.org/abs/2601.10719
"Verified Design of Robotic Autonomous Systems using Probabilistic Model Checking"
https://arxiv.org/abs/2601.10720
"Collaborative Continuum Robots: A Survey"
https://arxiv.org/abs/2601.10721
"Too Helpful to Be Safe: User-Mediated Attacks on Planning and Web-Use Agents"
https://arxiv.org/abs/2601.10758
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
Schneier on Security
AI-Powered Surveillance in Schools - Schneier on Security
It all sounds pretty dystopian: Inside a white stucco building in Southern California, video cameras compare faces of passersby against a facial recognition database. Behavioral analysis AI reviews the footage for signs of violent behavior. Behind a bathroom…
Top Security News for Today
VoidLink: Evidence That the Era of Advanced AI-Generated Malware Has Begun
https://research.checkpoint.com/2026/voidlink-early-ai-generated-malware-framework/
Successful Errors: New Code Injection and SSTI Techniques
https://www.reddit.com/r/netsec/comments/1qgcgey/successful_errors_new_code_injection_and_ssti/
Could ChatGPT Convince You to Buy Something?
https://www.schneier.com/blog/archives/2026/01/could-chatgpt-convince-you-to-buy-something.html
Cloudflare Zero-day: Accessing Any Host Globally
https://www.reddit.com/r/netsec/comments/1qhyjnj/cloudflare_zeroday_accessing_any_host_globally/
UK warns of sustained cyberthreat from pro-Russian hacktivists
https://therecord.media/uk-ncsc-warning-russia-aligned-hacktivist-groups
UK launches landmark 'Report Fraud' service to tackle cybercrime and fraud
https://therecord.media/uk-report-fraud-platform-launch-police-cybercrime
Four priorities for AI-powered identity and network access security in 2026
https://www.microsoft.com/en-us/security/blog/2026/01/20/four-priorities-for-ai-powered-identity-and-network-access-security-in-2026/
Billion-Dollar Bait & Switch: Exploiting a Race Condition in Blockchain Infrastructure
https://www.reddit.com/r/netsec/comments/1qi9em3/billiondollar_bait_switch_exploiting_a_race/
Supreme Court to consider whether geofence warrants are constitutional
https://therecord.media/supreme-court-geofence-constitutionality
When The Gateway Becomes The Doorway: Pre-Auth RCE in API Management
https://www.reddit.com/r/netsec/comments/1qiq357/when_the_gateway_becomes_the_doorway_preauth_rce/
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
VoidLink: Evidence That the Era of Advanced AI-Generated Malware Has Begun
https://research.checkpoint.com/2026/voidlink-early-ai-generated-malware-framework/
Successful Errors: New Code Injection and SSTI Techniques
https://www.reddit.com/r/netsec/comments/1qgcgey/successful_errors_new_code_injection_and_ssti/
Could ChatGPT Convince You to Buy Something?
https://www.schneier.com/blog/archives/2026/01/could-chatgpt-convince-you-to-buy-something.html
Cloudflare Zero-day: Accessing Any Host Globally
https://www.reddit.com/r/netsec/comments/1qhyjnj/cloudflare_zeroday_accessing_any_host_globally/
UK warns of sustained cyberthreat from pro-Russian hacktivists
https://therecord.media/uk-ncsc-warning-russia-aligned-hacktivist-groups
UK launches landmark 'Report Fraud' service to tackle cybercrime and fraud
https://therecord.media/uk-report-fraud-platform-launch-police-cybercrime
Four priorities for AI-powered identity and network access security in 2026
https://www.microsoft.com/en-us/security/blog/2026/01/20/four-priorities-for-ai-powered-identity-and-network-access-security-in-2026/
Billion-Dollar Bait & Switch: Exploiting a Race Condition in Blockchain Infrastructure
https://www.reddit.com/r/netsec/comments/1qi9em3/billiondollar_bait_switch_exploiting_a_race/
Supreme Court to consider whether geofence warrants are constitutional
https://therecord.media/supreme-court-geofence-constitutionality
When The Gateway Becomes The Doorway: Pre-Auth RCE in API Management
https://www.reddit.com/r/netsec/comments/1qiq357/when_the_gateway_becomes_the_doorway_preauth_rce/
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
Top Security News for Today
Greek police arrest scammers using fake cell tower hidden in car trunk
https://therecord.media/greek-police-arrest-scammers-using-hidden-cell-towers
Internet Voting is Too Insecure for Use in Elections
