InfoSecRadar InfoSecRadar
  • Home
    • Vulnerabilities & Exploits
    • Malware & Ransomware
    • Data Breaches & Leaks
    • Threat Actors & Campaigns
    • Policy & Regulation
    • Industry & Career
    • Tools & Techniques
    • Cloud & Infrastructure
    • AI & Cybersecurity
    • Privacy & Surveillance
    • Signal School
  • Friend
  • Foe
  • Archive
  • About

Archive: January 2026

92 stories.

← February 2026 All months December 2025 →
FOE Jan 30 Sophos News
Microsoft Office vulnerability (CVE-2026-21509) in active exploitation
FOE Jan 30 Ars Technica (Security)
Web portal leaves kids' chats with AI toy open to anyone with Gmail account
FOE Jan 30 Google Project Zero
Breaking the Sound Barrier, Part II: Exploiting CVE-2024-54529
FOE Jan 29 Risky Business News
Risky Bulletin: eScan antivirus distributes backdoor in latest supply chain attack
FRIEND Jan 29 EFF Deeplinks
EFF to Close Friday in Solidarity with National Shutdown
FRIEND Jan 29 EFF Deeplinks
EFF to Close Friday in Solidarity with National Shutdown
FOE Jan 29 Ars Technica (Security)
County pays $600,000 to pentesters it arrested for assessing courthouse security
FRIEND Jan 29 EFF Deeplinks
Introducing Encrypt It Already
FRIEND Jan 29 EFF Deeplinks
Introducing Encrypt It Already
FRIEND Jan 29 EFF Deeplinks
Google Settlement May Bring New Privacy Controls for Real-Time Bidding
FRIEND Jan 29 EFF Deeplinks
Google Settlement May Bring New Privacy Controls for Real-Time Bidding
NEUTRAL Jan 29 Risky Business News
Srsly Risky Biz: Punish the Wicked, Reward the Righteous
FRIEND Jan 28 Ars Technica (Security)
Site catering to online criminals has been seized by the FBI
FOE Jan 28 EFF Deeplinks
✍️ The Bill to Hand Parenting to Big Tech | EFFector 38.2
FOE Jan 28 EFF Deeplinks
✍️ The Bill to Hand Parenting to Big Tech | EFFector 38.2
FOE Jan 28 Black Hills Information Security
Social Engineering and Microsoft SSPR: The Road to Pwnage is Paved with Good Intentions
FRIEND Jan 28 EFF Deeplinks
DSA Human Rights Alliance Publishes Principles Calling for DSA Enforcement to Incorporate Global Perspectives
FRIEND Jan 28 EFF Deeplinks
DSA Human Rights Alliance Publishes Principles Calling for DSA Enforcement to Incorporate Global Perspectives
FOE Jan 27 Ars Technica (Security)
There's a rash of scam spam coming from a real Microsoft address
FOE Jan 27 Risky Business News
Risky Bulletin: Cyberattack cripples cars across Russia
FOE Jan 27 EFF Deeplinks
Beware: Government Using Image Manipulation for Propaganda
FOE Jan 27 EFF Deeplinks
Beware: Government Using Image Manipulation for Propaganda
FOE Jan 27 Sophos News
Eeny, meeny, miny, moe? How ransomware operators choose victims
FRIEND Jan 27 NIST Cybersecurity Insights
Celebrating Data Privacy Week with NIST’s Privacy Engineering Program
FOE Jan 27 EFF Deeplinks
EFF Statement on ICE and CBP Violence
FOE Jan 27 EFF Deeplinks
EFF Statement on ICE and CBP Violence
FOE Jan 26 Ars Technica (Security)
Why has Microsoft been routing example.com traffic to a company in Japan?
FOE Jan 26 Ars Technica (Security)
How to encrypt your PC's disk without giving the keys to Microsoft
FRIEND Jan 26 Krebs on Security
Who Operates the Badbox 2.0 Botnet?
FRIEND Jan 26 Google Project Zero
Bypassing Windows Administrator Protection
FOE Jan 25 Risky Business News
Risky Bulletin: EU readies new anti-spyware group, but with even less powers than PEGA
FOE Jan 24 Ars Technica (Security)
Poland's energy grid was targeted by never-before-seen wiper malware
FRIEND Jan 24 EFF Deeplinks
Search Engines, AI, And The Long Fight Over Fair Use
FRIEND Jan 24 EFF Deeplinks
Search Engines, AI, And The Long Fight Over Fair Use
FOE Jan 23 EFF Deeplinks
Rent-Only Copyright Culture Makes Us All Worse Off
FRIEND Jan 22 Ars Technica (Security)
Overrun with AI slop, cURL scraps bug bounties to ensure "intact mental health"
FOE Jan 22 Risky Business News
Risky Bulletin: Improperly patched bug exploited again in Fortinet firewalls
FOE Jan 22 Ars Technica (Security)
Hacker who stole 120,000 bitcoins wants a second chance—and a security job
FOE Jan 21 Ars Technica (Security)
Millions of people imperiled through sign-in links sent by SMS
FRIEND Jan 21 EFF Deeplinks
Copyright Kills Competition
FRIEND Jan 21 EFF Deeplinks
Copyright Should Not Enable Monopoly
NEUTRAL Jan 21 Privacy International
Big Brother Watch consultation response
FOE Jan 21 Privacy International
UK Government Facial Recognition Consultation
FOE Jan 21 Black Hills Information Security
Common Cyber Threats
FOE Jan 21 Recorded Future Blog
