UK government to develop AI tutoring tools
28
Jan
2026

UK government to develop AI tutoring tools

The UK government is working with industry and teachers to develop an artificial intelligence (AI) tutoring tool to give more…

Fortinet fixed two critical flaws in FortiFone and FortiSIEM
28
Jan
2026

Fortinet patches actively exploited FortiOS SSO auth bypass (CVE-2026-24858)

Fortinet patches actively exploited FortiOS SSO auth bypass (CVE-2026-24858) Pierluigi Paganini January 28, 2026 Fortinet released fixes for a critical…

Risky shadow AI use remains widespread
28
Jan
2026

AI tools break quickly and in serious ways, underscoring need for governance

Listen to the article 3 min This audio is auto-generated. Please let us know if you have feedback. Dive Brief:…

TP-Link Archer Vulnerability Let Attackers Take Control Over the Router
28
Jan
2026

TP-Link Archer Vulnerability Let Attackers Take Control Over the Router

A critical security advisory has been released for a command injection vulnerability affecting the Archer MR600 v5 router. The flaw,…

Gemini MCP Tool 0-Day Vulnerability Exposes Systems to Remote Code Execution
28
Jan
2026

Gemini MCP Tool 0-Day Vulnerability Exposes Systems to Remote Code Execution

A critical zero-day vulnerability has been disclosed in the Gemini MCP Tool, enabling unauthenticated remote attackers to execute arbitrary code…

Hackers Using WinRAR Vulnerability CVE-2025-8088 to Hijack PCs Globally
28
Jan
2026

Hackers Still Using Patched WinRAR Flaw for Malware Drops, Warns Google – Hackread – Cybersecurity News, Data Breaches, AI, and More

The Google Threat Intelligence Group (GTIG) warns that nation-state actors and financially motivated threat actors are exploiting a flaw in…

SolarWinds
28
Jan
2026

SolarWinds warns of critical Web Help Desk RCE, auth bypass flaws

SolarWinds has released security updates to patch critical authentication bypass and remote command execution vulnerabilities in its Web Help Desk…

ZAP JavaScript Engine Memory Leak Issue Impacts Active Scan Usage
28
Jan
2026

ZAP JavaScript Engine Memory Leak Issue Impacts Active Scan Usage

The ZAP (Zed Attack Proxy) project, a widely used open-source web application security scanner, has disclosed a critical memory leak…

eSkimming Attacks Surge with Evolving Tactics and Ongoing Recovery Challenges
28
Jan
2026

eSkimming Attacks Surge with Evolving Tactics and Ongoing Recovery Challenges

A new longitudinal study of Magecart-style eSkimming attacks overturns the assumption that discovery equals recovery. Instead of being a one-time…

WinRAR vulnerability still a go-to tool for hackers, Mandiant warns
28
Jan
2026

WinRAR vulnerability still a go-to tool for hackers, Mandiant warns

State-sponsored hackers and financially motivated attackers continue leveraging a critical WinRAR vulnerability (CVE-2025-8088) that’s been fixed over half a year…

data thief
28
Jan
2026

Malicious Chrome extensions can spy on your ChatGPT chats

Researchers discovered 16 malicious browser extensions for Google Chrome and Microsoft Edge that steal ChatGPT session tokens, giving attackers access…

Mustang Panda Deploys Updated COOLCLIENT Backdoor in Government Cyber Attacks
28
Jan
2026

Mustang Panda Deploys Updated COOLCLIENT Backdoor in Government Cyber Attacks

Threat actors with ties to China have been observed using an updated version of a backdoor called COOLCLIENT in cyber…