Category: SecurityNews

Hackers Abuse nslookup.exe in ClickFix Campaign to Deliver Malware via DNS

Feb 19, 2026 10:01 AM

Tags: cyber, dns, email, hacker, malicious, malware, phishing, social-engineering, tool

Social engineering campaigns are becoming increasingly sophisticated, moving beyond simple phishing emails to more complex technical deceptions. The >>ClickFix<>fix<< a fake browser error, has undergone significant evolution. Security researcher Muhammad Hassoub has observed attackers moving away from high-noise tools that trigger immediate […] The post Hackers Abuse nslookup.exe in ClickFix Campaign to Deliver Malware via…
CRESCENTHARVEST Campaign Targets Iran Protest Supporters With RAT Malware

Feb 19, 2026 10:01 AM

Tags: access, attack, cybersecurity, iran, malicious, malware, rat, theft, threat

Cybersecurity researchers have disclosed details of a new campaign dubbed CRESCENTHARVEST, likely targeting supporters of Iran’s ongoing protests to conduct information theft and long-term espionage.The Acronis Threat Research Unit (TRU) said it observed the activity after January 9, with the attacks designed to deliver a malicious payload that serves as a remote access trojan (RAT)…
Remote Access ohne IP – Zeroport will VPNs überflüssig machen

Feb 19, 2026 10:01 AM

Tags: access, vpn

First seen on security-insider.de Jump to article: www.security-insider.de/zeroport-will-vpns-ueberfluessig-machen-a-ab9aced40c5022d33d26b3c65688fa12/
Stealthy Crypto-Mining Malware Jumps Air-Gaps, Spreads via External Drives

Feb 19, 2026 9:01 AM

Tags: computing, crypto, cyber, infection, malware, software, threat, unauthorized

Cryptojacking, the unauthorized use of a victim’s computing resources to mine cryptocurrency, has transitioned from a browser-based nuisance (typified by Coinhive scripts) to a system-level threat utilizing advanced malware techniques. The infection chain starts with a familiar lure: cracked “premium” productivity suites distributed via pirated software bundles, where the user executes what appears to be…
More Than 40% of South Africans Were Scammed in 2025

Feb 19, 2026 9:01 AM

Tags: scam

Survey underscores the reality that scammers follow scalable opportunities and low friction, rather than rich targets that tend to be better protected. First seen on darkreading.com Jump to article: www.darkreading.com/cybersecurity-analytics/south-africans-scammed-2025
Hybride Angriffe zwischen Cloud und On-Premises – Warum fragmentierte Sicherheit gegen hybride Angriffe versagt

Feb 19, 2026 9:01 AM

Tags: cloud, cyberattack

First seen on security-insider.de Jump to article: www.security-insider.de/hybride-angriffe-cloud-soc-konvergenz-a-f997e23c17b6b4e248b448bad3db46d4/
From in-house CISO to consultant. What you need to know before making the leap

Feb 19, 2026 9:01 AM

Tags: advisory, best-practice, business, ciso, compliance, control, cybersecurity, framework, jobs, resilience, risk, service, skills, tool

Skills that carry over into consulting: Many of the skills CISOs honed inside large organizations translate directly to the new consulting job, while others suddenly matter more than they ever did before. In addition to technical skills, it is often the practical ones that prove most valuable.The ability to prioritize, sharpened over years in a…
From in-house CISO to consultant. What you need to know before making the leap

Feb 19, 2026 9:01 AM

Tags: advisory, best-practice, business, ciso, compliance, control, cybersecurity, framework, jobs, resilience, risk, service, skills, tool

Skills that carry over into consulting: Many of the skills CISOs honed inside large organizations translate directly to the new consulting job, while others suddenly matter more than they ever did before. In addition to technical skills, it is often the practical ones that prove most valuable.The ability to prioritize, sharpened over years in a…
Poland bans camera-packing cars made in China from military bases

Feb 19, 2026 9:01 AM

Tags: cctv, china, LLM, military

Dell, however, is welcome to help build a local-language LLM First seen on theregister.com Jump to article: www.theregister.com/2026/02/19/poland_china_car_ban/
Empowering a Global SaaS Workforce: From Identity Security to Financial Access

Feb 19, 2026 8:00 AM

Tags: access, authentication, finance, identity, saas

Explore how identity security and financial access solutions empower a global SaaS workforce with secure authentication and seamless payments. First seen on securityboulevard.com Jump to article: securityboulevard.com/2026/02/empowering-a-global-saas-workforce-from-identity-security-to-financial-access/
90 Prozent der Ransomware-Angriffe umgehen Firewalls

