Raaga Suffers Major Data Breach, Exposing Personal Information of 10.2 Million Users CyberSecurity News CyberDefenderJanuary 20, 2026January 20, 20265 mins0 Indian music streaming platform Raaga has suffered a major data breach that exposed the personal information of…continue reading..
Critical Flaw in TP-Link VIGI Cameras Lets Local Network Attackers Reset Admin Passwords Without Authentication CyberSecurity News CyberDefenderJanuary 20, 2026January 20, 20267 mins0 CVE-2026-0629 is a high-severity authentication bypass vulnerability affecting multiple VIGI and VIGI InSight IP camera models. The…continue reading..
CVE-2026-23944: Unauthenticated Remote Environment Access in Arcane Docker Manager Vulnerabilities AegironJanuary 20, 2026January 20, 20269 mins0 Vulnerability overview CVE ID: CVE-2026-23944Product: Arcane (Docker management platform)Vulnerability type: Authentication Bypass / Missing AuthenticationAffected versions: All…continue reading..
Critical SQL Injection Flaws Expose Yonyou KSOA 9.0 to Remote Database Takeover Vulnerabilities AegironJanuary 20, 2026January 20, 20266 mins0 Product Details (At a Glance) Yonyou KSOA 9.0 contains multiple SQL Injection vulnerabilities in different JSP components.…continue reading..
Critical Alert: Unauthenticated Remote Command Execution in Tosei Online Store Management System (CVE-2026-1192) Vulnerabilities AegironJanuary 20, 2026January 20, 202611 mins0 CVE ID: CVE-2026-1192Product: Tosei Online Store Management System (version 1.01)Vulnerability Type: Remote command injectionSeverity (CVSS v3.1): High…continue reading..
CVE-2026-1221: Hard-Coded Credentials Enable Remote Access to PrismX MX100 Infrastructure Cyber Kill Chain CyberDefenderJanuary 20, 2026January 20, 20267 mins0 CVE-2026-1221 describes a critical security flaw caused by hard-coded credentials embedded in the firmware of the PrismX…continue reading..
Malicious Developer Extensions Power Sophisticated “Evelyn” Malware Campaign Stealing Credentials and Crypto Assets CyberSecurity News CyberDefenderJanuary 20, 2026January 20, 202610 mins0 In early December 2025, a highly targeted malware campaign was identified that focused on compromising software developers…continue reading..
Researchers Uncover Global Malvertising Operation Delivering Delayed-Execution Infostealer CyberSecurity News CyberDefenderJanuary 20, 2026January 20, 202612 mins0 In mid-2025, Sophos Managed Detection and Response (MDR) teams discovered a sophisticated malvertising campaign deploying a credential-stealing…continue reading..
Firefox Joins Chrome and Edge as Malicious “Sleeper” Extensions Spy on Users CyberSecurity News CyberDefenderJanuary 20, 2026January 20, 202611 mins0 Over the past few years, browser extensions have quietly become one of the most overlooked security risks…continue reading..
“WhisperPair”: Bluetooth Fast Pair Flaw Enabling Eavesdropping and Tracking CyberSecurity News CyberDefenderJanuary 20, 2026January 20, 202611 mins0 CVE-2025-36911, also known by researchers as WhisperPair, is a serious security vulnerability affecting Bluetooth devices that implement…continue reading..
