Port 22

~ 5 Feb 2026 ~

ICE and CBPs Face-Recognition App Cant Actually Verify Who People Are

Substack says intruder lifted emails, phone numbers in months-old breach

Asia-based government spies quietly broke into critical networks across 37 countries

New Clickfix variant CrashFix deploying Python Remote Access Trojan

ThreatsDay Bulletin: Codespaces RCE, AsyncRAT C2, BYOVD Abuse, AI Cloud Intrusions & 15+ Stories

The security implementation gap: Why Microsoft is supporting Operation Winter SHIELD

The Buyers Guide to AI Usage Control

Betterment breach may expose 1.4M users after social engineering attack

Infy Hackers Resume Operations with New C2 Servers After Iran Internet Blackout Ends

Backdoor in Notepad++

Italy claims cyberattacks 'of Russian origin' are pelting Winter Olympics

Critical n8n Flaw CVE-2026-25049 Enables System Command Execution via Malicious Workflows

n8n security woes roll on as new critical flaws bypass December fix

Cloud sovereignty is no longer just a public sector concern

Malicious NGINX Configurations Enable Large-Scale Web Traffic Hijacking Campaign

Stan Ghouls targeting Russia and Uzbekistan with NetSupport RAT

Three clues that your LLM may be poisoned with a sleeper-agent back door

Satya Nadella decides Microsoft needs an engineering quality czar

~ 4 Feb 2026 ~

Microsoft Develops Scanner to Detect Backdoors in Open-Weight Large Language Models

DEAD#VAX Malware Campaign Deploys AsyncRAT via IPFS-Hosted VHD Phishing Files

AWS intruder achieved admin access in under 10 minutes thanks to AI assist, researchers say

Notepad++ Users, You May Have Been Hacked by China

China-Linked Amaranth-Dragon Exploits WinRAR Flaw in Espionage Campaigns

Critical SolarWinds Web Help Desk bug under attack

Orchid Security Introduces Continuous Identity Observability for Enterprise Applications

Detecting backdoored language models at scale

The First 90 Seconds: How Early Decisions Shape Incident Response Investigations

Nitrogen ransomware is so broken even the crooks can't unlock your files

Microsoft Warns Python Infostealers Target macOS via Fake Ads and Installers

US Declassifies Information on JUMPSEAT Spy Satellites

Eclipse Foundation Mandates Pre-Publish Security Checks for Open VSX Extensions

Universal 7,500 payout offered to PSNI staff over major data breach

CISA Adds Actively Exploited SolarWinds Web Help Desk RCE to KEV Catalog

OfferUp scammers are out in force: Heres what you should know

Clouds rush to deliver OpenClaw-as-a-service offerings

~ 3 Feb 2026 ~

AI agents can't yet pull off fully autonomous cyberattacks - but they are already very helpful to crims

Docker Fixes Critical Ask Gordon AI Flaw Allowing Code Execution via Image Metadata

The Paramilitary ICE and CBP Units at the Center of Minnesota's Killings

[Webinar] The Smarter SOC Blueprint: Learn What to Build, Buy, and Automate

Hackers Exploit Metro4Shell RCE Flaw in React Native CLI npm Package

Critical React Native Metro dev server bug under attack as researchers scream into the void

CISA updated ransomware intel on 59 bugs last year without telling defenders

Microsoft SDL: Evolving security practices for an AI-powered world

When Cloud Outages Ripple Across the Internet

APT28 Uses Microsoft Office CVE-2026-21509 in Espionage-Focused Malware Attacks

New EU Report Urges More Aggressive Action Against Transnational Repression

French cops raid X's Paris office in algorithmic bias probe

Microsoft finally sends TLS 1.0 and 1.1 to the cloud retirement home

Polish cops bail 20-year-old bedroom botnet operator

Microsoft is Giving the FBI BitLocker Keys

Mozilla Adds One-Click Option to Disable Generative AI Features in Firefox

How Data Brokers Can Fuel Violence Against Public Servants

Notepad++ Hosting Breach Attributed to China-Linked Lotus Blossom Hacking Group

DIY AI bot farm OpenClaw is a security 'dumpster fire'

British military to get legal OK to swat drones near bases

The Notepad++ supply chain attack unnoticed execution chains and new IoCs

~ 2 Feb 2026 ~

Notepad++ hijacking blamed on Chinese Lotus Blossom crew behind Chrysalis backdoor

Researchers Find 341 Malicious ClawHub Skills Stealing Data from OpenClaw Users

OpenClaw Bug Enables One-Click Remote Code Execution via Malicious Link

Microsoft Begins NTLM Phase-Out With Three-Stage Plan to Move Windows to Kerberos

Infostealers without borders: macOS, Python stealers, and platform abuse

StopICE hacked to send alarming text messages, admins accuse border patrol agent of sabotage

Russia-linked APT28 attackers already abusing new Microsoft Office zero-day

Weekly Recap: Proxy Botnet, Office Zero-Day, MongoDB Ransoms, AI Hijacks & New Threats

Securing the Mid-Market Across the Complete Threat Lifecycle

McDonald's is not lovin' your bigmac, happymeal, and mcnuggets passwords

Please Dont Feed the Scattered Lapsus Shiny Hunters

Saudi Arabia Ordered to Pay 3m to London Dissident Over Pegasus Spying

Notepad++ Official Update Mechanism Hijacked to Deliver Malware to Select Users

OpenClaw patches one-click RCE as security Whac-A-Mole continues

Notepad++ update service hijacked in targeted state-linked attack

AI Coding Assistants Secretly Copying All Code to China

eScan Antivirus Update Servers Compromised to Deliver Multi-Stage Malware

ICE and Qatari Security Forces at the Winter Olympics Put Italians on Edge

Open VSX Supply Chain Attack Used Compromised Dev Account to Spread GlassWorm

Infrastructure cyberattacks are suddenly in fashion. We can buck the trend

A slippery slope: Beware of Winter Olympics scams and other cyberthreats

Why native cloud security falls short

I have a new blog: Traces of Humanity!

~ 1 Feb 2026 ~

Open-source AI is a global security nightmare waiting to happen, say researchers

AI security startup CEO posts a job. Deepfake candidate applies, inner turmoil ensues.

~ 31 Jan 2026 ~

Iran-Linked RedKitten Cyber Campaign Targets Human Rights NGOs and Activists

Mandiant Finds ShinyHunters-Style Vishing Attacks Stealing MFA to Breach SaaS Platforms

CERT Polska Details Coordinated Cyber Attacks on 30+ Wind and Solar Farms

Jeffrey Epstein Had a Personal Hacker, Informant Claims

How to Film ICE

~ 30 Jan 2026 ~

Friday Squid Blogging: New Squid Species Discovered

January blues return as Ivanti coughs up exploited EPMM zero-days

Researchers Uncover Chrome Extensions Abusing Affiliate Links and Stealing ChatGPT Access

Case study: Securing AI application supply chains

Thousands more Oregon residents learn their health data was stolen in TriZetto breach

China-Linked UAT-8099 Targets IIS Servers in Asia with BadIIS SEO Malware

Badges, Bytes and Blackmail

AIs Are Getting Better at Finding and Exploiting Security Vulnerabilities

This month in security with Tony Anscombe January 2026 edition

Ex-Google Engineer Convicted for Stealing 2,000 AI Trade Secrets for China Startup

SmarterMail Fixes Critical Unauthenticated RCE Flaw with CVSS 9.3 Score

DynoWiper update: Technical analysis and attribution

Two Ivanti EPMM Zero-Day RCE Flaws Actively Exploited, Security Updates Released

Java developers want container security, just not the job that comes with it