Daily Security Feed - 2026-01-28

Security Feed Digest (2026-01-28)

Hacker News: Best

• Amazon cuts 16k jobs — Wed, 28 Jan 2026 15:39:11 +0000
• Airfoil (2024) — Wed, 28 Jan 2026 14:32:30 +0000
• Microsoft forced me to switch to Linux — Wed, 28 Jan 2026 14:28:21 +0000
• ICE and Palantir: US agents using health data to hunt illegal immigrants — Wed, 28 Jan 2026 12:18:12 +0000
• Show HN: The HN Arcade — Wed, 28 Jan 2026 10:50:32 +0000
• ASML staffing changes could result in a net reduction of around 1700 positions — Wed, 28 Jan 2026 08:02:42 +0000
• Rust at Scale: An Added Layer of Security for WhatsApp — Wed, 28 Jan 2026 06:21:07 +0000
• Super Monkey Ball ported to a website — Wed, 28 Jan 2026 01:44:25 +0000
• Thief of $90M in seized U.S.-controlled crypto is gov’t contractor’s son — Tue, 27 Jan 2026 21:54:29 +0000
• Time Station Emulator — Tue, 27 Jan 2026 20:35:34 +0000
• Lennart Poettering, Christian Brauner founded a new company — Tue, 27 Jan 2026 18:57:15 +0000
• Clawdbot Renames to Moltbot — Tue, 27 Jan 2026 18:08:36 +0000
• AI2: Open Coding Agents — Tue, 27 Jan 2026 17:17:54 +0000
• Amazon to shut down Go and Fresh stores — Tue, 27 Jan 2026 15:58:05 +0000
• Amazon closing its Fresh and Go stores — Tue, 27 Jan 2026 15:41:14 +0000
• Xfwl4 – The Roadmap for a Xfce Wayland Compositor — Tue, 27 Jan 2026 13:25:53 +0000
• Show HN: One Human + One Agent = One Browser From Scratch in 20K LOC — Tue, 27 Jan 2026 13:13:56 +0000
• Doing the thing is doing the thing — Tue, 27 Jan 2026 06:17:46 +0000
• Y Combinator website no longer lists Canada as a country it invests in — Mon, 26 Jan 2026 23:32:00 +0000
• I let ChatGPT analyze a decade of my Apple Watch data, then I called my doctor — Mon, 26 Jan 2026 22:29:54 +0000

BleepingComputer

• Cyberattack on Polish energy grid impacted around 30 facilities — Wed, 28 Jan 2026 17:14:35 -0500
• eScan confirms update server breached to push malicious update — Wed, 28 Jan 2026 16:00:40 -0500
• Viral Moltbot AI assistant raises concerns over data security — Wed, 28 Jan 2026 15:26:59 -0500
• New sandbox escape flaw exposes n8n instances to RCE attacks — Wed, 28 Jan 2026 12:46:57 -0500
• FBI seizes RAMP cybercrime forum used by ransomware gangs — Wed, 28 Jan 2026 12:38:45 -0500
• Empire cybercrime market owner pleads guilty to drug conspiracy — Wed, 28 Jan 2026 12:19:02 -0500
• AI Is Rewriting Compliance Controls and CISOs Must Take Notice — Wed, 28 Jan 2026 10:00:10 -0500
• SolarWinds warns of critical Web Help Desk RCE, auth bypass flaws — Wed, 28 Jan 2026 09:39:02 -0500
• Hackers hijack exposed LLM endpoints in Bizarre Bazaar operation — Wed, 28 Jan 2026 08:15:03 -0500
• Slovakian man pleads guilty to operating darknet marketplace — Wed, 28 Jan 2026 07:49:05 -0500
• New WhatsApp lockdown feature protects high-risk users from hackers — Wed, 28 Jan 2026 06:48:26 -0500
• OpenAI’s ChatGPT ad costs are on par with live NFL broadcasts — Tue, 27 Jan 2026 19:04:45 -0500

Darkreading

• Months After Patch, WinRAR Bug Poised to Hit SMBs Hardest — Wed, 28 Jan 2026 22:48:09 GMT
• Fortinet Confirms New Zero-Day Behind Malicious SSO Logins — Wed, 28 Jan 2026 21:14:27 GMT
• Consumers Reluctant to Shop at Stores That Don’t Take Security Seriously — Wed, 28 Jan 2026 20:24:40 GMT
• China-Backed ‘PeckBirdy’ Takes Flight for Cross-Platform Attacks — Wed, 28 Jan 2026 16:19:22 GMT
• Surging Cyberattacks Boost Latin America to Riskiest Region — Wed, 28 Jan 2026 14:00:00 GMT

