Personnalisez votre veille

Inscrivez-vous gratuitement.

Espace publicitaire · 728×90

Attackers Continue to Target Trusted Collaboration Platforms: 12,000+ Emails Target Teams Users

IT Security News - infosec - IT Security News • Publié le 22 janvier 2026

Overview This report describes a phishing campaign in which attackers abuse Microsoft Teams functionality to distribute phishing content that appears to originate from legitimate Microsoft services. The attack leverages guest invitations and phishing-themed team names to impersonate billing and subscription…

The post Attackers Continue to Target Trusted Collaboration Platforms: 12,000+ Emails Target Teams Users appeared first on IT Security News.

Espace publicitaire · 300×250

New Osiris Ransomware Leverages Living Off the Land and Dual-Use Tools in Attacks

A newly discovered ransomware family, Osiris, targeted a major foodservice franchisee in Southeast Asia in November 2025. Despite sharing a name with a 2016 Locky ransomware variant, security researchers confirm this represents an entirely…

itsecuritynews.info•1 janvier 1970

🇬🇧 → 🇫🇷

Critical Vivotek Flaw Enables Remote Arbitrary Code Execution

Akamai’s Security Intelligence and Response Team (SIRT) uncovered a serious command injection vulnerability in legacy Vivotek IoT camera firmware. Tracked as CVE-2026-22755, the flaw lets remote attackers inject and run arbitrary…

itsecuritynews.info•1 janvier 1970

🇬🇧 → 🇫🇷

NVIDIA CUDA Toolkit Flaw Allows Command Injection, Arbitrary Code Execution

NVIDIA has patched critical vulnerabilities in its CUDA Toolkit that expose developers and GPU-accelerated systems to command injection and arbitrary code execution risks. Released on January 20, 2026, the update addresses four flaws in…

itsecuritynews.info•1 janvier 1970

🇬🇧 → 🇫🇷

BIND 9 Flaw Lets Attackers Crash Servers With Malicious DNS Records

A critical vulnerability in BIND 9 exposes DNS servers to remote denial-of-service (DoS) attacks. Security firm ISC disclosed CVE-2025-13878 on January 21, 2026, warning that malformed BRID or HHIT records in DNS queries can trigger an…

itsecuritynews.info•1 janvier 1970

🇬🇧 → 🇫🇷

PNB MetLife Phishing Attack: Multi-Stage Scheme Steals Data, Triggers UPI Payments

A sophisticated multi-stage phishing campaign is actively targeting PNB MetLife Insurance customers through fake payment gateway pages. The attack chain extracts customer details, forces fraudulent UPI payments, and escalates to full…

itsecuritynews.info•1 janvier 1970

🇬🇧 → 🇫🇷

Wordfence Intelligence Weekly WordPress Vulnerability Report (January 12, 2026 to January 18, 2026)

📢 Did you know Wordfence runs a Bug Bounty Program for all WordPress plugin and themes at no cost to vendors? Researchers can earn up to $31,200 per vulnerability, for all in-scope vulnerabilities submitted to our Bug Bounty Program!…

itsecuritynews.info•1 janvier 1970

🇬🇧 → 🇫🇷

Cyber Briefing: 2026.01.22

Critical camera and WordPress takeovers, FortiGate attack surges, major public sector breaches, supply-chain ransomware, auto zero-days, and arrests. This article has been indexed from CyberMaterial Read the original article: Cyber…

itsecuritynews.info•1 janvier 1970

🇬🇧 → 🇫🇷

RealHomes CRM Plugin Flaw Affected 30,000 WordPress Sites

Security flaw in RealHomes CRM plugin allowed file uploads; patches released for 30,000+ sites This article has been indexed from www.infosecurity-magazine.com Read the original article: RealHomes CRM Plugin Flaw Affected 30,000 WordPress…

itsecuritynews.info•1 janvier 1970

Personnalisez votre veille

Articles similaires

New Osiris Ransomware Leverages Living Off the Land and Dual-Use Tools in Attacks

Critical Vivotek Flaw Enables Remote Arbitrary Code Execution

NVIDIA CUDA Toolkit Flaw Allows Command Injection, Arbitrary Code Execution

BIND 9 Flaw Lets Attackers Crash Servers With Malicious DNS Records

PNB MetLife Phishing Attack: Multi-Stage Scheme Steals Data, Triggers UPI Payments

Wordfence Intelligence Weekly WordPress Vulnerability Report (January 12, 2026 to January 18, 2026)

Cyber Briefing: 2026.01.22

RealHomes CRM Plugin Flaw Affected 30,000 WordPress Sites