TheHackerNews

CISA Adds Actively Exploited VMware vCenter Flaw CVE-2024-37079 to KEV Catalog

Ravie LakshmananJan 24, 2026Vulnerability / Enterprise Security The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Friday added a critical security flaw affecting Broadcom VMware…

January 24, 2026 Cybernoz 2 min read

TheHackerNews

Who Approved This Agent? Rethinking Access, Accountability, and Risk in the Age of AI Agents

AI agents are accelerating how work gets done. They schedule meetings, access data, trigger workflows, write code, and take action in real time, pushing productivity…

January 24, 2026 Cybernoz 6 min read

TheHackerNews

New DynoWiper Malware Used in Attempted Sandworm Attack on Polish Power Sector

Ravie LakshmananJan 24, 2026Malware / Critical Infrastructure The Russian nation-state hacking group known as Sandworm has been attributed to what has been described as the…

January 24, 2026 Cybernoz 2 min read

TheHackerNews

CISA Updates KEV Catalog with Four Actively Exploited Software Vulnerabilities

Ravie LakshmananJan 23, 2026Vulnerability / Software Security The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Thursday added four security flaws to its Known Exploited…

January 23, 2026 Cybernoz 2 min read

TheHackerNews

Phishing Attack Uses Stolen Credentials to Install LogMeIn RMM for Persistent Access

Ravie LakshmananJan 23, 2026Email Security / Endpoint Security Cybersecurity researchers have disclosed details of a new dual-vector campaign that leverages stolen credentials to deploy legitimate…

January 23, 2026 Cybernoz 2 min read

TheHackerNews

Fortinet Confirms Active FortiCloud SSO Bypass on Fully Patched FortiGate Firewalls

Ravie LakshmananJan 23, 2026Network Security / Vulnerability Fortinet has officially confirmed that it’s working to completely plug a FortiCloud SSO authentication bypass vulnerability following reports…

January 23, 2026 Cybernoz 2 min read

TheHackerNews

TikTok Forms U.S. Joint Venture to Continue Operations Under 2025 Executive Order

Ravie LakshmananJan 23, 2026Regulatory Compliance / National Security TikTok on Friday officially announced that it formed a joint venture that will allow the hugely popular…

January 23, 2026 Cybernoz 2 min read

TheHackerNews

Microsoft Flags Multi-Stage AitM Phishing and BEC Attacks Targeting Energy Firms

Microsoft has warned of a multi‑stage adversary‑in‑the‑middle (AitM) phishing and business email compromise (BEC) campaign targeting multiple organizations in the energy sector. “The campaign abused…

January 23, 2026 Cybernoz 5 min read

TheHackerNews

New Osiris Ransomware Emerges as New Strain Using POORTRY Driver in BYOVD Attack

Cybersecurity researchers have disclosed details of a new ransomware family called Osiris that targeted a major food service franchisee operator in Southeast Asia in November…

January 22, 2026 Cybernoz 5 min read

TheHackerNews

Critical GNU InetUtils telnetd Flaw Lets Attackers Bypass Login and Gain Root Access

Ravie LakshmananJan 22, 2026Vulnerability / Linux A critical security flaw has been disclosed in the GNU InetUtils telnet daemon (telnetd) that went unnoticed for nearly…

January 22, 2026 Cybernoz 2 min read

TheHackerNews

Filling the Most Common Gaps in Google Workspace Security

The Hacker NewsJan 22, 2026Email Security / SaaS Security Security teams at agile, fast-growing companies often have the same mandate: secure the business without slowing…

January 22, 2026 Cybernoz 5 min read

TheHackerNews

SmarterMail Auth Bypass Exploited in the Wild Two Days After Patch Release

Ravie LakshmananJan 22, 2026Vulnerability / Email Security A new security flaw in SmarterTools SmarterMail email software has come under active exploitation in the wild, two…

January 22, 2026 Cybernoz 3 min read