Port 22

~ 19 Feb 2026 ~

ThreatsDay Bulletin: OpenSSL RCE, Foxit 0-Days, Copilot Leak, AI Password Flaws & 20+ Stories

Crims hit a $20M jackpot via malware-stuffed ATMs

Submissions to the Committee on Enforced Disappearances: And the UN Working Group on Enforced and Involuntary Disappearances

From Exposure to Exploitation: How AI Collapses Your Response Window

New e-book:Establishinga proactive defense withMicrosoft Security Exposure Management

Running OpenClaw safely: identity, isolation, and runtime risk

Android malware taps Gemini to navigate infected devices

Fake IPTV Apps Spread Massiv Android Malware Targeting Mobile Banking Users

CRESCENTHARVEST Campaign Targets Iran Protest Supporters With RAT Malware

DEF CON bans three Epstein-linked men from future events

Malicious AI

Welker OdorEyes EcoSystem Pulse Bypass System with XL4 Controller

Valmet DNA Engineering Web Tools

Jinan USR IOT Technology Limited (PUSR) USR-W610

EnOcean SmartServer IoT

UK to demand social platforms take down abusive intimate images within 48 hours

Healthcare security: Write login details on whiteboard, hope for the best

Arkanix Stealer: a C++ & Python infostealer

How to Organize Safely in the Age of Surveillance

Poland bans camera-packing cars made in China cars from military bases

~ 18 Feb 2026 ~

Adidas investigates third-party data breach after criminals claim they pwned the sportswear giant

Citizen Lab Finds Cellebrite Tool Used on Kenyan Activists Phone in Police Custody

Grandstream GXP1600 VoIP Phones Exposed to Unauthenticated Remote Code Execution

ShinyHunters allegedly drove off with 1.7M CarGurus records

Critical Flaws Found in Four VS Code Extensions with Over 125 Million Installs

Fraudster hacked hotel system, paid 1 cent for luxury rooms, Spanish cops say

Texas sues TP-Link over China links and security vulnerabilities

Cybersecurity Tech Predictions for 2026: Operating in a World of Permanent Instability

A Vast Trove of Exposed Social Security Numbers May Put Millions at Risk of Identity Theft

German train line back on track after DDoS yanks the brakes

Dell RecoverPoint for VMs Zero-Day CVE-2026-22769 Exploited Since Mid-2024

3 Ways to Start Your Intelligent Workflow Program

Your AI-generated password isn't random, it just looks that way

Notepad++ Fixes Hijacked Update Mechanism Used to Deliver Targeted Malware

Notepad++ declares hardened update process 'effectively unexploitable'

CISA Flags Four Security Flaws Under Active Exploitation in Latest KEV Update

You can jailbreak an F-35 just like an iPhone, says Dutch defense chief

AI Found Twelve New Vulnerabilities in OpenSSL

HackerOne 'updating' Ts&Cs after bug hunters question if they're training AI

Palo Alto CEO says AI isnt great for business, yet

China-linked snoops have been exploiting Dell 0-day since mid-2024, using 'ghost NICs' to avoid detection

~ 17 Feb 2026 ~

Researchers Show Copilot and Grok Can Be Abused as Malware C2 Proxies

Keenadu Firmware Backdoor Infects Android Tablets via Signed OTA Updates

China remains embedded in US energy networks 'for the purpose of taking it down'

SmartLoader Attack Uses Trojanized Oura MCP Server to Deploy StealC Infostealer

Webinar: How Modern SOC Teams Use AI and Context to Investigate Cloud Breaches Faster

Unify now or pay later: New research exposes the operational cost of a fragmented SOC

My Day Getting My Hands Dirty with an NDR System

Microsoft Finds Summarize with AI Prompts Manipulating Chatbot Recommendations

US lawyers fire up privacy class action accusing Lenovo of bulk data transfers to China

Polish cops nab 47-year-old man in Phobos ransomware raid

Apple Tests End-to-End Encrypted RCS Messaging in iOS 26.4 Developer Beta

Side-Channel Attacks Against LLMs

Siemens Simcenter Femap and Nastran

Honeywell CCTV Products

GE Vernova Enervista UR Setup

Delta Electronics ASDA-Soft

UK.gov launches cyber 'lockdown' campaign as 80% of orgs still leave door open

Ireland joins regulator smackdown after X's Grok AI accused of undressing people

Is it OK to let your children post selfies online?

MoD ticks shopping list as PM considers weapons budget boost

Divide and conquer: how the new Keenadu backdoor exposed links between major Android botnets

Infostealer Steals OpenClaw AI Agent Configuration Files and Gateway Tokens

~ 16 Feb 2026 ~

Study Uncovers 25 Password Recovery Attacks in Major Cloud Password Managers

Weekly Recap: Outlook Add-Ins Hijack, 0-Day Patches, Wormable Botnet & AI Malware

Canada Goose ruffles feathers over 600K record dump, says leak is old news

Dutch cops arrest man after sending him confidential files by mistake

Safe and Inclusive ESociety: How Lithuania Is Bracing for AIDriven Cyber Fraud

You probably can't trust your password manager if it's compromised

New ZeroDayRAT Mobile Spyware Enables Real-Time Surveillance and Data Theft

Open source registries don't have enough money to implement basic security

Google patches Chrome zero-day as in-the-wild exploits surface

New Chrome Zero-Day (CVE-2026-2441) Under Active Attack Patch Released

The Promptware Kill Chain

The El Paso No-Fly Debacle Is Just the Beginning of a Drone Defense Mess

US appears open to reversing some China tech bans

~ 15 Feb 2026 ~

Infosec exec sold eight zero-day exploit kits to Russia, says DoJ

Microsoft Discloses DNS-Based ClickFix Attack Using Nslookup for Malware Staging

~ 14 Feb 2026 ~

Upcoming Speaking Engagements

Ring Kills Flock Safety Deal After Super Bowl Ad Uproar

Robot Dogs Are on Going on Patrol at the 2026 World Cup in Mexico

~ 13 Feb 2026 ~

Google Ties Suspected Russian Actor to CANFAIL Malware Attacks on Ukrainian Orgs

Friday Squid Blogging: Do Squid Dream?

Google Links China, Iran, Russia, North Korea to Coordinated Defense Sector Cyber Operations

UAT-9921 Deploys VoidLink Malware to Target Technology and Financial Sectors

Attackers finally get around to exploiting critical Microsoft bug from 2024

Malicious Chrome Extensions Caught Stealing Business Data, Emails, and Browsing History

npms Update to Harden Their Supply Chain, and Points to Consider

Researchers Observe In-the-Wild Exploitation of BeyondTrust CVSS 9.9 Vulnerability

Top Dutch telco Odido admits 6.2M customers caught in contact system caper

Enforcing piracy policy earned helpdesk worker death threats

~ 12 Feb 2026 ~

Google Reports State-Backed Hackers Using Gemini AI for Recon and Attack Support

30+ Chrome extensions disguised as AI chatbots steal users' API keys, emails, other sensitive data

Lazarus Campaign Plants Malicious Packages in npm and PyPI Ecosystems

Copilot Studio agent security: Top 10 risks you can detect and prevent

Who's the bossware? Ransomware slingers like employee monitoring tools, too

ThreatsDay Bulletin: AI Prompt RCE, Claude 0-Click, RenEngine Loader, Auto 0-Days & 25+ Stories

Your complete guide to Microsoft experiences at RSAC 2026 Conference

The CTEM Divide: Why 84% of Security Programs Are Falling Behind

Apple patches decade-old iOS zero-day, possibly exploited by commercial spyware