Top 5 Cybersecurity News Stories January 02 2026

Cybersecurity threats are constantly evolving as threat actors seek access to your data and money. To help you stay secure, we have searched the internet for the top five cybersecurity news stories of the week that we think you should be aware of.  No story is too big or small as we look at threats from espionage to security flaws in everyday devices:

1. Two cybersecurity employees plead guilty to carrying out ransomware attacks

Two cybersecurity professionals admitted involvement in the ALPHV/BlackCat ransomware operation, marking a significant law enforcement breakthrough against organized cybercrime. The defendants exploited insider knowledge to facilitate attacks that encrypted critical systems and demanded multimillion-dollar ransoms.

Prosecutors emphasized the growing trend of skilled insiders aiding ransomware groups, complicating corporate defenses. This case underscores the urgent need for robust vetting, continuous monitoring, and zero-trust frameworks to mitigate insider threats. Authorities warn that ransomware remains a top global risk, with evolving tactics targeting infrastructure and sensitive data.
Read more on The Verge

2. Cyberattack on Chinese supplier puts Apple’s trade secrets at risk

A sophisticated cyberattack targeted a Chinese supplier in Apple’s manufacturing chain, raising concerns about the exposure of sensitive intellectual property and production data. The breach underscores the growing threat of supply chain vulnerabilities, which can compromise global operations and competitive advantage.

Experts warn that attackers increasingly exploit third-party weaknesses to infiltrate major tech ecosystems. Apple is expected to tighten security protocols and enforce stricter compliance among partners to mitigate future risks. This incident highlights the critical need for robust cybersecurity measures across interconnected supply networks.
Read more on Cybersecurity Now

3. European space agency confirms ‘external servers’ breached in cyberattack

The European Space Agency (ESA) disclosed a cyberattack compromising external servers used for collaborative engineering activities. Threat actor “888” claims responsibility, alleging theft of 200 GB of data, including source code, API tokens, and infrastructure configurations.

ESA stressed that the affected servers were outside its core network and contained non-classified data. Forensic analysis and security measures are underway to mitigate risks and prevent further exposure. This breach highlights persistent threats to scientific institutions and the importance of securing third-party systems involved in research collaborations.
Read more on TechRadar

4. Microsoft Teams strengthens messaging security by default in January

Starting January 12, 2026, Microsoft Teams will activate messaging safety features by default to combat malicious content. The update introduces protections against weaponizable file types, malicious URL detection, and a reporting system for false positives.

Organizations with custom settings will remain unaffected, but administrators are advised to review configurations before rollout. These enhancements reflect Microsoft’s response to rising phishing and malware campaigns targeting collaboration platforms. The move aims to strengthen enterprise security posture while maintaining user experience, reinforcing Teams’ role as a secure communication hub for global businesses.
Read more on BleepingComputer

5. Mustang Panda Uses Signed Kernel-Mode Rootkit to Load TONESHELL Backdoor

China-linked threat group Mustang Panda has introduced a signed kernel-mode rootkit to deliver its TONESHELL backdoor in targeted attacks across Southeast Asia. The driver, signed with a stolen certificate, enables stealthy persistence by protecting malicious processes and registry keys. TONESHELL provides reverse shell and downloader capabilities, facilitating multi-stage intrusions.

This campaign demonstrates advanced techniques to bypass security controls and maintain long-term access to compromised systems. Analysts warn that such tactics pose severe risks to government and critical infrastructure networks, emphasizing the need for proactive threat hunting and kernel-level defenses.
Read more on The Hacker News

At DIESEC, our experts are ready to assist with all your cybersecurity needs. We ensure your system is safe and secure and provide training for your employees to avoid falling victim to social engineering tactics.

For more information, please contact us now!