Author: PulauWin

Internet Security

GootLoader uses malformed ZIP files to bypass security controls

January 18, 2026 add comment
GootLoader malware uses malformed ZIP files made of hundreds of concatenated archives to evade detection. GootLoader is used by ransomware actors for initial access, then handed off to others.... Read more »
Internet Security

SECURITY AFFAIRS MALWARE NEWSLETTER ROUND 80

January 18, 2026 add comment
Security Affairs Malware newsletter includes a collection of the best articles and research on malware in the international landscape Malware Newsletter Gogs 0-Day Exploited in the Wild SHADOW#REACTOR –... Read more »
Internet Security

Security Affairs newsletter Round 559 by Pierluigi Paganini – INTERNATIONAL EDITION

January 18, 2026 add comment
A new round of the weekly Security Affairs newsletter has arrived! Every week, the best security articles from Security Affairs are free in your email box. Enjoy a new... Read more »
Help Net Security

Week in review: PoC for FortiSIEM flaw released, Rakuten Viber CISO/CTO on messaging risks

January 18, 2026 add comment
Here’s an overview of some of last week’s most interesting news, articles, interviews and videos: What security teams can learn from torrent metadata Security teams often spend time sorting... Read more »

China-Linked APT Exploited Sitecore Zero-Day in Critical Infrastructure Intrusions

January 17, 2026 add comment
A threat actor likely aligned with China has been observed targeting critical infrastructure sectors in North America since at least last year. Cisco Talos, which is tracking the activity... Read more »
Internet Security

Ukraine–Germany operation targets Black Basta, Russian leader wanted

January 17, 2026 add comment
Police in Ukraine and Germany identified Black Basta suspects and issued an international wanted notice for the group’s alleged Russian leader. Ukrainian and German police raided homes linked to... Read more »
Internet Security

China-linked APT UAT-8837 targets North American critical infrastructure

January 17, 2026 add comment
Cisco Talos says a China-linked group, tracked as UAT-8837, has targeted North American critical infrastructure since last year. Cisco Talos reports that threat group UAT-8837, likely linked to China,... Read more »
Security of TechRepublic

Go Programming Language 1.26 Patches Several Security Flaws

January 16, 2026 add comment
The patched issues span core standard library components including archive/zip and net/http, as well as security-sensitive areas of the crypto/tls stack. The post Go Programming Language 1.26 Patches Several... Read more »
Internet Security

Data breach at Canada’s Investment Watchdog Canadian Investment Regulatory Organization impacts 750,000 people

January 16, 2026 add comment
A data breach at Canada’s investment watchdog, Canadian Investment Regulatory Organization (CIRO), impacted about 750,000 people. The Canadian Investment Regulatory Organization (CIRO) is Canada’s national self-regulatory body overseeing investment... Read more »
Help Net Security

Cisco fixes AsyncOS vulnerability exploited in zero-day attacks (CVE-2025-20393)

January 16, 2026 add comment
Cisco has finally shipped security updates for its Email Security Gateway and Secure Email and Web Manager devices, which fix CVE-2025-20393, a vulnerability in the devices’ AsyncOS that has... Read more »
Subscribe to our Newsletter