Tag: office

ClickFix to CrashFix: KongTuke Used Fake Chrome Ad Blocker to Install ModeloRAT

Jan 20, 2026 8:29 PM

Tags: attack, browser, chrome, group, hacker, office

Huntress discovers ‘CrashFix,’ a new attack by KongTuke hacker group using fake ad blockers to crash browsers and trick office workers into installing ModeloRAT malware. First seen on hackread.com Jump to article: hackread.com/clickfix-crashfix-kongtuke-fake-chrome-ad-blocker-modelorat/
Hackers target Afghan government workers with fake correspondence from senior officials

Jan 20, 2026 6:45 PM

Tags: country, email, government, hacker, office, phishing

Hackers are targeting Afghan government employees with phishing emails disguised as official correspondence from the office of the country’s prime minister, researchers found. First seen on therecord.media Jump to article: therecord.media/hackers-target-afghan-workers
Initial access broker pleads guilty to selling access to 50 corporate networks

Jan 20, 2026 3:13 PM

Tags: access, computer, corporate, network, office, unauthorized

A 40-year-old Jordanian man has admitted to selling unauthorized access to computer networks of at least 50 companies, the US Attorney’s Office of the District of New … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2026/01/20/initial-access-broker-pleads-guilty/
From arts degree to cybersecurity: Rona Michele Spiegel brings fresh perspective to cyber leadership

Jan 19, 2026 10:13 AM

Tags: ai, awareness, business, cisco, ciso, cloud, compliance, computer, cyber, cybersecurity, data, governance, group, hacking, Hardware, intelligence, jobs, network, office, penetration-testing, privacy, psychology, risk, risk-management, skills, software, startup, strategy, supply-chain, technology, tool, vulnerability

Rona Michele Spiegel’s journey to cybersecurity might seem unconventional to some: She studied the arts. But as someone who grew up when computers first appeared and everyone wanted to experiment with them, she did a lot of multimedia work. She was always interested in technology and discussed with art colleagues about where the world was…
UkraineGermany operation targets Black Basta, Russian leader wanted

Jan 17, 2026 9:14 PM

Tags: germany, group, international, law, office, ransomware, russia, ukraine

Police in Ukraine and Germany identified Black Basta suspects and issued an international wanted notice for the group’s alleged Russian leader. Ukrainian and German police raided homes linked to alleged Black Basta ransomware members, identifying two Ukrainian suspects. Law enforcement also issued an international wanted notice for the group’s alleged Russian ringleader. >>The Office of…
Microsoft’s January Security Update of High-Risk Vulnerability Notice for Multiple Products

Jan 16, 2026 10:51 AM

Tags: cyber, microsoft, network, office, risk, sql, update, vulnerability, windows

Overview On January 14, NSFOCUS CERT detected that Microsoft released the January Security Update patch, which fixed 112 security issues involving widely used products such as Windows, Microsoft Office, Microsoft SQL Server, Azure, etc., including high-risk vulnerability types such as privilege escalation and remote code execution. Among the vulnerabilities fixed by Microsoft’s monthly update this…The…
Contagious Claude Code bug Anthropic ignored promptly spreads to Cowork

Jan 15, 2026 8:51 PM

Tags: ai, attack, injection, office

Office workers without AI experience warned to watch for prompt injection attacks – good luck with that First seen on theregister.com Jump to article: www.theregister.com/2026/01/15/anthropics_claude_bug_cowork/
California AG to probe Musk’s Grok for nonconsensual deepfakes

Jan 14, 2026 7:47 PM

Tags: ai, deep-fake, intelligence, office, tool

California’s attorney general said Wednesday that his office has opened a probe into the spread of nonconsensual sexually explicit material by the artificial intelligence tool Grok. First seen on therecord.media Jump to article: therecord.media/california-grok-deepfakes-investigation
Microsoft January 2026 Patch Tuesday: 115 Vulnerabilities Fixed

