Daily Digest

CISA KEV Alert for Gogs RCE Flaw; BreachForums Database Leaked; AI Threats Forecasted to Rise

CISA KEV Alert for Gogs RCE Flaw; BreachForums Database Leaked; AI Threats Forecasted to Rise

January 13, 2026
4 articles (4 new)
12 min read

Summary

This cybersecurity brief for January 13, 2026, covers several major incidents. CISA has added a critical, actively exploited Gogs vulnerability (CVE-2025-8110) to its KEV catalog, demanding urgent patching. In a significant blow to the cybercrime ecosystem, the user database of the notorious BreachForums was leaked, exposing nearly 324,000 members. Additionally, telecom provider Brightspeed is investigating a major breach claim, while reports from Experian and Everstream Analytics forecast a surge in AI-driven attacks and cyber threats against the global supply chain. Other key events include a critical 10.0 CVSS vulnerability in the n8n automation platform and a new roadmap from the G7 for post-quantum cryptography in the financial sector.

Filter by Category

New Articles (4)

Urgent Patch: CISA Adds Actively Exploited Gogs RCE Flaw to KEV Catalog

CRITICAL

CISA Catalogs Actively Exploited Gogs Path Traversal Vulnerability (CVE-2025-8110) Leading to RCE

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added a critical path traversal vulnerability, CVE-2025-8110, in the Gogs self-hosted Git service to its Known Exploited Vulnerabilities (KEV) catalog. This flaw, which allows for remote code execution (RCE) via symlink manipulation, is confirmed to be actively exploited in the wild. With a CVSS score of 8.7, it bypasses a previous patch for CVE-2024-55947. Federal agencies are mandated to remediate by February 2, 2026. The vulnerability affects an estimated 1,600 internet-exposed Gogs servers, posing a significant risk to organizations using the platform for source code management.

January 13, 2026
6 min read
KEVPath TraversalRCESymlinkGit +1 more
Urgent Patch: CISA Adds Actively Exploited Gogs RCE Flaw to KEV Catalog
Vulnerability
Cyberattack
Patch Management

Poetic Justice: BreachForums Hacked, Database of 324,000 Cybercriminals Leaked

HIGH

BreachForums User Database Leaked, Exposing Private Data of Nearly 324,000 Forum Members

In a significant turn of events for the cybercrime community, the user database for the notorious hacking marketplace BreachForums was leaked online on January 9, 2026. The dump contains sensitive records for 323,986 users, including usernames, email addresses, IP addresses, private messages, and Argon2-hashed passwords. The breach, allegedly occurring in August 2025 and claimed by an individual named "James," represents a major operational security failure and provides a trove of intelligence for law enforcement agencies seeking to identify and prosecute threat actors like 'IntelBroker' and 'ShinyHunters' who were active on the forum.

January 13, 2026
6 min read
CybercrimeHacking ForumDatabase LeakLaw EnforcementThreat Intelligence +1 more
Poetic Justice: BreachForums Hacked, Database of 324,000 Cybercriminals Leaked
Data Breach
Cyberattack
Threat Actor

Oregon DEQ Kept Data Breach of 4,800 People Secret for Nine Months

HIGH

Oregon Department of Environmental Quality Confirms April 2025 Data Breach After Nine-Month Delay

The Oregon Department of Environmental Quality (DEQ) confirmed on January 13, 2026, that a cyberattack in April 2025 exposed the personal data of approximately 4,800 people. The agency opted not to issue a broad public disclosure, citing that Oregon law did not require it, and instead began sending notification letters to affected individuals in late December 2025, over eight months after the incident. The initial attack, which the Rhysida ransomware gang later claimed, caused significant operational disruption. The delay in notification has drawn criticism and raises questions about the agency's transparency and incident response process.

January 13, 2026
4 min read
Incident ResponseData Breach NotificationTransparencyGovernmentRansomware
Oregon DEQ Kept Data Breach of 4,800 People Secret for Nine Months
Data Breach
Incident Response
Regulatory

French Immigration Agency Data Leaked via Third-Party Breach

HIGH

Data of Foreign Residents in France Leaked in Supply Chain Attack on Immigration Agency's Contractor

France's Office for Immigration and Integration (OFII) has confirmed a data breach originating from a compromised third-party service provider. In early January 2026, a hacker claimed to be selling a database of up to 2.1 million records of foreign residents on BreachForums, posting samples that included names, contact details, and nationalities. OFII clarified that its own systems were not breached, but that the attack targeted a private training provider responsible for mandatory integration courses. The incident highlights the significant risks of supply chain attacks for government agencies and could lead to GDPR penalties for OFII as the data controller.

January 13, 2026
4 min read
Supply Chain AttackThird Party BreachGDPRGovernmentFrance +1 more
French Immigration Agency Data Leaked via Third-Party Breach
Data Breach
Supply Chain Attack
Regulatory

📢 Share This Publication

Help others stay informed about cybersecurity threats