Microsoft Starts 2026 With a Bang: A Freshly Exploited Zero-Day – Dark Reading
The vendor’s first Patch Tuesday of the year also contains fixes for 112 CVEs, nearly double the amount from last month. – Read More
2026
Cybersecurity risk will accelerate this year, fueled in part by AI, says World Economic Forum – CSO Online
Cybersecurity risk will accelerate this year, fueled by advances in AI, deepening geopolitical fragmentation and the complexity of supply chains, the World Economic Forum (WEF) says in its annual Global…
Shadow#Reactor Uses Text Files to Deliver Remcos RAT – Dark Reading
Attackers use a sophisticated delivery mechanism of text-only files for RAT deployment, showcasing a clever way to bypass defensive tools and rely on the target’s own utilities. – Read More
Long-Running Web Skimming Campaign Steals Credit Cards From Online Checkout Pages – The Hacker News
Cybersecurity researchers have discovered a major web skimming campaign that has been active since January 2022, targeting several major payment networks like American Express, Diners Club, Discover, JCB Co., Ltd.,…
Malicious Chrome Extension Steals MEXC API Keys by Masquerading as Trading Tool – The Hacker News
Cybersecurity researchers have disclosed details of a malicious Google Chrome extension that’s capable of stealing API keys associated with MEXC, a centralized cryptocurrency exchange (CEX) available in over 170 countries,…
Access Legal launches CaseMatters Evo, saving law firms up to five hours per fee earner each week – Legal Futures
Access Legal has launched CaseMatters Evo, a new model of case management software (CMS) built to strengthen firm-wide operations, moving beyond case progression alone. The post Access Legal launches CaseMatters…
Attackers Abuse Python, Cloudflare to Deliver AsyncRAT – Dark Reading
The phishing campaign shows how attackers continue to weaponize legitimate cloud services and open source tools to evade detection and gain trust. – Read More
Ransomware-Banden erpressen Opfer mit Compliance-Verstößen – CSO Online
Ransomware-Gruppen setzen ihre Opfer vermehrt mit Compliance-Verstößen unter Druck. Digitala World – shutterstock.com Ransomware-Attacken zählen nach wie vor zu den häufigsten Angriffsmethoden. Wie aktuelle Analysen zeigen, drohen Cyberbanden ihren Opfern…
The legal profession needs to be wary of AI-generated fraud – Law Gazette – Features
Sponsored content. How technology helps law firms tell what’s real, even at a time when AI is making everything easier to spoof. – Read More
[Webinar] Securing Agentic AI: From MCPs and Tool Access to Shadow API Key Sprawl – The Hacker News
AI agents are no longer just writing code. They are executing it. Tools like Copilot, Claude Code, and Codex can now build, test, and deploy software end-to-end in minutes. That…
Jo Sidhu loses High Court bid to overturn disbarment over inappropriate sexual behaviour – Legal Cheek
Misconduct towards mini-pupil Jo Sidhu Former high-profile criminal barrister Jo Sidhu has failed in his bid to overturn his disbarment, after a disciplinary tribunal last year found him guilty of…
The true cost of in-house software development for law firms – Legal Futures
For successful law firms, technology has become inseparable from practice. Case management, compliance, billing, and client collaboration all depend on digital platforms. The post The true cost of in-house software…
Paul Hastings selects Elite 3E Cloud – Legal IT Insider
Leading global law firm and longtime Elite customer Paul Hastings has chosen 3E in the cloud as its next-generation financial and business operations platform. Paul Hastings says that it will…
High-severity bug in Broadcom software enables easy WiFi denial-of-service – CSO Online
A high-severity flaw in Broadcom WiFi chipset software can allow an attacker within radio range to completely knock wireless networks offline by sending a single malicious frame, forcing routers to…
New Advanced Linux VoidLink Malware Targets Cloud and container Environments – The Hacker News
Cybersecurity researchers have disclosed details of a previously undocumented and feature-rich malware framework codenamed VoidLink that’s specifically designed for long-term, stealthy access to Linux-based cloud environments According to a new…