Listen to our podcast here โฌ

https://open.spotify.com/episode/2g0i3bU7mwCylynhChpJva?si=r4Thtz0zStGDAVHnxEwrZw

Welcome to Cyber Briefing, the newsletter that informs you about the latest cybersecurity advisories, alerts, incidents and news every weekday.

First time seeing this? Please subscribe

Get BlueSleuth-Lite

๐Ÿšจ Cyber Alerts

1. Konni Hackers Use AI Backdoor Targeting Blockchain

The North Korean cyber group Konni has expanded its global reach by using AI-generated PowerShell malware to target blockchain developers across Japan, India, and Australia. These sophisticated campaigns utilize malicious email links and legitimate advertising redirection services to bypass security filters and deploy remote access tools for persistent system control.

2. Fortinet Confirms Active FortiGate SSO Bypass

Fortinet is currently developing a comprehensive fix for a FortiCloud SSO authentication bypass vulnerability after discovering that attackers are successfully targeting already patched firewalls. The company's security team identified a new attack path that allows hackers to circumvent existing security updates and gain unauthorized access through manipulated SAML messages.

3. CISA Warns VMware RCE Now Exploited

CISA has issued an urgent mandate for federal agencies to patch a critical remote code execution vulnerability in VMware vCenter Server by February 13th. Both Broadcom and federal officials confirmed that attackers are actively exploiting this flaw, which allows unauthorized users to gain control over virtual management systems without any user interaction.

For more alerts click here!

Click here to RSVP

๐Ÿ’ฅ Cyber Incidents

4. Crunchbase Confirms Data Breach Claims

Crunchbase has officially confirmed a security breach following the unauthorized publication of corporate data by the cybercrime group ShinyHunters. The hackers claim to have exfiltrated over 2 million records and released a significant volume of compressed files after the company declined to meet their ransom demands.

5. ShinyHunters Claim Okta SSO Hacks

The ShinyHunters extortion group has claimed responsibility for a series of voice phishing attacks targeting employees at major organizations using Okta, Microsoft, and Google for single sign-on services. By impersonating IT support staff, the attackers trick victims into surrendering their credentials and authentication codes to gain unauthorized access to corporate platforms for data theft and extortion.

6. Nike Probes Possible Data Breach Claims

Nike is looking into a potential security compromise following claims by the WorldLeaks group that they successfully breached the company's internal servers. The sportswear corporation has officially launched a formal investigation to determine the validity of the group's claims and the extent of any data exposure.

For more incidents click here!

Click to Join

๐Ÿ“ข Cyber News

7. 1Password Adds Phishing Site Warnings

1Password has introduced a new security feature that proactively alerts users when they land on potential phishing websites. This update aims to prevent credential theft by warning users who might otherwise manually enter their information on deceptive or typosquatted domains.

8. Microsoft Probes Windows 11 Boot Failures

Microsoft is currently looking into reports of Windows 11 systems failing to start following the January 2026 security updates. The problem specifically impacts physical hardware running versions 24H2 and 25H2, resulting in a blue screen error known as UNMOUNTABLE_BOOT_VOLUME.

9. NTSB Probes Waymo Robotaxi Bus Violations

The National Transportation Safety Board has launched an investigation into Waymo robotaxis for failing to stop for school buses in Austin, Texas. While Waymo maintains that its safety performance is superior to human drivers, federal investigators are examining why the vehicles continued to pass buses loading or unloading students even after a software update.

For more news click here

Get Help

๐Ÿ“ˆCyber Stocks

Trading at the start of the week on Monday, 26 January 2026, cybersecurity stocks showed a mixed to constructive tone, supported by renewed interest in tech and resilient demand for security solutions amid ongoing digital threat activity. Rotation within the broader market favored growth sectors, particularly cloud security and identity management names, while select mid-cap cybersecurity names displayed relative stability in a cautious macro environment.

  • Palo Alto Networks closed near current session levels around 180 dollars and was modestly lower, as platform and cloud security leaders balanced steady enterprise demand against broader tech rotation.
  • CrowdStrike finished about 452 dollars and was slightly down, reflecting persistent investor focus on long-term cloud and endpoint protection trends even amid short-term profit-taking.
  • Okta closed around 90.8 dollars and moved modestly lower, with identity and access management stocks tracking broad technology softness.
  • Zscaler finished near 209.6 dollars and was resilient to weakness, supported by continued interest in zero-trust cloud security adoption.
  • Fortinet closed about 81.6 dollars and edged higher, as network security hardware and services saw selective buying amid sector rotation.

๐Ÿ’ก Cyber Tip

๐Ÿ”ฅ Fortinet Confirms Active FortiGate SSO Bypass

Fortinet has confirmed that attackers are actively bypassing FortiGate FortiCloud SSO protections, including on fully patched devices. The attack abuses crafted SAML authentication messages to gain administrative access, establish persistence, and exfiltrate firewall configuration data. A comprehensive fix is still in development.

