January 2026

LOTUSLITE Backdoor Targets U.S. Policy Entities Using Venezuela-Themed Spear Phishing

Security experts have disclosed details of a new campaign that has targeted U.S. government and policy entities using politically themed…

rooter January 16, 2026

News

Revolut Introduces a New Way for Customers to Check If They’re Speaking With a Real Agent

To help counter scammers impersonating Revolut, the company has recently introduced a new Call Identification feature that helps customers verify…

rooter January 16, 2026

News

China-linked APT UAT-9686 abused now patched maximum severity AsyncOS bug

Cisco fixed a maximum severity AsyncOS flaw in Secure Email products, previously exploited as a zero-day by China-linked APT group…

rooter January 16, 2026

Security

How Compromised Code Signing Keys Lead to Real-World Malware Incidents

Code signing exists because modern operating systems cannot treat every executable as hostile by default. Software needs a way to…

rooter January 16, 2026

News

China-Linked APT Exploits Sitecore Zero-Day in Attacks on American Critical Infrastructure

A threat actor likely aligned with China has been observed targeting critical infrastructure sectors in North America since at least…

rooter January 16, 2026

Security

Actively exploited critical flaw in Modular DS WordPress plugin enables admin takeover

A critical Modular DS WordPress flaw (CVE-2026-23550) is actively exploited, enabling unauthenticated privilege escalation. Threat actors are actively exploiting a…

rooter January 16, 2026

Security

Weekly Update 486

Presently sponsored by: Report URI: Guarding you from rogue JavaScript! Don’t get pwned; get real-time alerts & prevent breaches #SecureYourSite…

rooter January 16, 2026

Cyber Security

China-Linked APT Exploits Sitecore Zero-Day in Attacks on American Critical Infrastructure

A threat actor likely aligned with China has been observed targeting critical infrastructure sectors in North America since at least…

rooter January 16, 2026

Cyber Security

When Social Gaming Becomes a Security Vulnerability

In this post, I will talk about when social gaming becomes a security vulnerability. Social gaming has turned casual play…

rooter January 16, 2026

News

Cisco Patches Zero-Day RCE Exploited by China-Linked APT in Secure Email Gateways

Cisco on Thursday released security updates for a maximum-severity security flaw impacting Cisco AsyncOS Software for Cisco Secure Email Gateway…

rooter January 16, 2026

January 2026

LOTUSLITE Backdoor Targets U.S. Policy Entities Using Venezuela-Themed Spear Phishing

Revolut Introduces a New Way for Customers to Check If They’re Speaking With a Real Agent

China-linked APT UAT-9686 abused now patched maximum severity AsyncOS bug

How Compromised Code Signing Keys Lead to Real-World Malware Incidents

China-Linked APT Exploits Sitecore Zero-Day in Attacks on American Critical Infrastructure

Actively exploited critical flaw in Modular DS WordPress plugin enables admin takeover

Weekly Update 486

China-Linked APT Exploits Sitecore Zero-Day in Attacks on American Critical Infrastructure

When Social Gaming Becomes a Security Vulnerability

Cisco Patches Zero-Day RCE Exploited by China-Linked APT in Secure Email Gateways

You Missed

Node.js Security Bulletin: CVE-2026-21637 and Other Fixes Explained

Now the Oscars Aren’t Just Moving to YouTube, They’re Moving Out of Hollywood

Google Sets 2029 Deadline for Quantum-Safe Cryptography

C-3PO’s Head From ‘Empire Strikes Back’ Sold for a Cool Million