DPRK Actors Deploy VS Code Tunnels for Remote Hacking – Dark Reading
A spear-phishing campaign tied to the Democratic People’s Republic of Korea (DPRK) uses trusted Microsoft infrastructure to avoid detection. – Read More
January 2026
Spanish e-retailer PcComponentes denies report it was hacked – CSO Online
Spanish online electronics retailer PcComponentes has denied a hacker’s claims to have stolen data on its customers. Hackrisk.io, a strategic cyber threat intelligence platform developed and maintained by Hackmanac, reported…
Hacker legen Websites von Conceptnet-Kunden lahm – CSO Online
Der Regensburger IT-Dienstleister Conceptnet wurde Opfer einer Ransomware-Attacke. fadfebrian – shutterstock.com Der Regensburger IT-Dienstleister Conceptnet informiert derzeit auf seiner Internetseite über eine technische Störung, die durch einen Ransomware-Angriff verursacht wurde.…
Actively exploited Cisco UC bug requires immediate, version‑specific patching – CSO Online
Cisco has released patches for a critical remote code execution vulnerability in its unified communications products that attackers are actively exploiting. The US Cybersecurity and Infrastructure Security Agency has added…
VoidLink malware was almost entirely made by AI – CSO Online
VoidLink, the high-impact Linux malware framework disclosed last week, is back under scrutiny for claims that the bulk of its development was done by artificial intelligence (AI). According to the…
Filling the Most Common Gaps in Google Workspace Security – The Hacker News
Security teams at agile, fast-growing companies often have the same mandate: secure the business without slowing it down. Most teams inherit a tech stack optimized for breakneck growth, not resilience.…
Why We Need Tech Lawyers to Shine Again – Technollama
Text from my editorial in IIC. In courtrooms across the globe, a quiet crisis is brewing. As the number of artificial intelligence copyright litigations increases, judges are being asked to…
Malicious PyPI Package Impersonates SymPy, Deploys XMRig Miner on Linux Hosts – The Hacker News
A new malicious package discovered in the Python Package Index (PyPI) has been found to impersonate a popular library for symbolic mathematics to deploy malicious payloads, including a cryptocurrency miner,…
SmarterMail Auth Bypass Exploited in the Wild Two Days After Patch Release – The Hacker News
A new security flaw in SmarterTools SmarterMail email software has come under active exploitation in the wild, two days after the release of a patch. The vulnerability, which currently does…
OneSearch partners with 4Stamp to eliminate SDLT risk and streamline transactions – Legal Futures
Property professionals can now enjoy greater confidence and peace of mind in every transaction, thanks to OneSearch’s new partnership with 4Stamp: the definitive SDLT solution. The post OneSearch partners with…
8 (more) things law school doesn’t teach you – Legal Cheek
From drafting techniques to ‘sense-checks’ — the realities of legal practice are a far cry from law school… Law school prepares you to argue difficult points of law. What it…
Exclusive: Legl strengthens global leadership team with trio of senior hires – Legal IT Insider
UK-founded law firm client lifecycle and client intelligence platform Legl has announced a trio of senior hires to strengthen its leadership team across growth, international expansion and engineering. The appointments…
Warum Microsoft-365-Konfigurationen geschützt werden müssen – CSO Online
Lesen Sie, warum CISOs den M365-Tenant stärker in den Blick nehmen müssen. IB Photography – shutterstock.com Im Jahr 2010 war Office 365 eine einfache Suite mit Office-Anwendungen und zusätzlicher E-Mail-Funktion.…
73% of CISOs more likely to consider AI-enabled security solution – CSO Online
CISO’s are increasingly turning to AI-enabled security technologies to augment their organizations’ cyber defense and extend the capabilities of their teams. According to Foundry’s latest Security Priorities Study, 73% of…
Curl eliminates bug bounty program due to AI slop – CSO Online
Lately, the Curl code library has been receiving a lot of AI-generated reports from users hoping to receive financial compensation from the tool’s bug bounty program. Going through all the…