The beginning of 2026 reveals a landscape of subtle and targeted cyber threats, with hackers evolving their tactics even during holidays. Key incidents include malware scams, exploitation campaigns, and backdoored devices, highlighting the increasing sophistication of cyber adversaries. #KMSAuto #ColdFusionExploitation
Keypoints
- Malware disguised as KMSAuto has infected 2.8 million systems, stealing virtual assets worth $1.2 million.
- A coordinated ColdFusion exploit campaign targeted over 10 CVEs from Japan-based infrastructure during the holiday period.
- Pre-installed backdoor malware was found on certain Android tablets, granting remote access to attackers.
- Reddit banned a community dedicated to AI jailbreaks to prevent misuse and prompt injections.
- Global proxy botnets such as IPCola are expanding, offering millions of IP addresses and remote code execution capabilities.
Read More: https://thehackernews.com/2026/01/threatsday-bulletin-ghostad-drain-macos.html