All articles tagged with #cybersecurity
Microsoft's January 2026 Patch Tuesday patches 114 vulnerabilities and three zero-days across Windows, Azure, Office, Edge, and related components, including elevation of privilege, information disclosure, and remote code execution flaws. Users should apply the updates promptly to mitigate risk.
Morgan Stanley doubles up its upgrade on a cybersecurity stock as it nears a pivotal inflection point, signaling potential upside for investors.
Malwarebytes reports a dark-web cache tied to a 2024 Instagram API breach exposing about 17.5 million users’ personal details and potentially enabling attackers to trigger password-reset emails. Instagram says there was no breach of its systems and that accounts remain secure. Users are advised to reset passwords, enable two-factor authentication, and consider deleting accounts if concerned.
The NSA announced Timothy Kosiba as its new Deputy Director, a role in which he will oversee strategy, policy, and operations, leveraging over 30 years of experience in cybersecurity and signals intelligence to support U.S. national security efforts.
Datavault AI is deploying a secure, AI-driven edge network in New York and Philadelphia to tap into multi-billion dollar markets in insurance, finance, and healthcare through real-time, quantum-encrypted data tokenization, with plans to expand nationwide by 2026.
CrowdStrike is acquiring SGNL to enhance its Falcon platform with Continuous Identity, enabling real-time, dynamic access control for human, non-human, and AI identities across cloud and SaaS environments, aiming to address the security challenges posed by autonomous AI agents and expanding identity security market.
The UK military is increasingly integrating gamers and coders into its recruitment and training strategies, recognizing the skills developed through gaming—such as hand-eye coordination and quick decision-making—as valuable for modern warfare, especially in cyber defense and drone operations.
Researchers have uncovered two malicious Chrome extensions with over 900,000 users that steal ChatGPT and DeepSeek chat conversations along with browsing data, sending this information to remote servers. These extensions impersonate legitimate tools, request permissions under false pretenses, and exfiltrate sensitive data, posing significant privacy and security risks. The discovery highlights the growing threat of prompt poaching and the need for users to be cautious about extension permissions and sources.
Cybersecurity researchers have uncovered a campaign targeting European hospitality staff using fake booking cancellation emails and BSoD pages to deliver the DCRat remote access trojan, employing sophisticated techniques like living-off-the-land methods and malware evasion tactics.
Ubisoft temporarily took Rainbow Six Siege offline over the holidays due to a hacker attack that caused account bans, credit and skin giveaways, and other disruptions. The game was re-launched on December 29 after rollback and investigation, with ongoing connectivity issues still reported. Ubisoft assured players no penalties would result from the hack and clarified that a separate ban wave was unrelated.
Cybersecurity researchers have uncovered VVS Stealer, a Python-based malware sold on Telegram that targets Discord accounts and other data, using obfuscation techniques to evade detection. It is distributed as a PyInstaller package, sets up persistence, and performs sophisticated attacks including Discord session hijacking, making it a highly stealthy and effective threat.
The NSB reports a significant increase in Chinese cyberattacks on Taiwan's critical infrastructure in 2025, with attacks averaging 2.63 million daily attempts, especially targeting energy and emergency sectors, employing tactics like vulnerability exploitation, DDoS, social engineering, and supply chain attacks, involving major hacker groups and international cooperation to enhance cybersecurity defenses.
The article highlights two AI stocks, SentinelOne and Datadog, which are poised for significant growth in 2026, with SentinelOne focusing on AI-powered cybersecurity and Datadog on AI tools for digital infrastructure management, both receiving strong analyst buy ratings and promising upside potential.
Ilya Lichtenstein, a hacker convicted of Bitcoin theft, was released early from prison thanks to the Trump-era First Step Act, and he plans to contribute positively to cybersecurity.
The article discusses key cybersecurity issues to watch in 2026, including the upcoming White House national cyber strategy focused on shaping adversary behavior, the evolving role of AI in cyber defense and threats, the reauthorization of CISA authorities, new cyber incident reporting rules, and leadership gaps within U.S. cybersecurity agencies.