Feb 19, 2026 8:00 AM

Tags: cyberattack, firewall, ransomware

Ransomware-Angreifer umgehen Firewalls zunehmend über bekannte Sicherheitslücken und verwundbare Konten, und das in einem Tempo, das Verteidigern kaum Zeit zur Reaktion lässt. First seen on it-daily.net Jump to article: www.it-daily.net/it-sicherheit/cybercrime/ransomware-2025
Advantest Cyberattack Triggers Ransomware Investigation Across Internal Network

Feb 19, 2026 8:00 AM

Tags: cyberattack, cybersecurity, network, ransomware

Advantest Corporation has confirmed that it is responding to a cybersecurity incident First seen on thecyberexpress.com Jump to article: thecyberexpress.com/advantest-cyberattack-ransomware-investigation/
Mozilla Firefox Issues Emergency Patch for Heap Buffer Overflow in Firefox v147

Feb 19, 2026 8:00 AM

Tags: browser, cve, flaw, update, vulnerability

Mozilla has released an out-of-band security update to address a critical vulnerability affecting its browser. The update, issued as Firefox v147.0.4, resolves a high-impact Heap buffer overflow flaw in the libvpx video codec library. The issue is tracked under CVE-2026-2447 and was identified by security researcher jayjayjazz. First seen on thecyberexpress.com Jump to article: thecyberexpress.com/firefox-v147-cve-2026-2447/
Poland bans camera-packing cars made in China cars from military bases

Feb 19, 2026 8:00 AM

Tags: cctv, china, LLM, military

Dell, however, is welcome to help build a local-language LLM First seen on theregister.com Jump to article: www.theregister.com/2026/02/19/poland_china_car_ban/
Poland bans camera-packing cars made in China cars from military bases

Feb 19, 2026 8:00 AM

Tags: cctv, china, LLM, military

Dell, however, is welcome to help build a local-language LLM First seen on theregister.com Jump to article: www.theregister.com/2026/02/19/poland_china_car_ban/
Public mobile networks are being weaponized for combat drone operations

Feb 19, 2026 8:00 AM

Tags: attack, mobile, network, russia, ukraine

On June 1, 2025, Ukraine launched a coordinated drone strike on five airfields inside Russia, disabling or destroying aircrafts. The attack involved more than 100 drones … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2026/02/19/enea-mobile-connected-drones-report/
Public mobile networks are being weaponized for combat drone operations

Feb 19, 2026 8:00 AM

Tags: attack, mobile, network, russia, ukraine

On June 1, 2025, Ukraine launched a coordinated drone strike on five airfields inside Russia, disabling or destroying aircrafts. The attack involved more than 100 drones … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2026/02/19/enea-mobile-connected-drones-report/
OpenAI Launches EVMbench: A New Framework to Detect and Exploit Blockchain Vulnerabilities

Feb 19, 2026 8:00 AM

Tags: ai, blockchain, crypto, cyber, exploit, framework, intelligence, open-source, openai, vulnerability

OpenAI has collaborated with crypto investment firm Paradigm to release EVMbench, a new benchmark designed to evaluate how artificial intelligence agents interact with smart contract security. As smart contracts currently secure over $100 billion in open-source crypto assets, the ability of AI to successfully read, write, and audit code is becoming a critical component of…
OpenAI Launches EVMbench: A New Framework to Detect and Exploit Blockchain Vulnerabilities

Feb 19, 2026 8:00 AM

Tags: ai, blockchain, crypto, cyber, exploit, framework, intelligence, open-source, openai, vulnerability

OpenAI has collaborated with crypto investment firm Paradigm to release EVMbench, a new benchmark designed to evaluate how artificial intelligence agents interact with smart contract security. As smart contracts currently secure over $100 billion in open-source crypto assets, the ability of AI to successfully read, write, and audit code is becoming a critical component of…
Researchers Expose DigitStealer C2 Infrastructure Targeting macOS Users

Feb 19, 2026 8:00 AM

Tags: control, cyber, infrastructure, macOS

DigitStealer’s expanding command-and-control (C2) footprint is exposing more of its backend than its operators likely intended, giving defenders fresh opportunities to track and block new infrastructure linked to the macOS”‘targeting infostealer. Unlike many popular stealers, it does not expose a web panel for affiliates, strongly suggesting a closed-operation rather than a broad malware”‘as”‘a”‘service (MaaS) offering.…
New Threat Emerges as Attackers Leverage Grok and Copilot to Evade Security Monitoring

