Philippe Vynckier
@pvynckier.bsky.social
Senior advisor, Security Expert, Cyber Threat Expert
Threat monitoring, security analysis, risk analysis, business continuity planning, disaster recovery planning, vulnerability management, threat assessment, malware, Ransomware and incident response...
Threat monitoring, security analysis, risk analysis, business continuity planning, disaster recovery planning, vulnerability management, threat assessment, malware, Ransomware and incident response...
Remcos RAT Campaign Uses Trojanized VeraCrypt Installers to Steal Credentials gbhackers.com/remcos-rat-c...
Remcos RAT Campaign Uses Trojanized VeraCrypt Installers to Steal Credentials
AhnLab Security Intelligence Center (ASEC) has identified an active Remcos RAT campaign targeting users in South Korea.
gbhackers.com
January 25, 2026 at 3:34 PM
Remcos RAT Campaign Uses Trojanized VeraCrypt Installers to Steal Credentials gbhackers.com/remcos-rat-c...
BIND 9 Flaw Lets Attackers Crash Servers With Malicious DNS Records gbhackers.com/bind-9-flaw-...
BIND 9 Flaw Lets Attackers Crash Servers With Malicious DNS Records
A critical vulnerability in BIND 9 exposes DNS servers to remote denial-of-service (DoS) attacks. Security firm ISC disclosed CVE-2025-13878
gbhackers.com
January 25, 2026 at 3:33 PM
BIND 9 Flaw Lets Attackers Crash Servers With Malicious DNS Records gbhackers.com/bind-9-flaw-...
New Kerberos Relay Technique Exploits DNS CNAMEs to Bypass Existing Defenses gbhackers.com/new-kerberos...
New Kerberos Relay Technique Exploits DNS CNAMEs to Bypass Existing Defenses
A critical vulnerability in Windows Kerberos authentication that enables attackers to conduct credential-relay attacks by exploiting DNS CNAME records.
gbhackers.com
January 25, 2026 at 3:31 PM
New Kerberos Relay Technique Exploits DNS CNAMEs to Bypass Existing Defenses gbhackers.com/new-kerberos...
Researchers Uncover Multi-Stage AiTM Attack Using SharePoint to Bypass Security Controls gbhackers.com/aitm-attack-...
Researchers Uncover Multi-Stage AiTM Attack Using SharePoint to Bypass Security Controls
SharePoint file-sharing services to bypass traditional email security controls and compromise multiple user accounts.
gbhackers.com
January 25, 2026 at 3:29 PM
Researchers Uncover Multi-Stage AiTM Attack Using SharePoint to Bypass Security Controls gbhackers.com/aitm-attack-...
RealHomes CRM Plugin Flaw Affected 30,000 WordPress Sites - Infosecurity Magazine www.infosecurity-magazine.com/news/realhom...
RealHomes CRM Plugin Flaw Affected 30,000 WordPress Sites
Security flaw in RealHomes CRM plugin allowed file uploads; patches released for 30,000+ sites
www.infosecurity-magazine.com
January 25, 2026 at 3:25 PM
RealHomes CRM Plugin Flaw Affected 30,000 WordPress Sites - Infosecurity Magazine www.infosecurity-magazine.com/news/realhom...
Under Armour Investigates Data Breach - Infosecurity Magazine www.infosecurity-magazine.com/news/under-a...
Under Armour Investigates Data Breach
Under Armour said there is no evidence at this point to suggest the incident affected systems used to process payments or store customer passwords
www.infosecurity-magazine.com
January 25, 2026 at 3:23 PM
Under Armour Investigates Data Breach - Infosecurity Magazine www.infosecurity-magazine.com/news/under-a...
Turning the OWASP Agentic Top 10 into Operational AI Security - Infosecurity Magazine www.infosecurity-magazine.com/opinions/tur...
Turning the OWASP Agentic Top 10 into Operational AI Security
www.infosecurity-magazine.com
January 25, 2026 at 3:21 PM
Turning the OWASP Agentic Top 10 into Operational AI Security - Infosecurity Magazine www.infosecurity-magazine.com/opinions/tur...
Critical Appsmith Flaw Enables Account Takeovers - Infosecurity Magazine www.infosecurity-magazine.com/news/appsmit...
Critical Appsmith Flaw Enables Account Takeovers
Critical vulnerability in Appsmith allows account takeover via flawed password reset process
www.infosecurity-magazine.com
January 25, 2026 at 3:19 PM
Critical Appsmith Flaw Enables Account Takeovers - Infosecurity Magazine www.infosecurity-magazine.com/news/appsmit...
