Daily Security Feed - 2026-01-20

Security Feed Digest (2026-01-20)

Hacker News: Best

• A 26,000-year astronomical monument hidden in plain sight (2019) — Tue, 20 Jan 2026 18:16:09 +0000
• Meta’s legal team abandoned its ethical duties — Tue, 20 Jan 2026 17:02:25 +0000
• De-dollarization: Is the US dollar losing its dominance? (2025) — Tue, 20 Jan 2026 16:03:21 +0000
• Nvidia Stock Crash Prediction — Tue, 20 Jan 2026 15:56:07 +0000
• Danish pension fund divesting US Treasuries — Tue, 20 Jan 2026 15:11:45 +0000
• Unconventional PostgreSQL Optimizations — Tue, 20 Jan 2026 14:23:44 +0000
• Running Claude Code dangerously (safely) — Tue, 20 Jan 2026 11:58:34 +0000
• I’m addicted to being useful — Tue, 20 Jan 2026 10:47:25 +0000
• The Overcomplexity of the Shadcn Radio Button — Tue, 20 Jan 2026 07:35:09 +0000
• Giving university exams in the age of chatbots — Tue, 20 Jan 2026 07:32:58 +0000
• Nova Launcher added Facebook and Google Ads tracking — Tue, 20 Jan 2026 01:03:52 +0000
• Porsche sold more electrified cars in Europe in 2025 than pure gas-powered cars — Tue, 20 Jan 2026 01:01:36 +0000
• Reticulum, a secure and anonymous mesh networking stack — Mon, 19 Jan 2026 23:59:54 +0000
• Level S4 solar radiation event — Mon, 19 Jan 2026 20:26:19 +0000
• Nearly a third of social media research has undisclosed ties to industry — Mon, 19 Jan 2026 18:17:07 +0000
• Notes on Apple’s Nano Texture (2025) — Mon, 19 Jan 2026 18:15:48 +0000
• Nvidia contacted Anna’s Archive to access books — Mon, 19 Jan 2026 11:11:10 +0000
• The coming industrialisation of exploit generation with LLMs — Mon, 19 Jan 2026 07:57:04 +0000

BleepingComputer

• OpenAI rolls out age prediction model on ChatGPT to detect your age — Tue, 20 Jan 2026 17:57:21 -0500
• ACF plugin bug gives hackers admin on 50,000 WordPress sites — Tue, 20 Jan 2026 17:12:27 -0500
• VoidLink cloud malware shows clear signs of being AI-generated — Tue, 20 Jan 2026 14:35:31 -0500
• EU plans cybersecurity overhaul to block foreign high-risk suppliers — Tue, 20 Jan 2026 13:54:38 -0500
• Gemini AI assistant tricked into leaking Google Calendar data — Tue, 20 Jan 2026 12:50:01 -0500
• Microsoft PowerToys adds new CursorWrap mouse ‘teleport’ tool — Tue, 20 Jan 2026 11:33:30 -0500
• Make Identity Threat Detection your security strategy for 2026 — Tue, 20 Jan 2026 10:01:11 -0500
• Webinar: Aligning cybersecurity purchases with what your SOC team needs — Tue, 20 Jan 2026 08:15:23 -0500
• ChatGPT Go now unlocks unlimited access to GPT-5.2 Instant for $8 — Mon, 19 Jan 2026 20:24:25 -0500
• You can get ChatGPT’s $20 Plus subscription for free for a limited time — Mon, 19 Jan 2026 20:07:57 -0500

Darkreading

• ‘CrashFix’ Scam Crashes Browsers, Delivers Malware — Tue, 20 Jan 2026 21:10:14 GMT
• Mass Spam Attacks Leverage Zendesk Instances — Tue, 20 Jan 2026 20:18:30 GMT
• Vulnerabilities Threaten to Break Chainlit AI Framework — Tue, 20 Jan 2026 18:04:28 GMT
• Google Gemini Flaw Turns Calendar Invites Into Attack Vector — Tue, 20 Jan 2026 15:52:35 GMT
• Microsoft & Anthropic MCP Servers At Risk of RCE, Cloud Takeovers — Tue, 20 Jan 2026 15:47:19 GMT

