N2K

Need 2 Know

Ho ho ho! December’s Patch Tuesday delivers three zero-days

January 2, 2026

This is a subtitle for your new post

New Update on Jaguar Land Rover Cyberattack: Q3 Wholesales Down 43%

6 months after facing a cyberattack, JLR releases an update.

Why it’s Time to Move on From Legacy Access Control Systems

The modern workplace or campus looks very different from even a decade ago — and older access control systems struggle to keep up.

New Malware Campaign Targeting Hospitality Sector

algerj@bnpmedia.com (Jordyn Alger)

Security leaders discuss a new campaign targeting hospitality.

Is Email the Entry Point to a Well-Rounded Disinformation Attack?

Email has always been the nervous system of business communication and is trusted, immediate and universal.

Google Cloud Service Exploited in New Phishing Campaign

algerj@bnpmedia.com (Jordyn Alger)

A phishing campaign is exploiting this Google service.

The AI Powered Classroom Network of the Future: Because Hackers Never Take Recess

Artificial intelligence is reshaping instruction, cybersecurity threats are becoming more advanced, and digital tools are expanding faster than most districts can keep up with.

Compliance Theater: Why Cybersecurity’s Favorite Shakespearean Tragedy is Failing Us

IT security teams, especially the compliance cast, love drama. The slower, more arcane, and less intelligible the script, the louder the applause.

Communication Criticized in Handling of Recent Healthcare Hack

This organization’s post-breach communication concerned some individuals.

Agentic AI Security Is Complicated, and the Hyper-Scalers Know It

3 best practices for secure and efficient Agentic AI adoption and use.

Humans at the Center of AI Security

AI isn’t erasing security roles. It’s reshaping them.

Russian APT28 Runs Credential-Stealing Campaign Targeting Energy and Policy Organizations

info@thehackernews.com (The Hacker News)

Russian state-sponsored threat actors have been linked to a fresh set of credential harvesting attacks targeting individuals associated with a Turkish energy and nuclear research agency, as well as staff affiliated with a European think tank and organizations in North Macedonia and Uzbekistan. The activity has been attributed to APT28 (aka BlueDelta), which was attributed to a "sustained"

Cybersecurity Predictions 2026: The Hype We Can Ignore (And the Risks We Can't)

info@thehackernews.com (The Hacker News)

As organizations plan for 2026, cybersecurity predictions are everywhere. Yet many strategies are still shaped by headlines and speculation rather than evidence. The real challenge isn’t a lack of forecasts—it’s identifying which predictions reflect real, emerging risks and which can safely be ignored. An upcoming webinar hosted by Bitdefender aims to cut through the noise with a data-driven

Trend Micro Apex Central RCE Flaw Scores 9.8 CVSS in On-Prem Windows Versions

info@thehackernews.com (The Hacker News)

Trend Micro has released security updates to address multiple security vulnerabilities impacting on-premise versions of Apex Central for Windows, including a critical bug that could result in arbitrary code execution. The vulnerability, tracked as CVE-2025-69258, carries a CVSS score of 9.8 out of a maximum of 10.0. The vulnerability has been described as a case of remote code execution

CISA Retires 10 Emergency Cybersecurity Directives Issued Between 2019 and 2024

info@thehackernews.com (The Hacker News)

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Thursday said it's retiring 10 emergency directives (Eds) that were issued between 2019 and 2024. The list of the directives now considered closed is as follows - ED 19-01: Mitigate DNS Infrastructure Tampering ED 20-02: Mitigate Windows Vulnerabilities from January 2020 Patch Tuesday ED 20-03: Mitigate Windows DNS Server

FBI Warns North Korean Hackers Using Malicious QR Codes in Spear-Phishing

info@thehackernews.com (The Hacker News)

The U.S. Federal Bureau of Investigation (FBI) on Thursday released an advisory warning of North Korean state-sponsored threat actors leveraging malicious QR codes in spear-phishing campaigns targeting entities in the country. "As of 2025, Kimsuky actors have targeted think tanks, academic institutions, and both U.S. and foreign government entities with embedded malicious Quick Response (QR)

WhatsApp Worm Spreads Astaroth Banking Trojan Across Brazil via Contact Auto-Messaging

info@thehackernews.com (The Hacker News)

Cybersecurity researchers have disclosed details of a new campaign that uses WhatsApp as a distribution vector for a Windows banking trojan called Astaroth in attacks targeting Brazil. The campaign has been codenamed Boto Cor-de-Rosa by Acronis Threat Research Unit. "The malware retrieves the victim's WhatsApp contact list and automatically sends malicious messages to each contact to further

China-Linked UAT-7290 Targets Telecoms with Linux Malware and ORB Nodes

info@thehackernews.com (The Hacker News)

A China-nexus threat actor known as UAT-7290 has been attributed to espionage-focused intrusions against entities in South Asia and Southeastern Europe. The activity cluster, which has been active since at least 2022, primarily focuses on extensive technical reconnaissance of target organizations before initiating attacks, ultimately leading to the deployment of malware families such as RushDrop

