Category: Bleeping Computer

WhatsApp
28
Jan
2026

New WhatsApp lockdown feature protects high-risk users from hackers

Meta has started rolling out a new WhatsApp lockdown-style security feature designed to protect journalists, public figures, and other high-risk…

Share: X : New WhatsApp lockdown feature protects high-risk users from hackersFacebook : New WhatsApp lockdown feature protects high-risk users from hackersLinkedin : New WhatsApp lockdown feature protects high-risk users from hackersReddit : New WhatsApp lockdown feature protects high-risk users from hackersTelegram : New WhatsApp lockdown feature protects high-risk users from hackersWhatsApp : New WhatsApp lockdown feature protects high-risk users from hackersEmail : New WhatsApp lockdown feature protects high-risk users from hackers
GPT
28
Jan
2026

OpenAI’s ChatGPT ad costs are on par with live NFL broadcasts

OpenAI plans to begin rolling out ads on ChatGPT in the United States if you have a free or $8…

Share: X : OpenAI’s ChatGPT ad costs are on par with live NFL broadcastsFacebook : OpenAI’s ChatGPT ad costs are on par with live NFL broadcastsLinkedin : OpenAI’s ChatGPT ad costs are on par with live NFL broadcastsReddit : OpenAI’s ChatGPT ad costs are on par with live NFL broadcastsTelegram : OpenAI’s ChatGPT ad costs are on par with live NFL broadcastsWhatsApp : OpenAI’s ChatGPT ad costs are on par with live NFL broadcastsEmail : OpenAI’s ChatGPT ad costs are on par with live NFL broadcasts
Fortinet
28
Jan
2026

Fortinet blocks exploited FortiCloud SSO zero day until patch is ready

Fortinet has confirmed a new, actively exploited critical FortiCloud single sign-on (SSO) authentication bypass vulnerability, tracked as CVE-2026-24858, and says…

Share: X : Fortinet blocks exploited FortiCloud SSO zero day until patch is readyFacebook : Fortinet blocks exploited FortiCloud SSO zero day until patch is readyLinkedin : Fortinet blocks exploited FortiCloud SSO zero day until patch is readyReddit : Fortinet blocks exploited FortiCloud SSO zero day until patch is readyTelegram : Fortinet blocks exploited FortiCloud SSO zero day until patch is readyWhatsApp : Fortinet blocks exploited FortiCloud SSO zero day until patch is readyEmail : Fortinet blocks exploited FortiCloud SSO zero day until patch is ready
Chinese Mustang Panda hackers deploy infostealers via CoolClient backdoor
28
Jan
2026

Chinese Mustang Panda hackers deploy infostealers via CoolClient backdoor

The Chinese espionage threat group Mustang Panda has updated its CoolClient backdoor to a new variant that can steal login data…

Share: X : Chinese Mustang Panda hackers deploy infostealers via CoolClient backdoorFacebook : Chinese Mustang Panda hackers deploy infostealers via CoolClient backdoorLinkedin : Chinese Mustang Panda hackers deploy infostealers via CoolClient backdoorReddit : Chinese Mustang Panda hackers deploy infostealers via CoolClient backdoorTelegram : Chinese Mustang Panda hackers deploy infostealers via CoolClient backdoorWhatsApp : Chinese Mustang Panda hackers deploy infostealers via CoolClient backdoorEmail : Chinese Mustang Panda hackers deploy infostealers via CoolClient backdoor
WinRAR path traversal flaw still exploited by numerous hackers
27
Jan
2026

WinRAR path traversal flaw still exploited by numerous hackers

Multiple threat actors, both state-sponsored and financially motivated, are exploiting the CVE-2025-8088 high-severity vulnerability in WinRAR for initial access and to deliver various…

Share: X : WinRAR path traversal flaw still exploited by numerous hackersFacebook : WinRAR path traversal flaw still exploited by numerous hackersLinkedin : WinRAR path traversal flaw still exploited by numerous hackersReddit : WinRAR path traversal flaw still exploited by numerous hackersTelegram : WinRAR path traversal flaw still exploited by numerous hackersWhatsApp : WinRAR path traversal flaw still exploited by numerous hackersEmail : WinRAR path traversal flaw still exploited by numerous hackers
Bank ATMs
27
Jan
2026

US charges 31 more suspects linked to ATM malware attacks

A Nebraska federal grand jury charged 31 additional defendants for their involvement in an ATM jackpotting operation allegedly orchestrated by…

