Jan 21, 2026

Subject: UK’s NCSC Warns of Russian-Aligned Hacktivist Groups

Sender: info@metacurity.comD

Content:

– UK’s NCSC warns of ongoing malicious DDoS attacks by Russian-aligned hacktivist groups targeting UK critical infrastructure and local government.

– Noted threat actor NoName057(16) uses the DDoSia platform to crowdsource DDoS attacks with monetary rewards.

– International Operation Eastwood disrupted NoName057(16) in July 2025, but activity has resumed.

– UK and China established a Cyber Dialogue forum to improve communication and prevent cyber escalation.

– Makina Finance lost $4.2 million due to a DeFi exploit draining a CurveStable pool.

– Ingram Micro suffered a ransomware attack affecting 42,000+ individuals; SafePay ransomware gang claimed credit.

– Minnesota DHS data breach exposed private data of nearly 304,000 people.

– SK Telecom is appealing a record $91 million fine over a massive 23.2 million subscriber data breach.

– Malvertising campaign using fake Chrome and Edge ad-blocker “NexShield” causing browser crashes and enabling attacks.

– Security researchers released improved rainbow tables to break insecure Net-NTLMv1 authentication more easily.

Subject: Start Your 2026 Planning With Expert Insights

Sender: news@securityweek.comD

Content:

– Invitation to a January 22 webinar on a new framework for identity security addressing challenges from fragmented threats including AI-driven tools.

– Discussion includes achieving visibility and control, driving business outcomes via IT, and applying zero trust principles in an AI-driven world.

– Scheduled for security and IT leaders seeking unified approaches to identity security amidst complex threat landscapes.

– Registration link provided to secure webinar participation.

Subject: Law Enforcement Targets Suspected Black Basta Members

Sender: editor@newsletter.n2k.comD

Content:

– Ukrainian and German police raided homes of two Ukrainians linked to Black Basta ransomware gang; seized devices and cryptocurrency.

– Suspected leader Oleg Nefedov, Russian national, remains at large and is on Europol’s Most Wanted and Interpol Red Notice lists.

– Ingram Micro disclosed a July 2025 ransomware attack breached data of over 42,000 individuals, including sensitive personal info.

– SafePay ransomware gang responsible; 3.5TB of stolen data posted on their leak site.

– LinkedIn phishing campaign leveraging open-source PDF reader for DLL sideloading and persistent Python backdoor installation.

– RSAC 2026 conference announced for March 23-26 in San Francisco; registration open.

– Upcoming webinar by Tines on 5 shifts defining security team success in 2026.

Subject: Google Gemini Bug Enabled Calendar Data Thefts

Sender: news@securityweek.comD

Content:

– EU proposes phase-out of high-risk telecom suppliers linked to China.

– Vulnerabilities in Chainlit may leak sensitive information.

– APT-grade PDFSider malware used by ransomware groups.

– Exploit in Google Gemini allowed weaponized invites to steal calendar data.

– TP-Link patch issued for VIGI cameras’ remote hacking vulnerability.

– 42,000 individuals affected by Ingram Micro ransomware attack.

– Emergence of ‘SolyxImmortal’ information stealer malware.

– Cybersecurity priorities for 2026 focused on supply chain, governance, and team efficiency.

– Upcoming virtual CTF “Fetch the Flag” by Snyk starting February 12.

– Articles discussing risk, AI security, insider threats, and sector-specific cyber developments.

Stay Well!