Port 22

~ 9 Feb 2026 ~

SolarWinds Web Help Desk Exploited for RCE in Multi-Stage Attacks on Exposed Servers

Weekly Recap: AI Skill Malware, 31Tbps DDoS, Notepad++ Hack, LLM Backdoors and More

More than 135,000 OpenClaw instances exposed to internet in latest vibe-coded disaster

A one-prompt attack that breaks LLM safety alignment

How Top CISOs Solve Burnout and Speed up MTTR without Extra Hiring

Bloody Wolf Targets Uzbekistan, Russia Using NetSupport RAT in Spear-Phishing Campaign

Dutch data watchdog snitches on itself after getting caught in Ivanti zero-day attacks

TeamPCP Worm Exploits Cloud Infrastructure to Build Criminal Infrastructure

Taiwan tells Uncle Sam its chip ecosystem ain't going anywhere

BeyondTrust Fixes Critical Pre-Auth RCE Vulnerability in Remote Support and PRA

How the GNU C Compiler became the Clippy of cryptography

LLMs are Getting a Lot Better and Faster at Finding and Exploiting Zero-Days

Follow the money: Switzerland remains Europe's top destination for tech pay

AI Is Here to Replace Nuclear Treaties. Scared Yet?

Irans Digital Surveillance Machine Is Almost Complete

European Commission probes intrusion into staff mobile management backend

Indian police commissioner wants ID cards for AI agents

~ 8 Feb 2026 ~

Telcos aren't saying how they fought back against China's Salt Typhoon attacks

OpenClaw Integrates VirusTotal Scanning to Detect Malicious ClawHub Skills

~ 7 Feb 2026 ~

German Agencies Warn of Signal Phishing Targeting Politicians, Military, Journalists

Study confirms experience beats youthful enthusiasm

Moltbook, the Social Network for AI Agents, Exposed Real Humans Data

Analysis of active exploitation of SolarWinds Web Help Desk

~ 6 Feb 2026 ~

ICE Agent's Dragging Case May Help Expose Evidence in Renee Good Shooting

Friday Squid Blogging: Squid Fishing Tips

I Am in the Epstein Files

China-Linked DKnife AitM Framework Targets Routers for Traffic Hijacking, Malware Delivery

CISA Orders Removal of Unsupported Edge Devices to Reduce Federal Network Risk

Asian State-Backed Group TGR-STA-1030 Breaches 70 Government, Infrastructure Entities

Flickr emails users about data breach, pins it on 3rd party

DDoS deluge: Brit biz battered as botnet blitzes break records

How Samsung Knox Helps Stop Your Network Security Breach

Compromised dYdX npm and PyPI Packages Deliver Wallet Stealers and RAT Malware

iPhone Lockdown Mode Protects Washington Post Reporter

Claude Opus 4.6 Finds 500+ High-Severity Flaws Across Major Open-Source Libraries

Ad blocking is alive and well, despite Chrome's attempts to make it harder

~ 5 Feb 2026 ~

OpenClaw reveals meaty personal information after simple cracks

AISURU/Kimwolf Botnet Launches Record-Setting 31.4 Tbps DDoS Attack

ICE and CBPs Face-Recognition App Cant Actually Verify Who People Are

Substack says intruder lifted emails, phone numbers in months-old breach

Asia-based government spies quietly broke into critical networks across 37 countries

New Clickfix variant CrashFix deploying Python Remote Access Trojan

ThreatsDay Bulletin: Codespaces RCE, AsyncRAT C2, BYOVD Abuse, AI Cloud Intrusions & 15+ Stories

The security implementation gap: Why Microsoft is supporting Operation Winter SHIELD

The Buyers Guide to AI Usage Control

Betterment breach may expose 1.4M users after social engineering attack

Infy Hackers Resume Operations with New C2 Servers After Iran Internet Blackout Ends

