New Android Theft Protection Feature Updates: Smarter, Stronger
Posted by Nataliya Stanetsky, Fabricio Ferracioli, Elliot Sisteron, Irene Ang of the Android Security Team Phone theft is more than...
Security
Amnesia RAT deployed in multi-stage phishing attacks against Russian users
Amnesia RAT deployed in multi-stage phishing attacks against Russian users Pierluigi Paganini January 27, 2026 A multi-stage phishing campaign targets...
Dormakaba flaws allow to access major organizations’ doors
Dormakaba flaws allow to access major organizations’ doors Pierluigi Paganini January 27, 2026 Researchers found over 20 flaws in Dormakaba...
Microsoft Office Zero-Day (CVE-2026-21509) – Emergency Patch Issued for Active Exploitation
Ravie LakshmananJan 27, 2026Zero-Day / Vulnerability Microsoft on Monday issued out-of-band security patches for a high-severity Microsoft Office zero-day vulnerability...
Critical Grist-Core Vulnerability Allows RCE Attacks via Spreadsheet Formulas
Ravie LakshmananJan 27, 2026Vulnerability / Cloud Security A critical security flaw has been disclosed in Grist‑Core, an open-source, self-hosted version...
China-Linked Hackers Have Used the PeckBirdy JavaScript C2 Framework Since 2023
Ravie LakshmananJan 27, 2026Web Security / Malware Cybersecurity researchers have discovered a JScript-based command-and-control (C2) framework called PeckBirdy that has...
Why Cyber Fusion Centers and Zero-Trust Work Better Together
The decade’s security buzzword – zero-trust – has seen significant investments, but intended benefits elude more than six. This is...
Critical CERT-In Advisories – January 2026: SAP, Microsoft, and Atlassian Vulnerabilities
January 2026 was a wake-up month for enterprise security teams. In a single week, CERT-In released three high-severity advisories exposing...
Emergency Microsoft update fixes in-the-wild Office zero-day
Emergency Microsoft update fixes in-the-wild Office zero-day Pierluigi Paganini January 26, 2026 Microsoft issued emergency updates to fix an actively...
Top Authentication Methods for Preventing Data Breaches
Security starts with intent – the intent to protect people and systems, without slowing down everyday work. Data breaches almost...
Randall Munroe’s XKCD ‘High Altitude Cooking Instructions’
via the comic artistry and dry wit of Randall Munroe, creator of XKCD Permalink *** This is a Security Bloggers...
ShinyHunters claims 2 Million Crunchbase records; company confirms breach
ShinyHunters claims 2 Million Crunchbase records; company confirms breach Pierluigi Paganini January 26, 2026 Crunchbase confirms a data breach after...
Malicious VS Code AI Extensions with 1.5 Million Installs Steal Developer Source Code
Ravie LakshmananJan 26, 2026AI Security / Vulnerability Cybersecurity researchers have discovered two malicious Microsoft Visual Studio Code (VS Code) extensions...
Microsoft Shared BitLocker Keys With FBI, Raising Privacy Fears
Image: Simon Ray/Unsplash Microsoft is under scrutiny after it emerged that the company shared encryption keys with US law enforcement,...
North Korea–linked KONNI uses AI to build stealthy malware tooling
North Korea–linked KONNI uses AI to build stealthy malware tooling Pierluigi Paganini January 26, 2026 Check Point links an active...