Randall Munroe’s XKCD ‘Cost Savings’
via the comic artistry and dry wit of Randall Munroe, creator of XKCD Permalink *** This is a Security...
Blog
Engineering for the Inevitable: Managing Downstream Failures in Security Data Pipelines
The post Engineering for the Inevitable: Managing Downstream Failures in Security Data Pipelines appeared first on Realm.Security. *** This...
SRE Playbook: A Guide to Discover and Catalog Non-Human Identities (NHI)
As a site reliability engineer in a global company, I'm running a modern (well, relatively modern, to be honest...
How synthetic data can help solve AI’s data crisis
Artificial intelligence development faces a fundamental bottleneck: the widening gap between demand for high-quality training data and its availability....
Citizen Lab Finds Cellebrite Tool Used on Kenyan Activist’s Phone in Police Custody
Ravie LakshmananFeb 18, 2026Mobile Security / Spyware New research from the Citizen Lab has found signs that Kenyan authorities used...
Grandstream GXP1600 VoIP Phones Exposed to Unauthenticated Remote Code Execution
Cybersecurity researchers have disclosed a critical security flaw in the Grandstream GXP1600 series of VoIP phones that could allow an...
Critical Flaws Found in Four VS Code Extensions with Over 125 Million Installs
Ravie LakshmananFeb 18, 2026Vulnerability / Software Security Cybersecurity researchers have disclosed multiple security vulnerabilities in four popular Microsoft Visual Studio...
Cybersecurity Tech Predictions for 2026: Operating in a World of Permanent Instability
In 2025, navigating the digital seas still felt like a matter of direction. Organizations charted routes, watched the horizon, and...
Substack Breach May Have Leaked Nearly 700,000 User Details Online
Image: Freepik A popular home for independent writers is dealing with a security scare. Substack has confirmed that hackers accessed...
China-linked APT weaponized Dell RecoverPoint zero-day since 2024
China-linked APT weaponized Dell RecoverPoint zero-day since 2024 Pierluigi Paganini February 18, 2026 A suspected Chinese state-linked group exploited a...
U.S. CISA adds Google Chromium CSS, Microsoft Windows, TeamT5 ThreatSonar Anti-Ransomware, and Zimbra flaws to its Known Exploited Vulnerabilities catalog
U.S. CISA adds Google Chromium CSS, Microsoft Windows, TeamT5 ThreatSonar Anti-Ransomware, and Zimbra flaws to its Known Exploited Vulnerabilities catalog...
Keenadu backdoor found preinstalled on Android devices, powers Ad fraud campaign
Keenadu backdoor found preinstalled on Android devices, powers Ad fraud campaign Pierluigi Paganini February 18, 2026 Kaspersky uncovered Keenadu, an...
Job scam uses fake Google Forms site to harvest Google logins
As part of our investigation into a job-themed phishing campaign, we came across several suspicious URLs that all looked...
EdTech Magazine | What Minimum Viable Cybersecurity Looks Like for K–12 Districts
This article was originally published in EdTech Magazine on 02/11/26 by Didi Gluck. As ransomware and phishing attacks grow...
Building an Effective Incident Response Strategy to Combat Cyberattacks
A security incident is all but inevitable for nearly every organization. By “incident” we mean a cyberattack that successfully accesses enterprise resources or...