Jan 14, 2026 7:11 PM

Tags: exploit, microsoft, office, update, vulnerability, windows

Microsoft kicks off 2026 with 115 security updates, including a fix for an actively exploited zero-day. Protect your Windows and Office systems today. First seen on hackread.com Jump to article: hackread.com/microsoft-january-2026-patch-tuesday-vulnerabilities/
Microsoft Patch Tuesday security updates for January 2026 fixed actively exploited zero-day

Jan 14, 2026 7:11 PM

Tags: cve, exploit, flaw, microsoft, office, sql, update, vulnerability, windows, zero-day

Microsoft Patch Tuesday addressed 112 security flaws across Windows, Office, Azure, Edge, and more, including eight critical vulnerabilities, kicking off the new year with a major patch update. Microsoft Patch Tuesday security updates for January 2026 release 112 CVEs affecting Windows, Office, Azure, Edge, SharePoint, SQL Server, SMB, and Windows management services. Including third-party Chromium…
Microsoft’s January 2026 Patch Tuesday Addresses 113 CVEs (CVE-2026-20805)

Jan 14, 2026 12:04 AM

Tags: access, attack, best-practice, cloud, cve, cyber, exploit, firmware, flaw, Internet, malicious, microsoft, mitre, ntlm, office, rce, remote-code-execution, service, social-engineering, sql, technology, update, vulnerability, windows, zero-day

8Critical 105Important 0Moderate 0Low Microsoft addresses 113 CVEs in the first Patch Tuesday of 2026, with two zero-days, including one that was exploited in the wild. Microsoft patched 113 CVEs in its January 2026 Patch Tuesday release, with eight rated critical and 105 rated as important. Our counts omitted one CVE that was assigned by…
Microsoft’s January 2026 Patch Tuesday Addresses 113 CVEs (CVE-2026-20805)

Jan 14, 2026 12:04 AM

Tags: access, attack, best-practice, cloud, cve, cyber, exploit, firmware, flaw, Internet, malicious, microsoft, mitre, ntlm, office, rce, remote-code-execution, service, social-engineering, sql, technology, update, vulnerability, windows, zero-day

8Critical 105Important 0Moderate 0Low Microsoft addresses 113 CVEs in the first Patch Tuesday of 2026, with two zero-days, including one that was exploited in the wild. Microsoft patched 113 CVEs in its January 2026 Patch Tuesday release, with eight rated critical and 105 rated as important. Our counts omitted one CVE that was assigned by…
CESER chief touts AI projects as congressional Dems point to federal cuts

Jan 14, 2026 12:04 AM

Tags: ai, cyber, cybersecurity, jobs, office

A Trump administration official endorsed a slate of congressional bills Tuesday targeting cybersecurity in the energy sector while touting the office’s new emphasis on AI-driven cyber defenses. Meanwhile, Democratic members repeatedly pressed him over the cybersecurity and reliability impacts from thousands of job cuts that have taken place at the Department of Energy over the…
CESER chief touts AI projects as congressional Dems point to federal cuts

Jan 14, 2026 12:04 AM

Tags: ai, cyber, cybersecurity, jobs, office

A Trump administration official endorsed a slate of congressional bills Tuesday targeting cybersecurity in the energy sector while touting the office’s new emphasis on AI-driven cyber defenses. Meanwhile, Democratic members repeatedly pressed him over the cybersecurity and reliability impacts from thousands of job cuts that have taken place at the Department of Energy over the…
CESER chief touts AI projects as congressional Dems point to federal cuts

Jan 14, 2026 12:04 AM

Tags: ai, cyber, cybersecurity, jobs, office

A Trump administration official endorsed a slate of congressional bills Tuesday targeting cybersecurity in the energy sector while touting the office’s new emphasis on AI-driven cyber defenses. Meanwhile, Democratic members repeatedly pressed him over the cybersecurity and reliability impacts from thousands of job cuts that have taken place at the Department of Energy over the…
Cyber fraud network behind Euro5,93 million in losses dismantled in Spain