https://www.schneier.com/blog/archives/2026/01/internet-voting-is-too-insecure-for-use-in-elections.html
EU unveils new plans to tackle Huawei, ZTE as China alleges protectionism
https://therecord.media/eu-unveils-new-plans-to-tackle-huawei-zte
Break LLM Workflows with Claude's Refusal Magic String
https://www.reddit.com/r/netsec/comments/1qj01yt/break_llm_workflows_with_claudes_refusal_magic/
A new era of agents, a new era of posture
https://www.microsoft.com/en-us/security/blog/2026/01/21/new-era-of-agents-new-era-of-posture/
Third-party identity verification provider breach exposes government ID images (Total Wireless / Veriff)
https://www.reddit.com/r/netsec/comments/1qj7951/thirdparty_identity_verification_provider_breach/
Attackers With Decompilers Strike Again (SmarterTools SmarterMail WT-2026-0001 Auth Bypass) - watchTowr Labs
https://www.reddit.com/r/netsec/comments/1qjfhso/attackers_with_decompilers_strike_again/
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
Greek police arrest scammers using fake cell tower hidden in car trunk
https://therecord.media/greek-police-arrest-scammers-using-hidden-cell-towers
Internet Voting is Too Insecure for Use in Elections
https://www.schneier.com/blog/archives/2026/01/internet-voting-is-too-insecure-for-use-in-elections.html
EU unveils new plans to tackle Huawei, ZTE as China alleges protectionism
https://therecord.media/eu-unveils-new-plans-to-tackle-huawei-zte
Break LLM Workflows with Claude's Refusal Magic String
https://www.reddit.com/r/netsec/comments/1qj01yt/break_llm_workflows_with_claudes_refusal_magic/
A new era of agents, a new era of posture
https://www.microsoft.com/en-us/security/blog/2026/01/21/new-era-of-agents-new-era-of-posture/
Third-party identity verification provider breach exposes government ID images (Total Wireless / Veriff)
https://www.reddit.com/r/netsec/comments/1qj7951/thirdparty_identity_verification_provider_breach/
Attackers With Decompilers Strike Again (SmarterTools SmarterMail WT-2026-0001 Auth Bypass) - watchTowr Labs
https://www.reddit.com/r/netsec/comments/1qjfhso/attackers_with_decompilers_strike_again/
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
therecord.media
Greek police arrest scammers using fake cell tower hidden in car trunk
A vehicle search uncovered a mobile computing system hidden in the trunk and connected to a roof-mounted transmitter disguised as a shark-fin antenna.
Top Security News for Today
Jordan used Cellebrite phone-hacking tools against activists critical of Gaza war, report finds
https://www.therecord.media/jordan-used-cellebrite-against-activists-critical-gaza-war
Single malformed BRID/HHIT DNS packet can crash ISC BIND
https://www.reddit.com/r/netsec/comments/1qjsl4x/single_malformed_bridhhit_dns_packet_can_crash/
Why AI Keeps Falling for Prompt Injection Attacks
https://www.schneier.com/blog/archives/2026/01/why-ai-keeps-falling-for-prompt-injection-attacks.html
KONNI Adopts AI to Generate PowerShell Backdoors
https://research.checkpoint.com/2026/konni-targets-developers-with-ai-malware/
AI-supported vulnerability triage with the GitHub Security Lab Taskflow Agent
https://www.reddit.com/r/netsec/comments/1qjuo02/aisupported_vulnerability_triage_with_the_github/
Intercepting OkHttp at Runtime With Frida
https://www.reddit.com/r/netsec/comments/1qjvoet/intercepting_okhttp_at_runtime_with_frida/
CVE-2026-22200: Ticket to Shell in osTicket
https://www.reddit.com/r/netsec/comments/1qjynzr/cve202622200_ticket_to_shell_in_osticket/
Watering Hole Attack Targets EmEditor Users with Information-Stealing Malware
https://www.trendmicro.com/en_us/research/26/a/watering-hole-attack-targets-emeditor-users.html
House of Lords backs legislation to ban social media for children under 16
https://therecord.media/house-lords-bans-social-media
Ireland plans law allowing law enforcement to use spyware
https://therecord.media/ireland-plans-law-enforcement-spyware
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
Jordan used Cellebrite phone-hacking tools against activists critical of Gaza war, report finds
https://www.therecord.media/jordan-used-cellebrite-against-activists-critical-gaza-war
