Collecting Cyber-News from over 60 sources

Tag: exploit

ZeroDayRAT spyware targets Android and iOS devices via commercial toolkit

Feb 17, 2026 2:58 PM

Tags: android, control, detection, edr, email, exploit, infection, malicious, mobile, software, spyware, threat, unauthorized, vulnerability

Reliance on deception and not exploits: Despite the name, ZeroDayRAT does not depend on undisclosed operating system vulnerabilities to infect devices. Instead, the primary infection vector is social engineering. Victims are persuaded to install a malicious application or configuration profile disguised as legitimate software, often delivered through links shared via SMS, email, or messaging platforms.While…
Cybercriminals Exploit Atlassian Cloud to Launch Spam Campaigns Promoting Fraudulent Investments

Feb 17, 2026 2:58 PM

Tags: authentication, cloud, cyber, cybercrime, email, exploit, infrastructure, risk, saas, spam

Cybercriminals abused Atlassian Cloud’s trusted infrastructure to run a burst of highly automated spam campaigns that redirected victims to fraudulent investment schemes and online casinos, highlighting the growing risk of SaaS-powered email abuse. By riding on Atlassian Jira Cloud’s strong domain reputation and built-in email authentication, the attackers were able to bypass many traditional email…
Why 2025’s agentic AI boom is a CISO’s worst nightmare

Feb 17, 2026 11:58 AM

Tags: access, ai, api, attack, breach, ciso, control, data, defense, email, exploit, finance, framework, governance, infrastructure, injection, jobs, LLM, malicious, microsoft, monitoring, nist, nvidia, openai, RedTeam, risk, risk-management, service, strategy, threat, tool, training, unauthorized, update, vulnerability

defined the early generative AI boom are structurally obsolete. In their place, dynamic and goal-oriented agentic AI systems are taking over the enterprise.This shift was not born of ambition, but of necessity. The industry’s previous darling, standard retrieval-augmented generation (RAG), has hit a wall. To understand the security crisis of 2026, we must first understand…
QR Codes Exploited for Phishing Attacks and Malware Spread on Mobile Devices

Feb 17, 2026 8:58 AM

Tags: attack, cyber, exploit, malicious, malware, mobile, phishing, qr, threat

QR code abuse has become a significant mobile threat vector, with attackers using it to deliver phishing pages, trigger in”‘app account takeovers, and distribute malicious applications outside official app stores. Because people routinely scan QR codes for payments, menus and app downloads, these attacks often bypass enterprise protections by shifting the interaction onto less”‘protected personal…
NDSS 2025 SiGuard: Guarding Secure Inference With Post Data Privacy

Feb 16, 2026 9:58 PM

Tags: attack, conference, data, defense, exploit, framework, Internet, network, privacy, service, vulnerability

Session 12C: Membership Inference Authors, Creators & Presenters: Xinqian Wang (RMIT University), Xiaoning Liu (RMIT University), Shangqi Lai (CSIRO Data61), Xun Yi (RMIT University), Xingliang Yuan (University of Melbourne) PAPER SIGuard: Guarding Secure Inference with Post Data Privacy Secure inference is designed to enable encrypted machine learning model prediction over encrypted data. It will ease…
BeyondTrust RCE Exploited for Domain Control

Feb 16, 2026 7:58 PM

Tags: control, cve, exploit, rce, remote-code-execution, windows

CVE-2026-1731 is being exploited to gain full Windows domain control in self-hosted BeyondTrust deployments. First seen on esecurityplanet.com Jump to article: www.esecurityplanet.com/threats/beyondtrust-rce-exploited-for-domain-control/
Weekly Recap: Outlook Add-Ins Hijack, 0-Day Patches, Wormable Botnet & AI Malware

Feb 16, 2026 3:58 PM

Tags: ai, botnet, cloud, exploit, malware, supply-chain, tactics, tool, zero-day

This week’s recap shows how small gaps are turning into big entry points. Not always through new exploits, often through tools, add-ons, cloud setups, or workflows that people already trust and rarely question.Another signal: attackers are mixing old and new methods. Legacy botnet tactics, modern cloud abuse, AI assistance, and supply-chain exposure are being used…
Exploited React2Shell Flaw By LLM-generated Malware Foreshadows Shift in Threat Landscape

Feb 16, 2026 2:58 PM

Tags: exploit, LLM, threat

Attackers recently leveraged LLMs to exploit a React2Shell vulnerability and opened the door to low-skill operators and calling traditional indicators into question. First seen on securityboulevard.com Jump to article: securityboulevard.com/2026/02/exploited-react2shell-flaw-by-llm-generated-malware-foreshadows-shift-in-threat-landscape/
Google patches Chrome zero-day as in-the-wild exploits surface

Feb 16, 2026 1:58 PM

Tags: browser, chrome, exploit, flaw, google, malicious, zero-day

High-severity CSS flaw let malicious webpages run code inside the sandbox First seen on theregister.com Jump to article: www.theregister.com/2026/02/16/chromes_zeroday/
CISA gives feds 3 days to patch actively exploited BeyondTrust flaw