Zero-Day Exploits Surge, 30% of Flaws Attacked Before Disclosure - Infosecurity Magazine www.infosecurity-magazine.com/news/zeroday...
Zero-Day Exploits Surge, 30% of Flaws Attacked Before Disclosure
VulnCheck analysts found that vulnerabilities exploited before being publicly disclosed rose from 23.6% in 2024 to 28.96% in 2025
www.infosecurity-magazine.com
January 25, 2026 at 3:17 PM
Zero-Day Exploits Surge, 30% of Flaws Attacked Before Disclosure - Infosecurity Magazine www.infosecurity-magazine.com/news/zeroday...
Risk of AI Model Collapse to Drive Zero Trust Data Governance - Infosecurity Magazine www.infosecurity-magazine.com/news/ai-mode...
Risk of AI Model Collapse to Drive Zero Trust Data Governance
Gartner predicts 50% of organizations will adopt zero trust data governance by 2028
www.infosecurity-magazine.com
January 25, 2026 at 3:02 PM
Risk of AI Model Collapse to Drive Zero Trust Data Governance - Infosecurity Magazine www.infosecurity-magazine.com/news/ai-mode...
Cyber Risks Among CEOs’ Top Worries Amid Weak Short Term Growth - Infosecurity Magazine www.infosecurity-magazine.com/news/cyber-r...
Cyber Risks Among CEOs’ Top Worries Amid Weak Short Term Growth
PwC’s 29th Global CEO Survey shows cyber risk rising to the top of CEO concerns as confidence in short term business growth weakens
www.infosecurity-magazine.com
January 25, 2026 at 3:00 PM
Cyber Risks Among CEOs’ Top Worries Amid Weak Short Term Growth - Infosecurity Magazine www.infosecurity-magazine.com/news/cyber-r...
EU Unveils Proposed Update to Cybersecurity Act - Infosecurity Magazine www.infosecurity-magazine.com/news/eu-unve...
EU Unveils Proposed Update to Cybersecurity Act
The EU’s Cybersecurity Act 2.0 will aim to address some of the challenges of the current CSA, including the slow rollout of certification schemes
www.infosecurity-magazine.com
January 25, 2026 at 2:59 PM
EU Unveils Proposed Update to Cybersecurity Act - Infosecurity Magazine www.infosecurity-magazine.com/news/eu-unve...
Report Fraud Promises to Streamline Fight Against Economic Crime - Infosecurity Magazine www.infosecurity-magazine.com/news/report-...
Report Fraud Promises to Streamline Fight Against Economic Crime
City of London Police has launched the UK’s national Report Fraud service
www.infosecurity-magazine.com
January 25, 2026 at 2:57 PM
Report Fraud Promises to Streamline Fight Against Economic Crime - Infosecurity Magazine www.infosecurity-magazine.com/news/report-...
ShinyHunters group leaks millions of alleged records from SoundCloud, Crunchbase and Betterment - BetaNews betanews.com/article/shin...
ShinyHunters group leaks millions of alleged records from SoundCloud, Crunchbase and Betterment
The infamous hacking group ShinyHunters has released to the dark web millions of data records claimed to have been stolen from SoundCloud, Crunchbase and
betanews.com
January 25, 2026 at 2:54 PM
ShinyHunters group leaks millions of alleged records from SoundCloud, Crunchbase and Betterment - BetaNews betanews.com/article/shin...
Digital clutter costs employees 29 days a year - BetaNews betanews.com/article/digi...
Digital clutter costs employees 29 days a year
The survey of over 1,000 US employees about their digital habits and workspace organization, carried out by Smallpdf, finds that disorganization and digital
betanews.com
January 25, 2026 at 2:51 PM
Digital clutter costs employees 29 days a year - BetaNews betanews.com/article/digi...
Domain spoofing used in 90 percent of top phishing attacks - BetaNews betanews.com/article/doma...
Domain spoofing used in 90 percent of top phishing attacks
Phishing emails containing company names see the highest click rates, while domain spoofing appears in nearly 90 percent of top-clicked attacks according to
betanews.com
January 25, 2026 at 2:46 PM
Domain spoofing used in 90 percent of top phishing attacks - BetaNews betanews.com/article/doma...
One in ten UK businesses say a major cyber attack could shut them down - BetaNews betanews.com/article/one-...
One in ten UK businesses say a major cyber attack could shut them down
Vodafone Business has published a new study that suggests many British businesses are poorly prepared for the possibility of a cyber attack. The study found a
betanews.com
January 25, 2026 at 2:45 PM
One in ten UK businesses say a major cyber attack could shut them down - BetaNews betanews.com/article/one-...
