Cyber Security News, MITRE ATT&CK Tactics & Techniques, Vulnerabilities Management, Cyber Kill Chain, Ransomware Attacks, CyberSecurity Alerts & Threat Advisories, IT Security, End Point Security, Security Updates

CVE-2026-22610: Angular SVG Script Attribute Sanitization Bypass Leading to XSS

CyberSecurity News

CyberDefenderJanuary 13, 2026January 13, 202612 mins0

CVE-2026-22610 is a high-severity Cross-Site Scripting (XSS) vulnerability in Angular’s template compiler that allows an attacker to…

Endesa Confirms Cybersecurity Breach Exposing Customer Data

CyberSecurity News

CyberDefenderJanuary 13, 2026January 13, 20263 mins0

A major cyberattack on Endesa’s commercial platform has exposed sensitive customer data, including identity and banking details,…

University of Hawaiʻi Cancer Center Suffers Ransomware Attack Exposing Research Data

CyberSecurity News

CyberDefenderJanuary 13, 2026January 13, 20263 mins0

What Was Compromised Delay in Disclosure Notification & Response University’s Actions Post-Attack Context & Impact

Facebook Login Thieves Turn to “Browser-in-Browser” Phishing Trick

CyberSecurity News

CyberDefenderJanuary 13, 2026January 13, 20263 mins0

Attackers are increasingly abusing a technique called Browser-in-the-Browser (BitB) to steal Facebook login credentials from unsuspecting users.…

Seven-Year Prison Term for Hacker Who Breached Rotterdam and Antwerp Port Systems

CyberSecurity News

CyberDefenderJanuary 13, 2026January 13, 20263 mins0

How the Breach Worked Link to Drug Trafficking Legal Background Broader Implications

CVE-2026-22812 & CVE-2026-22813: OpenCode Local API and Web UI Flaws Enable Silent Command Execution on Developer Machines

Uncategorized

AegironJanuary 13, 2026January 13, 20268 mins0

Product Overview – OpenCode OpenCode is a locally deployed, open-source AI coding assistant designed for developers. It…

CVE-2025-12420: Critical ServiceNow AI Platform Flaw Enables Unauthenticated User Impersonation

Vulnerabilities

AegironJanuary 13, 2026January 13, 202612 mins0

CVE-2025-12420 — ServiceNow AI Platform Impersonation Severity: CriticalCVSS: 10.0 (Highest severity)Impact: Full impersonation of any user without…

deVixor: The Android Malware That Steals Your Money — Then Locks Your Phone for Ransom

CyberSecurity News

AegironJanuary 13, 2026January 13, 20269 mins0

Date observed: 13 January 2026Threat type: Mobile malware (Banking RAT + optional ransomware/locker)Target platform: AndroidGeographic focus: IranSeverity:…

CISA Flags Active Exploitation: Critical Gogs Path Traversal (CVE-2025-8110) Added to KEV

CyberSecurity News

AegironJanuary 13, 2026January 13, 202610 mins0

Product: Gogs (self-hosted Git service)CVE ID: CVE-2025-8110CVSS v3.1 Score: 9.8 / 10Severity: CriticalExploitability: High (low attack complexity,…

CrazyHunter Ransomware Escalates: Credential Abuse, Data Theft, and Healthcare Disruption in Taiwan

Cyber Threat Intelligence

AegironJanuary 12, 2026January 12, 202610 mins0

Incident Overview On January 12, 2026, new findings revealed a significant escalation in the capabilities and operational…