Single malformed BRID/HHIT DNS packet can crash ISC BIND
https://www.reddit.com/r/netsec/comments/1qjsl4x/single_malformed_bridhhit_dns_packet_can_crash/
Why AI Keeps Falling for Prompt Injection Attacks
https://www.schneier.com/blog/archives/2026/01/why-ai-keeps-falling-for-prompt-injection-attacks.html
KONNI Adopts AI to Generate PowerShell Backdoors
https://research.checkpoint.com/2026/konni-targets-developers-with-ai-malware/
AI-supported vulnerability triage with the GitHub Security Lab Taskflow Agent
https://www.reddit.com/r/netsec/comments/1qjuo02/aisupported_vulnerability_triage_with_the_github/
Intercepting OkHttp at Runtime With Frida
https://www.reddit.com/r/netsec/comments/1qjvoet/intercepting_okhttp_at_runtime_with_frida/
CVE-2026-22200: Ticket to Shell in osTicket
https://www.reddit.com/r/netsec/comments/1qjynzr/cve202622200_ticket_to_shell_in_osticket/
Watering Hole Attack Targets EmEditor Users with Information-Stealing Malware
https://www.trendmicro.com/en_us/research/26/a/watering-hole-attack-targets-emeditor-users.html
House of Lords backs legislation to ban social media for children under 16
https://therecord.media/house-lords-bans-social-media
Ireland plans law allowing law enforcement to use spyware
https://therecord.media/ireland-plans-law-enforcement-spyware
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
therecord.media
Jordan used Cellebrite phone-hacking tools against activists critical of Gaza war, report finds
The findings, published by Citizen Lab Thursday, are based on the research institute’s digital forensic analysis of seized phones in four cases and Jordanian court records in three cases.
Top Security News for Today
Germany expels Russian diplomat accused of spying on Ukraine war effort
https://therecord.media/germany-expels-russian-diplomat-accused-spying-ukraine-war
Cyberattack disrupts digital systems at renowned Dresden museum network
https://therecord.media/dresden-state-art-collections-cyberattack
Free URL & site security scanner: ScanMalware.com • Scan websites for threats. Would love feedback on detection, reporting, API, UX from the netsec crowd
https://www.reddit.com/r/netsec/comments/1qkn9nb/free_url_site_security_scanner_scanmalwarecom/
AIs are Getting Better at Finding and Exploiting Internet Vulnerabilities
https://www.schneier.com/blog/archives/2026/01/ais-are-getting-better-at-finding-and-exploiting-internet-vulnerabilities.html
Y2K38 as a security risk for vulnerable systems today. Not in 12 years, but right now.
https://www.reddit.com/r/netsec/comments/1ql00bl/y2k38_as_a_security_risk_for_vulnerable_systems/
Correctly interpreting DMARC, SPF, and DKIM enforcement in DNS security
https://www.reddit.com/r/netsec/comments/1ql4e3x/correctly_interpreting_dmarc_spf_and_dkim/
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
Germany expels Russian diplomat accused of spying on Ukraine war effort
https://therecord.media/germany-expels-russian-diplomat-accused-spying-ukraine-war
Cyberattack disrupts digital systems at renowned Dresden museum network
https://therecord.media/dresden-state-art-collections-cyberattack
Free URL & site security scanner: ScanMalware.com • Scan websites for threats. Would love feedback on detection, reporting, API, UX from the netsec crowd
https://www.reddit.com/r/netsec/comments/1qkn9nb/free_url_site_security_scanner_scanmalwarecom/
AIs are Getting Better at Finding and Exploiting Internet Vulnerabilities
https://www.schneier.com/blog/archives/2026/01/ais-are-getting-better-at-finding-and-exploiting-internet-vulnerabilities.html
Y2K38 as a security risk for vulnerable systems today. Not in 12 years, but right now.
https://www.reddit.com/r/netsec/comments/1ql00bl/y2k38_as_a_security_risk_for_vulnerable_systems/
Correctly interpreting DMARC, SPF, and DKIM enforcement in DNS security
https://www.reddit.com/r/netsec/comments/1ql4e3x/correctly_interpreting_dmarc_spf_and_dkim/
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
therecord.media
Germany expels Russian diplomat accused of spying on Ukraine war effort
“Russia’s aggressive actions have consequences," Foreign Minister Johann Wadephul said after Germany announced a Russian diplomat had been expelled on suspicions of espionage.
