This weekly roundup covers major global cyber incidents, emerging threats in AI and ad fraud, critical zero-day patches, and growing regulatory scrutiny affecting public and private sectors. Highlights include the disruptive attack on Russian security firm Delta, the discovery of the ShadowHS Linux post-exploitation framework, Ivanti emergency fixes for CVE-2026-1281 and CVE-2026-1340, escalating ad fraud, and a spike in EU data breach notifications. #ShadowHS #Delta
Keypoints
- A major cyberattack disrupted alarms, vehicle systems, and communications at Russian security firm Delta, with an unverified data leak circulating online.
- Cyble disclosed ShadowHS, a stealthy fileless, in-memory Linux post-exploitation framework that enables long-term access, credential theft, and covert exfiltration.
- Ivanti issued emergency patches for critical Endpoint Manager Mobile zero-days (CVE-2026-1281 and CVE-2026-1340), and CISA added CVE-2026-1281 to its KEV catalog with a rapid remediation deadline.
- Ad fraud is costing the industry billions and undermining privacy; brands must adopt independent verification, real-time audits, and continuous monitoring to ensure accountability.
- EU breach notifications rose 22% amid high GDPR fines and reform talks, while U.S. firms faced phishing and vishing extortion by groups like ShinyHunters, intensifying regulatory and governance demands.
Read More: https://thecyberexpress.com/the-cyber-express-weekly-roundup-january-2026/