EndlessFractal's Threat Intel Feed

EndlessFractal's Threat Intel Feed https://raw.githubusercontent.com/EndlessFractal/hosts/main/feed.xml A combined RSS feed of the 60 most recent articles from various sources http://www.rssboard.org/rss-specification python-feedgen Wed, 14 Jan 2026 16:27:09 +0000 Hackers Use Fake PayPal Notices to Steal Credentials, Deploy RMMs https://www.infosecurity-magazine.com/news/hackers-fake-paypal-notices-deploy/ Wed, 14 Jan 2026 16:00:00 +0000 Phishing scammers are posting fake “account restricted” comments on LinkedIn https://www.malwarebytes.com/blog/news/2026/01/phishing-scammers-are-posting-fake-account-restricted-comments-on-linkedin Wed, 14 Jan 2026 15:55:12 +0000 Ukraine appoints digital chief as defense minister to drive military reform https://therecord.media/ukraine-digital-chief-transformation Wed, 14 Jan 2026 15:35:17 +0000 Fortinet fixed two critical flaws in FortiFone and FortiSIEM https://securityaffairs.com/186902/uncategorized/fortinet-fixed-two-critical-flaws-in-fortifone-and-fortisiem.html Wed, 14 Jan 2026 15:07:44 +0000 AI Agents Are Becoming Privilege Escalation Paths https://thehackernews.com/2026/01/ai-agents-are-becoming-privilege.html Wed, 14 Jan 2026 15:07:00 +0000 UAC-0190 Attack Detection: Fake Charity Lures Used to Deploy the PLUGGYAPE Backdoor Against the Ukrainian Armed Forces https://socprime.com/blog/uac-0190-attacks-detection/ Wed, 14 Jan 2026 14:27:20 +0000 DeadLock Ransomware Uses Polygon Smart Contracts For Proxy Rotation https://www.infosecurity-magazine.com/news/deadlock-polygon-smart-contracts/ Wed, 14 Jan 2026 14:20:00 +0000 Hackers Exploit c-ares DLL Side-Loading to Bypass Security and Deploy Malware https://thehackernews.com/2026/01/hackers-exploit-c-ares-dll-side-loading.html Wed, 14 Jan 2026 14:18:00 +0000 Leaked Data Exposes Thousands of Border Patrol, ICE Agents After Renee Good Shooting https://www.techrepublic.com/article/news-leaked-data-exposes-thousands-border-patrol-ice-agents/ Wed, 14 Jan 2026 13:55:58 +0000 Federal agencies ordered to patch Microsoft Desktop Windows Manager bug https://therecord.media/desktop-windows-manager-vulnerability-added-to-cisa-list Wed, 14 Jan 2026 13:27:09 +0000 Cyberattack forces Belgian hospital to transfer critical care patients https://therecord.media/belgium-hospital-cyberattack-antwerp-az-monica Wed, 14 Jan 2026 13:10:48 +0000 Online shoppers at risk as Magecart skimming hits major payment networks https://www.malwarebytes.com/blog/news/2026/01/online-shoppers-at-risk-as-magecart-skimming-hits-major-payment-networks Wed, 14 Jan 2026 12:03:45 +0000 Secure Connectivity Principles for Operational Technology (OT) https://www.cisa.gov/resources-tools/resources/secure-connectivity-principles-operational-technology-ot Wed, 14 Jan 2026 12:00:00 +0000 Fortinet Fixes Critical FortiSIEM Flaw Allowing Unauthenticated Remote Code Execution https://thehackernews.com/2026/01/fortinet-fixes-critical-fortisiem-flaw.html Wed, 14 Jan 2026 11:53:00 +0000 U.S. CISA adds a flaw in Microsoft Windows to its Known Exploited Vulnerabilities catalog https://securityaffairs.com/186898/security/u-s-cisa-adds-a-flaw-in-microsoft-windows-to-its-known-exploited-vulnerabilities-catalog.html Wed, 14 Jan 2026 11:45:13 +0000 G7 Sets 2034 Deadline for Finance to Adopt Quantum-Safe Systems https://www.infosecurity-magazine.com/news/g7-2034-deadline-finance-pqc/ Wed, 14 Jan 2026 11:30:00 +0000 How real software downloads can hide remote backdoors https://www.malwarebytes.com/blog/threat-intel/2026/01/how-real-software-downloads-can-hide-remote-backdoors Wed, 14 Jan 2026 11:02:00 +0000 Brushstrokes and breaches with Terryn Valikodath https://blog.talosintelligence.com/brushstrokes-and-breaches-with-terryn-valikodath/ Wed, 14 Jan 2026 