❤2
Top Security News for Today
Prompt injection is No 1 Security threat for most systems.
https://www.reddit.com/r/netsec/comments/1qljgkz/prompt_injection_is_no_1_security_threat_for_most/
China investigates top general Zhang Youxia in rare purge of senior military leaders
https://therecord.media/china-investigates-top-general-purge-senior-military-leaders
BREAKMEIFYOUCAN! - Exploiting Keyspace Reduction and Relay Attacks in 3DES and AES-protected NFC Technologies
https://www.reddit.com/r/netsec/comments/1qm52ob/breakmeifyoucan_exploiting_keyspace_reduction_and/
Husn Canaries - Defense-in-Depth for AI Coding Assistant Governance
https://www.reddit.com/r/netsec/comments/1qmcqt6/husn_canaries_defenseindepth_for_ai_coding/
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
Prompt injection is No 1 Security threat for most systems.
https://www.reddit.com/r/netsec/comments/1qljgkz/prompt_injection_is_no_1_security_threat_for_most/
China investigates top general Zhang Youxia in rare purge of senior military leaders
https://therecord.media/china-investigates-top-general-purge-senior-military-leaders
BREAKMEIFYOUCAN! - Exploiting Keyspace Reduction and Relay Attacks in 3DES and AES-protected NFC Technologies
https://www.reddit.com/r/netsec/comments/1qm52ob/breakmeifyoucan_exploiting_keyspace_reduction_and/
Husn Canaries - Defense-in-Depth for AI Coding Assistant Governance
https://www.reddit.com/r/netsec/comments/1qmcqt6/husn_canaries_defenseindepth_for_ai_coding/
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
Reddit
From the netsec community on Reddit: Prompt injection is No 1 Security threat for most systems.
Explore this post and more from the netsec community
Top Security News for Today
Husn Canaries - Defense-in-Depth for AI Coding Assistant Governance
https://www.reddit.com/r/netsec/comments/1qmcqt6/husn_canaries_defenseindepth_for_ai_coding/
Memorization Dynamics in Knowledge Distillation for Language Models
https://arxiv.org/abs/2601.16234
CVSweb OpenBSD.org fights AI crawler bots by redirecting hotlinking requests to theannoyingsite.com (labelled "Malware" by eero), gets blacklisted by eero, too, for "Phishing & Deception"
https://www.reddit.com/r/netsec/comments/1qmo7qr/cvswebopenbsdorg_fights_ai_crawler_bots_by/
Your Vibe Coded AI App Can Bankrupt You
https://www.reddit.com/r/netsec/comments/1qmrz3m/your_vibe_coded_ai_app_can_bankrupt_you/
Địt mẹ mày morphisec: When Malware Authors Taunt Security Researchers
https://www.reddit.com/r/netsec/comments/1qmukkb/địt_mẹ_mày_morphisec_when_malware_authors_taunt/
Algorithmic Identity Based on Metaparameters: A Path to Reliability, Auditability, and Traceability
https://arxiv.org/abs/2601.16241
FC-GUARD: Enabling Anonymous yet Compliant Fiat-to-Cryptocurrency Exchanges
https://arxiv.org/abs/2601.16354
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
Husn Canaries - Defense-in-Depth for AI Coding Assistant Governance
https://www.reddit.com/r/netsec/comments/1qmcqt6/husn_canaries_defenseindepth_for_ai_coding/
Memorization Dynamics in Knowledge Distillation for Language Models
https://arxiv.org/abs/2601.16234
CVSweb OpenBSD.org fights AI crawler bots by redirecting hotlinking requests to theannoyingsite.com (labelled "Malware" by eero), gets blacklisted by eero, too, for "Phishing & Deception"
https://www.reddit.com/r/netsec/comments/1qmo7qr/cvswebopenbsdorg_fights_ai_crawler_bots_by/
Your Vibe Coded AI App Can Bankrupt You
https://www.reddit.com/r/netsec/comments/1qmrz3m/your_vibe_coded_ai_app_can_bankrupt_you/
Địt mẹ mày morphisec: When Malware Authors Taunt Security Researchers
https://www.reddit.com/r/netsec/comments/1qmukkb/địt_mẹ_mày_morphisec_when_malware_authors_taunt/
Algorithmic Identity Based on Metaparameters: A Path to Reliability, Auditability, and Traceability
https://arxiv.org/abs/2601.16241
FC-GUARD: Enabling Anonymous yet Compliant Fiat-to-Cryptocurrency Exchanges
https://arxiv.org/abs/2601.16354
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
Reddit
From the netsec community on Reddit: Husn Canaries - Defense-in-Depth for AI Coding Assistant Governance
Explore this post and more from the netsec community
Top Security News for Today
Open sesame: Critical vulnerabilities in dormakaba physical access control system enable unlocking arbitrary doors
https://www.reddit.com/r/netsec/comments/1qncvtn/open_sesame_critical_vulnerabilities_in_dormakaba/
Ireland Proposes Giving Police New Digital Surveillance Powers
https://www.schneier.com/blog/archives/2026/01/ireland-proposes-giving-police-new-digital-surveillance-powers.html
EU launches formal investigation into X and Grok over sexual images
https://therecord.media/grok-sexually-explicit-images-eu-formal-investigation
26th January – Threat Intelligence Report
https://research.checkpoint.com/2026/26th-january-threat-intelligence-report/
After reporting vulnerabilities found in MDT, Microsoft chose to retire the service rather than fix the issues... Admins should follow the defensive recommendations to mitigate the issues if they choose to continue using the software or can’t migrate to a different solution.