Backdoor in Notepad++

Italy claims cyberattacks 'of Russian origin' are pelting Winter Olympics

Critical n8n Flaw CVE-2026-25049 Enables System Command Execution via Malicious Workflows

n8n security woes roll on as new critical flaws bypass December fix

Cloud sovereignty is no longer just a public sector concern

Malicious NGINX Configurations Enable Large-Scale Web Traffic Hijacking Campaign

Stan Ghouls targeting Russia and Uzbekistan with NetSupport RAT

Three clues that your LLM may be poisoned with a sleeper-agent back door

Satya Nadella decides Microsoft needs an engineering quality czar

~ 4 Feb 2026 ~

Microsoft Develops Scanner to Detect Backdoors in Open-Weight Large Language Models

DEAD#VAX Malware Campaign Deploys AsyncRAT via IPFS-Hosted VHD Phishing Files

AWS intruder achieved admin access in under 10 minutes thanks to AI assist, researchers say

Notepad++ Users, You May Have Been Hacked by China

China-Linked Amaranth-Dragon Exploits WinRAR Flaw in Espionage Campaigns

Critical SolarWinds Web Help Desk bug under attack

Orchid Security Introduces Continuous Identity Observability for Enterprise Applications

Detecting backdoored language models at scale

The First 90 Seconds: How Early Decisions Shape Incident Response Investigations

Nitrogen ransomware is so broken even the crooks can't unlock your files

Microsoft Warns Python Infostealers Target macOS via Fake Ads and Installers

US Declassifies Information on JUMPSEAT Spy Satellites

Eclipse Foundation Mandates Pre-Publish Security Checks for Open VSX Extensions

Universal 7,500 payout offered to PSNI staff over major data breach

CISA Adds Actively Exploited SolarWinds Web Help Desk RCE to KEV Catalog

OfferUp scammers are out in force: Heres what you should know

Clouds rush to deliver OpenClaw-as-a-service offerings

~ 3 Feb 2026 ~

AI agents can't yet pull off fully autonomous cyberattacks - but they are already very helpful to crims

Docker Fixes Critical Ask Gordon AI Flaw Allowing Code Execution via Image Metadata

The Paramilitary ICE and CBP Units at the Center of Minnesota's Killings

[Webinar] The Smarter SOC Blueprint: Learn What to Build, Buy, and Automate

Hackers Exploit Metro4Shell RCE Flaw in React Native CLI npm Package

Critical React Native Metro dev server bug under attack as researchers scream into the void

CISA updated ransomware intel on 59 bugs last year without telling defenders

Microsoft SDL: Evolving security practices for an AI-powered world

When Cloud Outages Ripple Across the Internet

APT28 Uses Microsoft Office CVE-2026-21509 in Espionage-Focused Malware Attacks

New EU Report Urges More Aggressive Action Against Transnational Repression

French cops raid X's Paris office in algorithmic bias probe

Microsoft finally sends TLS 1.0 and 1.1 to the cloud retirement home

Polish cops bail 20-year-old bedroom botnet operator

Microsoft is Giving the FBI BitLocker Keys

Mozilla Adds One-Click Option to Disable Generative AI Features in Firefox

How Data Brokers Can Fuel Violence Against Public Servants

Notepad++ Hosting Breach Attributed to China-Linked Lotus Blossom Hacking Group

DIY AI bot farm OpenClaw is a security 'dumpster fire'

British military to get legal OK to swat drones near bases

The Notepad++ supply chain attack unnoticed execution chains and new IoCs

~ 2 Feb 2026 ~

Notepad++ hijacking blamed on Chinese Lotus Blossom crew behind Chrysalis backdoor

Researchers Find 341 Malicious ClawHub Skills Stealing Data from OpenClaw Users

OpenClaw Bug Enables One-Click Remote Code Execution via Malicious Link

Microsoft Begins NTLM Phase-Out With Three-Stage Plan to Move Windows to Kerberos

Infostealers without borders: macOS, Python stealers, and platform abuse

StopICE hacked to send alarming text messages, admins accuse border patrol agent of sabotage