👉 What’s happening in cybersecurity today?

Welcome to Cyber Briefing, the newsletter that informs you about the latest cybersecurity advisories, alerts, incidents and news every weekday.

First time seeing this? Please Subscribe

Get BlueSleuth-Lite

🚨 Cyber Alerts

1. CISA Adds HPE And Microsoft Flaws

The U.S. Cybersecurity and Infrastructure Security Agency has expanded its list of actively exploited vulnerabilities to include a critical flaw in HPE OneView and a legacy memory corruption issue in Microsoft Office PowerPoint. These additions require federal agencies to prioritize patching to prevent potential remote code execution and unauthorized access within their networks.

2. Astaroth Trojan Spreads Via Whatsapp

Astaroth has resurfaced in a new Brazilian campaign that utilizes a Python-based WhatsApp worm to spread its banking trojan automatically through contact lists. This evolution allows the malware to infect new devices by sending malicious ZIP files to a victim’s friends and family, effectively creating a self-reinforcing loop of infection across the region.

3. FBI Warns Of Kimsuky QR Phishing

The FBI has issued an alert regarding the North Korean hacking group Kimsuky, which is currently using malicious QR codes in spearphishing attacks against American organizations. These campaigns specifically target entities involved in North Korean policy and research, including government agencies, think tanks, and academic institutions.

For more alerts click here!

Subscribe

💥 Cyber Incidents

4. Leduc County Hit By Christmas Cyberattack

Leduc County has confirmed it was the victim of a deliberate ransomware attack that was first discovered on Christmas Day. While the investigation has temporarily disabled several online services and portals, officials report that preliminary findings suggest only minimal information was affected.

5. 377,000 Impacted In Texas Gas Data Breach

A Texas-based gas station operator recently informed the Maine Attorney General’s Office of a significant data breach that compromised the personal information of over 377,000 people. The incident involved Gulshan Management Services, a firm linked to the management of approximately 150 Handi Plus and Handi Stop locations across Texas.

6. Truebit Token Crashes After Hack

The Truebit TRU token lost nearly all of its value following a security breach that drained approximately 8,535 ether from the protocol’s reserves. The attacker exploited a vulnerability in a legacy smart contract, allowing them to acquire tokens for free and sell them back to the system to extract over 26 million dollars.

For more incidents click here!

Get Help

📢 Cyber News

7. Iran Cuts Internet Amid Protest Crackdown

Iran has implemented a total internet blackout across the country as widespread demonstrations continue to escalate in numerous cities. The government response has turned increasingly violent, with reports indicating that dozens of individuals have been killed during the crackdown as the nation grapples with record-high inflation and a failing currency.

8. Gmails New AI Inbox Uses Gemini

Google is launching AI Inbox, a feature that uses Gemini to summarize your emails and highlight your most important tasks. The company has clarified that while the AI processes your messages to provide these briefings, it does not use your personal email data to train its underlying models.

9. Russia Frees French Researcher In Swap

French researcher Laurent Vinatier has returned to France following his release from a three-year prison sentence in Russia as part of a high-profile prisoner exchange. The deal involved the release of Russian basketball player Daniil Kasatkin, who had been detained in Paris and was wanted by American authorities for alleged cybercrime.

For more news click here!

Register Here

📈Cyber Stocks

On Friday, 9th January, cybersecurity stocks mostly traded lower as broader market volatility and profit-taking influenced performance across the tech and defensive tech space. Continued enterprise demand for cloud security, identity protection and perimeter defenses provided some support, but rotation into other sectors and caution around valuations limited broader upside.

• Fortinet closed at 78.05 dollars and slipped, with broader market weakness and rotation into cyclicals outweighing steady interest in zero-trust and network-security solutions.

• Check Point Software Technologies closed at 190.76 dollars and edged higher, supported by ongoing demand for perimeter and firewall defenses amid persistent global cybersecurity threats.

• SentinelOne closed at 15.33 dollars and declined modestly, as broader tech sector caution weighed on high-growth endpoint detection and response names.

• Rapid7 closed at 14.23 dollars and eased, with profit-taking and market rotation limiting near-term gains even as enterprise investment in vulnerability management remained steady.

CyberArk Software closed at 460.93 dollars and moved lower, reflecting broader cybersecurity stock pressure even though demand for privileged access management and identity security tools remained strong.

💡 Cyber Tip

📧 📧 FBI Warns of Kimsuky QR Phishing

North Korean group Kimsuky is using malicious QR codes in spearphishing attacks to steal credentials from U.S. organizations involved in policy and research.

🔐 What You Should Do

• Do not scan QR codes from unknown or unexpected emails

• Verify event invitations, survey links, and official communications independently

• Educate staff on QR-based phishing tactics and social engineering red flags

• Monitor for unusual login activity on accounts that may have been exposed

⚠️ Why This Matters
QR code phishing bypasses traditional email security, making it easier for attackers to harvest credentials and gain access to sensitive organizational data.

Visit BookClub

📚 Cyber Book

The Smart Girl’s Guide to Privacy by Violet Blue

Get book: https://amzn.to/4qdN5KJ

That concludes today’s briefing. You can check the top headlines here!

Copyright © 2025CyberMaterial. All Rights Reserved.

Follow CyberMaterial on:

Substack, LinkedIn, Twitter, Reddit, Instagram, Facebook, YouTube, and Medium