https://www.reddit.com/r/netsec/comments/1qng5ag/after_reporting_vulnerabilities_found_in_mdt/
Romania probes two suspects over alleged hitman-for-hire website
https://therecord.media/romania-assassins-for-hire-website-investigation
PeckBirdy: A Versatile Script Framework for LOLBins Exploitation Used by China-aligned Threat Groups
https://www.trendmicro.com/en_us/research/26/a/peckbirdy-script-framework.html
Russian state hackers likely behind wiper malware attack on Poland’s power grid
https://therecord.media/russia-eset-sandworm-poland-hack
Judge awards British critic of Saudis $4.1 million, finds the regime hacked his devices
https://therecord.media/london-judge-sides-with-saudi-critic-spyware-case
Supreme Court to hear Facebook pixel tracking case
https://therecord.media/supreme-court-case-facebook-tracking
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
Open sesame: Critical vulnerabilities in dormakaba physical access control system enable unlocking arbitrary doors
https://www.reddit.com/r/netsec/comments/1qncvtn/open_sesame_critical_vulnerabilities_in_dormakaba/
Ireland Proposes Giving Police New Digital Surveillance Powers
https://www.schneier.com/blog/archives/2026/01/ireland-proposes-giving-police-new-digital-surveillance-powers.html
EU launches formal investigation into X and Grok over sexual images
https://therecord.media/grok-sexually-explicit-images-eu-formal-investigation
26th January – Threat Intelligence Report
https://research.checkpoint.com/2026/26th-january-threat-intelligence-report/
After reporting vulnerabilities found in MDT, Microsoft chose to retire the service rather than fix the issues... Admins should follow the defensive recommendations to mitigate the issues if they choose to continue using the software or can’t migrate to a different solution.
https://www.reddit.com/r/netsec/comments/1qng5ag/after_reporting_vulnerabilities_found_in_mdt/
Romania probes two suspects over alleged hitman-for-hire website
https://therecord.media/romania-assassins-for-hire-website-investigation
PeckBirdy: A Versatile Script Framework for LOLBins Exploitation Used by China-aligned Threat Groups
https://www.trendmicro.com/en_us/research/26/a/peckbirdy-script-framework.html
Russian state hackers likely behind wiper malware attack on Poland’s power grid
https://therecord.media/russia-eset-sandworm-poland-hack
Judge awards British critic of Saudis $4.1 million, finds the regime hacked his devices
https://therecord.media/london-judge-sides-with-saudi-critic-spyware-case
Supreme Court to hear Facebook pixel tracking case
https://therecord.media/supreme-court-case-facebook-tracking
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
Reddit
From the netsec community on Reddit: "Open sesame": Critical vulnerabilities in dormakaba physical access control system enable…
Explore this post and more from the netsec community
Top Security News for Today
Judge dismisses case alleging use of Flock cameras in Virginia city is unconstitutional
https://therecord.media/judge-dismisses-flock-case
UK plans sweeping overhaul of policing amid surge in online crimes
https://therecord.media/uk-national-policing-overhaul-cybercrime
Pwn2Own: Researchers Earn $1 Million for 76 Zero-Days
https://www.trendmicro.com/en_us/research/26/a/pwn2own-researchers-earn-1-million-for-76-zero-days.html
Nike probes potential cyber incident after hackers claim data leak
https://therecord.media/nike-probes-alleged-cyber-incident
How I sped up exploit validation in Repeater using Burp AI
https://portswigger.net/blog/how-i-sped-up-exploit-validation-in-repeater-using-burp-ai
OpenSSL January 2026 Security Update: CMS and PKCS#12 Buffer Overflows
https://www.reddit.com/r/netsec/comments/1qonkwp/openssl_january_2026_security_update_cms_and/
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
Judge dismisses case alleging use of Flock cameras in Virginia city is unconstitutional
https://therecord.media/judge-dismisses-flock-case
UK plans sweeping overhaul of policing amid surge in online crimes
https://therecord.media/uk-national-policing-overhaul-cybercrime
Pwn2Own: Researchers Earn $1 Million for 76 Zero-Days
https://www.trendmicro.com/en_us/research/26/a/pwn2own-researchers-earn-1-million-for-76-zero-days.html
Nike probes potential cyber incident after hackers claim data leak
https://therecord.media/nike-probes-alleged-cyber-incident
How I sped up exploit validation in Repeater using Burp AI
https://portswigger.net/blog/how-i-sped-up-exploit-validation-in-repeater-using-burp-ai
OpenSSL January 2026 Security Update: CMS and PKCS#12 Buffer Overflows
https://www.reddit.com/r/netsec/comments/1qonkwp/openssl_january_2026_security_update_cms_and/
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
therecord.media
Judge dismisses case alleging use of Flock cameras in Virginia city is unconstitutional
A Virginia federal judge ruled that the warrantless use of Flock automated license plate cameras in Norfolk, Virginia, is constitutional and dismissed a case seeking to eradicate them.
