Uphill Security

Updates every 30 minutes - Generated via RSS feed on: 2026-02-18 15:00:04 UTC Feedback and suggestions for other sources are welcome.

2026-02-18 #

• 14:47 UTC - [SecurityWeek] Cogent Security Raises $42 Million for AI-Driven Vulnerability Management
• 14:18 UTC - [Cyber Security News] ClawHavoc Poisoned OpenClaw’s ClawHub with 1,184 Malicious Skills, Enabling Data Theft and Backdoor Access
• 14:15 UTC - [Rapid7 Cybersecurity Blog] The Phone is Listening: A Cold War–Style Vulnerability in Modern VoIP
• 14:05 UTC - [Latest from TechRadar in Security] A worrying Dell zero-day flaw has reportedly gone unpatched for nearly two years - and Chinese hackers are taking advantage
• 14:01 UTC - [BleepingComputer] Data breach at fintech firm Figure affects nearly 1 million accounts
• 14:00 UTC - [Rapid7 Cybersecurity Blog] CVE-2026-2329: Critical Unauthenticated Stack Buffer Overflow in Grandstream GXP1600 VoIP Phones (FIXED)
• 14:00 UTC - [Black Hills Information Security, Inc.] OSINT: How to Find, Use, and Control Open-Source Intelligence
• 13:56 UTC - [Cyber Security News] 16 Zero-Day Vulnerabilities in Popular PDF Platforms Enable Code Execution and Data Exfiltration
• 13:17 UTC - [Cyber Security News] MetaMask Users Targeted with Phishing Emails Containing Forged Security Report to Evade Detection
• 13:16 UTC - [SecurityWeek] Vulnerabilities in Popular PDF Platforms Allowed Account Takeover, Data Exfiltration
• 13:16 UTC - [The Hacker News] Critical Flaws Found in Four VS Code Extensions with Over 125 Million Installs
• 12:25 UTC - [Latest from TechRadar in Security] ‘An all-time high’: Number of ransomware groups exploded in 2025 as victim growth rate doubled - with Qilin dominating the landscape
• 12:14 UTC - [Cyber Security News] Paloalto to Acquire Koi Security for Establishing Agentic Endpoint security
• 12:03 UTC - [Schneier on Security] AI Found Twelve New Vulnerabilities in OpenSSL
• 12:03 UTC - [BleepingComputer] Microsoft says bug causes Copilot to summarize confidential emails
• 11:58 UTC - [The Hacker News] Cybersecurity Tech Predictions for 2026: Operating in a World of Permanent Instability
• 11:40 UTC - [Cyber Security News] Anthropic Releases Claude Sonnet 4.6 with Improved Coding, Computer Use, and 1M Token Context Window
• 11:19 UTC - [Cyber Security News] CISA Adds Windows Video ActiveX Control RCE Flaw to KEV Catalog Following Active Exploitation
• 10:59 UTC - [0day Fans] “Good enough” emulation: Fuzzing a single thread to uncover vulnerabilities
• 10:52 UTC - [Graham Cluley] Dutch police arrest man for “hacking” after accidentally sending him confidential files
• 10:50 UTC - [BleepingComputer] Glendale man gets 5 years in prison for role in darknet drug ring
• 10:32 UTC - [The Hacker News] Dell RecoverPoint for VMs Zero-Day CVE-2026-22769 Exploited Since Mid-2024
• 10:30 UTC - [The Hacker News] 3 Ways to Start Your Intelligent Workflow Program
• 10:28 UTC - [Cyber Security News] Single-Character Typo of “&” Instead of “|” Leads to 0-Day RCE in Firefox
• 10:26 UTC - [SecurityWeek] CISA: Hackers Exploiting Vulnerability in Product of Taiwan Security Firm TeamT5
• 09:23 UTC - [Cyber Security News] New Phishing Campaign Targets Booking.com Partners and Customers in Multi-Stage Financial Fraud Scheme
• 08:57 UTC - [Cyber Security News] CISA Warns of Google Chromium 0-Day Vulnerability Actively Exploited in Attacks
• 08:43 UTC - [Cyber Security News] Microsoft VS Code Extension with 11M Downloads Expose Developers to One-Click XSS Attacks
• 08:24 UTC - [SecurityWeek] Palo Alto Networks to Acquire Koi in Reported $400 Million Transaction
• 07:40 UTC - [The Hacker News] Notepad++ Fixes Hijacked Update Mechanism Used to Deliver Targeted Malware
• 07:28 UTC - [Cyber Security News] Notepad++ v8.9.2 Released with “Double-Lock” Update Mechanism Following Recent Hack
• 07:21 UTC - [Cyber Security News] New ‘Foxveil’ Malware Loader Leverages Cloudflare, Netlify, and Discord to Evade Detection
• 07:09 UTC - [SecurityWeek] Dell RecoverPoint Zero-Day Exploited by Chinese Cyberespionage Group
• 07:02 UTC - [Cyber Security News] Critical Windows Admin Center Vulnerability Allows Privilege Escalation
• 06:52 UTC - [The Hacker News] CISA Flags Four Security Flaws Under Active Exploitation in Latest KEV Update
• 05:39 UTC - [Cyber Security News] New Malware Campaign ‘CRESCENTHARVEST’ Exploits Iran Protest Sentiment to Deploy Information-Stealing RAT
• 03:37 UTC - [Cyber Security News] Cybercriminals Leverage Atlassian Cloud for Spam Campaigns Redirecting Targets to Fraudulent Investment Schemes
• 03:34 UTC - [Cyber Security News] Dell 0-Day Vulnerability Exploited by Chinese Hackers since mid-2024 to Deploy Malware
• 03:34 UTC - [Cyber Security News] Dell 0-Day Vulnerability Exploited by Chinese Hackers Since mid-2024 to Deploy Malware
• 03:07 UTC - [Cyber Security News] Matanbuchus 3.0 Returns with ClickFix Social Engineering and Silent MSI Installations to Deploy AstarionRAT
• 02:36 UTC - [Cyber Security News] Threat Actors Advertising New ‘ClickFix’ Payload That Stores Malware within Browser Cache
• 02:10 UTC - [Cyber Security News] Credit Card Fraud Emerges with a New Sophisticated Carding-as-a-Service Marketplaces
• 01:11 UTC - [Have I Been Pwned latest breaches] Figure - 967,178 breached accounts
• 01:00 UTC - [darkreading] Singapore & Its 4 Major Telcos Fend Off Chinese Hackers
• 00:47 UTC - [Cyber Security News] DigitStealer Gains Attention as macOS-Targeting Infostealer Exposes Key Infrastructure Weaknesses
• 00:32 UTC - [CyberScoop] Chinese hackers exploited a Dell zero-day for 18 months before anyone noticed