Feb 16, 2026 1:58 PM

Tags: cisa, exploit, flaw, government, update, vulnerability

CISA ordered U.S. government agencies on Friday to secure their BeyondTrust Remote Support instances against an actively exploited vulnerability within three days. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/cisa-orders-feds-to-patch-beyondtrust-flaw-within-three-days/
Cybersecurity Alert: Fake Shops Target Winter Olympics 2026 Fans for Attacks

Feb 16, 2026 1:58 PM

Tags: attack, cyber, cybercrime, cybersecurity, exploit, international, scam

The excitement surrounding the Milano-Cortina 2026 Winter Olympics has given cybercriminals a new opportunity to trick fans. The adorable stoat mascots, Tina and Milo, have become international sensations especially their official 27 cm plush version, which quickly sold out on the official Olympic web store. Unfortunately, this surge in demand has attracted scammers exploiting the…
Google Warns of In the Wild Exploit as It Patches New Chrome Zero Day

Feb 16, 2026 12:58 PM

Tags: browser, chrome, exploit, google, vulnerability, zero-day

A high severity vulnerability in Google Chrome and allows remote attackers to execute code First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/google-patches-new-in-wild-chrome/
Sicherheitslücke im Browser: Attacken auf Chrome-Nutzer beobachtet

Feb 16, 2026 12:58 PM

Tags: browser, bug, chrome, exploit

Eine gefährliche Sicherheitslücke lässt Angreifer Schadcode in Chrome einschleusen. Es reicht der Besuch einer speziell gestalteten Webseite. First seen on golem.de Jump to article: www.golem.de/news/sicherheitsluecke-im-browser-attacken-auf-chrome-nutzer-beobachtet-2602-205443.html
Google fixes first actively exploited Chrome zero-day of 2026

Feb 16, 2026 11:58 AM

Tags: browser, chrome, cve, exploit, flaw, google, update, vulnerability, zero-day

Google patched Chrome zero-day CVE-2026-2441, a high-severity CSS use-after-free flaw actively exploited in the wild. Google has released urgent security updates to address a high-severity zero-day vulnerability, tracked as CVE-2026-2441, in Chrome that is already being exploited in real-world attacks. The flaw is a use-after-free bug in the browser’s CSS component. This is the first…
Google patches Chrome vulnerability with inwild exploit (CVE-2026-2441)

Feb 16, 2026 11:58 AM

Tags: browser, chrome, exploit, google, update, vulnerability

Google released a security update for Chrome to address a high-severity zero”‘day vulnerability (CVE-2026-2441) on Friday. >>Google is aware that an exploit for … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2026/02/16/google-patches-chrome-vulnerability-with-in-the-wild-exploit-cve-2026-2441/
Hackers Exploit ‘Summarize with AI’ Feature to Inject Malicious Prompts into AI Recommendations

Feb 16, 2026 11:58 AM

Tags: ai, attack, cyber, exploit, finance, hacker, malicious, microsoft

Hackers and marketers are increasingly abusing “Summarize with AI” buttons and AI-share links to quietly plant persistent instructions in AI assistants’ memory, a growing attack trend Microsoft calls AI Recommendation Poisoning. By silently biasing what assistants “remember” as trusted or preferred sources, these attacks can warp recommendations on high”‘impact topics like health, finance, and security without…
Configuration Manager: Hacker attackieren verbreitetes Microsoft-Admin-Tool

Feb 16, 2026 10:58 AM

Tags: exploit, hacker, microsoft, tool

Der von vielen IT-Admins genutzte Microsoft Configuration Manager steht unter Beschuss. Auf ungepatchten Systemen lässt sich Schadcode einschleusen. First seen on golem.de Jump to article: www.golem.de/news/configuration-manager-hacker-attackieren-verbreitetes-microsoft-admin-tool-2602-205431.html
Google patches first Chrome zero-day exploited in attacks this year

Feb 16, 2026 9:58 AM

Tags: attack, browser, chrome, exploit, flaw, google, update, vulnerability, zero-day

Google has released emergency updates to fix a high-severity Chrome vulnerability exploited in zero-day attacks, marking the first such security flaw patched since the start of the year. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/google-patches-first-chrome-zero-day-exploited-in-attacks-this-year/
Google Chrome Fixes Actively Exploited CVE-2026-2441 Bug

Feb 16, 2026 8:58 AM

Tags: browser, chrome, computer, cve, exploit, flaw, google, update, vulnerability

A critical security vulnerability, CVE-2026-2441, has prompted an urgent out-of-band update for Google Chrome after confirmation that the flaw is being actively exploited. The Hong Kong Computer Emergency Response Team (HKCERT) alerted users to the flaw on 16 February 2026. First seen on thecyberexpress.com Jump to article: thecyberexpress.com/cve-2026-2441-google-chrome/
New Chrome Zero-Day (CVE-2026-2441) Under Active Attack, Patch Released

