🔐 Cybersecurity [20-Jan-2026]

 

CYBERSECURITY

Software Security & Vulnerabilities

 CVE-2026-23745: Node-tar Path Traversal

Critical path traversal vulnerability in node-tar allows arbitrary file overwrites. Patch available in v7.5.3. Read more

Source: Foresiet

 StealC Malware Control Panel XSS

Cybersecurity researchers discovered cross-site scripting vulnerability in StealC malware's control panel. Read more

Source: Cyware

 CVE-2026-1181: Stored XSS in Altium Forum

Critical stored XSS vulnerability in Altium Forum due to missing server-side validation. Read more

Source: TheHackerWire

User/Identity & Access Management (IAM)

 ServiceNow BodySnatcher Vulnerability

Critical authentication flaw allows unauthenticated attackers to impersonate ANY ServiceNow user using only their email address. Read more

Source: CyberPress

✓ Identity Access Transformation for AI Era

Identity access transformation identified as top 2026 cybersecurity priority for securing AI systems. Read more

Source: CSO Online

Data Security & Privacy

 CIRO Data Breach - 750,000 Canadian Investors

CIRO confirmed data breach impacting 750,000 Canadian investors with sensitive personal information exposed. Read more

Source: GBHackers

 Multiple Database Leak Claims

Multiple database leaks including JobsGO, MyVete, Pixpay exposed approximately 2.3 million records in early January. Read more

Source: SOCRadar

Threat Intelligence & Incident Response

 Checkpoint Threat Intelligence Report - Jan 19

Report indicates up to 9.6 million accounts potentially affected, with approximately 600 of 800 servers compromised. Read more

Source: Checkpoint Research

 Sinobi Ransomware Targets National Waste

Ransomware group Sinobi claims responsibility for cyberattack on National Waste Associates on January 19, 2026. Read more

Source: Dexpose

 Everest Ransomware Hits Nissan

Everest ransomware group claims 900GB data theft from Japanese automaker Nissan in latest attack. Read more

Source: CyberNews Centre

Hardware Security & Cryptography

✓ Post-Quantum Cryptography in .NET 10

.NET 10 introduces native post-quantum cryptography APIs for developers enabling quantum-safe encryption. Read more

Source: Anthony Giretti

✓ Post-Quantum Cryptography Market Growth

Project Eleven raises $20M Series A for post-quantum cryptography solutions as Q-Day awareness accelerates. Read more

Source: Fintech.Global

✓ Post-Quantum Cryptography Trends 2026

Digital security entering new era with digital sovereignty, post-quantum cryptography, and AI-ready data protection. Read more

Source: Utimaco

Cybersecurity Tools & Platforms

✓ 7 Top Cybersecurity Projects 2026

Top priorities include transforming identity access, strengthening email security, and leveraging AI for code discovery. Read more

Source: CSO Online

✓ Email Security Critical Focus 2026

Email security identified as critical focus area with emerging tools and approaches for preventing compromise. Read more

Source: The Hacker News