2026-02-17 #

• 23:15 UTC - [BleepingComputer] Spain orders NordVPN, ProtonVPN to block LaLiga piracy sites
• 23:15 UTC - [BleepingComputer] Spain orders NordVPN and ProtonVPN to block LaLiga stream piracy
• 22:10 UTC - [Cybersecurity Dive - Latest News] Hsckers exploit zero-day flaw in Dell RecoverPoint for Virtual Machines
• 22:10 UTC - [Cybersecurity Dive - Latest News] Hackers exploit zero-day flaw in Dell RecoverPoint for Virtual Machines
• 22:06 UTC - [darkreading] Supply Chain Attack Embeds Malware in Android Devices
• 21:31 UTC - [darkreading] Poland Energy Survives Attack on Wind, Solar Infrastructure
• 21:27 UTC - [BleepingComputer] Flaws in popular VSCode extensions expose developers to attacks
• 21:01 UTC - [darkreading] RMM Abuse Explodes as Hackers Ditch Malware
• 20:35 UTC - [Unit 42] Critical Vulnerabilities in Ivanti EPMM Exploited
• 20:35 UTC - [Latest from TechRadar in Security] Now that's old school — hackers are turning to snail mail to carry out crypto thefts
• 20:15 UTC - [BleepingComputer] Chinese hackers exploiting Dell zero-day flaw since mid-2024
• 19:22 UTC - [Cyber Security News] Malware in the Wild as Malicious Fork of Legitimate Triton App Surfaces on GitHub
• 18:29 UTC - [BleepingComputer] Notepad++ boosts update security with ‘double-lock’ mechanism
• 18:25 UTC - [Latest from TechRadar in Security] Some top password managers can be hacked and hijacked to change your passwords - here's what we know
• 18:23 UTC - [CyberScoop] Polish authorities arrest alleged Phobos ransomware affiliate
• 18:08 UTC - [The Hacker News] Researchers Show Copilot and Grok Can Be Abused as Malware C2 Proxies
• 17:28 UTC - [Cyber Security News] How CISOs Can Prevent Incidents with the Right Threat Intelligence 
• 17:28 UTC - [Cyber Security News] How CISOs Can Prevent Incidents with the Right Threat Intelligence
• 17:26 UTC - [Cyber Security News] QR Codes Used to Spread Phishing Attacks and Malicious Apps Across Mobile Devices
• 17:03 UTC - [darkreading] ClickFix Attacks Abuses DNS Lookup Command to Deliver ModeloRAT
• 17:00 UTC - [Microsoft Security Blog] Unify now or pay later: New research exposes the operational cost of a fragmented SOC
• 16:55 UTC - [CyberScoop] Palo Alto Networks’ Koi acquisition is all about keeping AI agents in check
• 16:41 UTC - [The Hacker News] Keenadu Firmware Backdoor Infects Android Tablets via Signed OTA Updates
• 16:37 UTC - [Cyber Security News] CredShields Contributes to OWASP’s 2026 Smart Contract Security Priorities
• 16:21 UTC - [Cyber Security News] US Law Firm Accuses Lenovo of Bulk Data Transfers to China
• 16:05 UTC - [Latest from TechRadar in Security] OpenClaw AI agents targeted by infostealer malware for the first time
• 16:00 UTC - [SecurityWeek] VulnCheck Raises $25 Million in Series B Funding to Scale Vulnerability Intelligence
• 16:00 UTC - [Rapid7 Cybersecurity Blog] Building the Future of Cloud Security: Rapid7 Recognized in Cloud Native Application Protection, Q1 2026
• 16:00 UTC - [Rapid7 Cybersecurity Blog] Building the Future of Cloud Security: Rapid7 Recognized as a Leader in Cloud Native Application Protection, Q1 2026
• 16:00 UTC - [Rapid7 Cybersecurity Blog] Building the Future of Cloud Security: Rapid7 Recognized as a Contender in Cloud Native Application Protection, Q1 2026
• 15:40 UTC - [Cybersecurity Dive - Latest News] Newly identified hacking groups provide access to OT environments
• 15:37 UTC - [BleepingComputer] Microsoft Teams outage affects users in United States, Europe
• 15:31 UTC - [Cybersecurity Dive - Latest News] Data-only extortion grows as ransomware gangs seek better profits
• 15:27 UTC - [SecurityWeek] Hackers Offer to Sell Millions of Eurail User Records
• 15:05 UTC - [Latest from TechRadar in Security] Over half a million VKontakte accounts hijacked using malicious Chrome extensions
• 14:40 UTC - [BleepingComputer] What 5 Million Apps Revealed About Secrets in JavaScript
• 14:35 UTC - [Cyber Security News] Cybersecurity Excellence Awards Reveal Nomination Shift from AI Hype to Governance Execution
• 14:29 UTC - [Cyber Security News] 0APT Ransomware Group Claims 200 Victims but Fails to Deliver Any Real Data
• 14:12 UTC - [0day Fans] AI in the Middle: Turning Web-Based AI Services into C2 Proxies & The Future Of AI Driven Attacks
• 14:05 UTC - [BleepingComputer] New Keenadu backdoor found in Android firmware, Google Play apps
• 14:00 UTC - [SecurityWeek] Cyber Insights 2026: The Ongoing Fight to Secure Industrial Control Systems
• 14:00 UTC - [SecurityWeek] API Threats Grow in Scale as AI Expands the Blast Radius
• 13:53 UTC - [Cyber Security News] Washington Hotel Located in Japan Suffers Ransomware Attack
• 13:48 UTC - [Cyber Security News] India’s Largest Pharmacy Exposes Customer Personal Details and Access to Internal Systems
• 13:38 UTC - [Cyber Security News] EU Parliament Blocks AI features on Corporate Devices Over Cybersecurity Concerns
• 13:35 UTC - [Cyber Security News] OpenClaw AI “Log Poisoning” Vulnerability Allows Malicious Content Injection
• 13:35 UTC - [Cyber Security News] Critical “Log Poisoning” Vulnerability in OpenClaw AI Agent Allows Malicious Content Injection
• 13:15 UTC - [Latest from TechRadar in Security] Top Japanese hotel brand reveals cyberattack - Washington hotels hit by ransomware
• 12:54 UTC - [SecurityWeek] Man Linked to Phobos Ransomware Arrested in Poland
• 12:42 UTC - [The Hacker News] SmartLoader Attack Uses Trojanized Oura MCP Server to Deploy StealC Infostealer
• 12:26 UTC - [Cyber Security News] Threat Actors Attacking OpenClaw Configurations to Steal Login Credentials
• 12:01 UTC - [Schneier on Security] Side-Channel Attacks Against LLMs
• 11:59 UTC - [The Hacker News] Webinar: How Modern SOC Teams Use AI and Context to Investigate Cloud Breaches Faster
• 11:54 UTC - [Latest from TechRadar in Security] Indian pharmacy chain giant exposed customer data and internal systems
• 11:50 UTC - [Cyber Security News] Firefox v147.0.3 Released With Fix for Heap Buffer Overflow Vulnerability
• 11:47 UTC - [Cyber Security News] Microsoft Teams With AI Workflows Use Microsoft 365 Copilot to Automate Tasks via Scheduled Prompts
• 11:31 UTC - [BleepingComputer] Poland arrests suspect linked to Phobos ransomware operation
• 11:30 UTC - [The Hacker News] My Day Getting My Hands Dirty with an NDR System
• 11:05 UTC - [SecurityWeek] 3 Threat Groups Started Targeting ICS/OT in 2025: Dragos 
• 11:00 UTC - [CyberScoop] Why ‘secure-by-design’ systems are non-negotiable in the AI era
• 11:00 UTC - [CyberScoop] Unit 42: Nearly two-thirds of breaches now start with identity abuse
• 11:00 UTC - [CyberScoop] Citizen Lab links Cellebrite to the hacking of a Kenyan presidential candidate’s phone
• 10:55 UTC - [Latest from TechRadar in Security] Eurail confirms stolen traveler data is on sale in the dark web - and it still doesn't know who is behind the attack
• 10:28 UTC - [Cyber Security News] Keenadu Android Backdoor Infects Firmware, Spreads via Google Play for Remote Control Access
• 10:02 UTC - [BleepingComputer] Ireland now also investigating X over Grok-made sexual images
• 10:00 UTC - [Cybersecurity Dive - Latest News] When AI agent security controls are enough – and when they’re not
• 10:00 UTC - [Cybersecurity Dive - Latest News] New security research finds governance determines trust in AI
• 09:59 UTC - [Latest from TechRadar in Security] Adopting AI is a major priority for businesses - but employees are falling behind on education
• 09:55 UTC - [Latest from TechRadar in Security] AI models can’t fully understand security – and they never will
• 09:31 UTC - [The Hacker News] Microsoft Finds “Summarize with AI” Prompts Manipulating Chatbot Recommendations
• 09:30 UTC - [SecurityWeek] Password Managers Vulnerable to Vault Compromise Under Malicious Server
• 08:21 UTC - [Cyber Security News] Apache NiFi Vulnerability Enables Authorization Bypass
• 07:42 UTC - [Cyber Security News] Malicious Chrome Extension Steals Facebook Business Manage 2FA Codes and Analytics Data
• 07:39 UTC - [Cyber Security News] Langchain Community SSRF Bypass Vulnerability Enables Access to Internal Services
• 06:44 UTC - [The Hacker News] Apple Tests End-to-End Encrypted RCS Messaging in iOS 26.4 Developer Beta
• 03:03 UTC - [Cyber Security News] 25 Vulnerabilities in Cloud Password Managers Allow Unauthorized Access and Modifications
• 00:19 UTC - [Have I Been Pwned latest breaches] Canada Goose - 581,877 breached accounts

