Category: Bleeping Computer

ACF plugin bug gives hackers admin on 50,000 WordPress sites
21
Jan
2026

ACF plugin bug gives hackers admin on 50,000 WordPress sites

A critical-severity vulnerability in the Advanced Custom Fields: Extended (ACF Extended) plugin for WordPress can be exploited remotely by unauthenticated…

Share: X : ACF plugin bug gives hackers admin on 50,000 WordPress sitesFacebook : ACF plugin bug gives hackers admin on 50,000 WordPress sitesLinkedin : ACF plugin bug gives hackers admin on 50,000 WordPress sitesReddit : ACF plugin bug gives hackers admin on 50,000 WordPress sitesTelegram : ACF plugin bug gives hackers admin on 50,000 WordPress sitesWhatsApp : ACF plugin bug gives hackers admin on 50,000 WordPress sitesEmail : ACF plugin bug gives hackers admin on 50,000 WordPress sites
VoidLink cloud malware shows clear signs of being AI-generated
20
Jan
2026

VoidLink cloud malware shows clear signs of being AI-generated

The recently discovered cloud-focused VoidLink malware framework is believed to have been developed by a single person with the help…

Share: X : VoidLink cloud malware shows clear signs of being AI-generatedFacebook : VoidLink cloud malware shows clear signs of being AI-generatedLinkedin : VoidLink cloud malware shows clear signs of being AI-generatedReddit : VoidLink cloud malware shows clear signs of being AI-generatedTelegram : VoidLink cloud malware shows clear signs of being AI-generatedWhatsApp : VoidLink cloud malware shows clear signs of being AI-generatedEmail : VoidLink cloud malware shows clear signs of being AI-generated
European Union flag
20
Jan
2026

EU plans cybersecurity overhaul to block foreign high-risk suppliers

The European Commission has proposed new cybersecurity legislation mandating the removal of high-risk suppliers to secure telecommunications networks and strengthening…

Share: X : EU plans cybersecurity overhaul to block foreign high-risk suppliersFacebook : EU plans cybersecurity overhaul to block foreign high-risk suppliersLinkedin : EU plans cybersecurity overhaul to block foreign high-risk suppliersReddit : EU plans cybersecurity overhaul to block foreign high-risk suppliersTelegram : EU plans cybersecurity overhaul to block foreign high-risk suppliersWhatsApp : EU plans cybersecurity overhaul to block foreign high-risk suppliersEmail : EU plans cybersecurity overhaul to block foreign high-risk suppliers
Gemini
20
Jan
2026

Gemini AI assistant tricked into leaking Google Calendar data

Using only natural language instructions, researchers were able to bypass Google Gemini’s defenses against malicious prompt injection and create misleading events…

Share: X : Gemini AI assistant tricked into leaking Google Calendar dataFacebook : Gemini AI assistant tricked into leaking Google Calendar dataLinkedin : Gemini AI assistant tricked into leaking Google Calendar dataReddit : Gemini AI assistant tricked into leaking Google Calendar dataTelegram : Gemini AI assistant tricked into leaking Google Calendar dataWhatsApp : Gemini AI assistant tricked into leaking Google Calendar dataEmail : Gemini AI assistant tricked into leaking Google Calendar data
Mouse
20
Jan
2026

Microsoft PowerToys adds new CursorWrap mouse ‘teleport’ tool

Microsoft has released PowerToys 0.97, with a new mouse utility for multi-monitor setups and significant improvements to the Command Palette…

Share: X : Microsoft PowerToys adds new CursorWrap mouse ‘teleport’ toolFacebook : Microsoft PowerToys adds new CursorWrap mouse ‘teleport’ toolLinkedin : Microsoft PowerToys adds new CursorWrap mouse ‘teleport’ toolReddit : Microsoft PowerToys adds new CursorWrap mouse ‘teleport’ toolTelegram : Microsoft PowerToys adds new CursorWrap mouse ‘teleport’ toolWhatsApp : Microsoft PowerToys adds new CursorWrap mouse ‘teleport’ toolEmail : Microsoft PowerToys adds new CursorWrap mouse ‘teleport’ tool
Threat actor behind a mask
20
Jan
2026

Make Identity Threat Detection your security strategy for 2026

Attackers no longer break in, they log in. To defend against compromised accounts and insider threats, organizations need in-depth visibility…

Share: X : Make Identity Threat Detection your security strategy for 2026Facebook : Make Identity Threat Detection your security strategy for 2026Linkedin : Make Identity Threat Detection your security strategy for 2026Reddit : Make Identity Threat Detection your security strategy for 2026Telegram : Make Identity Threat Detection your security strategy for 2026WhatsApp : Make Identity Threat Detection your security strategy for 2026Email : Make Identity Threat Detection your security strategy for 2026
Alert fatigue
20
Jan
2026