Feb 19, 2026 8:00 AM

Tags: ai, control, cyber, cybercrime, microsoft, monitoring, service, threat

Researchers at Check Point Research (CPR) have uncovered a novel technique where cybercriminals utilize popular AI platforms like Grok and Microsoft Copilot to orchestrate covert attacks. This method transforms benign AI web services into proxies for Command and Control (C2) communication. By leveraging the web browsing and URL-fetching capabilities of these assistants, attackers can tunnel…
Buffer Overflow und UseFree – Schwachstellen in FreeRDP bedrohen Windows und Unix

Feb 19, 2026 8:00 AM

Tags: vulnerability, windows

First seen on security-insider.de Jump to article: www.security-insider.de/sicherheitsluecken-freerdp-windows-unix-a-772800b25cbbfbd1179fd5698fe27e18/
Empowering a Global SaaS Workforce: From Identity Security to Financial Access

Feb 19, 2026 8:00 AM

Tags: access, authentication, finance, identity, saas

Explore how identity security and financial access solutions empower a global SaaS workforce with secure authentication and seamless payments. First seen on securityboulevard.com Jump to article: securityboulevard.com/2026/02/empowering-a-global-saas-workforce-from-identity-security-to-financial-access/
Empowering a Global SaaS Workforce: From Identity Security to Financial Access

Feb 19, 2026 8:00 AM

Tags: access, authentication, finance, identity, saas

Explore how identity security and financial access solutions empower a global SaaS workforce with secure authentication and seamless payments. First seen on securityboulevard.com Jump to article: securityboulevard.com/2026/02/empowering-a-global-saas-workforce-from-identity-security-to-financial-access/
Consumers feel less judged by AI debt collectors

Feb 19, 2026 7:01 AM

Tags: ai

Debt collection agencies are starting to use automated voice systems and AI-driven messaging to handle consumer calls. These systems help scale outreach, reduce call center … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2026/02/19/consumer-ai-debt-collection/
Attackers keep finding the same gaps in security programs

Feb 19, 2026 7:01 AM

Tags: access, identity, threat

Attackers keep getting in, often through the same predictable weak spots: identity systems, third-party access, and poorly secured perimeter devices. A new threat report from … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2026/02/19/managed-xdr-threat-report-security-programs/
Critical MCP Server Enables Arbitrary Code Execution and Sensitive Data Exfiltration

Feb 19, 2026 7:01 AM

Tags: ai, attack, cloud, cyber, data, malicious

MCP servers can silently turn AI assistants into powerful attack platforms, enabling arbitrary code execution, large”‘scale data exfiltration, and stealthy user manipulation across both local machines and cloud environments. New research and recent real”‘world incidents show that this emerging ecosystem is already being abused in the wild, including a malicious Postmark MCP server that quietly…
Microsoft 365 Copilot Vulnerability Exposes Sensitive Emails Through AI Summaries

Feb 19, 2026 7:01 AM

Tags: ai, cyber, data, email, flaw, microsoft, unauthorized, vulnerability

A security flaw in Microsoft 365 Copilot is currently causing the AI assistant to incorrectly summarize email messages protected by confidentiality sensitivity labels, essentially bypassing configured Data Loss Prevention (DLP) policies. This vulnerability exposes potentially sensitive organizational data to unauthorized AI processing. The issue, tracked under Microsoft reference CW1226324, was first flagged on February 4,…
Burnout im digitalen Schutzraum: Die stille Krise der Cyberbranche

Feb 19, 2026 6:01 AM

Tags: unclassified

Burnout kommt nicht nur dort, wo es offensichtlich ist. Selbst wenn die Arbeit erfüllend ist, können Überlastung und ständiger Druck die Motivation zersetzen. Engagement verwandelt sich in Erschöpfung, Begeisterung in Zynismus. First seen on infopoint-security.de Jump to article: www.infopoint-security.de/burnout-im-digitalen-schutzraum-die-stille-krise-der-cyberbranche/a43757/
Burnout im digitalen Schutzraum: Die stille Krise der Cyberbranche

Feb 19, 2026 6:01 AM

Tags: unclassified

Burnout kommt nicht nur dort, wo es offensichtlich ist. Selbst wenn die Arbeit erfüllend ist, können Überlastung und ständiger Druck die Motivation zersetzen. Engagement verwandelt sich in Erschöpfung, Begeisterung in Zynismus. First seen on infopoint-security.de Jump to article: www.infopoint-security.de/burnout-im-digitalen-schutzraum-die-stille-krise-der-cyberbranche/a43757/