Top Security News for Today
UK leaders warned country risks 'absorbing' cyber and hybrid attacks without offensive deterrence
https://therecord.media/uk-government-warned-cyber-hybrid-threats-offensive-operations
Cyberattack on Poland’s power grid hit around 30 energy facilities, new report says
https://therecord.media/poland-electrical-grid-cyberattack-30-facilities-affected
Teen swatting suspects arrested in Hungary and Romania
https://therecord.media/teen-swatting-doxxing-suspects-arrested-hungary-romania
Artificial Intelligence in Spanish Gastroenterology: high expectations, limited integration. A national survey
https://arxiv.org/abs/2601.17011
Cyber Security Report 2026
https://research.checkpoint.com/2026/cyber-security-report-2026/
FTC commissioner says online age verification ‘offers a better way’ to protect kids
https://therecord.media/ftc-commissioner-age-verification-children-online
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
UK leaders warned country risks 'absorbing' cyber and hybrid attacks without offensive deterrence
https://therecord.media/uk-government-warned-cyber-hybrid-threats-offensive-operations
Cyberattack on Poland’s power grid hit around 30 energy facilities, new report says
https://therecord.media/poland-electrical-grid-cyberattack-30-facilities-affected
Teen swatting suspects arrested in Hungary and Romania
https://therecord.media/teen-swatting-doxxing-suspects-arrested-hungary-romania
Artificial Intelligence in Spanish Gastroenterology: high expectations, limited integration. A national survey
https://arxiv.org/abs/2601.17011
Cyber Security Report 2026
https://research.checkpoint.com/2026/cyber-security-report-2026/
FTC commissioner says online age verification ‘offers a better way’ to protect kids
https://therecord.media/ftc-commissioner-age-verification-children-online
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
therecord.media
UK leaders warned country risks 'absorbing' cyber and hybrid attacks without offensive deterrence
The government must do more to actively disrupt and deter foreign cyber and hybrid threats, U.K. ministers were told at at a parliamentary hearing.
Top Security News for Today
Notorious Russia-based RAMP cybercrime forum apparently seized by FBI
https://therecord.media/ramp-cybercrime-forum-appreantly-seized-fbi
One-click RCE on Clawd/Moltbot in 2 hours with an AI Hacking Agent
https://www.reddit.com/r/netsec/comments/1qq5h3u/oneclick_rce_on_clawdmoltbot_in_2_hours_with_an/
Supply chain attack on eScan antivirus: detecting and remediating malicious updates
https://securelist.com/escan-supply-chain-attack/118688/
Feds get second guilty plea in takedown of dark web Empire Market
https://therecord.media/feds-second-guilty-plea
Cyberattack on large Russian bread factory disrupts supply deliveries
https://therecord.media/cyberattack-russian-bread-factory-supply-disruptions
New Microsoft Data Security Index report explores secure AI adoption to protect sensitive data
https://www.microsoft.com/en-us/security/blog/2026/01/29/new-microsoft-data-security-index-report-explores-secure-ai-adoption-to-protect-sensitive-data/
French government agency fined nearly $6 million for data security failings
https://therecord.media/france-travail-fined-cnil
New Apple feature will block cell networks from capturing precise location data
https://therecord.media/new-apple-feature-block-location-data-cell-networks
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
Notorious Russia-based RAMP cybercrime forum apparently seized by FBI
https://therecord.media/ramp-cybercrime-forum-appreantly-seized-fbi
One-click RCE on Clawd/Moltbot in 2 hours with an AI Hacking Agent
