Cảnh báo: Lỗ hổng nghiêm trọng trên nền tảng xác thực tập trung WSO2 (ảnh hưởng đến nhiều cơ quan, tổ chức, bộ ban ngành) - VNPT Cyber Immunity
https://sec.vnpt.vn/2025/01/canh-bao-lo-hong-nghiem-trong-tren-nen-tang-xac-thuc-tap-trung-wso2-anh-huong-den-nhieu-co-quan-to-chuc-bo-ban-nganh/
FBI wipes Chinese PlugX malware from over 4,000 US computers
https://www.bleepingcomputer.com/news/security/fbi-wipes-chinese-plugx-malware-from-over-4-000-us-computers/
Fortinet warns of auth bypass zero-day exploited to hijack firewalls
https://www.bleepingcomputer.com/news/security/fortinet-warns-of-auth-bypass-zero-day-exploited-to-hijack-firewalls/
Zero-Day Vulnerability Suspected in Attacks on Fortinet Firewalls with Exposed Interfaces
https://thehackernews.com/2025/01/zero-day-vulnerability-suspected-in.html
http://WP3.XYZ
http://WP3.XYZ
Microsoft: macOS bug lets hackers install malicious kernel drivers
https://www.bleepingcomputer.com/news/security/microsoft-macos-bug-lets-hackers-install-malicious-kernel-drivers/
Google OAuth Vulnerability Exposes Millions via Failed Startup Domains
https://thehackernews.com/2025/01/google-oauth-vulnerability-exposes.html
Deep Dive Into a Linux Rootkit Malware | FortiGuard Labs
https://www.fortinet.com/blog/threat-research/deep-dive-into-a-linux-rootkit-malware
Snyk deployed 'malicious' packages, claims infoseccer • The Register
https://go.theregister.com/feed/www.theregister.com/2025/01/14/snyk_npm_deployment_removed/
Illicit HuiOne Telegram Market Surpasses Hydra, Hits $24 Billion in Crypto Transactions
https://thehackernews.com/2025/01/illicit-huione-telegram-market.html
Microsoft January 2025 Patch Tuesday fixes 8 zero-days, 159 flaws
https://www.bleepingcomputer.com/news/microsoft/microsoft-january-2025-patch-tuesday-fixes-8-zero-days-159-flaws/
Hackers use FastHTTP in new high-speed Microsoft 365 password attacks
https://www.bleepingcomputer.com/news/security/hackers-use-fasthttp-in-new-high-speed-microsoft-365-password-attacks/
CISA Adds Second BeyondTrust Flaw to KEV Catalog Amid Active Attacks
https://thehackernews.com/2025/01/cisa-adds-new-beyondtrust-flaw-to-kev.html
Office of Public Affairs | Justice Department and FBI Conduct International Operation to Delete Malware Used by China-Backed Hackers | United States Department of Justice
https://www.justice.gov/opa/pr/justice-department-and-fbi-conduct-international-operation-delete-malware-used-china-backed
Analysis of Counter-Ransomware Activities in 2024
https://blog.bushidotoken.net/2025/01/analysis-of-counter-ransomware.html
Russian-Linked Hackers Target Kazakhstan in Espionage Campaign with HATVIBE Malware
https://thehackernews.com/2025/01/russian-linked-hackers-target.html