Cybersecurity

• Falcon Fusion SOAR scales SOC automation by integrating AI‑driven playbooks and real‑time incident response. • The platform supports multi‑cloud environments, enabling consistent

• Fake Incident Report Used in Phishing Campaign This morning, I received an interesting phishing email. • I’ve a ’love & hate’ relation with such emails because I always have the

• Apple Tests End-to-End Encrypted RCS Messaging in iOS 26.4 Developer Beta Apple on Monday released a new developer beta of iOS and iPadOS with support for end-to-end encryption (

• ISC Stormcast For Tuesday, February 17th, 2026 https://isc.sans.edu/podcastdetail/9812 Handler on Duty: Jan Kopriva Threat Level: green My next class: Application Security: Secur

• Washington Hotel in Japan discloses ransomware infection incident February 16, 2026 04:10 PM 0 The Washington Hotel brand in Japan has announced that that its servers were compro

• Man arrested for demanding reward after accidental police data leak February 16, 2026 02:13 PM 1 Dutch authorities arrested a 40-year-old man after he downloaded confidential doc

• Infostealer variant of Vidar exfiltrated OpenClaw AI agent config files. • Stolen files include openclaw.json, device.json, soul.md with tokens, keys, operational principles. • T

• A new study has found that multiple cloud-based password managers, including Bitwarden, Dashlane, and LastPass, are susceptible to password recovery attacks under certain conditi

• GS7 group exploits Fortune 500 brand trust, creating near‑perfect corporate portal replicas. • Targeted U.S. financial institutions, luring employees into credential theft. • Att

• Infostealer malware found stealing OpenClaw secrets for first time February 16, 2026 12:32 PM 0 With the massive adoption of the OpenClaw agentic AI assistant, information-steali

• South Korea’s Personal Information Protection Commission (PIPC) announced last week that it has issued significant fines to several major luxury brands over a recent hacker attac

• One morning, you wake up and realize that your business has grown to the point where you can no longer afford to get into that old, worn-out diesel subcompact. • Instead, you sch

• 30 copycat apps tricked users, and Google itself, into thinking they’re legitimate AI tools.

• Google announced the first beta version of Android 17, which includes several privacy and security enhancements.Android developers have described several improvements related to

• CISAwill remain operational during the DHS shutdown that commenced at 12:01 a.m. • on Saturday, February 14, 2026, although at a reduced capacity. • KEV is one area that remains.

• CISA gives feds 3 days to patch actively exploited BeyondTrust flaw February 16, 2026 07:33 AM 1 The U.S. • Cybersecurity and Infrastructure Security Agency (CISA) ordered federa

• The Promptware Kill Chain Attacks against modern generative artificial intelligence (AI) large language models (LLMs) pose a real threat. • Yet discussions around these attacks a

• Microsoft has warned users that threat actors are leveraging a new variant of the ClickFix technique to deliver malware.TheClickFixattack method has been increasingly used in the

• Safe and Inclusive E‑Society: How Lithuania Is Bracing for AI‑Driven Cyber Fraud Technologies are evolving fast, reshaping economies, governance, and daily life. • Yet, as innova

• Amazon’s Ring ends partnership with police surveillance firm Flock Safety amid public backlash. • The decision follows a 30‑second Super Bowl ad featuring a lost dog and camera n

• Cybersecurity researchers have disclosed details of a new mobile spyware platform dubbed ZeroDayRAT that’s being advertised on Telegram as a way to grab sensitive data and facili

• 2026 64-Bits Malware Trend In 2022 (time flies!), I wrote a diary about the 32-bits VS. • 64-bits malware landscape[1]. • It demonstrated that, despite the growing number of 64-b

• New Chrome Zero-Day (CVE-2026-2441) Under Active Attack - Patch Released Google on Friday released security updates for its Chrome browser to address a security flaw that it said

• Canada Goose investigating as hackers leak 600K customer records February 15, 2026 11:45 PM 0 ShinyHunters, a well-known data extortion group, claims to have stolen more than 600

• ISC Stormcast For Monday, February 16th, 2026 https://isc.sans.edu/podcastdetail/9810 Handler on Duty: Jan Kopriva Threat Level: green My next class: Application Security: Securi

• Threat actors are now abusing DNS queries as part of ClickFix social engineering attacks to deliver malware, making this the first known use of DNS as a channel in these campaign

• Windows 11 KB5077181 fixes boot failures linked to failed updates February 15, 2026 05:08 PM 0 Microsoft says it has resolved a Windows 11 bug that caused some commercial systems

• CTM360: Lumma Stealer and Ninja Browser malware campaign abusing Google Groups February 15, 2026 11:30 AM 0 CTM360 reports that more than 4,000 malicious Google Groups and 3,500

• Pastebin comments push ClickFix JavaScript attack to hijack crypto swaps February 15, 2026 10:17 AM 0 Threat actors are abusing Pastebin comments to distribute a new ClickFix-sty