Share: X : US charges 31 more suspects linked to ATM malware attacksFacebook : US charges 31 more suspects linked to ATM malware attacksLinkedin : US charges 31 more suspects linked to ATM malware attacksReddit : US charges 31 more suspects linked to ATM malware attacksTelegram : US charges 31 more suspects linked to ATM malware attacksWhatsApp : US charges 31 more suspects linked to ATM malware attacksEmail : US charges 31 more suspects linked to ATM malware attacks
Critical sandbox escape flaw discovered in popular vm2 NodeJS library
27
Jan
2026

Critical sandbox escape flaw found in popular vm2 NodeJS library

A critical-severity vulnerability in the vm2 Node.js sandbox library, tracked as CVE-2026-22709, allows escaping the sandbox and executing arbitrary code on the…

Share: X : Critical sandbox escape flaw found in popular vm2 NodeJS libraryFacebook : Critical sandbox escape flaw found in popular vm2 NodeJS libraryLinkedin : Critical sandbox escape flaw found in popular vm2 NodeJS libraryReddit : Critical sandbox escape flaw found in popular vm2 NodeJS libraryTelegram : Critical sandbox escape flaw found in popular vm2 NodeJS libraryWhatsApp : Critical sandbox escape flaw found in popular vm2 NodeJS libraryEmail : Critical sandbox escape flaw found in popular vm2 NodeJS library
Nike
27
Jan
2026

Nike investigates data breach after extortion gang leaks files

Nike is investigating what it described as a “potential cyber security incident” after the World Leaks ransomware gang leaked 1.4…

Share: X : Nike investigates data breach after extortion gang leaks filesFacebook : Nike investigates data breach after extortion gang leaks filesLinkedin : Nike investigates data breach after extortion gang leaks filesReddit : Nike investigates data breach after extortion gang leaks filesTelegram : Nike investigates data breach after extortion gang leaks filesWhatsApp : Nike investigates data breach after extortion gang leaks filesEmail : Nike investigates data breach after extortion gang leaks files
Flare
27
Jan
2026

The psychology behind modern ransomware extortion

For years, security teams treated ransomware as a technological problem. Security teams hardened backup systems, deployed endpoint detection, practiced incident…

Share: X : The psychology behind modern ransomware extortionFacebook : The psychology behind modern ransomware extortionLinkedin : The psychology behind modern ransomware extortionReddit : The psychology behind modern ransomware extortionTelegram : The psychology behind modern ransomware extortionWhatsApp : The psychology behind modern ransomware extortionEmail : The psychology behind modern ransomware extortion
Email
27
Jan
2026

Over 6,000 SmarterMail servers exposed to automated hijacking attacks

Nonprofit security organization Shadowserver has found over 6,000 SmarterMail servers exposed online and likely vulnerable to attacks exploiting a critical…

Share: X : Over 6,000 SmarterMail servers exposed to automated hijacking attacksFacebook : Over 6,000 SmarterMail servers exposed to automated hijacking attacksLinkedin : Over 6,000 SmarterMail servers exposed to automated hijacking attacksReddit : Over 6,000 SmarterMail servers exposed to automated hijacking attacksTelegram : Over 6,000 SmarterMail servers exposed to automated hijacking attacksWhatsApp : Over 6,000 SmarterMail servers exposed to automated hijacking attacksEmail : Over 6,000 SmarterMail servers exposed to automated hijacking attacks
SoundCloud
27
Jan
2026

SoundCloud data breach impacts 29.8 million accounts

Hackers have stolen the personal and contact information belonging to over 29.8 million SoundCloud user accounts after breaching the audio…

Share: X : SoundCloud data breach impacts 29.8 million accountsFacebook : SoundCloud data breach impacts 29.8 million accountsLinkedin : SoundCloud data breach impacts 29.8 million accountsReddit : SoundCloud data breach impacts 29.8 million accountsTelegram : SoundCloud data breach impacts 29.8 million accountsWhatsApp : SoundCloud data breach impacts 29.8 million accountsEmail : SoundCloud data breach impacts 29.8 million accounts
New malware service guarantees phishing extensions on Chrome web store
27
Jan
2026

New malware service guarantees phishing extensions on Chrome web store

A new malware-as-a-service (MaaS) called ‘Stanley’ promises malicious Chrome extensions that can clear Google’s review process and publish them to the…

Share: X : New malware service guarantees phishing extensions on Chrome web storeFacebook : New malware service guarantees phishing extensions on Chrome web storeLinkedin : New malware service guarantees phishing extensions on Chrome web storeReddit : New malware service guarantees phishing extensions on Chrome web storeTelegram : New malware service guarantees phishing extensions on Chrome web storeWhatsApp : New malware service guarantees phishing extensions on Chrome web storeEmail : New malware service guarantees phishing extensions on Chrome web store