Jan 12, 2026 12:02 PM

Tags: cyber, fraud, network, office

The Spanish National Police (PolicÃa Nacional), working closely with the Bavarian State Criminal Police Office (Bayerisches Landeskriminalamt) and with support from Europol, … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2026/01/12/europol-black-axe-criminal-organization/
CISOs’ top 10 cybersecurity priorities for 2026

Jan 12, 2026 9:01 AM

Tags: access, ai, attack, authentication, business, ciso, cloud, compliance, control, corporate, cyber, cyberattack, cybersecurity, data, deep-fake, defense, gartner, google, hacker, identity, intelligence, international, leak, monitoring, network, office, passkey, resilience, risk, risk-management, service, software, strategy, supply-chain, technology, threat, tool, training, unauthorized, zero-trust

Prepping for AI-enabled attacks: Although conventional tasks dominate the CISO priorities in the Foundry survey, interviews and other research show that AI-related issues are also high on the CISO priority list.For example, 53% of security leaders ranked AI-enabled cyber threats as a top-three organizational risk in a global survey conducted by Boston Consulting Group. BCG…
CISOs’ top 10 cybersecurity priorities for 2026

Jan 12, 2026 9:01 AM

Tags: access, ai, attack, authentication, business, ciso, cloud, compliance, control, corporate, cyber, cyberattack, cybersecurity, data, deep-fake, defense, gartner, google, hacker, identity, intelligence, international, leak, monitoring, network, office, passkey, resilience, risk, risk-management, service, software, strategy, supply-chain, technology, threat, tool, training, unauthorized, zero-trust

Prepping for AI-enabled attacks: Although conventional tasks dominate the CISO priorities in the Foundry survey, interviews and other research show that AI-related issues are also high on the CISO priority list.For example, 53% of security leaders ranked AI-enabled cyber threats as a top-three organizational risk in a global survey conducted by Boston Consulting Group. BCG…
Europol Arrests 34 Black Axe Members in Spain Over Euro5.9M Fraud and Organized Crime

Jan 10, 2026 11:02 AM

Tags: crime, fraud, international, office, organized

Europol on Friday announced the arrest of 34 individuals in Spain who are alleged to be part of an international criminal organization called Black Axe.As part of an operation conducted by the Spanish National Police, in coordination with the Bavarian State Criminal Police Office and Europol, 28 arrests were made in Seville, along with three…
Labour MP Josh Simons to lead digital ID scheme

Jan 9, 2026 7:01 AM

Tags: government, office

Cabinet Office parliamentary secretary Josh Simons to become digital ID minister as government prepares to launch public consultation on the scheme First seen on computerweekly.com Jump to article: www.computerweekly.com/news/366636979/Labour-MP-Josh-Simons-to-lead-digital-ID-scheme
CISA flags actively exploited Office relic alongside fresh HPE flaw

Jan 8, 2026 4:01 PM

Tags: cisa, exploit, flaw, office

Max-severity OneView hole joins a PowerPoint bug that should’ve been retired years ago First seen on theregister.com Jump to article: www.theregister.com/2026/01/08/cisa_oneview_powerpoint_bugs/
U.S. CISA adds HPE OneView and Microsoft Office PowerPoint flaws to its Known Exploited Vulnerabilities catalog

Jan 8, 2026 1:01 PM

Tags: cisa, cve, cybersecurity, exploit, flaw, infrastructure, kev, microsoft, office, vulnerability

U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds HPE OneView and Microsoft Office PowerPoint flaws to its Known Exploited Vulnerabilities catalog. The U.S. Cybersecurity and Infrastructure Security Agency (CISA) added HPE OneView and Microsoft Office PowerPoint flaws to its Known Exploited Vulnerabilities (KEV) catalog. Below are the flaws added to the catalog: CVE-2009-0556 is a memory corruption flaw…
CISA Flags Microsoft Office and HPE OneView Bugs as Actively Exploited

Jan 8, 2026 8:01 AM

Tags: cisa, cve, cybersecurity, exploit, flaw, infrastructure, injection, kev, microsoft, office, vulnerability

