GOVERNMENT In Other News: Paid for Being Jailed, Google’s $68M Settlement, CISA Chief’s ChatGPT Leak Other noteworthy stories that might have slipped under the radar: Apple updates platform security guide, LastPass detects new phishing wave, CISA withdraws from RSA Conference. By SecurityWeek News | January 30, 2026 (12:49 PM ET) Flipboard Reddit Whatsapp Email SecurityWeek’s cybersecurity news roundup provides a concise compilation of noteworthy stories that might have slipped under the radar. We provide a valuable summary of stories that may not warrant an entire article, but are nonetheless important for a comprehensive understanding of the cybersecurity landscape. Each week, we curate and present a collection of noteworthy developments, ranging from the latest vulnerability discoveries and emerging attack techniques to significant policy changes and industry reports. Here are this week’s stories: Mitsubishi Electric completes acquisition of Nozomi Networks Mitsubishi Electric has officially completed its $ billion acquisition of industrial cybersecurity firm Nozomi Networks. Nozomi will operate independently as a wholly owned subsidiary. ADVERTISEMENT. SCROLL TO CONTINUE READING. LastPass detects new phishing wave after disrupting attacker infrastructure LastPass said the threat actors behind a recent backup-themed phishing campaign have sent another wave of emails using similar tactics. While the body of the email remains the same, the links in the new wave have been changed following LastPass’s disruption of the initial infrastructure. “In addition to working with Forta Brand Protection (formerly known as PhishLabs) to conduct takedown operations, LastPass worked directly with hosting providers to remove the relevant sites as quickly as possible,” Mike Kosak, senior principal threat intelligence researcher at LastPass, told SecurityWeek. CISA withdraws from RSA Conference following leadership change CISA has announced it will no longer participate in the annual RSA Conference. The decision follows the appointment of Jen Easterly, CISA’s director during the Biden administration, as the conference’s new chief executive. A CISA representative said they “regularly review all stakeholder engagements, to ensure maximum impact and good stewardship of taxpayer dollars.” CISA outlines product categories for post-quantum cryptography integration CISA has released a new resource identifying specific technology categories that should begin incorporating post-quantum cryptography (PQC) standards. The guidance highlights systems that rely on cryptography that could be vulnerable to future quantum computing capabilities. The agency aims to assist organizations in prioritizing the transition to quantum-resistant algorithms across critical infrastructure and federal networks. Acting CISA chief reportedly uploaded sensitive files to ChatGPT The acting director of CISA, Madhu Gottumukkala, is reportedly under internal review for uploading sensitive government information into a public version of ChatGPT. The incident involved the processing of documents related to agency operations through the AI platform, which typically retains data for model training. Officials are currently assessing the extent of the exposure and the potential impact on agency security protocols. Google settles voice recording privacy lawsuit for $68 million Google has reached a $68 million settlement to resolve a legal dispute regarding the unauthorized collection of voice data through its assistant technology. The lawsuit alleged that the company recorded users without their explicit consent, including instances where the assistant was triggered accidentally. Report finds minority of vulnerability attacks are blocked by hosting providers A recent study conducted by website security firm PatchStack suggests that a significant majority of common vulnerability exploits are not successfully mitigated by hosting service providers. The data indicates that approximately one-quarter of these attacks are intercepted by built-in host protections, leaving many websites reliant on secondary security measures. Apple updates platform security guide Apple has released an updated version of its Platform Security guide, providing technical details on the latest defensive measures for its devices. The documentation includes information on recently implemented protections designed to secure iPhones against certain types of unauthorized access. These updates reflect