2026-02-16 #

• 23:40 UTC - [Latest from TechRadar in Security] Sex toy firm hit by data breach - Tenga says hacker infiltrated systems, stole customer data
• 21:57 UTC - [Have I Been Pwned latest breaches] University of Pennsylvania - 623,750 breached accounts
• 21:10 UTC - [BleepingComputer] Washington Hotel in Japan discloses ransomware infection incident
• 19:19 UTC - [BleepingComputer] Eurail says stolen traveler data now up for sale on dark web
• 19:13 UTC - [BleepingComputer] Man arrested for demanding reward after accidental police data leak
• 18:43 UTC - [The Hacker News] Infostealer Steals OpenClaw AI Agent Configuration Files and Gateway Tokens
• 18:35 UTC - [Latest from TechRadar in Security] Pentagon may sever Anthropic relationship over AI safeguards - Claude maker expresses concerns over 'hard limits around fully autonomous weapons and mass domestic surveillance'
• 18:06 UTC - [The Hacker News] Study Uncovers 25 Password Recovery Attacks in Major Cloud Password Managers
• 17:57 UTC - [Cyber Security News] Noodlophile Malware Creators Evolve Tactics with Fake Job Postings and Phishing Lures
• 17:32 UTC - [BleepingComputer] Infostealer malware found stealing OpenClaw secrets for first time
• 17:19 UTC - [Cyber Security News] Beware of Fake Shops from Threat Actors to Attack Winter Olympics 2026 Fans
• 16:10 UTC - [Cyber Security News] Single IP Dominates Exploitation Campaign Attacking Ivanti EPMM with RCE Vulnerability
• 16:10 UTC - [Latest from TechRadar in Security] Google patches first Chrome zero-day of the year - so update now or face attack
• 15:50 UTC - [Cyber Security News] Joomla Novarain/Tassos Framework Vulnerabilities Enables SQL injection and Unauthenticated File Read
• 15:15 UTC - [Latest from TechRadar in Security] North Korean job scammers target JavaScript and Python developers with fake interview tasks spreading malware
• 15:10 UTC - [Latest from TechRadar in Security] Confronting AI’s data privacy paradox
• 15:09 UTC - [SecurityWeek] Dior, Louis Vuitton, Tiffany Fined $25 Million in South Korea After Data Breaches
• 15:02 UTC - [BleepingComputer] Passwords to passkeys: Staying ISO 27001 compliant in a passwordless era
• 14:59 UTC - [Cyber Security News] Hackers Can Weaponize ‘Summarize with AI’ Buttons to Inject Memory Prompts Into AI Recommendations
• 14:11 UTC - [Cyber Security News] New Clickfix Variant ‘Matryoshka’ Attacking Users to Deploy macOS Stealer Malware
• 14:05 UTC - [Latest from TechRadar in Security] Canada Goose confirms data leak - around 600,000 customers thought to be affected
• 14:00 UTC - [darkreading] 260K+ Chrome Users Duped by Fake AI Browser Extensions
• 13:50 UTC - [SecurityWeek] Android 17 Beta Strengthens Secure-by-Default Design for Privacy and App Security
• 13:49 UTC - [SecurityWeek] CISA Navigates DHS Shutdown With Reduced Staff
• 13:39 UTC - [Cyber Security News] LockBit’s New 5.0 Version Attacking Windows, Linux and ESXi Systems
• 13:39 UTC - [Cyber Security News] LockBit’s New 5.0 Version Attacking Windows, Linux and ESXI Systems
• 13:28 UTC - [Cyber Security News] Palo Alto Networks Completed Acquisition of Identity Security Firm CyberArk
• 13:05 UTC - [Latest from TechRadar in Security] Blockchain fintech giant Figure hit by data breach, says 'limited number of files' impacted
• 12:55 UTC - [The Hacker News] Weekly Recap: Outlook Add-Ins Hijack, 0-Day Patches, Wormable Botnet & AI Malware
• 12:33 UTC - [Cyber Security News] New ZeroDayRAT Attacking Android and iOS For Real-Time Surveillance and Data Theft
• 12:33 UTC - [BleepingComputer] CISA gives feds 3 days to patch actively exploited BeyondTrust flaw
• 12:16 UTC - [Cyber Security News] Critical Airleader Vulnerability Exposes Systems to Remote Code Execution Attacks
• 12:13 UTC - [Cyber Security News] OpenClaw Founder Peter Steinberger Officially Joins OpenAI
• 12:04 UTC - [Schneier on Security] The Promptware Kill Chain
• 12:02 UTC - [Cyber Security News] FileZen File Transfer App Vulnerability Enables Arbitrary Command Execution
• 11:56 UTC - [SecurityWeek] Microsoft Warns of ClickFix Attack Abusing DNS Lookups
• 11:55 UTC - [The Hacker News] Safe and Inclusive E‑Society: How Lithuania Is Bracing for AI‑Driven Cyber Fraud
• 11:47 UTC - [Latest from TechRadar in Security] Why LLMs are plateauing – and what that means for software security
• 11:40 UTC - [SecurityWeek] Amazon Scraps Partnership With Surveillance Company After Super Bowl Ad Backlash
• 10:24 UTC - [The Hacker News] New ZeroDayRAT Mobile Spyware Enables Real-Time Surveillance and Data Theft
• 10:08 UTC - [Cyber Security News] Lotus Blossom Hackers Compromised Official Hosting Infrastructure of Notepad++
• 10:07 UTC - [Cyber Security News] CISA Warns of ZLAN ICS Devices Vulnerabilities Allows Complete Device Takeover
• 08:19 UTC - [BleepingComputer] Google patches first Chrome zero-day exploited in attacks this year
• 07:54 UTC - [SecurityWeek] Google Patches First Actively Exploited Chrome Zero-Day of 2026
• 07:42 UTC - [Cyber Security News] Critical BeyondTrust Vulnerability Exploited in the Wild to Gain Full Domain Control
• 07:31 UTC - [Have I Been Pwned latest breaches] APOIA.se - 450,764 breached accounts
• 06:38 UTC - [The Hacker News] New Chrome Zero-Day (CVE-2026-2441) Under Active Attack — Patch Released
• 04:45 UTC - [BleepingComputer] Canada Goose investigating as hackers leak 600K customer records
• 03:29 UTC - [Cyber Security News] Chrome 0-Day Vulnerability Actively Exploited by Attackers in the Wild
• 01:07 UTC - [darkreading] Operation DoppelBrand: Weaponizing Fortune 500 Brands
• 00:29 UTC - [BleepingComputer] New ClickFix attack abuses nslookup to retrieve PowerShell payload via DNS