https://www.reddit.com/r/netsec/comments/1qq5h3u/oneclick_rce_on_clawdmoltbot_in_2_hours_with_an/
Supply chain attack on eScan antivirus: detecting and remediating malicious updates
https://securelist.com/escan-supply-chain-attack/118688/
Feds get second guilty plea in takedown of dark web Empire Market
https://therecord.media/feds-second-guilty-plea
Cyberattack on large Russian bread factory disrupts supply deliveries
https://therecord.media/cyberattack-russian-bread-factory-supply-disruptions
New Microsoft Data Security Index report explores secure AI adoption to protect sensitive data
https://www.microsoft.com/en-us/security/blog/2026/01/29/new-microsoft-data-security-index-report-explores-secure-ai-adoption-to-protect-sensitive-data/
French government agency fined nearly $6 million for data security failings
https://therecord.media/france-travail-fined-cnil
New Apple feature will block cell networks from capturing precise location data
https://therecord.media/new-apple-feature-block-location-data-cell-networks
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
Reddit
From the netsec community on Reddit: One-click RCE on Clawd/Moltbot in 2 hours with an AI Hacking Agent
Explore this post and more from the netsec community
Top Security News for Today
Dating-app giants investigate incidents after cybercriminals claim to steal data
https://therecord.media/bumble-match-dating-apps-data-breaches
How We Exploited Qodo: From a PR Comment to RCE and an AWS Admin Key - Leaked Twice
https://www.reddit.com/r/netsec/comments/1qr7g3t/how_we_exploited_qodo_from_a_pr_comment_to_rce/
AIs Are Getting Better at Finding and Exploiting Security Vulnerabilities
https://www.schneier.com/blog/archives/2026/01/ais-are-getting-better-at-finding-and-exploiting-security-vulnerabilities.html
Coupang CEO questioned by police investigating obstruction of probe into data breach
https://therecord.media/coupang-acting-CEO-questioned-police-investigating-data-breach
Case study: Securing AI application supply chains
https://www.microsoft.com/en-us/security/blog/2026/01/30/case-study-securing-ai-application-supply-chains/
Ex-Google engineer convicted of insider exfiltration of AI trade secrets
https://www.reddit.com/r/netsec/comments/1qror1e/exgoogle_engineer_convicted_of_insider/
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
Dating-app giants investigate incidents after cybercriminals claim to steal data
https://therecord.media/bumble-match-dating-apps-data-breaches
How We Exploited Qodo: From a PR Comment to RCE and an AWS Admin Key - Leaked Twice
https://www.reddit.com/r/netsec/comments/1qr7g3t/how_we_exploited_qodo_from_a_pr_comment_to_rce/
AIs Are Getting Better at Finding and Exploiting Security Vulnerabilities
https://www.schneier.com/blog/archives/2026/01/ais-are-getting-better-at-finding-and-exploiting-security-vulnerabilities.html
Coupang CEO questioned by police investigating obstruction of probe into data breach
https://therecord.media/coupang-acting-CEO-questioned-police-investigating-data-breach
Case study: Securing AI application supply chains
https://www.microsoft.com/en-us/security/blog/2026/01/30/case-study-securing-ai-application-supply-chains/
Ex-Google engineer convicted of insider exfiltration of AI trade secrets
https://www.reddit.com/r/netsec/comments/1qror1e/exgoogle_engineer_convicted_of_insider/
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
therecord.media
Dating-app giants investigate incidents after cybercriminals claim to steal data
Bumble and Match said they each recently responded to network intrusions. The group ShinyHunters claimed to have stolen data from both.