11:00:25 +0000 New Research: 64% of 3rd-Party Applications Access Sensitive Data Without Justification https://thehackernews.com/2026/01/new-research-64-of-3rd-party.html Wed, 14 Jan 2026 11:00:00 +0000 Ransomware: Tactical Evolution Fuels Extortion Epidemic https://www.security.com/threat-intelligence/ransomware-extortion-epidemic Wed, 14 Jan 2026 11:00:00 +0000 Microsoft Fixes Three Zero-Days on Busy Patch Tuesday https://www.infosecurity-magazine.com/news/microsoft-three-zerodays-busy/ Wed, 14 Jan 2026 10:45:00 +0000 UK Digital ID Scheme Faces Resistance Over Security Concerns https://www.techrepublic.com/article/news-uk-digital-id-scheme-resistance/ Wed, 14 Jan 2026 10:26:25 +0000 Impersonation Fraud Drives Record $17bn in Crypto Losses https://www.infosecurity-magazine.com/news/impersonation-fraud-record-17bn/ Wed, 14 Jan 2026 10:00:00 +0000 Microsoft Fixes 114 Windows Flaws in January 2026 Patch, One Actively Exploited https://thehackernews.com/2026/01/microsoft-fixes-114-windows-flaws-in.html Wed, 14 Jan 2026 09:38:00 +0000 Microsoft Patch Tuesday security updates for January 2026 fixed actively exploited zero-day https://securityaffairs.com/186888/hacking/microsoft-patch-tuesday-security-updates-for-january-2026-fixed-actively-exploited-zero-day.html Wed, 14 Jan 2026 08:43:09 +0000 Critical Node.js Vulnerability Can Cause Server Crashes via async_hooks Stack Overflow https://thehackernews.com/2026/01/critical-nodejs-vulnerability-can-cause.html Wed, 14 Jan 2026 07:05:00 +0000 PLUGGYAPE Malware Uses Signal and WhatsApp to Target Ukrainian Defense Forces https://thehackernews.com/2026/01/pluggyape-malware-uses-signal-and.html Wed, 14 Jan 2026 05:48:00 +0000 ISC Stormcast For Wednesday, January 14th, 2026 https://isc.sans.edu/podcastdetail/9766, (Wed, Jan 14th) https://isc.sans.edu/diary/rss/32626 Wed, 14 Jan 2026 02:30:03 +0000 California privacy agency appoints surveillance expert to board https://therecord.media/ccpa-appoints-new-board-member Wed, 14 Jan 2026 02:21:25 +0000 Patch Tuesday, January 2026 Edition https://krebsonsecurity.com/2026/01/patch-tuesday-january-2026-edition/ Wed, 14 Jan 2026 00:47:38 +0000 AZ Monica hospital in Belgium shuts down servers after cyberattack https://securityaffairs.com/186882/cyber-crime/az-monica-hospital-in-belgium-shuts-down-servers-after-cyberattack.html Tue, 13 Jan 2026 23:47:24 +0000 More than 40 countries impacted by North Korea IT worker scams, crypto thefts https://therecord.media/40-countries-impacted-nk-it-thefts-united-nations Tue, 13 Jan 2026 21:34:15 +0000 Threat Brief: MongoDB Vulnerability (CVE-2025-14847) https://unit42.paloaltonetworks.com/mongobleed-cve-2025-14847/ Tue, 13 Jan 2026 20:30:02 +0000 Cyber Legends: Inside the Mind of a Web Defender https://www.security.com/expert-perspectives/cyber-legends-web-defender Tue, 13 Jan 2026 20:30:00 +0000 Threat actor claims the theft of full customer data from Spanish energy firm Endesa https://securityaffairs.com/186861/cyber-crime/threat-actor-claims-the-theft-of-full-customer-data-from-spanish-energy-firm-endesa.html Tue, 13 Jan 2026 19:34:16 +0000 January 2026 Microsoft Patch Tuesday Summary, (Tue, Jan 13th) https://isc.sans.edu/diary/rss/32624 Tue, 13 Jan 2026 19:05:41 +0000 Microsoft Patch Tuesday for January 2026 — Snort rules and prominent vulnerabilities https://blog.talosintelligence.com/microsoft-patch-tuesday-january-2026/ Tue, 13 Jan 2026 18:29:13 +0000 Long-Running Web Skimming Campaign Steals Credit Cards From Online Checkout Pages https://thehackernews.com/2026/01/long-running-web-skimming-campaign.html Tue, 13 Jan 2026 17:30:00 +0000 Malicious Chrome Extension Steals MEXC API Keys by Masquerading as Trading Tool https://thehackernews.com/2026/01/malicious-chrome-extension-steals-mexc.html Tue, 13 