Apriamo questo riepilogo settimanale con un massiccio Patch Tuesday di Microsoft, che ha corretto 114 vulnerabilità, inclusi tre zero-day; in particolare, la CVE-2026-20805 è attivamente sfruttata in the wild. Sul fronte infrastrutturale, Cisco ha corretto un grave zero-day in AsyncOS sfruttato da attori APT cinesi, mentre AWS ha risolto la falla “CodeBreach” nelle pipeline CI della sua console.
Per quanto riguarda privacy e regolamentazione, la CNIL francese ha imposto una multa complessiva di 48 milioni di dollari a Free e Free Mobile per carenze di sicurezza che hanno colpito 24 milioni di abbonati. Inoltre, il gigante energetico spagnolo Endesa ha rivelato una violazione dei dati che ha coinvolto 22 milioni di clienti, mentre un massiccio incidente di scraping ha esposto 17,5 milioni di utenti Instagram.
Nel panorama delle minacce, Check Point Research ha analizzato “Sicarii”, una nuova operazione ransomware che agisce probabilmente come false flag con messaggi ideologici confusi. Le campagne di “Quishing” (phishing via QR code) sono in aumento in Francia, e il famigerato forum di hacking BreachForums ha subito a sua volta una fuga del proprio database utenti. Infine, si rafforza la cooperazione internazionale: il Regno Unito ha svelato il suo Government Cyber Action Plan e la Germania collabora con Israele per costruire un sistema di difesa “Cyber Dome”.
Fonti:
Rapporti, Studi e Strategie
- Kaspersky Security Bulletin 2025 : https://www.kasbersky.com/about/press-releases/2025_kaspersky-financial-sector-faced-ai-blockchain-and-organized-crime-threats-in-2025
- SecurityScorecard (via KnowBe4) : https://www.knowbe4.com/hubfs/Financial-Sector-Threats-The-Shifting-Landscape.pdf
- ENISA Threat Landscape 2025 : https://www.enisa.europa.eu/publications/enisa-threat-landscape-2025
- FS-ISAC : https://www.fsisac.com/knowledge/annual-navigating-cyber-2025-report
- RESCO Courtage : https://www.resco-courtage.com/dora-reglementation-guide-complet-2025
- NCSC UK : https://www.ncsc.gov.uk/blog-post/government-cyber-action-plan-strengthening-resilience-across-uk
Vulnerabilità,
- Patch Tuesday e Avvisi di Sicurezza Microsoft Security Update Guide : https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-0628
- CISA (CVE-2025-8110) : https://www.cisa.gov/news-events/alerts/2026/01/12/cisa-adds-one-known-exploited-vulnerability-catalog
- CISA (CVE-2026-20805) : https://www.cisa.gov/news-events/alerts/2026/01/13/cisa-adds-one-known-exploited-vulnerability-catalog
- CERT-FR (MISP) : https://www.cert.ssi.gouv.fr/avis/CERTFR-2026-AVI-0030/
- CERT-FR (VMware) : https://www.cert.ssi.gouv.fr/avis/CERTFR-2026-AVI-0029/
- CERT-FR (MariaDB) : https://www.cert.ssi.gouv.fr/avis/CERTFR-2026-AVI-0028/
- CERT-FR (NetApp) : https://www.cert.ssi.gouv.fr/avis/CERTFR-2026-AVI-0027/
- CERT-FR (Google Pixel) : https://www.cert.ssi.gouv.fr/avis/CERTFR-2026-AVI-0026/
- Krebs on Security : https://krebsonsecurity.com/2026/01/patch-tuesday-january-2026-edition/
- Cisco Talos Intelligence : https://blog.talosintelligence.com/microsoft-patch-tuesday-january-2026/
- CERT Santé : https://cyberveille.esante.gouv.fr/alertes/palo-alto-cve-2026-0227-2026-01-15
- BleepingComputer (Cisco AsyncOS) : https://www.bleepingcomputer.com/news/security/cisco-finally-fixes-asyncos-zero-day-exploited-since-november/
- CyberPress (AWS Console) : https://cyberpress.org/aws-console-supply-chain-attack-github-hijackingcyber/
Fughe di Dati, Incidenti e Attacchi
- BleepingComputer (BreachForums) : https://www.bleepingcomputer.com/news/security/breachforums-hacking-forum-database-leaked-exposing-324-000-accounts/
- CyberPress (Instagram) : https://cyberpress.org/instagram-data-leak/
- Cybersecurity Dive (SitusAMC) : https://www.cybersecuritydive.com/news/hackers-steal-sensitive-data-major-banking-industry-vendor-situsamc/
- BleepingComputer (Endesa) : https://www.bleepingcomputer.com/news/security/spanish-energy-giant-endesa-discloses-data-breach-affecting-customers/
- BleepingComputer (Pax8) : https://www.bleepingcomputer.com/news/security/cloud-marketplace-pax8-accidentally-exposes-data-on-1-800-msp-partners/
- The Record (Polizia di Anchorage) : https://therecord.media/anchorage-police-takes-servers-offline-after-third-party-attack
Threat Intelligence (APT, Ransomware, Phishing)
- Planet.fr (Truffa Quishing) : https://www.planet.fr/societe-arnaque-a-la-fausse-carte-bancaire-par-courrier-le-mecanisme-du-quishing-qui-vise-vos-coordonnees.2992374.29336.html
- Check Point Research (Sicarii) : https://research.checkpoint.com/2026/sicarii-ransomware-truth-vs-myth/
- Cisco Talos Intelligence (UAT-8837) : https://blog.talosintelligence.com/uat-8837/
- Malwarebytes (Phishing LinkedIn) : https://www.malwarebytes.com/blog/news/2026/01/phishing-scammers-are-posting-fake-account-restricted-comments-on-linkedin
Normative, Sanzioni e Cooperazione Internazionale
- The Record (Multa CNIL/Free) : https://therecord.media/france-data-regulator-fine
- Malwarebytes (Multa Datamasters) : https://www.malwarebytes.com/blog/news/2026/01/data-broker-fined-after-selling-alzheimers-patient-info-and-millions-of-sensitive-profiles
- The Record (Accordo Germania-Israele) : https://therecord.media/germany-cyber-dome-israel
Istituzionale:
- Speciale AMSN / Monaco AMSN : https://amsn.gouv.mc/decouvrir-l-amsn/presentation
- CERT-MC : https://amsn.gouv.mc/cert-mc
- Governo del Principe (Annuario) : https://www.gouv.mc/Gouvernement-et-Institutions/Le-Gouvernement/Ministere-d-Etat/Agence-Monegasque-de-Securite-Numerique
- Légimonaco : https://legimonaco.mc/tnc/ordonnance/2015/12-23-5.664/
- ANSSI / cyber.gouv.fr : https://cyber.gouv.fr/actualites/signature-dun-nouveau-programme-de-cooperation-entre-lagence-monegasque-de-securite
- Governo del Principe (Conferenza FIRST) : https://www.gouv.mc/Action-Gouvernementale/La-Securite/Actualites/L-Agence-Monegasque-de-Securite-Numerique-participe-a-la-36eme-conference-annuelle-du-Forum-of-Incident-Response-and-Security-Teams
Non si riflette, si patcha!
I vostri commenti sono benvenuti.
Email: radiocsirt@gmail.com
Sito web: https://www.radiocsirt.com
Newsletter settimanale: https://radiocsirtitalianedition.substack.com/