The Check Point Research Threat Intelligence Report for January 19, 2026, details a surge in global cyber activity, featuring significant breaches at Spanish energy giant Endesa, Belgium's AZ Monica hospital, and South Korean conglomerate Kyowon. The report also notes a security incident at Eurail affecting passenger reservations and a social engineering attack on US investment advisor Betterment. These incidents underscore the persistent threat to critical infrastructure and financial services globally.
Technically, the report highlights active exploitation of a CVSS 10.0 remote code execution flaw in HPE OneView (CVE-2025-37164) and the emergence of VoidLink, a cloud-native Linux malware framework designed for Kubernetes persistence. Furthermore, the analysis uncovers Sicarii, a ransomware-as-a-service operation using identity manipulation, and notes that Microsoft continues to lead as the most impersonated brand in phishing campaigns.
Top comments (0)