Aligning cybersecurity purchases with what your SOC team needs

Security teams are expected to detect and respond to attacks in real time—but often with tools they didn’t choose and…

Share: X : Aligning cybersecurity purchases with what your SOC team needsFacebook : Aligning cybersecurity purchases with what your SOC team needsLinkedin : Aligning cybersecurity purchases with what your SOC team needsReddit : Aligning cybersecurity purchases with what your SOC team needsTelegram : Aligning cybersecurity purchases with what your SOC team needsWhatsApp : Aligning cybersecurity purchases with what your SOC team needsEmail : Aligning cybersecurity purchases with what your SOC team needs
Alert fatigue
20
Jan
2026

Why execs don’t buy SOC teams the tools they need

Security teams are expected to detect and respond to attacks in real time—but often with tools they didn’t choose and…

Share: X : Why execs don’t buy SOC teams the tools they needFacebook : Why execs don’t buy SOC teams the tools they needLinkedin : Why execs don’t buy SOC teams the tools they needReddit : Why execs don’t buy SOC teams the tools they needTelegram : Why execs don’t buy SOC teams the tools they needWhatsApp : Why execs don’t buy SOC teams the tools they needEmail : Why execs don’t buy SOC teams the tools they need
GPT
20
Jan
2026

ChatGPT Go now unlocks unlimited access to GPT-5.2 Instant for $8

ChatGPT Go is finally worth your money, as OpenAI has almost doubled the usage limits and enabled ultimate access to…

Share: X : ChatGPT Go now unlocks unlimited access to GPT-5.2 Instant for $8Facebook : ChatGPT Go now unlocks unlimited access to GPT-5.2 Instant for $8Linkedin : ChatGPT Go now unlocks unlimited access to GPT-5.2 Instant for $8Reddit : ChatGPT Go now unlocks unlimited access to GPT-5.2 Instant for $8Telegram : ChatGPT Go now unlocks unlimited access to GPT-5.2 Instant for $8WhatsApp : ChatGPT Go now unlocks unlimited access to GPT-5.2 Instant for $8Email : ChatGPT Go now unlocks unlimited access to GPT-5.2 Instant for $8
GPT
20
Jan
2026

You can get ChatGPT’s $20 Plus subscription for free for a limited time

OpenAI is offering ChatGPT Plus, which costs $20 in the United States, for free, but the offer is valid for…

Share: X : You can get ChatGPT’s $20 Plus subscription for free for a limited timeFacebook : You can get ChatGPT’s $20 Plus subscription for free for a limited timeLinkedin : You can get ChatGPT’s $20 Plus subscription for free for a limited timeReddit : You can get ChatGPT’s $20 Plus subscription for free for a limited timeTelegram : You can get ChatGPT’s $20 Plus subscription for free for a limited timeWhatsApp : You can get ChatGPT’s $20 Plus subscription for free for a limited timeEmail : You can get ChatGPT’s $20 Plus subscription for free for a limited time
Fake ad blocker extension crashes the browser for ClickFix attacks
20
Jan
2026

Fake ad blocker extension crashes the browser for ClickFix attacks

A malvertising campaign is using a fake ad-blocking Chrome and Edge extension named NexShield that intentionally crashes the browser in preparation for…

Share: X : Fake ad blocker extension crashes the browser for ClickFix attacksFacebook : Fake ad blocker extension crashes the browser for ClickFix attacksLinkedin : Fake ad blocker extension crashes the browser for ClickFix attacksReddit : Fake ad blocker extension crashes the browser for ClickFix attacksTelegram : Fake ad blocker extension crashes the browser for ClickFix attacksWhatsApp : Fake ad blocker extension crashes the browser for ClickFix attacksEmail : Fake ad blocker extension crashes the browser for ClickFix attacks
New password spraying attacks target Cisco, PAN VPN gateways
20
Jan
2026

New PDFSider Windows malware deployed on Fortune 100 firm’s network

Ransomware attackers targeting a Fortune 100 company in the finance sector used a new malware strain, dubbed PDFSider, to deliver…

Share: X : New PDFSider Windows malware deployed on Fortune 100 firm’s networkFacebook : New PDFSider Windows malware deployed on Fortune 100 firm’s networkLinkedin : New PDFSider Windows malware deployed on Fortune 100 firm’s networkReddit : New PDFSider Windows malware deployed on Fortune 100 firm’s networkTelegram : New PDFSider Windows malware deployed on Fortune 100 firm’s networkWhatsApp : New PDFSider Windows malware deployed on Fortune 100 firm’s networkEmail : New PDFSider Windows malware deployed on Fortune 100 firm’s network