New Phishing Attack Exploits Vercel to Host and Deliver Remote Access Malware
27
Jan
2026

New Phishing Attack Exploits Vercel to Host and Deliver Remote Access Malware

A new phishing campaign abusing the Vercel hosting platform has been active since at least November 2025 and is becoming…

27
Jan
2026

Microsoft Emergency Fix Released For Exploited Office Zero-Day

Microsoft has released an emergency fix for an actively-exploited zero-day vulnerability affecting Microsoft Office. The vulnerability, CVE-2026-21509, is labeled a…

report-ad-banner
27
Jan
2026

Microsoft Emergency Fix Released For Exploited Office Zero-Day

Microsoft has released an emergency fix for an actively-exploited zero-day vulnerability affecting Microsoft Office. The vulnerability, CVE-2026-21509, is labeled a…

Apache Hadoop Flaw Could Trigger System Crashes or Data Corruption
26
Jan
2026

Apache Hadoop Flaw Could Trigger System Crashes or Data Corruption

A moderate out-of-bounds write vulnerability in Apache Hadoop’s HDFS native client that could allow attackers to trigger system crashes or…

Derek B. Johnson
26
Jan
2026

Malicious ChatGPT Chrome extensions are stealing account credentials

ChatGPT users beware: your browser extensions could be used to steal your accounts and identity. LayerX Research has identified at…

SyncFuture Campaign Abuses Enterprise Security Tools to Deploy Malware
26
Jan
2026

SyncFuture Campaign Abuses Enterprise Security Tools to Deploy Malware

A sophisticated, multi-stage espionage campaign targeting Indian residents through phishing emails impersonating the Income Tax Department. The attack chain, tracked…

report-ad-banner
26
Jan
2026

ShinyHunters, CL0P Return With New Claimed Victims

The ShinyHunters and CL0P threat groups have returned with new claimed victims. ShinyHunters has resurfaced with a new onion-based data…

Microsoft revokes 200+ certificates abused by Vanilla Tempest in fake Teams campaign
26
Jan
2026

Emergency Microsoft update fixes in-the-wild Office zero-day

Emergency Microsoft update fixes in-the-wild Office zero-day Pierluigi Paganini January 26, 2026 Microsoft issued emergency updates to fix an actively…

Microsoft Issues KB5078127 OOB Patch After Reports of Outlook Freezing and File System Instability
26
Jan
2026

Microsoft Issues KB5078127 OOB Patch After Reports of Outlook Freezing and File System Instability

Microsoft has released two critical out-of-band (OOB) security patches targeting widespread issues affecting Windows 11 users following January’s monthly security…

Microsoft Office
26
Jan
2026

Microsoft patches actively exploited Office zero-day vulnerability

Microsoft has released emergency out-of-band security updates to patch a high-severity Microsoft Office zero-day vulnerability exploited in attacks. The security…

NetSupport Manager 0-Day Vulnerabilities Enable Remote Code Execution
26
Jan
2026

NetSupport Manager 0-Day Vulnerabilities Enable Remote Code Execution

Two critical 0-day vulnerabilities in NetSupport Manager that, when chained, allow unauthenticated remote code execution (RCE). The vulnerabilities were discovered…

Fake Microsoft Teams Billing Phishing Alerts Reach 6,135 Users via 12,866 Emails
26
Jan
2026

Fake Microsoft Teams Billing Phishing Alerts Reach 6,135 Users via 12,866 Emails – Hackread – Cybersecurity News, Data Breaches, AI, and More

Scammers are using official Microsoft Teams notifications to send fake billing notices. Check Point Research reveals how this phone-based scam…