{"id":9077,"date":"2026-01-30T12:00:00","date_gmt":"2026-01-30T10:00:00","guid":{"rendered":"https:\/\/blog.eset.ee\/et\/?p=9077"},"modified":"2026-06-14T20:10:26","modified_gmt":"2026-06-14T17:10:26","slug":"this-month-in-security-with-tony-anscombe-january-2026-edition-2","status":"publish","type":"post","link":"https:\/\/blog.eset.ee\/et\/en\/2026\/01\/30\/this-month-in-security-with-tony-anscombe-january-2026-edition-2\/","title":{"rendered":"This month in security with Tony Anscombe \u2013 January 2026 edition"},"content":{"rendered":"<p>The year got off to a busy start, with January offering an early snapshot of the challenges that (not just) cybersecurity teams are likely to face in the months ahead. It&#8217;s therefore time for ESET Chief Security Evangelist <a href=\"https:\/\/www.welivesecurity.com\/our-experts\/tony-anscombe\/index.html\">Tony Anscombe<\/a> to look back on some of the month&#8217;s most impactful cybersecurity stories. Here&#8217;s some of what caught Tony&#8217;s eye:<\/p>\n<ul type=\"disc\">\n<li>the IT service management firm ServiceNow has patched what is the <a href=\"https:\/\/www.darkreading.com\/remote-workforce\/ai-vulnerability-servicenow\">most severe AI-driven security vulnerability<\/a> found to date; if exploited, <a href=\"https:\/\/nvd.nist.gov\/vuln\/detail\/CVE-2025-12420\">CVE-2025-12420<\/a> could have let unauthenticated attackers pose as admins on the company&#8217;s AI platform,<\/li>\n<li>how unsecured <a href=\"https:\/\/www.bleepingcomputer.com\/news\/security\/zendesk-ticket-systems-hijacked-in-massive-global-spam-wave\/\">Zendesk support systems were abused<\/a> to launch a massive <a href=\"https:\/\/www.welivesecurity.com\/cybersecurity\/drowning-spam-scam-emails-why\/index.html\">spam campaign<\/a>,<\/li>\n<li>cyber-fraud has displaced ransomware as the top concern among CEOs across the world, <a href=\"https:\/\/www.securityweek.com\/cyber-fraud-overtakes-ransomware-as-top-ceo-concern-wef\/\">according to the World Economic Forum<\/a>,<\/li>\n<li>US sports brand Nike is <a href=\"https:\/\/www.theregister.com\/2026\/01\/26\/data_thieves_claim_nike_data_haul\/\">investigating an alleged cybersecurity incident<\/a> after a ransomware gang claimed to have stolen 1.4 TB worth of data from the company&#8217;s systems.<\/li>\n<\/ul>\n<p>What are some of the lessons businesses should take away from these incidents? Be sure to check out the video, as well as watch the <a href=\"https:\/\/www.welivesecurity.com\/month-security-tony-anscombe-december-2025\/index.html\">December 2025 edition<\/a> of Tony&#8217;s security news roundup for more news and insights.<\/p>\n<\/p>\n<p class=\"wls-source\"><a href=\"https:\/\/www.welivesecurity.com\/en\/videos\/month-security-tony-anscombe-january-2026-edition\/\" rel=\"nofollow noopener\" target=\"_blank\">Read the full analysis on WeLiveSecurity \u2192<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>The trends from January offer useful clues about the risks and priorities that security teams are likely to contend with throughout the year<\/p>\n","protected":false},"author":5,"featured_media":9078,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"_acf_changed":false,"footnotes":""},"categories":[2914],"tags":[],"class_list":["post-9077","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-media"],"acf":[],"amp_enabled":true,"_links":{"self":[{"href":"https:\/\/blog.eset.ee\/et\/en\/wp-json\/wp\/v2\/posts\/9077","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/blog.eset.ee\/et\/en\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/blog.eset.ee\/et\/en\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/blog.eset.ee\/et\/en\/wp-json\/wp\/v2\/users\/5"}],"replies":[{"embeddable":true,"href":"https:\/\/blog.eset.ee\/et\/en\/wp-json\/wp\/v2\/comments?post=9077"}],"version-history":[{"count":1,"href":"https:\/\/blog.eset.ee\/et\/en\/wp-json\/wp\/v2\/posts\/9077\/revisions"}],"predecessor-version":[{"id":9846,"href":"https:\/\/blog.eset.ee\/et\/en\/wp-json\/wp\/v2\/posts\/9077\/revisions\/9846"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/blog.eset.ee\/et\/en\/wp-json\/wp\/v2\/media\/9078"}],"wp:attachment":[{"href":"https:\/\/blog.eset.ee\/et\/en\/wp-json\/wp\/v2\/media?parent=9077"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/blog.eset.ee\/et\/en\/wp-json\/wp\/v2\/categories?post=9077"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/blog.eset.ee\/et\/en\/wp-json\/wp\/v2\/tags?post=9077"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}