Daily Security Feed - 2026-01-27

Security Feed Digest (2026-01-27)

Hacker News: Best

• U.S. government has lost more than 10k STEM PhDs since Trump took office — Tue, 27 Jan 2026 18:35:33 +0000
• Prism — Tue, 27 Jan 2026 18:03:10 +0000
• FBI is investigating Minnesota Signal chats tracking ICE — Tue, 27 Jan 2026 17:32:05 +0000
• 430k-year-old well-preserved wooden tools are the oldest ever found — Tue, 27 Jan 2026 15:46:29 +0000
• Cloudflare claimed they implemented Matrix on Cloudflare workers. They didn’t — Tue, 27 Jan 2026 15:45:45 +0000
• TikTok users can’t upload anti-ICE videos. The company blames tech issues — Tue, 27 Jan 2026 13:44:24 +0000
• I made my own Git — Tue, 27 Jan 2026 10:55:37 +0000
• Celebrities say they are being censored by TikTok after speaking out against ICE — Tue, 27 Jan 2026 09:38:59 +0000
• Kimi Released Kimi K2.5, Open-Source Visual SOTA-Agentic Model — Tue, 27 Jan 2026 05:42:27 +0000
• A list of fun destinations for telnet — Tue, 27 Jan 2026 03:24:13 +0000
• ChatGPT Containers can now run bash, pip/npm install packages and download files — Mon, 26 Jan 2026 19:19:40 +0000
• JuiceSSH – Give me my pro features back — Mon, 26 Jan 2026 17:46:38 +0000
• RIP Low-Code 2014-2025 — Mon, 26 Jan 2026 16:11:28 +0000
• There is an AI code review bubble — Mon, 26 Jan 2026 15:38:50 +0000
• Windows 11’s Patch Tuesday nightmare gets worse — Mon, 26 Jan 2026 15:07:37 +0000
• Apple introduces new AirTag with longer range and improved findability — Mon, 26 Jan 2026 14:10:25 +0000
• Over 36,500 killed in Iran’s deadliest massacre, documents reveal — Mon, 26 Jan 2026 00:40:01 +0000

BleepingComputer

• Fortinet blocks exploited FortiCloud SSO zero day until patch is ready — Tue, 27 Jan 2026 18:19:42 -0500
• Chinese Mustang Panda hackers deploy infostealers via CoolClient backdoor — Tue, 27 Jan 2026 17:26:26 -0500
• WinRAR path traversal flaw still exploited by numerous hackers — Tue, 27 Jan 2026 14:38:24 -0500
• Nike investigates data breach after extortion gang leaks files — Tue, 27 Jan 2026 11:45:46 -0500
• Critical sandbox escape flaw found in popular vm2 NodeJS library — Tue, 27 Jan 2026 11:35:29 -0500
• US charges 31 more suspects linked to ATM malware attacks — Tue, 27 Jan 2026 11:27:04 -0500
• From Cipher to Fear: The psychology behind modern ransomware extortion — Tue, 27 Jan 2026 10:02:12 -0500
• Over 6,000 SmarterMail servers exposed to automated hijacking attacks — Tue, 27 Jan 2026 09:09:47 -0500
• Have I Been Pwned: SoundCloud data breach impacts 29.8 million accounts — Tue, 27 Jan 2026 07:25:00 -0500
• New malware service guarantees phishing extensions on Chrome web store — Mon, 26 Jan 2026 18:46:09 -0500

Darkreading

• AI & the Death of Accuracy: What It Means for Zero-Trust — Tue, 27 Jan 2026 22:31:48 GMT
• Vibe-Coded ‘Sicarii’ Ransomware Can’t Be Decrypted — Tue, 27 Jan 2026 22:15:39 GMT
• Critical Telnet Server Flaw Exposes Forgotten Attack Surface — Tue, 27 Jan 2026 21:00:21 GMT
• Microsoft Rushes Emergency Patch for Office Zero-Day — Tue, 27 Jan 2026 20:07:03 GMT
• ‘Stanley’ Toolkit Turns Chrome Into Undetectable Phishing Vector — Tue, 27 Jan 2026 18:20:28 GMT
• WorldLeaks Extortion Group Claims It Stole 1.4TB of Nike Data — Tue, 27 Jan 2026 16:41:40 GMT
• Hand CVE Over to the Private Sector — Tue, 27 Jan 2026 13:00:00 GMT
• Beauty in Destruction: Exploring Malware’s Impact Through Art — Mon, 26 Jan 2026 23:08:57 GMT