Top Security News for Today
Glitches to Guests: Fault Injection, Spectre in VMs, and GPU Fuzzing
https://www.reddit.com/r/lowlevel/comments/1qs1pcn/glitches_to_guests_fault_injection_spectre_in_vms/
StopLamers Investigation: From IRC Wars to Android Backdoors
https://www.reddit.com/r/netsec/comments/1qs68tn/stoplamers_investigation_from_irc_wars_to_android/
The Epistemic Planning Domain Definition Language: Official Guideline
https://arxiv.org/abs/2601.20969
Magellan: Autonomous Discovery of Novel Compiler Optimization Heuristics with AlphaEvolve
https://arxiv.org/abs/2601.21096
Scaling Embeddings Outperforms Scaling Experts in Language Models
https://arxiv.org/abs/2601.21204
DOJ releases details alleged talented hacker working for Jeffrey Epstein
https://www.reddit.com/r/netsec/comments/1qsmx92/doj_releases_details_alleged_talented_hacker/
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
Glitches to Guests: Fault Injection, Spectre in VMs, and GPU Fuzzing
https://www.reddit.com/r/lowlevel/comments/1qs1pcn/glitches_to_guests_fault_injection_spectre_in_vms/
StopLamers Investigation: From IRC Wars to Android Backdoors
https://www.reddit.com/r/netsec/comments/1qs68tn/stoplamers_investigation_from_irc_wars_to_android/
The Epistemic Planning Domain Definition Language: Official Guideline
https://arxiv.org/abs/2601.20969
Magellan: Autonomous Discovery of Novel Compiler Optimization Heuristics with AlphaEvolve
https://arxiv.org/abs/2601.21096
Scaling Embeddings Outperforms Scaling Experts in Language Models
https://arxiv.org/abs/2601.21204
DOJ releases details alleged talented hacker working for Jeffrey Epstein
https://www.reddit.com/r/netsec/comments/1qsmx92/doj_releases_details_alleged_talented_hacker/
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
Reddit
From the lowlevel community on Reddit: Glitches to Guests: Fault Injection, Spectre in VMs, and GPU Fuzzing
Explore this post and more from the lowlevel community
Top Security News for Today
DOJ releases details alleged talented hacker working for Jeffrey Epstein
https://www.reddit.com/r/netsec/comments/1qsmx92/doj_releases_details_alleged_talented_hacker/
We ran a live red-team vs blue-team test on autonomous OpenClaw agents
https://www.reddit.com/r/netsec/comments/1qsy9tk/we_ran_a_live_redteam_vs_blueteam_test_on/
1-Click RCE in OpenClaw/Moltbot/ClawdBot
https://www.reddit.com/r/netsec/comments/1qt5wms/1click_rce_in_openclawmoltbotclawdbot/
Notepad++ Hijacked by State-Sponsored Hackers
https://www.reddit.com/r/netsec/comments/1qtif11/notepad_hijacked_by_statesponsored_hackers/
Your Phone Silently Sends GPS to Your Carrier via RRLP/LPP – Here's How the Control Plane Positioning Works
https://www.reddit.com/r/netsec/comments/1qtnr2m/your_phone_silently_sends_gps_to_your_carrier_via/
ShellForge: Adversarial Co-Evolution of Webshell Generation and Multi-View Detection for Robust Webshell Defense
https://arxiv.org/abs/2601.22434
MemeChain: A Multimodal Cross-Chain Dataset for Meme Coin Forensics and Risk Analysis
https://arxiv.org/abs/2601.22185
A Systematic Literature Review on LLM Defenses Against Prompt Injection and Jailbreaking: Expanding NIST Taxonomy
https://arxiv.org/abs/2601.22240
MirrorMark: A Distortion-Free Multi-Bit Watermark for Large Language Models
https://arxiv.org/abs/2601.22246
Rethinking Anonymity Claims in Synthetic Data Generation: A Model-Centric Privacy Attack Perspective
https://arxiv.org/abs/2601.22434
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
DOJ releases details alleged talented hacker working for Jeffrey Epstein
https://www.reddit.com/r/netsec/comments/1qsmx92/doj_releases_details_alleged_talented_hacker/
We ran a live red-team vs blue-team test on autonomous OpenClaw agents
https://www.reddit.com/r/netsec/comments/1qsy9tk/we_ran_a_live_redteam_vs_blueteam_test_on/
1-Click RCE in OpenClaw/Moltbot/ClawdBot
https://www.reddit.com/r/netsec/comments/1qt5wms/1click_rce_in_openclawmoltbotclawdbot/
Notepad++ Hijacked by State-Sponsored Hackers
https://www.reddit.com/r/netsec/comments/1qtif11/notepad_hijacked_by_statesponsored_hackers/
Your Phone Silently Sends GPS to Your Carrier via RRLP/LPP – Here's How the Control Plane Positioning Works
https://www.reddit.com/r/netsec/comments/1qtnr2m/your_phone_silently_sends_gps_to_your_carrier_via/
ShellForge: Adversarial Co-Evolution of Webshell Generation and Multi-View Detection for Robust Webshell Defense
https://arxiv.org/abs/2601.22434
MemeChain: A Multimodal Cross-Chain Dataset for Meme Coin Forensics and Risk Analysis
https://arxiv.org/abs/2601.22185
A Systematic Literature Review on LLM Defenses Against Prompt Injection and Jailbreaking: Expanding NIST Taxonomy
https://arxiv.org/abs/2601.22240
MirrorMark: A Distortion-Free Multi-Bit Watermark for Large Language Models
https://arxiv.org/abs/2601.22246
Rethinking Anonymity Claims in Synthetic Data Generation: A Model-Centric Privacy Attack Perspective
https://arxiv.org/abs/2601.22434
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
Reddit
From the netsec community on Reddit: DOJ releases details alleged talented hacker working for Jeffrey Epstein
Explore this post and more from the netsec community