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Wednesday added two security flaws impacting Microsoft Office and Hewlett Packard Enterprise (HPE) OneView to its Known Exploited Vulnerabilities (KEV) catalog, citing evidence of active exploitation.The vulnerabilities are listed below -CVE-2009-0556 (CVSS score: 8.8) – A code injection vulnerability in Microsoft Office First seen on thehackernews.com…
Phishers Exploit Office 365 Users Who Let Their Guard Down

Jan 8, 2026 12:01 AM

Tags: exploit, microsoft, office, phishing

Microsoft said that Office 365 tenants with weak configurations and who don’t have strict anti-spoofing protection enabled are especially vulnerable. First seen on darkreading.com Jump to article: www.darkreading.com/cloud-security/phishers-exploit-office-365-users-guard-down
Home Office digital-only eVisa system could be ruled unlawful

Jan 7, 2026 4:01 PM

Tags: data, office

The Home Office is facing a judicial review in early March 2026 over its policy of refusing to allow alternative proof of immigration status outside of the electronic visa system, despite data quality and integrity issues that have been plaguing the system since its inception First seen on computerweekly.com Jump to article: www.computerweekly.com/news/366637019/Home-Office-digital-only-eVisa-system-could-be-ruled-unlawful
Threat Actors Exploit Office Assistant to Deliver Malicious Mltab Browser Plugin

Jan 6, 2026 3:52 PM

Tags: ai, china, cyber, exploit, intelligence, malicious, malware, office, software, technology, threat

A sophisticated malware campaign has been discovered exploiting Office Assistant, a widely used AI-powered productivity software in China, to distribute a malicious browser plugin that hijacks user traffic and exfiltrates sensitive information. The RedDrip Team from QiAnXin Technology’s Threat Intelligence Center uncovered this operation, which has been active since at least May 2024 and has…
Fujitsu Post Office IT support team were ‘legalised hackers’

Jan 6, 2026 12:52 PM

Tags: backdoor, hacker, office

Backdoors meant it was possible for Fujitsu staff to steal money from Post Office branches, says former Fujitsu tech worker First seen on computerweekly.com Jump to article: www.computerweekly.com/news/366636770/Former-Fujitsu-IT-support-team-were-legalised-hackers
Windows und Office: Aktivierungstool infiziert 2,8 Millionen Systeme mit Malware

Jan 5, 2026 11:52 AM

Tags: malware, office, windows

Ein 29-Jähriger soll unzählige PCs mit Malware verseucht haben. Opfer wurden mit einer kostenlosen Aktivierung für Windows und Office gelockt. First seen on golem.de Jump to article: www.golem.de/news/windows-und-office-aktivierungstool-infiziert-2-8-millionen-systeme-mit-malware-2601-203792.html
Cybersecurity leaders’ resolutions for 2026

Jan 5, 2026 8:52 AM

Tags: ai, api, attack, automation, breach, business, cio, ciso, cloud, communications, compliance, computing, control, cryptography, cyber, cybersecurity, data, detection, encryption, exploit, fedramp, finance, governance, group, identity, incident response, intelligence, jobs, mitigation, office, resilience, risk, saas, service, skills, soc, social-engineering, strategy, supply-chain, threat, tool, vulnerability, vulnerability-management

2. AI will dominate the agenda: Standard Chartered group CISO Cezary Piekarski expects his agenda to be dominated by AI in two ways: defining both the threat landscape and defensive architecture.”Speed is essential when mitigating attacks so leveraging AI and orchestration tools allows us to quickly automate detection and streamline incident response,” Piekarski says. “This…
U.S. Treasury Lifts Sanctions on Three Individuals Linked to Intellexa and Predator Spyware

Dec 31, 2025 7:51 AM

Tags: control, office, spyware

The U.S. Department of the Treasury’s Office of Foreign Assets Control (OFAC) on Tuesday removed three individuals linked to the Intellexa Consortium, the holding company behind a commercial spyware known as Predator, from the specially designated nationals list.The names of the individuals are as follows -Merom HarpazAndrea Nicola Constantino Hermes GambazziSara Aleksandra Fayssal Hamou First…