The Hacker News

• WhatsApp Rolls Out Lockdown-Style Security Mode to Protect Targeted Users From Spyware — Tue, 27 Jan 2026 22:24:00 +0530
• Experts Detect Pakistan-Linked Cyber Campaigns Aimed at Indian Government Entities — Tue, 27 Jan 2026 22:15:00 +0530
• ClickFix Attacks Expand Using Fake CAPTCHAs, Microsoft Scripts, and Trusted Web Services — Tue, 27 Jan 2026 20:08:00 +0530
• CTEM in Practice: Prioritization, Validation, and Outcomes That Matter — Tue, 27 Jan 2026 17:20:00 +0530
• Microsoft Office Zero-Day (CVE-2026-21509) - Emergency Patch Issued for Active Exploitation — Tue, 27 Jan 2026 16:07:00 +0530
• Critical Grist-Core Vulnerability Allows RCE Attacks via Spreadsheet Formulas — Tue, 27 Jan 2026 16:06:00 +0530
• China-Linked Hackers Have Used the PeckBirdy JavaScript C2 Framework Since 2023 — Tue, 27 Jan 2026 14:31:00 +0530

데일리시큐 - 최근인기기사

• MS, 공격에 악용 중인 오피스 제로데이 취약점 긴급 업데이트 배포 — 2026-01-27 15:35:19
• 코닉글로리, 김진수 대표 영입…’각자 대표 체제’로 보안 시장 공략 가속화 — 2026-01-27 01:33:15
• KISA, “자율주행 등 미래 차 대비” 자동차 사이버보안 강화를 위한 매뉴얼 발간 — 2026-01-27 11:21:24
• 감사원, 공공 ‘집중관리시스템’ 7개 모의해킹…전 시스템에서 취약점 확인 — 2026-01-27 18:02:12
• 과기정통부·KISA, 2025년 사이버 위협 동향 및 2026년 전망 발표 — 2026-01-27 17:42:26
• 한국 사이버보안 기업, ITU-D 지역사무소 주관 30여 개국 정보보안 실무 교육과정 운영 — 2026-01-27 11:27:56
• 소프트캠프X에임인텔리전스, 기업용 AI 보안 솔루션 공동개발을 위한 MOU 체결 — 2026-01-27 11:16:03
• 마이크로소프트, 차세대 AI 추론 가속기 ‘마이아 200’ 공개 — 2026-01-27 13:49:10
• 플랜아이, 글로벌 사이버 위협 인텔리전스 보안 전문 기업 ‘스텔스몰’과 공급망 보안 사업 제휴(MOA) 체결 — 2026-01-27 10:48:25
• 유닉스, 설맞이 프로모션 통해 베스트셀러 중심 할인 혜택 제공 — 2026-01-27 09:01:12

보안뉴스 > SECURITY

• [배종찬의 보안 빅데이터] 유출 책임보다 미국 로비에 더 혈안이 된 쿠팡 — Tue, 27 Jan 2026 18:42:00 +0900
• “양자 컴퓨팅으로 보안 혁신”… 광자 기반 기술로 양자 기술 상용화 앞당긴다 — Tue, 27 Jan 2026 18:39:00 +0900
• ‘rmicrosoft’… 눈치채기 힘든 글자 속임수로 마이크로소프트 사칭 — Tue, 27 Jan 2026 17:28:00 +0900
• “백신부터 무력화한다” 러시아 겨냥 암네시아 RAT 파상공세 — Tue, 27 Jan 2026 17:20:00 +0900
• “개인 변호사도 대형 로펌처럼”… BHSN, 리걸AI 에이전트 공개 — Tue, 27 Jan 2026 17:16:00 +0900
• 지엔, 글로벌 해킹 대회서 전기차 충전기 뚫었다… 2년 연속 입상 — Tue, 27 Jan 2026 15:51:00 +0900
• “폴란드 전력망 노린 대규모 공격”… 러시아 샌드웜, 신종 멀웨어 ‘다이노와이퍼’ 투입 — Tue, 27 Jan 2026 15:40:00 +0900
• ‘첨단기술보호와 전략’ 콘퍼런스 개최…모빌리티·AI·반도체 산업보안 전략 논의 — Tue, 27 Jan 2026 15:15:00 +0900
• KISA, 자동차 사이버보안 ‘테스트·검증 매뉴얼’ 발간 — Tue, 27 Jan 2026 14:40:00 +0900
• 에스에스알 ‘솔리드스텝 CCE’, 공공조달 매출 10년 연속 1위 — Tue, 27 Jan 2026 14:34:00 +0900