News Centre
Here you can access the latest 48hr Global News Roundups from DFM
We scour the internet to find the latest stories relating to:
DFIR, Cyber Investigations, Major Cyber Incidents, Exploits & Threat Intelligence, Law Enforcement, Policy, Standards & Compliance and Consumer App Data Leaks
We also provide an Editorial Perspective and a Reference List for further reading.
NEWS ROUNDUP – 4th February 2026
CISA warned on Avation Light Engine Pro OT risk as CERT-FR prioritised weekly patches. Investigators tracked Notepad++ updater hijacking and coercive Scattered Lapsus ShinyHunters tactics. Major incidents included Coinbase contractor misuse, NationStates breach downtime, and an Iron Mountain data-theft claim. CISA added SolarWinds Web Help Desk RCE to KEV while Metro and Office exploits circulated across Europe, Americas, and APAC.
NEWS ROUNDUP – 1st February 2026
Ivanti Endpoint Manager Mobile zero-days drove urgent patching and forensic hunts, while US authorities seized the RAMP cybercrime forum and forfeited $400M tied to crypto laundering. Major incidents disrupted US municipal services, hosting infrastructure, and fintech platforms. Policy moved with a UK–Japan cyber partnership, alongside standards updates shaping vulnerability disclosure, random number generation assurance, and compliance expectations globally.
NEWS ROUNDUP – 30th January 2026
Nike investigated an extortion-linked breach claim, Rotterdam port operations faced hacktivist-driven DDoS disruption, and CISA added actively exploited Ivanti EPMM vulnerabilities to its KEV catalogue. Law enforcement seized the RAMP cybercrime forum, while NIST advanced its Cyber AI Profile consultation. Identity compromise, control-plane abuse, and data-only extortion dominated incident response priorities globally.
NEWS ROUNDUP – 28th January 2026
This cycle reinforces that routine security work, standards updates, browser fixes in flight, and edge-device advisories, directly shapes investigation quality and response speed when exploitation pressure rises. High-trust automation platforms and perimeter systems remain prime targets, so teams should prioritise patch validation, token rotation, and log preservation to contain blast radius and defend decisions under regulatory and customer scrutiny forensics-ready incident narratives.
NEWS ROUNDUP – 26th January 2026
Microsoft issued out-of-band Windows fixes for Outlook freezes and probed post-update boot failures as investigators tracked Cambodia-based scam networks repatriated to South Korea. ESET tied Sandworm to a DynoWiper power-sector attempt, while Fortinet and CISA warned on FortiCloud SSO abuse and exploited vCenter flaws. Policy moves spanned NHS supplier assurance, Australian smart-device rules, and Korean breach scrutiny in this window.
NEWS ROUNDUP – 23rd January 2026
Cisco patched a Unified Communications RCE (CVE-2026-20045) amid active exploitation, while CSA Singapore urged urgent updates. CISA issued a batch of ICS advisories for OT operators. Investigators tracked the Telegram-linked Tudou Guarantee marketplace and authorities tied suspects to Black Basta. Policy moved on Ireland’s spyware law, EU high-risk vendor phase-out, and UK NIS Bill progress. Chainlit flaws threatened cloud apps.
NEWS ROUNDUP – 21st January 2026
Over the past 48 hours, responders tracked UK warnings on Russia-aligned DDoS activity, Ingram Micro’s disclosure affecting 42,000 people, and a brief hijack of Iranian state television feeds. Investigations detailed LinkedIn-delivered malware and Gemini prompt injection, while policymakers advanced EU cybersecurity reforms, new UK fraud reporting, and Singapore issued fresh vulnerability advisories impacting cloud deployments, broadcast resilience, and response planning.
NEWS ROUNDUP – 19th January 2026
This cycle reinforces a persistent operational truth: the “end” of an incident is rarely the end of its consequences. Threat actors keep pushing toward low-friction entry points—browser extensions, loader chains, and access-broker marketplaces—so prevention and detection must focus on control-plane hygiene and behavior telemetry. Evolving EU policy and AI-security baselines signal that assurance requirements will increasingly follow technology adoption globally.
NEWS ROUNDUP – 16th January 2026
Over the past 48 hours, defenders saw OT hardening guidance, fresh ICS advisories, and reports of active FortiSIEM exploitation. Hospitals and travel services faced disruptive incidents and data exposure, while investigators tracked themed malware and money-mule networks. Standards bodies advanced AI security and payment software assurance, signaling tighter audit expectations. Prioritize patching, segmentation, logging choke points, and evidence-ready reporting today.
Advertisements
