January 2026 – Page 21

Zoom and GitLab Release Security Updates Fixing RCE, DoS, and 2FA Bypass Flaws

Zoom and GitLab have released security updates to resolve a number of security vulnerabilities that could result in denial-of-service (DoS) and remote code execution.
The most severe of the lot is a critical security flaw impacting Zoom Node Multimedia Routers (MMRs) that could permit a meeting participant to conduct remote code execution attacks. The vulnerability, tracked as CVE-2026-22844

Asymmetric Security Emerges From Stealth With $4.2 Million in Funding

The startup’s platform leverages AI to automate forensic investigations, accelerating incident response.

The post Asymmetric Security Emerges From Stealth With $4.2 Million in Funding appeared first on SecurityWeek.

Microsoft shares workaround for Outlook freezes after Windows update

Microsoft shared a temporary workaround for customers experiencing Outlook freezes after installing this month’s Windows security updates. […]

You Got Phished? Of Course! You’re Human…

Phishing succeeds not because users are careless, but because attackers exploit human timing, context, and emotion. Flare shows how modern phishing has become industrialized, scalable, and increasingly hard to spot. […]

aiFWall Emerges from Stealth with an AI Firewall

aiFWall is a firewall protection for AI deployments built to use AI to improve its own performance.

The post aiFWall Emerges from Stealth with an AI Firewall appeared first on SecurityWeek.

Hackers exploit security testing apps to breach Fortune 500 firms

Threat actors are exploiting misconfigured web applications used for security training and internal penetration testing, such as DVWA, OWASP Juice Shop, Hackazon, and bWAPP, to gain access to cloud environments of Fortune 500 companies and security vendors. […]

GitLab warns of high-severity 2FA bypass, denial-of-service flaws

GitLab has patched a high-severity two-factor authentication bypass impacting community and enterprise editions of its software development platform. […]

LastPass Users Targeted With Backup-Themed Phishing Emails

Threat actors may have wanted to take advantage of the holiday weekend in the United States to increase their chances of success.

The post LastPass Users Targeted With Backup-Themed Phishing Emails appeared first on SecurityWeek.

North Korean Hackers Target macOS Developers via Malicious VS Code Projects

The hackers trick victims into accessing GitHub or GitLab repositories that are opened using Visual Studio Code.

The post North Korean Hackers Target macOS Developers via Malicious VS Code Projects appeared first on SecurityWeek.

Why Identity Security Must Move Beyond MFA

By integrating identity threat detection with MFA, organizations can protect sensitive data, maintain operational continuity, and reduce risk exposure.

The post Why Identity Security Must Move Beyond MFA appeared first on SecurityWeek.

Month: January 2026