• Microsoft has disclosed details of a new version of the ClickFix social engineering tactic in which the attackers trick unsuspecting users into running commands that carry out a

• Upcoming Speaking Engagements This is a current list of where and when I am scheduled to speak: I’m speaking atOntario Tech Universityin Oshawa, Ontario, Canada, at 2 PM ET on Th

• One threat actor responsible for 83% of recent Ivanti RCE attacks February 14, 2026 11:02 AM 0 Update: The article initially listed the wrong CVEs. • This has now been corrected

• Snail mail letters target Trezor and Ledger users in crypto-theft attacks February 14, 2026 10:15 AM 1 Threat actors are sending physical letters pretending to be from Trezor and

• Security researchers have discovered more than 300 Chrome extensions that leak browser data, spy on their users, or outright steal users’ data.Research focused on the analysis of

• Executive Summary This article explores the misuse of QR codes in today’s threat landscape, covering three areas of concern: - QR codes using URL shorteners to disguise malicious

• Fake job recruiters hide malware in developer coding challenges February 13, 2026 05:35 PM 0 A new variation of the fake recruiter campaign from North Korean threat actors is tar

• Friday Squid Blogging: Do Squid Dream? • An exploration of the interesting question. • An exploration of the interesting question. • Clive Robinson • February 14, 2026 2:08 AM @

• Google Ties Suspected Russian Actor to CANFAIL Malware Attacks on Ukrainian Orgs A previously undocumented threat actor has been attributed to attacks targeting Ukrainian organiz

• Microsoft Under Pressure to Bolster Defenses for BYOVD Attacks Threat actors are exploiting security gaps to weaponize Windows drivers and terminate security processes in targete

• Espionage groups from China, Russia and other nations burned at least two dozen zero-days in edge devices in attempts to infiltrate defense contractors’ networks.

• As AI deployments scale and start to include packs of agents autonomously working in concert, organizations face a naturally amplified attack surface.

• Google Links China, Iran, Russia, North Korea to Coordinated Defense Sector Cyber Operations Several state-sponsored actors, hacktivist entities, and criminal groups from China,

• UAT-9921 Deploys VoidLink Malware to Target Technology and Financial Sectors A previously unknown threat actor tracked asUAT-9921has been observed leveraging a new modular framew

• SecurityWeek’s cybersecurity news roundup provides a concise compilation of noteworthy stories that might have slipped under the radar.We provide a valuable summary of stories th

• Israeli cybersecurity firm Check Point Software Technologies (NASDAQ: CHKP) reported strong fourth-quarter and full-year 2025 financial performance while announcing three strateg

• Dutch mobile phone carrier Odido has disclosed a data breach impacting the personal information of over 6 million customers.The incident, the company said in anotice, occurred on

• CISA Announces New Town Halls to Engage with Stakeholders on Cyber Incident Reporting for Critical Infrastructure WASHINGTON - The Cybersecurity and Infrastructure Security Agenc

• Cybersecurity researchers have discovered a malicious Google Chrome extension that’s designed to steal data associated with Meta Business Suite and Facebook Business Manager. • T

• npm’s Update to Harden Their Supply Chain, and Points to Consider In December 2025, in response to the Sha1-Hulud incident, npm completed amajor authentication overhaulintended t

• AI-Powered Knowledge Graph Generator & APTs Unstructured text to interactive knowledge graph via LLM & SPO triplet extraction Courtesy of TLDR InfoSec Launches & Tools again, ano

• Endpoint Security Cyberattacks & Data Breaches Vulnerabilities & Threats Perimeter News Ivanti EPMM Zero-Day Bugs Spark Exploit Frenzy - Again It’s time to phase out the ‘patch a

• The AI-powered product delivers expert-grade malware analysis and reverse engineering in minutes.

• Drawing on years of adversary tradecraft, SpecterOps experts work alongside customers to analyze and eliminate attack paths, protect critical assets, and stay ahead of emerging t

• Men should take extra care on Valentine’s Day because they are nearly twice as likely as women to fall victim to romance scams.

• Microsoft uncovered AI recommendation poisoning in 31 companies across 14 industries, and turnkey tools make it trivially easy to pull off.

• Organizations are rapidly adopting Copilot Studio agents, but threat actors are equally fast at exploiting misconfigured AI workflows. • Mis-sharing, unsafe orchestration, and we

• Organizations are rapidly adopting agents, but attackers are equally fast at exploiting misconfigured AI workflows. • Mis-sharing, unsafe orchestration, and weak authentication c

• Organizations are rapidly adopting Copilot Studio agents, but threat actors are equally fast at exploiting misconfigured AI workflows. • Mis-sharing, unsafe orchestration, and we

• Google Reports State-Backed Hackers Using Gemini AI for Recon and Attack Support Google on Thursday said it observed the North Korea-linked threat actor known asUNC2970using its

• The era of AI is reshaping both opportunity and risk faster than any shift security leaders have seen. • Every organization is feeling the momentum; and for security teams, the q