Jan 2026 17:22:00 +0000 How Microsoft builds privacy and security to work hand-in-hand https://www.microsoft.com/en-us/security/blog/2026/01/13/how-microsoft-builds-privacy-and-security-to-work-hand-in-hand/ Tue, 13 Jan 2026 17:00:00 +0000 CISA Flags Actively Exploited Gogs Vulnerability With No Patch https://www.infosecurity-magazine.com/news/cisa-flags-exploited-gogs-flaw-no/ Tue, 13 Jan 2026 16:45:00 +0000 Data broker fined after selling Alzheimer’s patient info and millions of sensitive profiles https://www.malwarebytes.com/blog/news/2026/01/data-broker-fined-after-selling-alzheimers-patient-info-and-millions-of-sensitive-profiles Tue, 13 Jan 2026 16:05:33 +0000 SHADOW#REACTOR Campaign Uses Text-Only Staging to Deploy Remcos RAT https://www.infosecurity-magazine.com/news/shadowreactor-text-staging-remcos/ Tue, 13 Jan 2026 16:00:00 +0000 Dutch court convicts hacker who exploited port networks for drug trafficking https://securityaffairs.com/186851/cyber-crime/dutch-court-convicts-hacker-who-exploited-port-networks-for-drug-trafficking.html Tue, 13 Jan 2026 15:39:22 +0000 AI-Powered Crypto Scams Drive Record $17B Losses in 2025 https://www.techrepublic.com/article/news-2025-crypto-scam-losses/ Tue, 13 Jan 2026 15:00:03 +0000 Phishing Scams Exploit Browser-in-the-Browser Attacks to Steal Facebook Passwords https://www.infosecurity-magazine.com/news/phishing-scams-exploit-browser/ Tue, 13 Jan 2026 14:40:00 +0000 New Chinese-Made Malware Framework Targets Linux-Based Cloud Environments https://www.infosecurity-magazine.com/news/chinese-malware-framework-linux/ Tue, 13 Jan 2026 14:31:00 +0000 [Webinar] Securing Agentic AI: From MCPs and Tool Access to Shadow API Key Sprawl https://thehackernews.com/2026/01/webinar-t-from-mcps-and-tool-access-to.html Tue, 13 Jan 2026 13:44:00 +0000 Why iPhone users should update and restart their devices now https://www.malwarebytes.com/blog/news/2026/01/why-iphone-users-should-update-and-restart-their-devices-now Tue, 13 Jan 2026 12:55:44 +0000 1980s Hacker Manifesto https://www.schneier.com/blog/archives/2026/01/1980s-hacker-manifesto.html Tue, 13 Jan 2026 12:09:28 +0000 YoSmart YoLink Smart Hub https://www.cisa.gov/news-events/ics-advisories/icsa-26-013-03 Tue, 13 Jan 2026 12:00:00 +0000 CISA Adds One Known Exploited Vulnerability to Catalog https://www.cisa.gov/news-events/alerts/2026/01/13/cisa-adds-one-known-exploited-vulnerability-catalog Tue, 13 Jan 2026 12:00:00 +0000 Rockwell Automation FactoryTalk DataMosaix Private Cloud https://www.cisa.gov/news-events/ics-advisories/icsa-26-013-02 Tue, 13 Jan 2026 12:00:00 +0000 Rockwell Automation 432ES-IG3 Series A https://www.cisa.gov/news-events/ics-advisories/icsa-26-013-01 Tue, 13 Jan 2026 12:00:00 +0000 New Advanced Linux VoidLink Malware Targets Cloud and container Environments https://thehackernews.com/2026/01/new-advanced-linux-voidlink-malware.html Tue, 13 Jan 2026 11:57:00 +0000 What Should We Learn From How Attackers Leveraged AI in 2025? https://thehackernews.com/2026/01/what-should-we-learn-from-how-attackers.html Tue, 13 Jan 2026 11:55:00 +0000 ServiceNow Patches Critical AI Platform Flaw Allowing Unauthenticated User Impersonation https://thehackernews.com/2026/01/servicenow-patches-critical-ai-platform.html Tue, 13 Jan 2026 11:47:00 +0000 Who Decides Who Doesn’t Deserve Privacy? https://www.troyhunt.com/who-decides-who-doesnt-deserve-privacy/ Tue, 13 Jan 2026 11:41:40 +0000 Parliament Asks Security Pros to Shape Cyber Security and Resilience Bill https://www.infosecurity-magazine.com/news/parliament-security-pros-cyber/ Tue, 13 Jan 2026 11:30:00 +0000 Remote Code Execution With Modern AI/ML Formats and Libraries https://unit42.paloaltonetworks.com/rce-vulnerabilities-in-ai-python-libraries/ Tue, 13 Jan 2026 11:00:39 +0000