New Osiris Ransomware Emerges as New Strain Using POORTRY Driver in BYOVD Attack
Cybersecurity researchers have disclosed details of a new ransomware family called Osiris that targeted a major food service franchisee operator...
AndyC
Andy Curtis is an award-winning security consultant, researcher and public speaker. He has been working in the computer security industry since the early 1990s, having been employed by state and federal government, leading healthcare and banking providers across three continents. He has given talks about computer security for some of the world’s largest companies, worked with law enforcement agencies on investigations into hacking groups, and is a regular voice on TV and radio explaining IT security threats.
Watering Hole Attack Targets EmEditor Users with Information-Stealing Malware
Based on its geofencing behavior, we assess that the threat actors are likely of Russian origin, or those from the...
NDSS 2025 – Rethinking Trust In Forge-Based Git Security
Session 9D: Github + OSN Security Authors, Creators & Presenters: Aditya Sirish A Yelgundhalli (New York University), Patrick Zielinski (New...
Spotify lawsuit behind shutdown of pirate library domains
A lawsuit filed by Spotify and several major record labels was behind the shutdown of several of Anna’s Archive’s domains...
Nadella warns of AI bubble unless more people use the technology
“I am much more convinced that this is a technology that will actually build on the foundation of cloud and...
Critical SmarterMail vulnerability under attack, no CVE yet
Critical SmarterMail vulnerability under attack, no CVE yet Pierluigi Paganini January 22, 2026 A SmarterMail flaw (WT-2026-0001) is under active...
Halo Security Achieves SOC 2 Type II Compliance, Demonstrating Sustained Security Excellence Over Time
Miami, Florida, January 22nd, 2026, CyberNewsWire Halo Security, a leading provider of external attack surface management and penetration testing services,...
We’ve Reached the “Customers Want Security” Stage, and AI Is Listening
I’ve seen this movie before. That’s why a recent LinkedIn post by Ilya Kabanov stopped me mid-doomscroll. Kabanov described how...
Web Bot Auth: Verifying User Identity & Ensuring Agent Trust Through the Customer Journey
DataDome Bot Protect now supports Web Bot Auth, an emerging IETF authentication standard that enables AI agents to prove their...
Critical GNU InetUtils telnetd Flaw Lets Attackers Bypass Login and Gain Root Access
Ravie LakshmananJan 22, 2026Vulnerability / Linux A critical security flaw has been disclosed in the GNU InetUtils telnet daemon (telnetd)...
ThreatsDay Bulletin: Pixel Zero-Click, Redis RCE, China C2s, RAT Ads, Crypto Scams & 15+ Stories
Ravie LakshmananJan 22, 2026Cybersecurity / Hacking News Most of this week's threats didn't rely on new tricks. They relied on...
Under Armour Ransomware Attack Exposes 72M Email Addresses
Image generated by Google Gemini The Everest ransomware gang has struck again, this time targeting sportswear giant Under Armour in...
Didn’t Request an Instagram Password Reset? Here’s What to Do
If you recently received an unexpected email from Instagram asking you to reset your password, you are not alone. Over...
Arctic Wolf detects surge in automated Fortinet FortiGate firewall configuration attacks
Arctic Wolf detects surge in automated Fortinet FortiGate firewall configuration attacks Pierluigi Paganini January 22, 2026 Arctic Wolf warned of...
U.S. CISA adds a flaw in Cisco Unified Communications products to its Known Exploited Vulnerabilities catalog
U.S. CISA adds a flaw in Cisco Unified Communications products to its Known Exploited Vulnerabilities catalog Pierluigi Paganini January 22,...
