CVE-2026-24002: Malicious Spreadsheet Breaks Grist Sandbox, Enabling Full Server Takeover Vulnerabilities AegironJanuary 22, 2026January 22, 202610 mins0 CVE ID: CVE-2026-24002Severity: CriticalCVSS v3.1 Score: 9.0Attack Vector: NetworkPrivileges Required: NoneUser Interaction: Indirect (opening or processing a…continue reading..
Critical Remote Code Execution Flaws Expose Tenda Wi-Fi 6 Routers to Full Network Takeover Vulnerabilities AegironJanuary 22, 2026January 22, 20269 mins0 Product & Vulnerability Overview The following vulnerabilities affect consumer-grade Wi-Fi 6 routers manufactured by Tenda. These devices…continue reading..
CVE-2026-22793: One Click to Compromise — Critical Renderer RCE in 5ire AI Assistant Leading to Full Host Takeover Vulnerabilities AegironJanuary 22, 2026January 22, 20268 mins0 CVE ID: CVE-2026-22793Product: 5ire AI Assistant (Desktop Client)Component: Markdown Renderer – ECharts PluginVulnerability Type: Renderer-based Remote Code…continue reading..
Notepad and Paint Receive Feature Boost as Microsoft Pushes AI Deeper into Windows Apps CyberSecurity News CyberDefenderJanuary 22, 2026January 22, 20264 mins0 Microsoft has started rolling out fresh updates for two core Windows 11 Inbox apps — Notepad and…continue reading..
Hackers Trigger 29 Zero-Day Flaws on Day Two of Pwn2Own Automotive Competition CyberSecurity News CyberDefenderJanuary 22, 2026January 22, 20262 mins0 Overall Competition Progress Why This Matters Pwn2Own Automotive is not just a competition — it’s a crucial…continue reading..
Microsoft Teams Introduces Brand Impersonation Protection for Calls CyberSecurity News CyberDefenderJanuary 22, 2026January 22, 20265 mins0 Microsoft Teams is getting a new security upgrade aimed at tackling a growing and costly problem: brand…continue reading..
Critical Telnet Flaw in GNU Inetutils Allows Remote Root Access Without Authentication CyberSecurity News CyberDefenderJanuary 22, 2026January 22, 20266 mins0 CVE-2026-24061 is a critical authentication bypass vulnerability affecting the telnetd service shipped with GNU Inetutils. The issue…continue reading..
FortiGate Firewalls Targeted in Widespread Automated Campaign to Exfiltrate Config Files CyberSecurity News CyberDefenderJanuary 22, 2026January 22, 20265 mins0 Threat actors are actively exploiting Fortinet FortiGate firewalls in a new cluster of automated attacks that target…continue reading..
Critical Flaw Exposes Vivotek Cameras Worldwide: CVE-2026-22755 Enables Remote Takeover Without Authentication CyberSecurity News CyberDefenderJanuary 22, 2026January 22, 20264 mins0 CVE-2026-22755 is a remote command injection vulnerability discovered in the firmware of many legacy Vivotek network cameras…continue reading..
North Korean Hackers Exploit Fake Job Interviews in Global PurpleBravo Cyber-Espionage Campaign CyberSecurity News CyberDefenderJanuary 22, 2026January 22, 20265 mins0 North Korean–linked hackers tracked as PurpleBravo have been identified as the operators behind a sophisticated cyber-espionage campaign…continue reading..
