![Cybersecurity News | Daily Recap [20 Jan 2026]](https://www.hendryadrian.com/tweet/image/DailyRecap.png "Cybersecurity News | Daily Recap [20 Jan 2026]")
Daily Recap, The daily cybersecurity recap emphasizes proactive defence for 2026 with CISOs prioritizing attack surface visibility and threat hunting, while noting the ETSI AI security standard and Olympics-linked cyber risk as more connected environments emerge. The summary also highlights high-profile items across malware and threats, including Black Basta leadership and an INTERPOL Red Notice, the LOTUSLITE backdoor tied to a Mustang Panda campaign targeting the U.S. government, and notable vulnerabilities and incidents such as StealC, TamperedChef ads, RondoDox using an HPE OneView flaw, Windows Cloud PC bugs, GhostPoster extensions, the CIRO data breach, a Supreme Court hack, Iran TV hijack, and OpenAI ads. #BlackBasta #MustangPanda
Strategy & Standards
- Proactive defence is recommended for 2026 as CISOs place attack surface visibility top of infrastructure priorities and threat hunting gains focus β Threat Hunting, Attack Surface
- A new European ETSI AI security standard was published while analysts warn mega-events like the Olympics increase cyber risk exposure when everything is connected β AI Standard, Olympics Risk
Malware & Threat Actors
- Black Bastaβs alleged leader was added to EU most-wanted and an INTERPOL Red Notice after Ukrainian and German authorities identified suspects tied to a group blamed for attacks on over 500 companies β Black Basta, Black Basta
- New LOTUSLITE backdoor observed targeting the U.S. government in a suspected Mustang Panda campaign β LOTUSLITE Backdoor
- A security bug in the StealC malware control panel allowed researchers to spy on threat actor operations β StealC Bug
- TamperedChef was serving malicious ads that deliver infostealers to victims via ad injection chains β TamperedChef Ads
Vulnerabilities & Exploits
- The RondoDox botnet is exploiting a critical HPE OneView vulnerability to recruit devices into its botnet β RondoDox Botnet
- Microsoft issued out-of-band Windows updates to address shutdown and Cloud PC bugs affecting users and organisations β Windows Updates
Browser & Extension Threats
- Malicious browser extensions continue to proliferate, with GhostPoster found on ~840,000 installs and credential-stealing Chrome add-ons targeting enterprise HR platforms to harvest logins β GhostPoster Extensions, Chrome Extensions
Data Breaches & Incidents
- CIRO confirmed a data breach exposed information on about 750,000 Canadian investors, prompting investigations and customer notifications β CIRO Breach
- A bankrupt scooter startup left a single key controlling its entire fleet, highlighting critical IoT misconfiguration and asset-control risks β Bankrupt Scooter
Law & Enforcement
- A Tennessee man pleaded guilty to repeatedly hacking the U.S. Supreme Courtβs filing system, admitting to sustained intrusion activity against the courtβs systems β Supreme Court Hack
Hacktivism
- Hacktivists hijacked Iranβs state TV to broadcast anti-regime messages and an appeal to protest from Reza Pahlavi, underscoring politically motivated broadcast compromises β Iran TV
Ads & Privacy
- OpenAI will start showing ads to logged-in U.S. adults on free and Go ChatGPT plans, marking a shift in the serviceβs monetisation and privacy posture β OpenAI Ads
Recaps
- Weekly threat research and incident summaries compiled for 18 January 2026 provide a cross-section of recent detections and advisories β Weekly Recap