2026-02-15 #

• 22:59 UTC - [0day Fans] Building a Secure Electron Auto-Updater
• 22:08 UTC - [BleepingComputer] Windows 11 KB5077181 fixes boot failures linked to failed updates
• 16:30 UTC - [BleepingComputer] CTM360: Lumma Stealer and Ninja Browser malware campaign abusing Google Groups
• 15:17 UTC - [BleepingComputer] Pastebin comments push ClickFix JavaScript attack to hijack crypto swaps
• 14:10 UTC - [The Hacker News] Microsoft Discloses DNS-Based ClickFix Attack Using Nslookup for Malware Staging
• 11:37 UTC - [Cyber Security News] Windows 11 KB5077181 Security Update Causing Some Devices to Restart in an Infinite Loop
• 09:00 UTC - [Latest from TechRadar in Security] The visibility mirage: Why AI pilots keep stalling between ambition and impact
• 04:45 UTC - [Cyber Security News] PentestAgent – AI Penetration Testing Tool With Prebuilt Attack Playbooks and HexStrike Integration

2026-02-14 #

• 22:20 UTC - [Latest from TechRadar in Security] Who remembers IRC? Clearly some hackers, as a new Linux botnet uses some incredibly old-school methods to cut costs
• 17:04 UTC - [Schneier on Security] Upcoming Speaking Engagements
• 16:02 UTC - [BleepingComputer] One threat actor responsible for 83% of recent Ivanti RCE attacks
• 15:15 UTC - [BleepingComputer] Snail mail letters target Trezor and Ledger users in crypto-theft attacks
• 12:00 UTC - [SecurityWeek] Over 300 Malicious Chrome Extensions Caught Leaking or Stealing User Data
• 11:11 UTC - [Cyber Security News] New Clickfix Exploit Tricks Users into Changing DNS Settings for Malware Installation
• 11:11 UTC - [Cyber Security News] New Clickfix Attack Uses DNS Hijacking to Spread Malware
• 09:25 UTC - [Cyber Security News] Threat Actors Exploit Claude Artifacts and Google Ads to Target macOS Users
• 07:53 UTC - [Cyber Security News] Threat Actor Allegedly Selling Critical Severity OpenSea 0-day Exploit Chain on Hacking Forums
• 03:27 UTC - [Cyber Security News] CISA Warns of Microsoft Configuration Manager SQL Injection Vulnerability Exploited in Attacks

2026-02-13 #

• 23:00 UTC - [Unit 42] Phishing on the Edge of the Web and Mobile Using QR Codes
• 22:35 UTC - [BleepingComputer] Fake job recruiters hide malware in developer coding challenges
• 22:08 UTC - [Schneier on Security] Friday Squid Blogging: Do Squid Dream?
• 21:58 UTC - [darkreading] Zscaler-SquareX Deal Boosts Zero Trust, Secure Browsing Capabilities
• 20:21 UTC - [BleepingComputer] Claude LLM artifacts abused to push Mac infostealers in ClickFix attack
• 20:01 UTC - [Rapid7 Cybersecurity Blog] Metasploit Wrap-Up 02/13/2026
• 18:35 UTC - [BleepingComputer] Louis Vuitton, Dior, and Tiffany fined $25 million over data breaches
• 18:35 UTC - [Latest from TechRadar in Security] Nearly a million WordPress websites could be at risk from this serious plugin security flaw
• 17:27 UTC - [Cyber Security News] Malicious Chrome AI Extensions Attacking 260,000 Users via Injected IFrames
• 17:27 UTC - [The Hacker News] Google Ties Suspected Russian Actor to CANFAIL Malware Attacks on Ukrainian Orgs
• 17:08 UTC - [darkreading] Microsoft Under Pressure to Bolster Defenses for BYOVD Attacks
• 17:07 UTC - [darkreading] Nation-State Hackers Put Defense Industrial Base Under Siege
• 17:05 UTC - [Latest from TechRadar in Security] Fake Chrome AI extensions targeted over 300,000 users to steal emails, personal data and more - here's what we know
• 16:49 UTC - [darkreading] AI Agents 'Swarm,' Security Complexity Follows Suit
• 16:23 UTC - [Cybersecurity Dive - Latest News] Critical flaw in BeyondTrust Remote Support sees early signs of exploitation
• 16:23 UTC - [The Hacker News] Google Links China, Iran, Russia, North Korea to Coordinated Defense Sector Cyber Operations
• 16:16 UTC - [Cybersecurity Dive - Latest News] Ransomware attacks increase against IT and food sectors
• 16:00 UTC - [All Fortinet Blog | Latest Posts] A Decade of NSE 8: Why the Industry’s Highest Technical Bar Still Matters
• 15:23 UTC - [The Hacker News] UAT-9921 Deploys VoidLink Malware to Target Technology and Financial Sectors
• 15:05 UTC - [BleepingComputer] Turning IBM QRadar Alerts into Action with Criminal IP
• 15:03 UTC - [Latest from TechRadar in Security] How AI-powered threats are rewriting email security economics
• 15:01 UTC - [SecurityWeek] In Other News: Google Looks at AI Abuse, Trump Pauses China Bans, Disney’s $2.7M Fine
• 14:05 UTC - [Latest from TechRadar in Security] 'If someone can inject instructions or spurious facts into your AI’s memory, they gain persistent influence over your future interactions': Microsoft warns AI recommendations are being "poisoned" to serve up malicious results
• 13:59 UTC - [Cyber Security News] Chrome Extensions Infected 500K Users to Hijack VKontakte Accounts
• 13:38 UTC - [Cyber Security News] New ClickFix Attack Wave Targeting Windows Systems to Deploy StealC Stealer
• 13:19 UTC - [Cyber Security News] OpenClaw 2026.2.12 Released With Fix for 40+ Security Issues
• 12:35 UTC - [SecurityWeek] Check Point Announces Trio of Acquisitions Amid Solid 2025 Earnings Beat
• 12:35 UTC - [BleepingComputer] CISA flags critical Microsoft SCCM flaw as exploited in attacks
• 12:23 UTC - [Cyber Security News] Zimbra Security Update – Patch for XSS, XXE & LDAP Injection Vulnerabilities
• 12:02 UTC - [SecurityWeek] Dutch Carrier Odido Discloses Data Breach Impacting 6 Million
• 11:45 UTC - [Cyber Security News] New XWorm RAT Campaign Uses Themed Phishing Lures and CVE‑2018‑0802 Excel Exploit to Evade Detection
• 11:25 UTC - [Latest from TechRadar in Security] Forget zero-days - 'N-days' could be the most worrying security threat facing your systems today, here's why
• 11:25 UTC - [Latest from TechRadar in Security] Major telco breach sees 6.2 million users have personal info leaked - here's what we know so far
• 11:25 UTC - [The Hacker News] Malicious Chrome Extensions Caught Stealing Business Data, Emails, and Browsing History
• 11:01 UTC - [SecurityWeek] BeyondTrust Vulnerability Targeted by Hackers Within 24 Hours of PoC Release
• 10:45 UTC - [The Hacker News] npm’s Update to Harden Their Supply Chain, and Points to Consider
• 10:36 UTC - [SecurityWeek] CISA Warns of Exploited SolarWinds, Notepad++, Microsoft Vulnerabilities
• 09:51 UTC - [Cyber Security News] OysterLoader Multi‑Stage Evasion Loader Uncovered with Advanced Obfuscation and Rhysida Ransomware Links
• 09:31 UTC - [BleepingComputer] Microsoft fixes bug that blocked Google Chrome from launching
• 08:59 UTC - [Cyber Security News] Surge in AI-Driven Phishing Attacks and QR Code Quishing in 2025 Spam and Phishing Report
• 08:34 UTC - [The Hacker News] Researchers Observe In-the-Wild Exploitation of BeyondTrust CVSS 9.9 Vulnerability
• 08:18 UTC - [SecurityWeek] Chrome 145 Patches 11 Vulnerabilities
• 06:59 UTC - [Cyber Security News] Critical Vulnerability in Next-Mdx-Remote Allows Arbitrary Code Execution in React Server-Side Rendering
• 06:49 UTC - [SecurityWeek] China Revives Tianfu Cup Hacking Contest Under Increased Secrecy
• 06:33 UTC - [Cyber Security News] Over 1,800 Windows Servers Compromised by BADIIS Malware in Large-Scale SEO Poisoning Campaign
• 03:49 UTC - [Cyber Security News] CISA Warns of Notepad++ Code Execution Vulnerability Exploited in Attacks
• 00:04 UTC - [CyberScoop] Proofpoint acquires Acuvity to tackle the security risks of agentic AI