changes to the underlying hardware and software architecture of the current device lineup. FBI seizes prominent cybercrime forum RAMP Federal authorities have taken control of the RAMP cybercrime forum, a platform used by underground actors for various illegal activities. A seizure notice appeared on the site indicating that the operation involved the FBI and international law enforcement partners. Iowa county settles with security researchers following 2019 arrests Dallas County, Iowa, has agreed to pay $600,000 to two cybersecurity researchers who were arrested while conducting a state-authorized physical penetration test. The settlement concludes years of legal proceedings following the 2019 incident, where the researchers were charged with burglary despite having a valid contract with the state judicial branch. The case has been widely cited as an example of the legal risks faced by security professionals. Related: In Other News: €1.2B GDPR Fines, Net-NTLMv1 Rainbow Tables, Rockwell Security Notice Related: In Other News: FortiSIEM Flaw Exploited, Sean Plankey Renominated, Russia’s Polish Grid Attack WRITTEN BY SecurityWeek News More from SecurityWeek News In Other News: €1.2B GDPR Fines, Net-NTLMv1 Rainbow Tables, Rockwell Security Notice Webinar Today: Rethinking Email Security for Mid-Sized Organizations In Other News: FortiSIEM Flaw Exploited, Sean Plankey Renominated, Russia’s Polish Grid Attack In Other News: 8,000 Ransomware Attacks, China Hacked US Gov Emails, IDHS Breach Impacts 700k In Other News: Docker AI Attack, Google Sues Chinese Cybercriminals, Coupang Hacked by Employee In Other News: PromptPwnd Attack, macOS Bounty Complaints, Chinese Hackers Trained in Cisco Academy Virtual Event Today: Cyber AI & Automation Summit Day 2 Virtual Event Today: Cyber AI & Automation Summit Latest News Organizations Urged to Replace Discontinued Edge Devices Flickr Security Incident Tied to Third-Party Email System In Other News: Record DDoS, Epstein’s Hacker, ESET Product Vulnerabilities Living off the AI: The Next Evolution of Attacker Tradecraft Airrived Emerges From Stealth With $6.1 Million in Funding ‘DKnife’ Implant Used by Chinese Threat Actor for Adversary-in-the-Middle Attacks 5 Bills to Boost Energy Sector Cyber Defenses Clear House Panel Critical SmarterMail Vulnerability Exploited in Ransomware Attacks TRENDING Daily Briefing Newsletter Subscribe to the SecurityWeek Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts. Webinar: Identity Under Attack: Why Every Business Must Respond Now February 11, 2026 Attendees will walk away with guidance for how to build robust identity defenses, unify them under a consistent security model, and ensure business operations move quickly without compromise. Register Virtual Event: Ransomware Resilience & Recovery 2026 Summit February 25, 2026 SecurityWeek’s 2026 Ransomware Summit will discuss a roadmap for defending the enterprise, from mitigating root causes to mastering recovery, giving security teams the critical insights needed to navigate and neutralize today’s ransomware extortion threats. Submit PEOPLE ON THE MOVE Pennsylvania has named Andy Ritter as CISO and Jim Sipe as executive deputy CIO. Hayete Gallot has rejoined Microsoft as Executive Vice President, Security. Torq has appointed industry veteran John White as Field CISO. More People On The Move EXPERT INSIGHTS Living off the AI: The Next Evolution of Attacker Tradecraft Living off the AI isn’t a hypothetical but a natural continuation of the tradecraft we’ve all been defending against, now mapped onto assistants, agents, and MCP. (Etay Maor) Why We Can’t Let AI Take the Wheel of Cyber Defense The fastest way to squander the promise of AI is to mistake automation for assurance, and novelty for resilience. (Steve Durbin) The Upside Down is Real: What Stranger Things Teaches Us About Modern Cybersecurity To all those who are fighting the good fight in the world of cyber, keep collaborating to ensure our world never succumbs to the chaos of the Upside Down. (Nadir Izrael) Why Identity Security Must Move Beyond MFA By integrating identity threat detection with MFA, organizations can protect sensitive data, maintain operational continuity, and reduce risk exposure. (Torsten George) Forget Predictions: True 2026 Cybersecurity Priorities From Leaders Security leaders chart course beyond predictions with focus on supply chain, governance, and team efficiency. (Jennifer Leggio) Flipboard Reddit Whatsapp Email