Internet Security

U.S. CISA adds a flaw in Cisco Unified Communications products to its Known Exploited Vulnerabilities catalog

January 22, 2026 add comment
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds a flaw impacting Cisco Unified Communications products to its Known Exploited Vulnerabilities catalog. The U.S. Cybersecurity and Infrastructure Security Agency... Read more »

Cisco fixed actively exploited Unified Communications zero day

January 22, 2026 add comment
Cisco patched a critical zero-day RCE flaw (CVE-2026-20045) in Unified Communications and Webex Calling that is actively exploited in the wild. Cisco patched a critical zero-day remote code execution... Read more »

Zoom fixed critical Node Multimedia Routers flaw

January 21, 2026 add comment
Zoom addressed a critical security vulnerability, tracked as CVE-2026-22844, that could result in remote code execution. Cloud-based video conferencing and online collaboration platform Zoom released security updates to address... Read more »

ACME flaw in Cloudflare allowed attackers to reach origin servers

January 21, 2026 add comment
Cloudflare fixed a flaw in its ACME validation logic that could let attackers bypass security checks and access protected origin servers. Cloudflare fixed a flaw in its ACME HTTP-01... Read more »

Crooks impersonate LastPass in campaign to harvest master passwords

January 21, 2026 add comment
Password manager LastPass warns of an active phishing campaign impersonating the service to steal users’ master passwords. LastPass warned users about an active phishing campaign that began around January... Read more »

VoidLink shows how one developer used AI to build a powerful Linux malware

January 21, 2026 add comment
VoidLink is a cloud-focused Linux malware, likely built by one person using AI, offering loaders, implants, rootkit evasion, and modular plugins. Check Point researchers uncovered VoidLink, a cloud-focused Linux... Read more »

PDFSIDER Malware – Exploitation of DLL Side-Loading for AV and EDR Evasion

January 20, 2026 add comment
Threat actors use PDFSIDER malware with social engineering and DLL sideloading to bypass AV/EDR, and ransomware gangs already abuse it. Resecurity has learned about PDFSIDER during an investigation of... Read more »

Access broker caught: Jordanian pleads guilty to hacking 50 companies

January 20, 2026 add comment
A Jordanian man pleaded guilty in the US to selling illegal access to 50 compromised enterprise networks after an undercover sting. A Jordanian national Feras Khalil Ahmad Albashiti (40),... Read more »

Critical TP-Link VIGI camera flaw allowed remote takeover of surveillance systems

January 20, 2026 add comment
TP-Link fixed a critical flaw that exposed over 32 VIGI C and VIGI InSight camera models to remote hacking, with over 2,500 internet-exposed devices identified. TP-Link fixed a high-severity... Read more »

Telegram-based illicit billionaire marketplace Tudou Guarantee stopped transactions

January 20, 2026 add comment
Major Telegram-based illicit marketplace Tudou Guarantee appears to be shutting down its operations, according to Elliptic. Blockchain cybersecurity firm Elliptic reports that Tudou Guarantee, a major Telegram-based illicit marketplace... Read more »
Subscribe to our Newsletter