2026-02-12 #

• 23:48 UTC - [CyberScoop] Apple discloses first actively exploited zero-day of 2026
• 22:57 UTC - [BleepingComputer] Russia tries to block WhatsApp, Telegram in communication blockade
• 22:05 UTC - [darkreading] Ivanti EPMM Zero-Day Bugs Spark Exploit Frenzy — Again
• 21:55 UTC - [BleepingComputer] Bitwarden introduces ‘Cupid Vault’ for secure password sharing
• 21:34 UTC - [BleepingComputer] Critical BeyondTrust RCE flaw now exploited in attacks, patch now
• 21:27 UTC - [Cybersecurity Dive - Latest News] CISA will shutter some missions to prioritize others
• 21:24 UTC - [CyberScoop] Google finds state-sponsored hackers use AI at ‘all stages’ of attack cycle 
• 21:23 UTC - [darkreading] Booz Allen Announces General Availability of Vellox Reverser to Automate Malware Defense
• 21:11 UTC - [darkreading] SpecterOps Launches BloodHound Scentry to Accelerate the Practice of Identity Attack Path Management
• 21:04 UTC - [darkreading] Gone With the Shame: One in Two Americans Are Reluctant to Talk About Romance Scam Incidents
• 21:01 UTC - [BleepingComputer] Microsoft: New Windows LNK spoofing issues aren't vulnerabilities
• 20:47 UTC - [darkreading] Those 'Summarize With AI' Buttons May Lying to You
• 20:47 UTC - [darkreading] Those 'Summarize With AI' Buttons May Be Lying to You
• 20:38 UTC - [Microsoft Security Blog] Top 10 actions to build agents securely with Microsoft Copilot Studio
• 20:38 UTC - [Microsoft Security Blog] Copilot Studio agent security: Top 10 risks you can detect and prevent
• 19:16 UTC - [BleepingComputer] Romania's oil pipeline operator Conpet confirms data stolen in attack
• 19:10 UTC - [Latest from TechRadar in Security] 'Your data is public': Hacker warns victims after leaking 6.8 billion emails online
• 18:47 UTC - [Graham Cluley] Urgent warnings from UK and US cyber agencies after Polish energy grid attack
• 18:18 UTC - [BleepingComputer] Odido data breach exposes personal info of 6.2 million customers
• 17:57 UTC - [The Hacker News] Google Reports State-Backed Hackers Using Gemini AI for Recon and Attack Support
• 17:23 UTC - [Cyber Security News] Odido Telecom Suffers Cyberattack – 6.2 Million Customer Accounts Affected
• 17:09 UTC - [CyberScoop] CISA to host industry feedback sessions on cyber incident reporting regulation
• 17:09 UTC - [BleepingComputer] WordPress plugin with 900k installs vulnerable to critical RCE flaw
• 17:08 UTC - [Cyber Security News] 287 Chrome Extensions Exfiltrate Browsing History From 37.4 Million Users
• 17:05 UTC - [Cyber Security News] ORB Networks Mask Cyberattacks Using Compromised IoT Devices and SOHO Routers
• 17:00 UTC - [Microsoft Security Blog] Your complete guide to Microsoft experiences at RSAC™ 2026 Conference
• 16:55 UTC - [The Hacker News] Lazarus Campaign Plants Malicious Packages in npm and PyPI Ecosystems
• 16:54 UTC - [Cyber Security News] DragonForce Ransomware Group Expands Its Influence with Cartel-like Operations and Targeting 363 Companies Since 2023
• 16:39 UTC - [Cyber Security News] DShield Sensor Captures Self-Propagating SSH Worm Exploit Using Credential Stuffing and Multi-Stage Malware
• 16:25 UTC - [Latest from TechRadar in Security] A popular Microsoft Outlook add-in has been hijacked to try and steal user accounts - here's how to stay safe
• 16:22 UTC - [Cybersecurity Dive - Latest News] CISA seeks infrastructure sector consultation on incident reporting rule
• 16:17 UTC - [Cyber Security News] Feiniu NAS Devices Infected in Large-Scale Netdragon Botnet Attack Exploiting Unpatched Vulnerabilities
• 16:15 UTC - [SecurityWeek] How to Eliminate the Technical Debt of Insecure AI-Assisted Software Development
• 16:08 UTC - [Cybersecurity Dive - Latest News] SmarterMail facing widespread attacks targeting critical flaws
• 15:46 UTC - [Cyber Security News] Rogue VM Linked to Muddled Libra in VMware vSphere Attack, Revealing Key TTPs
• 15:42 UTC - [Latest from TechRadar in Security] Huge OneFly data breach sees traveler IDs and payment details leaked
• 15:09 UTC - [Cyber Security News] WordPress Backup Plugin Vulnerability Exposes 800,000 Sites to Remote Code Execution Attacks
• 15:05 UTC - [Latest from TechRadar in Security] Privacy’s about to become boring, and that’s a good thing (for those that take note)
• 14:25 UTC - [BleepingComputer] AMOS infostealer targets macOS through a popular AI app
• 14:05 UTC - [Latest from TechRadar in Security] Apple fixes dangerous zero-day flaw affecting macOS, iOS and more - update now to avoid 'extremely sophisticated attack'
• 14:00 UTC - [Rapid7 Cybersecurity Blog] Carding-as-a-Service: The Underground Market of Stolen Cards
• 14:00 UTC - [All Fortinet Blog | Latest Posts] Why Certification Has Become a Strategic Control for CISOs
• 13:52 UTC - [Cyber Security News] Chrome Security Update – Patch for Vulnerabilities that Enables Code Execution Attacks
• 13:41 UTC - [BleepingComputer] Fake AI Chrome extensions with 300K users steal credentials, emails
• 13:24 UTC - [Cyber Security News] Sophisticated ‘duer-js’ NPM Package Distributes ‘Bada Stealer’ Malware Targeting Windows and Discord Users
• 13:16 UTC - [Latest from TechRadar in Security] AI malware, Gemini lures and more: Google reveals how hackers are actually using AI
• 12:25 UTC - [Latest from TechRadar in Security] Microsoft patches concerning Windows 11 Notepad security flaw - Markdown issues could have let hackers slip in malware without warning
• 12:23 UTC - [SecurityWeek] ApolloMD Data Breach Impacts 626,000 Individuals
• 12:01 UTC - [Cyber Security News] Google Warns of Hackers Leveraging Gemini AI for All Stages of Cyberattacks
• 12:01 UTC - [Schneier on Security] 3D Printer Surveillance
• 11:51 UTC - [The Hacker News] ThreatsDay Bulletin: AI Prompt RCE, Claude 0-Click, RenEngine Loader, Auto 0-Days & 25+ Stories
• 11:47 UTC - [Latest from TechRadar in Security] 'These updates raise the bar for security and privacy on Windows': Microsoft has a plan to toughen up Windows 11's defenses
• 11:38 UTC - [Cyber Security News] Lazarus Group’s ‘Graphalgo’ Fake Recruiter Campaign Exploits GitHub, npm, and PyPI to Distribute Malware
• 11:27 UTC - [SecurityWeek] Microsoft to Enable ‘Windows Baseline Security’ With New Runtime Integrity Safeguards
• 11:12 UTC - [SecurityWeek] Hacktivists, State Actors, Cybercriminals Target Global Defense Industry, Google Warns
• 10:37 UTC - [Cyber Security News] Adblock Filters Exposes Reveal User Location Despite VPN Protection
• 10:30 UTC - [The Hacker News] The CTEM Divide: Why 84% of Security Programs Are Falling Behind
• 10:00 UTC - [Cybersecurity Dive - Latest News] The Future of DAST in an AI-First World: Why Runtime Security Testing Remains Critical
• 09:41 UTC - [Cyber Security News] Fake CAPTCHA Attacks Emerge as Key Entry Point for LummaStealer Malware Campaigns
• 09:09 UTC - [SecurityWeek] Nucleus Raises $20 Million for Exposure Management
• 09:00 UTC - [darkreading] Senegalese Data Breaches Expose Lack of Security Maturity
• 09:00 UTC - [darkreading] Senegalese Data Breaches Expose Lack of 'Security Maturity'
• 08:49 UTC - [Cyber Security News] Microsoft Outlook Add-in Stolen 4,000 Microsoft account Credentials and Credit Card Numbers
• 08:44 UTC - [Cyber Security News] Promptware – Hackers Can Use Google Calendar Invites to Stream Victims’ Cameras via Zoom
• 08:04 UTC - [Graham Cluley] Polish hacker charged seven years after massive Morele.net data breach
• 08:01 UTC - [Cyber Security News] $44 Evilmouse Autonomously Executes Commands and Compromises Systems Once Connected
• 07:48 UTC - [SecurityWeek] Apple Patches iOS Zero-Day Exploited in ‘Extremely Sophisticated Attack’
• 07:32 UTC - [The Hacker News] 83% of Ivanti EPMM Exploits Linked to Single IP on Bulletproof Hosting Infrastructure
• 07:18 UTC - [Cyber Security News] Palo Alto Networks Firewall Vulnerability Allows an Attacker to Force Firewalls into a Reboot Loop
• 07:00 UTC - [BleepingComputer] Google says hackers are abusing Gemini AI for all attacks stages
• 06:37 UTC - [Cyber Security News] Threat Actors Leveraging Employee Monitoring and SimpleHelp Tools to Deploy Ransomware Attacks
• 05:39 UTC - [The Hacker News] Apple Fixes Exploited Zero-Day Affecting iOS, macOS, and Other Devices
• 05:39 UTC - [The Hacker News] Apple Fixes Exploited Zero-Day Affecting iOS, macOS, and Apple Devices
• 04:15 UTC - [Cyber Security News] Russia Blocked WhatsApp For Over 100 Million Users Nationwide
• 04:00 UTC - [Cyber Security News] Israeli Spyware Firm Exposes Paragon Spyware Control Panel on LinkedIn
• 02:42 UTC - [Cyber Security News] Apple 0-Day Vulnerability Actively Exploited in Sophisticated Attack to Target Individuals
• 01:35 UTC - [netbiosX]
• 01:20 UTC - [Latest from TechRadar in Security] Claude desktop extension can be hijacked to send out malware by a simple Google Calendar event
• 01:06 UTC - [BleepingComputer] Apple fixes zero-day flaw used in 'extremely sophisticated' attacks
• 00:30 UTC - [Graham Cluley] Smashing Security podcast #454: AI was not plotting humanity’s demise. Humans were
• 00:00 UTC - [The GreyNoise Blog] Reconnaissance Has Begun for the New BeyondTrust RCE (CVE-2026-1731): Here's What We See So Far

2026-02-11 #

• 23:15 UTC - [BleepingComputer] Windows 11 Notepad flaw let files execute silently via Markdown links
• 23:00 UTC - [Unit 42] Nation-State Actors Exploit Notepad++ Supply Chain
• 22:29 UTC - [CyberScoop] 0APT ransomware group rises swiftly with bluster, along with genuine threat of attack
• 22:04 UTC - [CyberScoop] Acting CISA chief says DHS funding lapse would limit, halt some agency work
• 21:56 UTC - [darkreading] North Korea's UNC1069 Hammers Crypto Firms With AI
• 21:53 UTC - [BleepingComputer] Microsoft Store Outlook add-in hijacked to steal 4,000 Microsoft accounts
• 20:20 UTC - [Cyber Security News] VoidLink Framework Enables On-Demand Tool Generation with Windows Plugin Support
• 19:59 UTC - [Cyber Security News] GTIG Analysis Highlights Escalating Espionage and Supply Chain Risks Facing Defense Sector
• 19:51 UTC - [CyberScoop] Your AI doctor doesn’t have to follow the same privacy rules as your real one
• 19:50 UTC - [SecurityWeek] Nevada Unveils New Statewide Data Classification Policy Months After Cyberattack
• 19:29 UTC - [BleepingComputer] Crazy ransomware gang abuses employee monitoring tool in attacks
• 19:14 UTC - [BleepingComputer] Police arrest seller of JokerOTP MFA passcode capturing tool
• 19:14 UTC - [Cyber Security News] RU-APT-ChainReaver-L Hijacks Trusted Websites and GitHub Repos in Massive Cross-Platform Supply Chain Campaign
• 17:45 UTC - [The Hacker News] First Malicious Outlook Add-In Found Stealing 4,000+ Microsoft Credentials
• 17:43 UTC - [Cyber Security News] Massive Spike in Attacks Exploiting Ivanti EPMM Systems 0-day Vulnerability
• 17:40 UTC - [BleepingComputer] Proactive strategies for cyber resilience with Wazuh
• 17:02 UTC - [BleepingComputer] LummaStealer infections surge after CastleLoader malware campaigns
• 17:00 UTC - [Microsoft Security Blog] The strategic SIEM buyer’s guide: Choosing an AI-ready platform for the agentic era
• 17:00 UTC - [Microsoft Security Blog] The strategic SIEM buyer’s guide: Choosing an AI-ready platform for the agentic era
• 16:42 UTC - [Cyber Security News] Prometei Botnet Attacking Windows Server to Gain Remote Access and Deploy Malware
• 16:39 UTC - [Cyber Security News] Critical SandboxJS Vulnerability Allows Remote Host Takeover – PoC Released
• 16:29 UTC - [Cyber Security News] Threat Actors Weaponize ChatGPT, Grok and Leverages Google Ads to Distribute macOS AMOS Stealer
• 16:27 UTC - [Cyber Security News] BQTLock & GREENBLOOD Ransomware Attacking Organizations to Encrypt and Exfiltrate Data
• 16:21 UTC - [Cyber Security News] Critical UUID Flaw in Fiber v2 on Go 1.24+ Enables Session Hijacking, CSRF Bypass, and Zero-ID DoS Risk
• 16:15 UTC - [Cybersecurity Dive - Latest News] Majority of Ivanti EPMM threat activity linked to hidden IP
• 16:08 UTC - [Krebs on Security] Kimwolf Botnet Swamps Anonymity Network I2P
• 16:05 UTC - [Latest from TechRadar in Security] North Korean hackers use AI-generated video to deliver malware for macOS and Windows
• 16:00 UTC - [All Fortinet Blog | Latest Posts] AI Is Transforming Cybersecurity, but the Skills Gap Still Presents Significant Risk
• 15:59 UTC - [Cybersecurity Dive - Latest News] Extortion attacks on the rise as hackers prioritize supply-chain weaknesses
• 15:46 UTC - [Cyber Security News] Legacy IRC Botnet Campaign Uses Automated SSH Compromise Pipeline to Enroll Linux Hosts at Scale
• 15:05 UTC - [SecurityWeek] Webinar Today: Identity Under Attack – Strengthen Your Identity Defenses
• 14:55 UTC - [Latest from TechRadar in Security] Beware, this fake site offers up a malicious 7-Zip installer laced with malware
• 14:52 UTC - [The Hacker News] APT36 and SideCopy Launch Cross-Platform RAT Campaigns Against Indian Entities
• 14:48 UTC - [Schneier on Security] Rewiring Democracy Ebook is on Sale
• 14:11 UTC - [SecurityWeek] GitGuardian Raises $50 Million for Secrets and Non-Human Identity Security
• 14:00 UTC - [darkreading] Top Cyber Industry Defenses Spike CO2 Emissions
• 14:00 UTC - [Black Hills Information Security, Inc.] What to Do with Your First Home Lab
• 13:47 UTC - [Latest from TechRadar in Security] ‘It's easier to tell them what hasn't changed in the last three to four years than what has’: LastPass CEO Karim Toubba on why it deserves your trust back after 2022 breach
• 13:44 UTC - [Cyber Security News] GitGuardian Raises $50M Series C to Address Non-Human Identities Crisis and AI Agent Security Gap
• 13:41 UTC - [SecurityWeek] Conduent Breach Hits Volvo Group: Nearly 17,000 Employees’ Data Exposed
• 13:29 UTC - [SecurityWeek] Zast.AI Raises $6 Million for AI-Powered Code Security
• 13:28 UTC - [Cyber Security News] MSHTML Framework 0-Day Vulnerability Let Attackers Security Feature over Network
• 13:28 UTC - [The Hacker News] Over 60 Software Vendors Issue Security Fixes Across OS, Cloud, and Network Platforms
• 13:21 UTC - [CyberScoop] GOP Congress moves to shape election law in Trump’s image
• 13:15 UTC - [SecurityWeek] Security in the Dark: Recognizing the Signs of Hidden Information
• 13:15 UTC - [Latest from TechRadar in Security] Thousands of Volvo customers possibly affected in major data breach - 17,000 affected, here's what we know
• 13:00 UTC - [0day Fans] Scary Agent Skills: Hidden Unicode Instructions in Skills ...And How To Catch Them
• 13:00 UTC - [SecurityWeek] Microsoft to Refresh Windows Secure Boot Certificates in June 2026
• 12:57 UTC - [Cyber Security News] Microsoft Office Word 0-day Vulnerability Actively Exploited in the Wild
• 12:30 UTC - [SecurityWeek] Hacker Conversations: Professional Hacker Douglas Day
• 12:28 UTC - [Cyber Security News] Cephalus Ransomware Emerges as Go-Based Double-Extortion Threat Targeting Exposed RDP
• 12:28 UTC - [Cyber Security News] Desktop Window Manager 0-Day Vulnerability Allows Attacker to Elevate Privileges
• 12:25 UTC - [Latest from TechRadar in Security] Singapore says its four largest phone companies were hit by Chinese hackers
• 12:19 UTC - [Cyber Security News] Microsoft Releases Critical Windows 11 Cumulative Updates for Versions 25H2, 24H2, and 23H2
• 12:14 UTC - [SecurityWeek] Ivanti Patches Endpoint Manager Vulnerabilities Disclosed in October 2025
• 12:03 UTC - [Schneier on Security] Prompt Injection Via Road Signs
• 11:48 UTC - [Cyber Security News] Microsoft Investigates Teams Assignment Errors After Failed Service Update
• 11:30 UTC - [The Hacker News] Exposed Training Open the Door for Crypto-Mining in Fortune 500 Cloud Environments
• 11:00 UTC - [SecurityWeek] Chipmaker Patch Tuesday: Over 80 Vulnerabilities Addressed by Intel and AMD
• 10:22 UTC - [The Hacker News] Microsoft Patches 59 Vulnerabilities Including Six Actively Exploited Zero-Days
• 10:10 UTC - [Cyber Security News] CISA Adds Six Microsoft 0-Day Vulnerabilities to KEV Catalog Following Active Exploitation
• 09:56 UTC - [The Hacker News] SSHStalker Botnet Uses IRC C2 to Control Linux Systems via Legacy Kernel Exploits
• 09:39 UTC - [SecurityWeek] Fortinet Patches High-Severity Vulnerabilities
• 09:28 UTC - [Cyber Security News] Coinbase Cartel Targets High-Value Sectors with Data-Theft-First Extortion Strategy
• 08:52 UTC - [Cyber Security News] Windows Remote Access Connection Manager 0-Day Vulnerability Let Attackers Trigger DoS Attack
• 08:41 UTC - [SecurityWeek] Google-Intel Security Audit Reveals Severe TDX Vulnerability Allowing Full Compromise
• 08:36 UTC - [Cyber Security News] Sophisticated Cyber Attack Targets Wedding Industry With Teams-Based Malware Delivery
• 07:58 UTC - [Cyber Security News] Socelars Malware Attacking Windows Systems to Steal Sensitive Business Data
• 07:42 UTC - [SecurityWeek] ICS Patch Tuesday: Vulnerabilities Addressed by Siemens, Schneider, Aveva, Phoenix Contact
• 07:20 UTC - [Cyber Security News] Windows Shell Security Feature 0-Day Vulnerability Let Attackers Bypass Authentication
• 06:50 UTC - [The Hacker News] North Korea-Linked UNC1069 Uses AI Lures to Attack Cryptocurrency Organizations
• 05:50 UTC - [Cyber Security News] GitLab Patches Multiple Vulnerabilities That Enables DoS and Cross-site Scripting Attacks
• 05:06 UTC - [Cyber Security News] Windows Notepad Vulnerability Allows Attackers to Execute Malicious Code Remotely
• 05:06 UTC - [Cyber Security News] Windows Notepad Vulnerability Allows Attackers to Execute Code Remotely
• 02:37 UTC - [Cyber Security News] Windows Remote Desktop Services 0-Day Vulnerability Exploited in the Wild to Escalate Privileges
• 02:06 UTC - [BleepingComputer] Microsoft releases Windows 11 26H1 for select and upcoming CPUs
• 02:00 UTC - [darkreading] Asia Fumbles With Throttling Back Telnet Traffic in Region
• 01:58 UTC - [Rapid7 Cybersecurity Blog] Patch Tuesday - February 2026

2026-02-10 #

• 23:09 UTC - [BleepingComputer] New Linux botnet SSHStalker uses old-school IRC for C2 comms
• 23:00 UTC - [Unit 42] A Peek Into Muddled Libra’s Operational Playbook
• 22:17 UTC - [BleepingComputer] North Korean hackers use new macOS malware in crypto-theft attacks
• 22:00 UTC - [darkreading] SolarWinds WHD Attacks Highlight Risks of Exposed Apps
• 21:49 UTC - [Krebs on Security] Patch Tuesday, February 2026 Edition
• 21:37 UTC - [darkreading] In Bypassing MFA, ZeroDayRAT Is 'Textbook Stalkerware'
• 21:00 UTC - [darkreading] Microsoft Patches 6 Actively Exploited Zero-Days
• 20:50 UTC - [CyberScoop] Microsoft Patch Tuesday matches last year’s zero-day high with six actively exploited vulnerabilities
• 20:36 UTC - [darkreading] How to Stay on Top of Future Threats With a Cutting-Edge SOC
• 20:20 UTC - [Latest from TechRadar in Security] 'As adoption grows, confidence in safeguards must rise with it': Microsoft reveals new tool which can track backdoors in LLMs - and it's hoping this will restore trust in AI across the world
• 20:00 UTC - [Latest from TechRadar in Security] SmarterTools network breached using auth-bypass attack against single unpatched virtual machine
• 19:35 UTC - [darkreading] Automaker Secures the Supply Chain With Developer-Friendly Platform
• 19:29 UTC - [SecurityWeek] 6 Actively Exploited Zero-Days Patched by Microsoft With February 2026 Updates
• 19:12 UTC - [BleepingComputer] Malicious 7-Zip site distributes installer laced with proxy tool
• 19:06 UTC - [BleepingComputer] Microsoft releases Windows 10 KB5075912 extended security update
• 18:51 UTC - [BleepingComputer] Microsoft February 2026 Patch Tuesday fixes 6 zero-days, 58 flaws
• 18:43 UTC - [BleepingComputer] Windows 11 KB5077181 & KB5075941 cumulative updates released
• 18:11 UTC - [Cyber Security News] Microsoft Patch Tuesday February 2026 – 54 Vulnerabilities Fixed, Including 6 Zero-days
• 18:00 UTC - [SecurityWeek] EU Unconditionally Approves Google’s $32B Acquisition of Wiz
• 18:00 UTC - [Rapid7 Cybersecurity Blog] Measuring AI Security: Separating Signal from Panic
• 17:44 UTC - [The Hacker News] DPRK Operatives Impersonate Professionals on LinkedIn to Infiltrate Companies
• 17:36 UTC - [SecurityWeek] Patch Tuesday: Adobe Fixes 44 Vulnerabilities in Creative Apps
• 17:14 UTC - [Cybersecurity Dive - Latest News] Microsoft prepares to refresh Secure Boot’s digital certificate
• 17:10 UTC - [Cyber Security News] FortiSandbox XSS Vulnerability Let Attackers Run Arbitrary Commands
• 17:08 UTC - [SecurityWeek] Reco Raises $30 Million to Enhance AI SaaS Security
• 17:06 UTC - [SecurityWeek] Vega Raises $120M in Series B Funding to Grow Security Analytics Platform
• 17:04 UTC - [BleepingComputer] Volvo Group North America customer data exposed in Conduent hack
• 17:00 UTC - [BleepingComputer] Microsoft rolls out new Secure Boot certificates before June expiration
• 16:40 UTC - [Cyber Security News] Threat Hunting Is Critical to SOC Maturity but Often Misses Real Attacks
• 16:40 UTC - [Cyber Security News] FortiOS Authentication Bypass Vulnerability Lets Attackers Bypass LDAP Authentication
• 16:25 UTC - [Cyber Security News] Microsoft 365 Admin Center Outage Hits users in North America
• 16:17 UTC - [Cybersecurity Dive - Latest News] Ivanti EPMM exploitation widespread as governments, others targeted
• 16:09 UTC - [Cyber Security News] Ivanti Endpoint Manager Vulnerability Lets Remote Attacker Leak Arbitrary Data
• 16:00 UTC - [Latest from TechRadar in Security] BeyondTrust RCE flaw lets hackers run code without logging in
• 16:00 UTC - [SecurityWeek] RATs in the Machine: Inside a Pakistan-Linked Three-Pronged Cyber Assault on India
• 16:00 UTC - [Microsoft Security Blog] 80% of Fortune 500 use active AI Agents: Observability, governance, and security shape the new frontier
• 16:00 UTC - [All Fortinet Blog | Latest Posts] From Theory to Pressure: What the Third AI-Enabled Cybercrime Tabletop Exercise Revealed
• 15:55 UTC - [Cybersecurity Dive - Latest News] Polish power grid hack offers lessons for critical infrastructure operators, CISA says
• 15:54 UTC - [CyberScoop] After major Poland energy grid cyberattack, CISA issues warning to U.S. audience
• 15:45 UTC - [BleepingComputer] Microsoft 365 outage takes down admin center in North America
• 15:40 UTC - [Latest from TechRadar in Security] Authentication in 2026 - moving beyond foundational MFA to tackle the new era of attacks
• 15:29 UTC - [Cyber Security News] Hackers Weaponizing 7-Zip Downloads to Turn Your Home Computers into Proxy Nodes
• 15:27 UTC - [Cyber Security News] SAP Security Patch Day – Critical SAP CRM and SAP S/4HANA Code Injection Vulnerabilities Fixed
• 15:23 UTC - [Cyber Security News] ILOVEPOOP Toolkit Exploiting React2Shell Vulnerability to Deploy Malicious Payload
• 15:07 UTC - [Cyber Security News] TeamPCP Industrializes Cloud Misconfigurations Into a Self-Propagating Cybercrime Platform
• 15:01 UTC - [BleepingComputer] How to Automate AWS Incident Investigation with Tines and AI