Top 5 Cybersecurity News Stories January 09 2026

Cybersecurity threats are constantly evolving as threat actors seek access to your data and money. To help you stay secure, we have searched the internet for the top five cybersecurity news stories of the week that we think you should be aware of.  No story is too big or small as we look at threats from espionage to security flaws in everyday devices:

1. WhatsApp Worm Spreads Astaroth Banking Trojan Across Brazil via Contact Auto-Messaging

A newly identified campaign is using WhatsApp as a delivery mechanism for the Astaroth (Guildma) banking trojan, targeting users in Brazil. Labeled “Boto Cor‑de‑Rosa” by Acronis researchers, the attack retrieves a victim’s WhatsApp contact list and auto‑messages malicious ZIP files to propagate the infection.

The payload. primarily Delphi‑based, now includes a Python‑built worm module, marking a shift toward multilanguage malware. Once opened, the ZIP archive triggers a Visual Basic script that deploys next‑stage components, enabling data theft and accelerating spread. With Brazil heavily impacted, the campaign underscores rising abuse of trusted messaging platforms for malware delivery.
Read more on The Hacker News

2. Cisco Patches ISE Security Vulnerability After Public PoC Exploit Release

Cisco has issued patches for a medium‑severity flaw (CVE‑2026‑20029) affecting Identity Services Engine (ISE) and ISE Passive Identity Connector. The vulnerability, caused by improper XML parsing within the web‑based management interface, allows authenticated attackers with administrative privileges to upload malicious files and read sensitive operating‑system‑level data.

Although proof‑of‑concept exploit code is publicly available, there is no evidence of active exploitation. Cisco advises immediate upgrades, as no workarounds exist. Additional patches were also released for two related Snort 3 DCE/RPC flaws, addressing risks of sensitive data leakage and service disruption.
Read more on The Hacker News

3. Texas court blocks Samsung from collecting smart TV viewing data

A Texas court has issued a temporary restraining order preventing Samsung from collecting audio and visual data from smart TVs using Automated Content Recognition (ACR) technology. The order follows allegations that Samsung captured screenshots every 500 milliseconds without informed user consent, violating the Texas Deceptive Trade Practices Act.

The court cited misleading enrollment practices, opaque disclosures, and “dark patterns” that made opting out nearly impossible. Samsung must halt the use, sale, and transfer of ACR‑related data until at least January 19, pending a hearing. The ruling may influence broader action against consumer‑device data‑harvesting practices.
Read more on BleepingComputer

4. CISA tags max severity HPE OneView flaw as actively exploited

CISA has added a maximum‑severity HPE OneView vulnerability (CVE‑2025‑37164) to its Known Exploited Vulnerabilities catalog, warning that attackers are actively exploiting it. The flaw affects all OneView versions prior to v11.00 and enables unauthenticated remote code execution through low‑complexity code‑injection attacks.

HPE released patches in mid‑December, advising immediate upgrades, as no mitigations or workarounds exist. Federal agencies have until January 28 to secure affected systems under Binding Operational Directive 22‑01. Organizations are urged to prioritize patching due to OneView’s critical role in managing servers, storage, and networking infrastructure.
Read more on BleepingComputer

5. UK’s JLR Q3 wholesale volumes down 43.3% after cyber incident-linked production halts

Jaguar Land Rover reported a 43.3% year‑on‑year drop in Q3 wholesale volumes following a major cyber incident that halted production earlier in the quarter. Operations resumed only by mid‑November, with global distribution delays further reducing output.

Retail sales fell 25.1%. Additional pressures included the planned wind‑down of legacy Jaguar models ahead of new launches and increased U.S. tariffs. All major markets recorded declines, with North America experiencing the steepest drop. Despite reduced volumes, higher‑end Range Rover, Range Rover Sport, and Defender models comprised over 74% of wholesale mix.
Read more on Reuters

At DIESEC, our experts are ready to assist with all your cybersecurity needs. We ensure your system is safe and secure and provide training for your employees to avoid falling victim to social engineering tactics.

For more information, please contact us now!