Port 22

~ 10 Feb 2026 ~

DPRK Operatives Impersonate Professionals on LinkedIn to Infiltrate Companies

Microsoft's Valentine's gift to admins: 6 exploited zero-day fixes

Patch Tuesday, February 2026 Edition

Reynolds Ransomware Embeds BYOVD Driver to Disable EDR Security Tools

From Ransomware to Residency: Inside the Rise of the Digital Parasite

AI agents spill secrets just by previewing malicious links

ZAST.AI Raises $6M Pre-A to Scale "Zero False Positive" AI-Powered Code Security

80% of Fortune 500 use active AI Agents: Observability, governance, and security shape the new frontier

Warlock Ransomware Breaches SmarterTools Through Unpatched SmarterMail Server

ManipulatingAI memoryforprofit: The rise ofAIRecommendation Poisoning

Dutch Authorities Confirm Ivanti Zero-Day Exploit Exposed Employee Contact Data

Singapore spent 11 months booting China-linked snoops out of telco networks

AI-Generated Text and the Detection Arms Race

Nearly 17,000 Volvo staff dinged in supplier breach

Fortinet Patches Critical SQLi Flaw Enabling Unauthenticated Code Execution

British Army splashes $86M on AI gear to speed up the battlefield kill chain

~ 9 Feb 2026 ~

China-Linked UNC3886 Targets Singapore Telecom Sector in Cyber Espionage Campaign

Someone's attacking SolarWinds WHD to steal highprivilege credentials - but we don't know who or how

SolarWinds Web Help Desk Exploited for RCE in Multi-Stage Attacks on Exposed Servers

Weekly Recap: AI Skill Malware, 31Tbps DDoS, Notepad++ Hack, LLM Backdoors and More

More than 135,000 OpenClaw instances exposed to internet in latest vibe-coded disaster

A one-prompt attack that breaks LLM safety alignment

How Top CISOs Solve Burnout and Speed up MTTR without Extra Hiring

Bloody Wolf Targets Uzbekistan, Russia Using NetSupport RAT in Spear-Phishing Campaign

Dutch data watchdog snitches on itself after getting caught in Ivanti zero-day attacks

TeamPCP Worm Exploits Cloud Infrastructure to Build Criminal Infrastructure

Taiwan tells Uncle Sam its chip ecosystem ain't going anywhere

BeyondTrust Fixes Critical Pre-Auth RCE Vulnerability in Remote Support and PRA

How the GNU C Compiler became the Clippy of cryptography

LLMs are Getting a Lot Better and Faster at Finding and Exploiting Zero-Days

Follow the money: Switzerland remains Europe's top destination for tech pay

AI Is Here to Replace Nuclear Treaties. Scared Yet?

Irans Digital Surveillance Machine Is Almost Complete

European Commission probes intrusion into staff mobile management backend

Indian police commissioner wants ID cards for AI agents

~ 8 Feb 2026 ~

Telcos aren't saying how they fought back against China's Salt Typhoon attacks

OpenClaw Integrates VirusTotal Scanning to Detect Malicious ClawHub Skills

~ 7 Feb 2026 ~

German Agencies Warn of Signal Phishing Targeting Politicians, Military, Journalists

Study confirms experience beats youthful enthusiasm

Moltbook, the Social Network for AI Agents, Exposed Real Humans Data

Analysis of active exploitation of SolarWinds Web Help Desk

~ 6 Feb 2026 ~

ICE Agent's Dragging Case May Help Expose Evidence in Renee Good Shooting

Friday Squid Blogging: Squid Fishing Tips

I Am in the Epstein Files

China-Linked DKnife AitM Framework Targets Routers for Traffic Hijacking, Malware Delivery

CISA Orders Removal of Unsupported Edge Devices to Reduce Federal Network Risk

Asian State-Backed Group TGR-STA-1030 Breaches 70 Government, Infrastructure Entities