The Hacker News

• Fake Moltbot AI Coding Assistant on VS Code Marketplace Drops Malware — Wed, 28 Jan 2026 23:16:00 +0530
• Russian ELECTRUM Tied to December 2025 Cyber Attack on Polish Power Grid — Wed, 28 Jan 2026 21:36:00 +0530
• Two High-Severity n8n Flaws Allow Authenticated Remote Code Execution — Wed, 28 Jan 2026 18:13:00 +0530
• From Triage to Threat Hunts: How AI Accelerates SecOps — Wed, 28 Jan 2026 17:25:00 +0530
• Critical vm2 Node.js Flaw Allows Sandbox Escape and Arbitrary Code Execution — Wed, 28 Jan 2026 17:20:00 +0530
• Mustang Panda Deploys Updated COOLCLIENT Backdoor in Government Cyber Attacks — Wed, 28 Jan 2026 17:10:00 +0530
• Password Reuse in Disguise: An Often-Missed Risky Workaround — Wed, 28 Jan 2026 16:00:00 +0530
• Google Warns of Active Exploitation of WinRAR Vulnerability CVE-2025-8088 — Wed, 28 Jan 2026 15:16:00 +0530
• Fake Python Spellchecker Packages on PyPI Delivered Hidden Remote Access Trojan — Wed, 28 Jan 2026 15:00:00 +0530
• Fortinet Patches CVE-2026-24858 After Active FortiOS SSO Exploitation Detected — Wed, 28 Jan 2026 10:19:00 +0530

데일리시큐 - 최근인기기사

• “전 세계 텔넷 노출 80만대”…GNU 텔넷데몬 취약점 악용 공격 시작 — 2026-01-28 09:59:50
• 클라우드플레어 설정 오류로 IPv6 BGP 경로 유출…25분간 트래픽 장애 — 2026-01-28 09:44:14
• 악성코드검거단, 과기정통부 장관상 수상 — 2026-01-28 09:51:21
• 팬텀옵티칼, 2026년 1월 금호 워터폴리스 신사옥 이전 — 2026-01-28 15:05:23
• 익수제약, 강동구립해공노인복지관에 침향정 449통 전달 — 2026-01-28 15:07:21
• 노드VPN, ChatGPT 업무 확산 속 개인정보 보호 인식 ‘위험 수위’ — 2026-01-28 09:06:17
• 네오아이앤이–시큐아이, ITDR 보안 강화를 위한 전략적 업무협약 체결 — 2026-01-28 09:03:22
• 스틸리언, KOICA 주관 인도네시아 사이버보안 인력 단기 초청연수 진행 — 2026-01-28 08:34:37
• LG유플러스, 악성 앱 서버 추적해 보이스피싱 위기 고객 3만명 보호 — 2026-01-28 08:46:49
• 케이사인, ‘2026 케이사인 파트너 테크 담당자 대상 암호화 & 키 관리 솔루션 웨비나’ 개최 — 2026-01-28 15:02:51

보안뉴스 > SECURITY

• 자동화 도구가 아무나 해킹하는 시대… 취약점 악용자 86%가 ‘정체불명’ — Wed, 28 Jan 2026 19:36:00 +0900
• 개인정보위, 글로벌 CBPR 인증 수수료 유료화… 심사·인증 체계도 분리 — Wed, 28 Jan 2026 18:02:00 +0900
• 케이사인, 파트너 대상 ‘암호화·키 관리’ 기술 웨비나 개최 — Wed, 28 Jan 2026 17:56:00 +0900
• 엘세븐시큐리티, 자산관리공사 등에 ‘이메일 개인정보 차단’ 솔루션 공급 — Wed, 28 Jan 2026 17:56:00 +0900
• ‘망분리 빗장’ 풀리자 ASM 대격돌… “가격 논란보다 ‘기술 생태계’ 조성이 먼저” — Wed, 28 Jan 2026 17:24:00 +0900
• 지정호 토스 CISO, 정보보호 유공 ‘국민포장’… “핀테크 업계 보안 수준 향상” — Wed, 28 Jan 2026 17:14:00 +0900
• [카드뉴스] “우주에서 벌어지는 인터넷 차단 전쟁”… 위성 보안, 국가 안보 최전선 부상 — Wed, 28 Jan 2026 16:34:00 +0900
• 대학 등 교육기관 겨냥 해킹, 지난해 36% 증가… 랜섬웨어 등 악성코드 공격 급증 — Wed, 28 Jan 2026 15:47:00 +0900
• 10년 만에 다시 뚫린 유통 공룡 ‘타겟’… 자체 개발 서버 털려 핵심 시스템 노출 — Wed, 28 Jan 2026 13:18:00 +0900
• 로테르담 항, 친러시아 해커 추정 DDoS 공격 받아… 우크라이나 탱크 지원에 대한 복수 — Wed, 28 Jan 2026 12:42:00 +0900