📨 In January, we kicked off 2026 with more informative content and events… So, let's break down the last thirty days with your trusted CSIRT.

Events

👉 CSIRT-CAN visited La Gomera to assess the island's cybersecurity situation

➡️ On February 3rd, the CSIRT CAN team visited the La Gomera Island Council to learn about the island's cybersecurity status. The Director General of Technological Transformation, Guadalupe González, gave an informative presentation on the project.

News + Analysis

➡️ WhatsApp suffered a malware attack in Brazil that introduced a malicious ZIP file, theft of banking credentials, and the spread of an alert across the country's systems.

➡️ New updates to the Cybersecurity Law Code in Spain were published at the end of the year, demonstrating the government's continued commitment to cyber intelligence.

Alerts

➡️Mongo Bleed was the first major vulnerability of 2016. However, the cyberattack that had the greatest impact was the QNAP vulnerability. The FortiCloud SSO vulnerability was also one of the most discussed, as it affected Fortinet software.

📨Awareness + 📨Featured Days

🚨The new mail package scam is Brushing. A type of e-commerce fraud in which a seller sends a package to a seemingly random person's address.

🚨We differentiate the importance of TCP and UDP ports to understand the variety of applications that use the same IP address simultaneously.

See you in the next installment!
Best regards,
CSIRT-CAN Team.