๐Ÿ› ๏ธ What You Should Do

  • Disable FortiCloud SSO if it is not strictly required
  • Restrict administrative access from the internet using local policies
  • Monitor for suspicious administrative logins and unknown user accounts
  • Review systems for unauthorized configuration exports
  • Apply Fortinet's upcoming patches immediately once released

โš ๏ธ Why This Matters A compromised firewall gives attackers deep control over network traffic, VPN access, and security policies. Until a permanent fix is available, applying temporary mitigations is critical to prevent long term network compromise.

Click to Visit Book Club

๐Ÿ“š Cyber Book

Outsmarting Business Email Compromise by Philippe Flichy

Get book: https://amzn.to/3LQuZiS

๐Ÿ’ผ Cyber Jobs

Today's 10 curated cybersecurity job openings:

  1. ๐Ÿ‡ฎ๐Ÿ‡ณ HR Path โ€” Associate Security Analyst, Bengaluru, Karnataka, India โ€” Apply
  2. ๐Ÿ‡ฎ๐Ÿ‡ณ Power Bridge โ€” Cybersecurity Operations Junior Engineer, Bengaluru, Karnataka, India โ€” Apply
  3. ๐Ÿ‡ฎ๐Ÿ‡ณ Equifax โ€” Infosec Analyst, Mumbai Metropolitan Region, India โ€” Apply
  4. ๐Ÿ‡บ๐Ÿ‡ธ MITRE โ€” Cyber New Professional, San Diego, California, United States โ€” Apply
  5. ๐Ÿ‡บ๐Ÿ‡ธ Essentials โ€” Associate Information Security Analyst, United States (Remote) โ€” Apply
  6. ๐Ÿ‡บ๐Ÿ‡ธ Legends Global โ€” IT Security Specialist, Conshohocken, Pennsylvania, United States โ€” Apply
  7. ๐Ÿ‡บ๐Ÿ‡ธ Ivy League Client Server โ€” Graduate IT Security Operations Engineer, United States (Remote) โ€” Apply
  8. ๐Ÿ‡ฌ๐Ÿ‡ง KLA โ€” Cybersecurity Analyst (SOC, Entry Level), Newport, England, United Kingdom โ€” Apply
  9. ๐Ÿ‡ฌ๐Ÿ‡ง Barclay Simpson โ€” Service Analyst (Cyber Security), London Area, United Kingdom โ€” Apply
  10. ๐Ÿ‡ฌ๐Ÿ‡ง Proofpoint โ€” Triage Analyst (Entry Level Role), Reading, England, United Kingdom โ€” Apply

If you know someone on the job hunt, share this with them!

Click for more Jobs

๐Ÿ“… Cyber Events

Find global upcoming cybersecurity events here.

  1. ๐Ÿ‡บ๐Ÿ‡ธ Public Sector Summit: Innovating Government Applications for AI 2026 (Physical, United States) โ€” January 28 โ€” RSVP
  2. ๐Ÿ‡บ๐Ÿ‡ธ Robots vs Robots: Fighting AI-Powered Email Attacks (Online) โ€” January 28 โ€” RSVP
  3. ๐Ÿ‡บ๐Ÿ‡ธ CTI Overload: Making Threat Intel Work for CTEM (Online) โ€” January 29 โ€” RSVP
  4. ๐Ÿ‡บ๐Ÿ‡ธ Transforming Your Network with Barracuda SecureEdge (Online) โ€” January 29 โ€” RSVP
  5. ๐Ÿ‡ฌ๐Ÿ‡ง OT Cyber Security Becomes Regulated Risk: Understanding the UK CSRB (Online) โ€” January 29 โ€” RSVP
  6. ๐Ÿ‡บ๐Ÿ‡ธ ImmuniWeb AI Platform in 2026: New Products and Capabilities (Online) โ€” January 29 โ€” RSVP
  7. ๐Ÿ‡บ๐Ÿ‡ธ FutureCon CyberSecurity Conference: Chicago 2026 (Hybrid, Chicago, United States) โ€” January 29 โ€” RSVP
  8. ๐Ÿ‡บ๐Ÿ‡ธ The Top 7 Salesforce Data Trends in 2026: Odaseva's Predictions (Online) โ€” January 29 โ€” RSVP
  9. ๐Ÿ‡ช๐Ÿ‡บ EU AI Act and ISO 42001: Optimising Your AI Management System Strategy (Online) โ€” January 29 โ€” RSVP
  10. ๐Ÿ‡บ๐Ÿ‡ธ Ask Me Anything Cyber (Online) โ€” Global โ€” January 29 โ€” RSVP

Click to Register

That concludes today's briefing. You can check the top headlines here!

https://youtu.be/NywCv9-Yj8g

Copyright ยฉ 2026 CyberMaterial. All Rights Reserved.

Follow CyberMaterial on:

Substack, LinkedIn, Twitter, Reddit, Instagram, Facebook, YouTube, and Medium