Flickr emails users about data breach, pins it on 3rd party

DDoS deluge: Brit biz battered as botnet blitzes break records

How Samsung Knox Helps Stop Your Network Security Breach

Compromised dYdX npm and PyPI Packages Deliver Wallet Stealers and RAT Malware

iPhone Lockdown Mode Protects Washington Post Reporter

Claude Opus 4.6 Finds 500+ High-Severity Flaws Across Major Open-Source Libraries

Ad blocking is alive and well, despite Chrome's attempts to make it harder

~ 5 Feb 2026 ~

OpenClaw reveals meaty personal information after simple cracks

AISURU/Kimwolf Botnet Launches Record-Setting 31.4 Tbps DDoS Attack

ICE and CBPs Face-Recognition App Cant Actually Verify Who People Are

Substack says intruder lifted emails, phone numbers in months-old breach

Asia-based government spies quietly broke into critical networks across 37 countries

New Clickfix variant CrashFix deploying Python Remote Access Trojan

ThreatsDay Bulletin: Codespaces RCE, AsyncRAT C2, BYOVD Abuse, AI Cloud Intrusions & 15+ Stories

The security implementation gap: Why Microsoft is supporting Operation Winter SHIELD

The Buyers Guide to AI Usage Control

Betterment breach may expose 1.4M users after social engineering attack

Infy Hackers Resume Operations with New C2 Servers After Iran Internet Blackout Ends

Backdoor in Notepad++

Italy claims cyberattacks 'of Russian origin' are pelting Winter Olympics

Critical n8n Flaw CVE-2026-25049 Enables System Command Execution via Malicious Workflows

n8n security woes roll on as new critical flaws bypass December fix

Cloud sovereignty is no longer just a public sector concern

Malicious NGINX Configurations Enable Large-Scale Web Traffic Hijacking Campaign

Stan Ghouls targeting Russia and Uzbekistan with NetSupport RAT

Three clues that your LLM may be poisoned with a sleeper-agent back door

Satya Nadella decides Microsoft needs an engineering quality czar

~ 4 Feb 2026 ~

Microsoft Develops Scanner to Detect Backdoors in Open-Weight Large Language Models

DEAD#VAX Malware Campaign Deploys AsyncRAT via IPFS-Hosted VHD Phishing Files

AWS intruder achieved admin access in under 10 minutes thanks to AI assist, researchers say

Notepad++ Users, You May Have Been Hacked by China

China-Linked Amaranth-Dragon Exploits WinRAR Flaw in Espionage Campaigns

Critical SolarWinds Web Help Desk bug under attack

Orchid Security Introduces Continuous Identity Observability for Enterprise Applications

Detecting backdoored language models at scale

The First 90 Seconds: How Early Decisions Shape Incident Response Investigations

Nitrogen ransomware is so broken even the crooks can't unlock your files

Microsoft Warns Python Infostealers Target macOS via Fake Ads and Installers

US Declassifies Information on JUMPSEAT Spy Satellites

Eclipse Foundation Mandates Pre-Publish Security Checks for Open VSX Extensions

Universal 7,500 payout offered to PSNI staff over major data breach

CISA Adds Actively Exploited SolarWinds Web Help Desk RCE to KEV Catalog

OfferUp scammers are out in force: Heres what you should know

Clouds rush to deliver OpenClaw-as-a-service offerings

~ 3 Feb 2026 ~

AI agents can't yet pull off fully autonomous cyberattacks - but they are already very helpful to crims

Docker Fixes Critical Ask Gordon AI Flaw Allowing Code Execution via Image Metadata

The Paramilitary ICE and CBP Units at the Center of Minnesota's Killings

[Webinar] The Smarter SOC Blueprint: Learn What to Build, Buy, and Automate

Hackers Exploit Metro4Shell RCE Flaw in React Native CLI npm Package

Critical React Native Metro dev server bug under attack as researchers scream into the void

CISA updated ransomware intel on 59 bugs last year without telling defenders

Microsoft SDL: Evolving security practices for an AI-powered world

When Cloud Outages Ripple Across the Internet