PurpleBravo’s Targeting of the IT Software Supply Chain
FOE Jan 20 EFF Deeplinks
Statutory Damages: The Fuel of Copyright-based Censorship
FOE Jan 20 EFF Deeplinks
💾 The Worst Data Breaches of 2025—And What You Can Do | EFFector 38.1
FOE Jan 20 EFF Deeplinks
💾 The Worst Data Breaches of 2025—And What You Can Do | EFFector 38.1
FOE Jan 20 Krebs on Security
Kimwolf Botnet Lurking in Corporate, Govt. Networks
FOE Jan 20 EFF Deeplinks
EFF Joins Internet Advocates Calling on the Iranian Government to Restore Full Internet Connectivity
FRIEND Jan 20 EFF Deeplinks
EFF Joins Internet Advocates Calling on the Iranian Government to Restore Full Internet Connectivity
FOE Jan 16 EFF Deeplinks
EFF Condemns FBI Search of Washington Post Reporter’s Home
FRIEND Jan 16 EFF Deeplinks
EFF Condemns FBI Search of Washington Post Reporter’s Home
FRIEND Jan 16 EFF Deeplinks
EFF to California Appeals Court: First Amendment Protects Journalist from Tech Executive’s Meritless Lawsuit
FOE Jan 16 Ars Technica (Security)
Mandiant releases rainbow table that cracks weak admin password in 12 hours
FOE Jan 16 EFF Deeplinks
Baton Rouge Acquires a Straight-Up Military Surveillance Drone
FOE Jan 16 EFF Deeplinks
Congress Wants To Hand Your Parenting to Big Tech
FOE Jan 16 Privacy International
Dual-use tech: the Shield AI example
FOE Jan 16 Privacy International
Dual-use tech: the Airbus example
FRIEND Jan 16 Recorded Future Blog
Threat and Vulnerability Management in 2026
FRIEND Jan 15 BrightTALK InfoSec
Transform Security Culture into Measurable Organizational Memory
FOE Jan 15 Ars Technica (Security)
Why I’m withholding certainty that “precise” US cyber-op disrupted Venezuelan electricity
FOE Jan 15 EFF Deeplinks
Report: ICE Using Palantir Tool That Feeds On Medicaid Data
FRIEND Jan 15 BrightTALK InfoSec
Evolving Security Culture: Aligning Human and AI Risks for Business Resilience
FOE Jan 15 Ars Technica (Security)
Many Bluetooth devices with Google Fast Pair vulnerable to “WhisperPair” hack
FRIEND Jan 15 BrightTALK InfoSec
Building Cyber Resilience Through Culture in 2026
FRIEND Jan 14 BrightTALK InfoSec
Quantify Cyber Risk Impact for Strategic M&A Growth
FOE Jan 14 Google Project Zero
A 0-click exploit chain for the Pixel 9 Part 3: Where do we go from here?
FOE Jan 14 Google Project Zero
A 0-click exploit chain for the Pixel 9 Part 2: Cracking the Sandbox with a Big Wave
FOE Jan 14 Google Project Zero
A 0-click exploit chain for the Pixel 9 Part 1: Decoding Dolby
FOE Jan 14 EFF Deeplinks
So, You’ve Hit an Age Gate. What Now?
FRIEND Jan 14 BrightTALK InfoSec
Leverage Cyber Threat Intelligence for Proactive Risk Mitigation
FRIEND Jan 14 Black Hills Information Security
Finding the Right Penetration Testing Company
FRIEND Jan 14 BrightTALK InfoSec
Securing Open-Source Dependencies at Enterprise Scale
FOE Jan 14 Krebs on Security
Patch Tuesday, January 2026 Edition
FRIEND Jan 13 OWASP Blog
Announcing the Retirement of OWASP Meetup Platform
FOE Jan 13 Recorded Future Blog
December 2025 CVE Landscape: 22 Critical Vulnerabilities Mark 120% Surge, React2Shell Dominates Threat Activity
FRIEND Jan 13 Recorded Future Blog
Best Ransomware Detection Tools
FRIEND Jan 09 Recorded Future Blog
Practitioners Reveal What Makes Threat Intelligence Programs Mature
FOE Jan 08 Krebs on Security
Who Benefited from the Aisuru and Kimwolf Botnets?
FRIEND Jan 08 EFF Deeplinks
How Hackers Are Fighting Back Against ICE
FOE Jan 07 EFF Deeplinks
ICE Is Going on a Surveillance Shopping Spree
FRIEND Jan 07 Black Hills Information Security
Deceptive-Auditing: An Active Directory Honeypots Tool
FRIEND Jan 07 NIST Cybersecurity Insights
Digital Identities: Getting to Know the Verifiable Digital Credential Ecosystem
FOE Jan 07 Recorded Future Blog
GRU-Linked BlueDelta Evolves Credential Harvesting
FOE Jan 06 EFF Deeplinks
EFFecting Change: The Human Cost of Online Age Verification
FRIEND Jan 06 EFF Deeplinks
The Homeland Security Spending Trail: How to Follow the Money Through U.S. Government Databases
FRIEND Jan 06 PortSwigger Research
Top 10 web hacking techniques of 2025: call for nominations
FOE Jan 05 Recorded Future Blog
New ransomware tactics to watch out for in 2026
FOE Jan 02 Krebs on Security
The Kimwolf Botnet is Stalking Your Local Network
FOE Jan 02 EFF Deeplinks
The Year States Chose Surveillance Over Safety: 2025 in Review
FRIEND Jan 02 EFF Deeplinks
Surveillance Self-Defense: 2025 Year in Review
About Methodology Fair Use Privacy Contact RSS

Scanning the threat landscape.