ThreatsDay Bulletin: RustFS Flaw, Iranian Ops, WebUI RCE, Cloud Leaks, and 12 More Stories

info@thehackernews.com (The Hacker News)

The internet never stays quiet. Every week, new hacks, scams, and security problems show up somewhere. This week’s stories show how fast attackers change their tricks, how small mistakes turn into big risks, and how the same old tools keep finding new ways to break in. Read on to catch up before the next wave hits. Honeypot Traps Hackers Hackers Fall for

The State of Trusted Open Source

info@thehackernews.com (The Hacker News)

Chainguard, the trusted source for open source, has a unique view into how modern organizations actually consume open source software and where they run into risk and operational burdens. Across a growing customer base and an extensive catalog of over 1800 container image projects, 148,000 versions, 290,000 images, and 100,000 language libraries, and almost half a billion builds, they can see

Cisco Patches ISE Security Vulnerability After Public PoC Exploit Release

info@thehackernews.com (The Hacker News)

Cisco has released updates to address a medium-severity security flaw in Identity Services Engine (ISE) and ISE Passive Identity Connector (ISE-PIC) with a public proof-of-concept (PoC) exploit. The vulnerability, tracked as CVE-2026-20029 (CVSS score: 4.9), resides in the licensing feature and could allow an authenticated, remote attacker with administrative privileges to gain access to

The first sets with Lego’s new Smart Brick are now available for preorder

Andrew Liszewski

It may have been one of the smallest devices announced at CES 2026, but Lego's new Smart Brick was also one of the most talked about debuts of the show. We've recognized it as the "Best in show" in our CES 2026 awards, and following the Smart Play system's launch earlier this week, the first […]

Baldur’s Gate 3 studio says it won’t use AI for concept art or writing

Following some controversy, the developers at Baldur's Gate 3 creator Larian Studios have further clarified their use of generative AI. CEO Swen Vincke and other Larian developers held an AMA on Reddit where they answered users' questions about the team's next title, Divinity. They also fielded questions related to reports that the studio was using […]

Democrats ask Apple and Google to remove X’s undressing bot from their app stores

Apple and Google are being dragged into the uproar around X's AI chatbot that has continued to virtually undress women in images without their consent this week. In a letter to Apple CEO Tim Cook and Google CEO Sundar Pichai, Sens. Ron Wyden (D-OR), Ben Ray Lujan (D-NM), and Ed Markey (D-MA) wrote that "X's […]

Anker’s new AeroFit Pro 2 earbuds are already $30 off

Cameron Faulkner

We saw a ton of cool new products at CES 2026, but not all of them made the cut when it came to deciding what was best of show. One of those products that we nevertheless think holds promise is Anker’s AeroFit Pro 2, which are wireless earbuds that can double as open-ear headphones. You […]

You can break apart and share this 10K power bank like a KitKat bar

Andrew Liszewski

Accessory maker Nimble announced a new power bank at CES 2026 that will appeal to anyone who's had to reluctantly share or loan their portable charger to someone else. The Champ Stack 10K looks like a typical 10,000mAh power bank that's jumped on the built-in charging cable bandwagon, but it has one interesting difference: you […]

CES 2026 was awash in bodily fluids

This is Optimizer, a weekly newsletter sent every Friday from Verge senior reviewer Victoria Song that dissects and discusses the latest phones, smartwatches, apps, and other gizmos that swear they're going to change your life. Optimizer arrives in our subscribers' inboxes at 10AM ET. Opt in for Optimizer here. At CES 2026 this week, people […]

The Vergecast Live at CES 2026: What is the point of a robot that falls over?

This year's CES was an odd one. This is a conference usually dominated by futuristic, expensive TVs and futuristic, expensive cars, but those things weren't what dominated CES 2026. Instead, Las Vegas was filled with new ideas about old gadgets and showed us a whole lot of really impressive hardware waiting on software to catch […]

Kia’s EV2 is its smallest and most affordable EV for Europe

Andrew J. Hawkins

Kia unveiled the EV2, a small and affordably priced electric vehicle built for the European market. The EV2 made its debut at the Brussels Auto Show, where executives touted it as its "most compact" EV to date. Of course, it was another in a long line of affordable, capable, and impressively designed EVs that won't […]

The best tech announced at CES 2026 so far

Andrew Liszewski

The CES show floor officially closes its doors at the end of the day, but there's still a trickle of announcements and reveals coming out of Las Vegas. If you're struggling to stay on top of all the new tech, gadgets, concepts, and AI-powered devices as the final day of CES gets underway, we're still […]

What we learned from CES 2026

CES is a lot — a deluge of consumer tech surrounded by lots of bad carpeting. The Verge’s on-the-ground team of super nerds covered so many new products and technologies that it’s understandable if it was all a little overwhelming. That’s why we’ve gathered up a collection of trend reports from the show to help make sense […]

PO Box 1793 , Brenham, TX 77834

300 W Blue Bell Rd. , Brenham, TX 77833

CONTACT US

Brenham, TX

979-830-1292

mail@gosscom.com

Share by: