Port 22

~ 23 Feb 2026 ~

Infosec community panics as Anthropic rolls out Claude code security checker

Weekly Recap: Double-Tap Skimmers, PromptSpy AI, 30Tbps DDoS, Docker Malware & More

How Exposed Endpoints Increase Risk Across LLM Infrastructure

Global regulators say AI image tools don't get a free pass on privacy rules

Malicious npm Packages Harvest Crypto Keys, CI Secrets, and API Tokens

Break free of Ring's servers, earn a five-figure bounty

MuddyWater Targets MENA Organizations with GhostFetch, CHAR, and HTTP_VIP

Suspected Anonymous members detained in Spain over post-flood DDoS blitz

On the Security of Password Managers

AWS says more than 600 FortiGate firewalls hit in AI-augmented campaign

Every day in every way, passwords are getting worse and worse

~ 22 Feb 2026 ~

Attacker gets into France's database listing all bank accounts, makes off with 1.2 million records

UK council faces data breach claim after mishandling trans complaints

~ 21 Feb 2026 ~

AI-Assisted Threat Actor Compromises 600+ FortiGate Devices in 55 Countries

Anthropic Launches Claude Code Security for AI-Powered Vulnerability Scanning

CISA Adds Two Actively Exploited Roundcube Flaws to KEV Catalog

Password Managers Share a Hidden Weakness

Narco-Submarine Carrying 4 Tons of Cocaine Captured by Mexico's Navy

EC-Council Expands AI Certification Portfolio to Strengthen U.S. AI Workforce Readiness and Security

~ 20 Feb 2026 ~

PayPal app code error leaked personal info and a 'few' unauthorized transactions

Friday Squid Blogging: Squid Cartoon

BeyondTrust Flaw Used for Web Shells, Backdoors, and Data Exfiltration

AI coding assistant Cline compromised to create more OpenClaw chaos

DHS Wants a Single Search Engine to Flag Faces and Fingerprints Across Agencies

Starkiller Phishing Service Proxies Real Login Pages, MFA

Cline CLI 2.3.0 Supply Chain Attack Installed OpenClaw on Developer Systems

Metadata Exposes Authors of ICEs Mega Detention Center Plans

ShinyHunters demands $1.5M not to leak Vegas casino and resort chain data

ClickFix Campaign Abuses Compromised Sites to Deploy MIMICRAT Malware

Identity Cyber Scores: The New Metric Shaping Cyber Insurance in 2026

Ukrainian National Sentenced to 5 Years in North Korea IT Worker Fraud Case

Ukrainian gets five years for helping North Koreans secure US tech jobs

Founder ditches AWS for Euro stack, finds sovereignty isn't plug-and-play

FBI Reports 1,900 ATM Jackpotting Incidents Since 2020, $20M Lost in 2025

CISA gives federal agencies three days to patch actively exploited Dell bug

Ring Cancels Its Partnership with Flock

Three Former Google Engineers Indicted Over Trade Secret Transfers to Iran

Ex-Google engineers accused of helping themselves to chip security secrets

Attackers have 16-digit card numbers, expiry dates, but not names. Should org get 500k fine?

Snyk CEO bails, wants someone with more AI experience to replace him

Jeffrey Epsteins Ties to CBP Agents Sparked a DOJ Probe

A $10K Bounty Awaits Anyone Who Can Hack Ring Cameras to Stop Sharing Data With Amazon

AI agents abound, unbound by rules or safety disclosures

~ 19 Feb 2026 ~

Crims create fake remote management vendor that actually sells a RAT

PromptSpy Android Malware Abuses Gemini AI to Automate Recent-Apps Persistence

INTERPOL Operation Red Card 2.0 Arrests 651 in African Cybercrime Crackdown

An FBI Asset Helped Run a Dark Web Site That Sold Fentanyl-Laced Drugs for Years

Microsoft Patches CVE-2026-26119 Privilege Escalation in Windows Admin Center

ThreatsDay Bulletin: OpenSSL RCE, Foxit 0-Days, Copilot Leak, AI Password Flaws & 20+ Stories

Crims hit a $20M jackpot via malware-stuffed ATMs

Submissions to the Committee on Enforced Disappearances: And the UN Working Group on Enforced and Involuntary Disappearances

From Exposure to Exploitation: How AI Collapses Your Response Window

New e-book:Establishinga proactive defense withMicrosoft Security Exposure Management

Running OpenClaw safely: identity, isolation, and runtime risk

Android malware taps Gemini to navigate infected devices

Fake IPTV Apps Spread Massiv Android Malware Targeting Mobile Banking Users

CRESCENTHARVEST Campaign Targets Iran Protest Supporters With RAT Malware

DEF CON bans three Epstein-linked men from future events

Malicious AI

Welker OdorEyes EcoSystem Pulse Bypass System with XL4 Controller

Valmet DNA Engineering Web Tools

Jinan USR IOT Technology Limited (PUSR) USR-W610

EnOcean SmartServer IoT

UK to demand social platforms take down abusive intimate images within 48 hours

Healthcare security: Write login details on whiteboard, hope for the best

Arkanix Stealer: a C++ & Python infostealer

PromptSpy ushers in the era of Android threats using GenAI

How to Organize Safely in the Age of Surveillance

Is Poshmark safe? How to buy and sell without getting scammed

Poland bans camera-packing cars made in China cars from military bases

~ 18 Feb 2026 ~

Adidas investigates third-party data breach after criminals claim they pwned the sportswear giant

Citizen Lab Finds Cellebrite Tool Used on Kenyan Activists Phone in Police Custody

Grandstream GXP1600 VoIP Phones Exposed to Unauthenticated Remote Code Execution

ShinyHunters allegedly drove off with 1.7M CarGurus records

Critical Flaws Found in Four VS Code Extensions with Over 125 Million Installs

Fraudster hacked hotel system, paid 1 cent for luxury rooms, Spanish cops say

Texas sues TP-Link over China links and security vulnerabilities

Cybersecurity Tech Predictions for 2026: Operating in a World of Permanent Instability

A Vast Trove of Exposed Social Security Numbers May Put Millions at Risk of Identity Theft

German train line back on track after DDoS yanks the brakes

Dell RecoverPoint for VMs Zero-Day CVE-2026-22769 Exploited Since Mid-2024

3 Ways to Start Your Intelligent Workflow Program

Your AI-generated password isn't random, it just looks that way

Notepad++ Fixes Hijacked Update Mechanism Used to Deliver Targeted Malware

Notepad++ declares hardened update process 'effectively unexploitable'

CISA Flags Four Security Flaws Under Active Exploitation in Latest KEV Update

You can jailbreak an F-35 just like an iPhone, says Dutch defense chief

AI Found Twelve New Vulnerabilities in OpenSSL

HackerOne 'updating' Ts&Cs after bug hunters question if they're training AI

Palo Alto CEO says AI isnt great for business, yet

China-linked snoops have been exploiting Dell 0-day since mid-2024, using 'ghost NICs' to avoid detection

~ 17 Feb 2026 ~

Researchers Show Copilot and Grok Can Be Abused as Malware C2 Proxies

Keenadu Firmware Backdoor Infects Android Tablets via Signed OTA Updates

China remains embedded in US energy networks 'for the purpose of taking it down'

SmartLoader Attack Uses Trojanized Oura MCP Server to Deploy StealC Infostealer

Webinar: How Modern SOC Teams Use AI and Context to Investigate Cloud Breaches Faster

Unify now or pay later: New research exposes the operational cost of a fragmented SOC

My Day Getting My Hands Dirty with an NDR System

Microsoft Finds Summarize with AI Prompts Manipulating Chatbot Recommendations

US lawyers fire up privacy class action accusing Lenovo of bulk data transfers to China