Apple Fixes Exploited Zero-Day Affecting iOS, macOS, and Apple Devices
Ravie LakshmananFeb 12, 2026Zero-Day / Vulnerability Apple on Wednesday released iOS, iPadOS, macOS Tahoe, tvOS, watchOS, and visionOS updates to...
Hacking
Category Added in a WPeMatico Campaign
First Malicious Outlook Add-In Found Stealing 4,000+ Microsoft Credentials
Cybersecurity researchers have discovered what they said is the first known malicious Microsoft Outlook add-in detected in the wild. In...
APT36 and SideCopy Launch Cross-Platform RAT Campaigns Against Indian Entities
Ravie LakshmananFeb 11, 2026Cyber Espionage / Threat Intelligence Indian defense sector and government-aligned organizations have been targeted by multiple campaigns...
Over 60 Software Vendors Issue Security Fixes Across OS, Cloud, and Network Platforms
Ravie LakshmananFeb 11, 2026Patch Tuesday / Vulnerability It's Patch Tuesday, which means a number of software vendors have released patches...
Exposed Training Open the Door for Crypto-Mining in Fortune 500 Cloud Environments
The Hacker NewsFeb 11, 2026Identity Security / Threat Exposure Intentionally vulnerable training applications are widely used for security education, internal...
Microsoft Patches 59 Vulnerabilities Including Six Actively Exploited Zero-Days
Microsoft on Tuesday released security updates to address a set of 59 flaws across its software, including six vulnerabilities that...
SSHStalker Botnet Uses IRC C2 to Control Linux Systems via Legacy Kernel Exploits
Ravie LakshmananFeb 11, 2026Linux / Botnet Cybersecurity researchers have disclosed details of a new botnet operation called SSHStalker that relies...
North Korea-Linked UNC1069 Uses AI Lures to Attack Cryptocurrency Organizations
The North Korea-linked threat actor known as UNC1069 has been observed targeting the cryptocurrency sector to steal sensitive data from...
DPRK Operatives Impersonate Professionals on LinkedIn to Infiltrate Companies
The information technology (IT) workers associated with the Democratic People's Republic of Korea (DPRK) are now applying to remote positions...
Reynolds Ransomware Embeds BYOVD Driver to Disable EDR Security Tools
Cybersecurity researchers have disclosed details of an emergent ransomware family dubbed Reynolds that comes embedded with a built-in bring your...
From Ransomware to Residency: Inside the Rise of the Digital Parasite
Are ransomware and encryption still the defining signals of modern cyberattacks, or has the industry been too fixated on noise...
ZAST.AI Raises $6M Pre-A to Scale “Zero False Positive” AI-Powered Code Security
The Hacker NewsFeb 10, 2026Application Security / Artificial Intelligence January 5, 2026, Seattle, USA — ZAST.AI announced the completion of...
Warlock Ransomware Breaches SmarterTools Through Unpatched SmarterMail Server
SmarterTools confirmed last week that the Warlock (aka Storm-2603) ransomware gang breached its network by exploiting an unpatched SmarterMail instance....
Dutch Authorities Confirm Ivanti Zero-Day Exploit Exposed Employee Contact Data
Ravie LakshmananFeb 10, 2026Data Breach / Vulnerability The Netherlands' Dutch Data Protection Authority (AP) and the Council for the Judiciary...
Fortinet Patches Critical SQLi Flaw Enabling Unauthenticated Code Execution
Ravie LakshmananFeb 10, 2026Vulnerability / Network Security Fortinet has released security updates to address a critical flaw impacting FortiClientEMS that...
