ThaiCERT

42/69 Thursday, January 22, 2026 Cybersecurity researchers have disclosed a data-stealing malware campaign dubbed Evelyn Stealer, which specifically targets software developers by spreading through malicious extensions on Visual Studio Code (VS Code). Once a victim installs a compromised extension, the malware downloads a malicious DLL and executes its primary payload using process injection, embedding itself […]

41/69 Thursday, January 22, 2026 Cybersecurity researchers have disclosed a critical security vulnerability in the Advanced Custom Fields: Extended (ACF Extended) plugin for WordPress, which could allow unauthenticated remote attackers to escalate their privileges to Administrator level. The vulnerability, tracked as CVE-2025-14533, affects ACF Extended versions 0.9.2.1 and earlier. The plugin is reportedly installed on […]

40/69 Thursday, January 22, 2026 Security researchers from Huntress have identified a new cyberattack campaign linked to a threat group known as KongTuke, which primarily targets corporate networks. The attackers use a technique dubbed “CrashFix.” The attack begins by luring users into installing a fake ad-blocking browser extension on Google Chrome called NexShield, which is […]

39/69 Wednesday, January 21, 2026 TP-Link has released a security update to address a high-severity vulnerability, tracked as CVE-2026-0629, affecting more than 32 models of VIGI C and VIGI InSight surveillance cameras. The flaw is an authentication bypass vulnerability related to the password recovery function in the device’s web-based management interface, which is widely used […]

38/69 Wednesday, January 21, 2026 Ingram Micro, a global technology distributor and supply chain services provider, disclosed that it detected a ransomware-related cyberattack on July 3, 2025. The investigation revealed that unauthorized actors accessed and exfiltrated files from the company’s internal systems between July 2 and July 3, 2025. As a result of the incident, […]

37/69 Wednesday, January 21, 2026 Cybersecurity researchers from Resecurity have identified a new malware strain named PDFSider while investigating a security incident at a Fortune 100 financial company. The malware has reportedly been used by multiple threat actors-including the Qilin ransomware group-to gain initial access and maintain long-term persistence within compromised environments. The attack chain […]

36/69 Tuesday, January 20, 2026 Microsoft has released out-of-band (OOB) updates for Windows 10, Windows 11, and Windows Server to address two critical issues introduced by the January 2026 security updates. The first issue affects Microsoft 365 Cloud PC, Remote Desktop services, and Azure Virtual Desktop, where some users experience credential prompt failures, preventing them […]

35/69 Tuesday, January 20, 2026 Researchers from the Acronis Threat Research Unit (TRU) have disclosed the discovery of a new cyber-espionage operation that exploits political developments in Venezuela as a lure to trick U.S. government personnel into opening malicious files. The campaign does not rely on advanced exploitation techniques or complex vulnerabilities; instead, it primarily […]

34/69 Tuesday, January 20, 2026 On January 18, 2026, a major cyber incident occurred in Iran when a group of hacktivists successfully breached and took control of the Badr satellite signal, resulting in the disruption of several Iranian state television channels. The signal hijacking took place at approximately 9:30 p.m. local time and lasted for […]

33/69 Monday, January 19, 2026 Cybersecurity firm Socket has identified and warned about five malicious Google Chrome extensions with a combined total of more than 2,300 installations. These extensions masqueraded as productivity and security tools for popular enterprise HR and ERP platforms such as Workday, NetSuite, and SAP SuccessFactors, with the goal of stealing authentication […]