Breaking News – Cyber Threats (last 6h)
Generated: 2026-01-23 16:00 PST
- ShinyHunters claim to be behind SSO-account data theft attacks
BleepingComputer • 2026-01-23 15:35 • www.bleepingcomputer.com
The ShinyHunters extortion gang claims it is behind a wave of ongoing voice phishing attacks targeting single sign-on (SSO) accounts at Okta, Microsoft, and Google, enabling threat actors to breach corporate SaaS platforms and steal company data for extortion. […]
https://www.bleepingcomputer.com/news/security/shinyhunters-claim-to-be-behind-sso-account-data-theft-attacks/ - Friday Squid Blogging: Giant Squid in the Star Trek Universe
Schneier on Security • 2026-01-23 14:03 • www.schneier.comSpock befriends a giant space squid in the comic Star Trek: Strange New Worlds: The Seeds of Salvation #5.
As usual, you can also use this squid post to talk about the security stories in the news that I haven’t covered.
- Malicious AI extensions on VSCode Marketplace steal developer data
BleepingComputer • 2026-01-23 12:11 • www.bleepingcomputer.com
Two malicious extensions in Microsoft’s Visual Studio Code (VSCode) Marketplace that were collectively installed 1.5 million times, exfiltrate developer data to China-based servers. […]
https://www.bleepingcomputer.com/news/security/malicious-ai-extensions-on-vscode-marketplace-steal-developer-data/ - CISA confirms active exploitation of four enterprise software bugs
BleepingComputer • 2026-01-23 10:47 • www.bleepingcomputer.com
The Cybersecurity and Infrastructure Security Agency (CISA) in the U.S. warned of active exploitation of four vulnerabilities impacting enterprise software from Versa and Zimbra, the Vite frontend tooling framework, and the Prettier code formatter. […]
https://www.bleepingcomputer.com/news/security/cisa-confirms-active-exploitation-of-four-enterprise-software-bugs/
Sources: BleepingComputer, The Hacker News, KrebsOnSecurity, SANS ISC, CISA.
