![Cybersecurity News | Daily Recap [22 Jan 2026]](https://www.hendryadrian.com/tweet/image/DailyRecap.png "Cybersecurity News | Daily Recap [22 Jan 2026]")
Daily Recap, Active, high-risk flaws are being patched across vendors, including Ciscoβs actively exploited CVE-2026-20045 in Webex, post-exploit activity on SmarterMail, FortiCloud SSO abuse to alter FortiGate configs, and several third-party dependency and RCE/2FA issues affecting major collaboration platforms. AI framework and toolchain vulnerabilities (Chainlit, Anthropic fixes) continue to surface, with coordinated patches from Atlassian, GitLab, Zoom and a Microsoft workaround for Outlook freezes after Windows updates. #Cisco #Chainlit
Vulnerabilities & Patches
- Multiple vendors are addressing active, high-risk flaws including an actively exploited CVE-2026-20045 in Cisco Unified Communications/Webex, post-patch exploitation of SmarterMail, automated attacks abusing FortiCloud SSO to alter FortiGate configs, and several third-party dependency and RCE/2FA issues in major collaboration platforms. β Cisco Zero-day, SmarterMail Bypass, FortiGate Attacks, Vendor Patches
- Additional high-risk advisories include a Node.js binary-parser privilege-execution bug, a critical WordPress add-on affecting ~100,000 sites, and a CISA ICS advisory for Rockwell Automation Verve Asset Manager. β Node.js Bug, WordPress ACF, Rockwell ICS
- Vendor notices and fixes continue with coordinated updates from Atlassian, GitLab and Zoom (including RCE/DoS/2FA fixes), plus Microsoft offering a workaround for Outlook freezes after a Windows update. β Vendor Patches, Zoom & GitLab, Outlook Workaround
- AI framework and toolchain flaws affecting enterprise clouds and LLM frameworks (including Chainlit and fixes from Anthropic) continue to surface, raising cloud takeover and data-exfiltration risks. β Chainlit Flaws, Anthropic Fix, AI Framework Risk
Malware & Supply Chain
- A multi-stage LOLBins chain abused built-in Windows utilities to deploy Remcos and NetSupport Manager RATs and persist via stealthy registry techniques. β LOLBins RATs
- A malicious PyPI package impersonating SymPy (sympy-dev) delivers ELF payloads and launches the XMRig miner in-memory to avoid disk artifacts, highlighting open-source supply-chain risks. β PyPI Miner
- Infostealer logs from breaches (e.g., the Pccomponentes incident) are enabling convincing credential-stuffing campaigns that amplify account takeover risk. β Pccomponentes Breach
Breaches & Ransomware
- Logistics giant Ingram Micro confirmed a ransomware incident exposed data for over 42,000 people after a July 2025 attack, with ongoing notifications and credit monitoring offered to victims. β Ingram Breach
- The Everest ransomware group claimed a breach at McDonaldβs India involving customer data, consistent with continued retail and franchise targeting by extortion actors. β Everest McD India
Phishing & Social Engineering
- LastPass users are being targeted with backup-themed and fake-maintenance phishing lures aimed at stealing master passwords and credentials. β LastPass Phish, LastPass Fake Messages
- Research and reporting highlight that humans remain highly phishable and that attackers continue to exploit social engineering and testing-tool misconfigurations to breach enterprises. β You Got Phished?, Testing-App Exploits
Policy, Regulation & National Security
- The EU unveiled plans to curb reliance on Huawei and ZTE amid protectionism claims, while launching the new GCVE vulnerability platform to reduce dependence on global systems. β EU Huawei/ZTE, GCVE Launch
- UK authorities warn of rising activity from Russian-aligned hacktivist groups and a Vodafone Business survey finds 1 in 10 UK businesses doubt survival after a major cyberattack, exposing training and phishing preparedness gaps. β NCSC Hacktivists, UK Business Readiness
- Greek police arrested scammers using a hidden, trunk-mounted fake cell tower to perpetrate fraudulent schemes, highlighting physical-world SIM/telecom fraud risks. β Greek Fake Tower
Startups & AI Security
- Furl raised $10 million to advance an AI-driven autonomous vulnerability remediation platform that ingests tooling data and executes fixes. β Furl Funding
- Other emerging vendors and products include Asymmetric Security ($4.2M seed), the AI firewall aiFWall, and webinars/on-ramps for MSSPs using AI to boost margins while reducing staff. β Asymmetric Security, aiFWall, MSSP Webinar
Research, Trends & Defensive Insights
- Pwn2Own Automotive 2026 showcased offensive advances with a hacked Tesla and 37 demoed zero-days, underscoring automotive attack surfaces. β Pwn2Own Tesla
- Industry analyses and frameworks stress priorities for 2026, including MITREβs new embedded-systems security framework, rising focus on API security, exposure-assessment platforms, and healthcare cyber resilience lessons from 2025. β MITRE Embedded, API Security, Exposure Platforms, Healthcare Resilience
- Large-scale behavior studies and identity guidance reveal stagnant password practices across a dataset of 6 billion passwords and call for moving identity security beyond traditional MFA to phishing-resistant methods. β Password Analysis, Beyond MFA