Okta users under attack: Modern phishing kits are turbocharging vishing attacks - Help Net Security www.helpnetsecurity.com/2026/01/23/o...
Okta users under attack: Modern phishing kits are turbocharging vishing attacks - Help Net Security
Threat actors have started using vishing-friendly, adaptable phishing kits that can sync phishing pages with the caller’s script, Okta warns.
www.helpnetsecurity.com
January 25, 2026 at 2:39 PM
Okta users under attack: Modern phishing kits are turbocharging vishing attacks - Help Net Security www.helpnetsecurity.com/2026/01/23/o...
Agentic AI edges closer to everyday production use - Help Net Security www.helpnetsecurity.com/2026/01/23/c...
Agentic AI edges closer to everyday production use - Help Net Security
Agentic AI operations are moving into production as organizations focus on observability, human oversight, and control of autonomous systems.
www.helpnetsecurity.com
January 25, 2026 at 2:37 PM
Agentic AI edges closer to everyday production use - Help Net Security www.helpnetsecurity.com/2026/01/23/c...
2025 Cloud Security Risk Report | SentinelOne www.sentinelone.com/lp/cloud-sec...
2025 Cloud Security Risk Report | SentinelOne
Explore the top 5 cloud security risks for AI-first businesses and how to mitigate them with expert insights and real-world examples from SentinelOne.
www.sentinelone.com
January 25, 2026 at 2:20 PM
2025 Cloud Security Risk Report | SentinelOne www.sentinelone.com/lp/cloud-sec...
CISA Adds Actively Exploited VMware vCenter Flaw CVE-2024-37079 to KEV Catalog thehackernews.com/2026/01/cisa...
CISA Adds Actively Exploited VMware vCenter Flaw CVE-2024-37079 to KEV Catalog
CISA added VMware vCenter vulnerability CVE-2024-37079 to its KEV list after confirmed in-the-wild exploitation, urging organizations to apply patches
thehackernews.com
January 25, 2026 at 2:13 PM
CISA Adds Actively Exploited VMware vCenter Flaw CVE-2024-37079 to KEV Catalog thehackernews.com/2026/01/cisa...
Phishing Attack Uses Stolen Credentials to Install LogMeIn RMM for Persistent Access thehackernews.com/2026/01/phis...
Phishing Attack Uses Stolen Credentials to Install LogMeIn RMM for Persistent Access
Researchers uncovered a two-stage phishing attack stealing email logins to install LogMeIn Resolve RMM for persistent, hidden Windows access.
thehackernews.com
January 25, 2026 at 1:28 PM
Phishing Attack Uses Stolen Credentials to Install LogMeIn RMM for Persistent Access thehackernews.com/2026/01/phis...
Someone Is Impersonating Me on Instagram — and Meta Doesn’t Give a Sh*t - Security Boulevard securityboulevard.com/2026/01/some...
Someone Is Impersonating Me on Instagram — and Meta Doesn’t Give a Sh*t
I never thought I’d be writing this — but here we are. Someone opened an Instagram account impersonating me. Brand new. No posts. But already following people in my network — and some of them followed...
securityboulevard.com
January 25, 2026 at 1:07 PM
Someone Is Impersonating Me on Instagram — and Meta Doesn’t Give a Sh*t - Security Boulevard securityboulevard.com/2026/01/some...
Top 10 CISOs’ strategic priorities in 2026 - Security Boulevard securityboulevard.com/2026/01/top-...
Top 10 CISOs’ strategic priorities in 2026
Sravish Sridhar CEO, TrustCloud “How to move from “effort” to “outcomes”, from “we think” to “we can prove”, and from “reactive” to “resilient” with GRC’s new operating model to protect, withstand, an...
securityboulevard.com
January 25, 2026 at 1:04 PM
Top 10 CISOs’ strategic priorities in 2026 - Security Boulevard securityboulevard.com/2026/01/top-...
What a Year of DORA Reveals About Cyber Resilience - Security Boulevard securityboulevard.com/2026/01/what...
What a Year of DORA Reveals About Cyber Resilience
It's now been a full calendar year since the European Union's Digital Operational Resilience Act (DORA) became enforceable in January 2025, marking a clear shift in how regulators expect organizations...
securityboulevard.com
January 25, 2026 at 1:02 PM
What a Year of DORA Reveals About Cyber Resilience - Security Boulevard securityboulevard.com/2026/01/what...