The Hacker News

• North Korea-Linked Hackers Target Developers via Malicious VS Code Projects — Wed, 21 Jan 2026 00:11:00 +0530
• Three Flaws in Anthropic MCP Git Server Enable File Access and Code Execution — Tue, 20 Jan 2026 19:25:00 +0530
• Hackers Use LinkedIn Messages to Spread RAT Malware Through DLL Sideloading — Tue, 20 Jan 2026 19:16:00 +0530
• The Hidden Risk of Orphan Accounts — Tue, 20 Jan 2026 17:28:00 +0530
• Evelyn Stealer Malware Abuses VS Code Extensions to Steal Developer Credentials and Crypto — Tue, 20 Jan 2026 17:18:00 +0530
• Cloudflare Fixes ACME Validation Bug Allowing WAF Bypass to Origin Servers — Tue, 20 Jan 2026 16:42:00 +0530
• Why Secrets in JavaScript Bundles are Still Being Missed — Tue, 20 Jan 2026 16:15:00 +0530
• Tudou Guarantee Marketplace Halts Telegram Transactions After Processing Over $12 Billion — Tue, 20 Jan 2026 13:10:00 +0530

데일리시큐 - 최근인기기사

• 정부, 사이버보안 R&D 1,191억 원 확정… 신규 과제 122억에 불과해 AI 기반 보안위협 대응 가능할지 — 2026-01-20 01:05:14
• 쿠키 훔치는 악성코드가 ‘자기 쿠키’는 못 지켰다…스틸C 패널 결함으로 운영 흔적 드러나 — 2026-01-20 01:18:09
• “캘린더 초대장 하나가 ‘제미나이’를 속였다”…제미나이 캘린더 취약점의 경고 — 2026-01-20 19:12:54
• 코어시큐리티 김태일 대표 “보안 교육, 지식 넘어 실전 대응 역량으로 완성돼야” — 2026-01-20 09:23:18
• 온라인삼국지2, 초심 서버 대규모 업데이트 청사진 공개 — 2026-01-20 11:21:38
• 퍼기, 안심하고 사용하는 ‘퓨어 아기욕조 세트’ 출시 — 2026-01-20 10:44:12
• [신년 인터뷰] 안종업 위드네트웍스 대표 “자산·취약점·이력 통합…보안 거버넌스 플랫폼 강화” — 2026-01-20 17:52:15
• 일식 프랜차이즈 삼동소바, 2025년 브랜드 대상 2관왕 수상 — 2026-01-20 11:23:59
• 웨어밸리, 서버 접근 제어 솔루션 ‘Chakra Max SAC v4.5’ GS 1등급 획득 — 2026-01-20 12:12:39
• [신년 인터뷰] 팔로알토네트웍스 박상규 대표 “유닛42 한국 공식 출범…사고대응 ‘로컬 체계’ 갖췄다” — 2026-01-20 18:30:30

보안뉴스 > SECURITY

• 오현주 국가안보실 3차장 “보안 투자 인센티브 마련하겠다”… 한국CISO협의회 제17차 정기총회 — Tue, 20 Jan 2026 18:24:00 +0900
• 캐나다 투자금융 규제 기관 CIRO, 투자자 75만 명 정보 유출 — Tue, 20 Jan 2026 16:33:00 +0900
• 보안 연구원이 해커 안방 점령… DNS 설정 오류 틈타 공격 인프라 역추적 — Tue, 20 Jan 2026 16:06:00 +0900
• 돌아온 굿로더 멀웨어, 윈도우 허점 노린 변칙 ZIP 파일로 탐지 회피 — Tue, 20 Jan 2026 15:46:00 +0900
• [2026 이메일 보안 솔루션 리포트] 클릭 한 번·발신 한 번에 무너지는 보안, ‘이메일의 두 얼굴’ — Tue, 20 Jan 2026 14:50:00 +0900
• ‘공격자처럼 생각하라’ S2W, 보안 AI ‘퀘이사’ ASM 고도화 — Tue, 20 Jan 2026 14:30:00 +0900
• LGU+, 오픈 API 생태계 확장 “금융사고 막고 통신품질 높인다” — Tue, 20 Jan 2026 14:25:00 +0900
• F5, 구글 클라우드용 ‘NGINXaaS’ 출시… 클라우드 네이티브 앱 전송·보안 강화 — Tue, 20 Jan 2026 14:05:00 +0900
• ‘IP경영분과’로 명칭 변경…KAIPS, 회원사 사업영역 확장 지원 — Tue, 20 Jan 2026 12:15:00 +0900
• CISA 국장 대행, CIO 강제 축출 시도 실패… 트럼프 행정부 임명직 간 권력 투쟁 잡음 — Tue, 20 Jan 2026 10:19:00 +0900