Feb 16, 2026 8:58 AM

Tags: attack, browser, chrome, cve, exploit, flaw, google, update, vulnerability, zero-day

Google on Friday released security updates for its Chrome browser to address a security flaw that it said has been exploited in the wild.The high-severity vulnerability, tracked as CVE-2026-2441 (CVSS score: 8.8), has been described as a use-after-free bug in CSS. Security researcher Shaheen Fazim has been credited with discovering and reporting the shortcoming on…
10 years later, Bangladesh Bank cyberheist still offers cyber-resiliency lessons

Feb 16, 2026 8:58 AM

Tags: access, ai, application-security, attack, automation, backdoor, banking, ceo, cisco, ciso, compliance, control, credentials, crypto, cyber, cybercrime, cybersecurity, data-breach, defense, detection, endpoint, exploit, finance, fintech, firewall, framework, infrastructure, intelligence, international, malware, monitoring, network, north-korea, oracle, password, risk, service, software, theft, threat, tool, vulnerability

Security shortcomings: Adrian Cheek, senior cybercrime researcher at threat exposure management firm Flare, said the Bangladesh Bank heist was possible because of a number of security shortcomings, including a failure to air gap critical infrastructure.”The Bank of Bangladesh had four servers and the same number of desktops connected to SWIFT,” Cheek says. “This infrastructure, however,…
ZeroDayRAT Exploit Targets Android iOS, Enabling Real-Time Surveillance and Massive Data Theft

Feb 16, 2026 7:58 AM

Tags: android, cyber, data, exploit, mobile, spyware, theft

A newly surfaced mobile spyware platform called ZeroDayRAT is rapidly gaining traction across underground Telegram channels. ZeroDayRAT is designed to give attackers complete remote control over both Android and iOS devices, supporting versions from Android 5 through 16 and iOS up to version 26, including the latest iPhone 17 Pro. The panel interface allows the operator to manage multiple infected devices worldwide as…
Don’t panic over CISA’s KEV list, use it smarter

Feb 16, 2026 6:58 AM

Tags: cisa, exploit, kev, vulnerability

In this Help Net Security video, Tod Beardsley, VP of Security Research at runZero, explains what CISA’s Known Exploited Vulnerabilities (KEV) Catalog is and how security … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2026/02/16/cisa-kev-catalog-video/
Attackers Exploit Critical BeyondTrust Flaw to Seize Full Active Directory Control

Feb 16, 2026 6:58 AM

Tags: access, control, cve, cyber, cybersecurity, exploit, flaw, infrastructure, kev, remote-code-execution, vulnerability

A critical vulnerability, CVE-2026-1731, affecting self-hosted BeyondTrust Remote Support and Privileged Remote Access deployments. This security flaw allows unauthenticated attackers to inject operating system commands, effectively granting them remote code execution capabilities. The severity of this campaign has prompted the Cybersecurity and Infrastructure Security Agency (CISA) to add the flaw to its Known Exploited Vulnerabilities…
Chrome 0-Day Enables Remote Code Execution in Ongoing Campaign

Feb 16, 2026 6:58 AM

Tags: browser, chrome, cyber, exploit, google, linux, macOS, remote-code-execution, update, vulnerability, windows, zero-day

Google has released an urgent security update for the Chrome desktop web browser to address a severe high-severity vulnerability that is currently being exploited in the wild. The search giant rolled out the fix on Friday, updating the Stable channel to version 145.0.7632.75/.76 for Windows and macOS users, and version 144.0.7559.75 for Linux users. This…
NDSS 2025 Diffence: Fencing Membership Privacy With Diffusion Models

Feb 15, 2026 6:58 PM

Tags: attack, conference, data, defense, exploit, framework, Internet, network, privacy, training, vulnerability

Session 12C: Membership Inference Authors, Creators & Presenters: PAPER Yuefeng Peng (University of Massachusetts Amherst), Ali Naseh (University of Massachusetts Amherst), Amir Houmansadr (University of Massachusetts Amherst) Deep learning models, while achieving remarkable performances across various tasks, are vulnerable to membership inference attacks (MIAs), wherein adversaries identify if a specific data point was part of…
NDSS 2025 Diffence: Fencing Membership Privacy With Diffusion Models

Feb 15, 2026 6:58 PM

Tags: attack, conference, data, defense, exploit, framework, Internet, network, privacy, training, vulnerability

Session 12C: Membership Inference Authors, Creators & Presenters: PAPER Yuefeng Peng (University of Massachusetts Amherst), Ali Naseh (University of Massachusetts Amherst), Amir Houmansadr (University of Massachusetts Amherst) Deep learning models, while achieving remarkable performances across various tasks, are vulnerable to membership inference attacks (MIAs), wherein adversaries identify if a specific data point was part of…
Week in review: Exploited newly patched BeyondTrust RCE, United Airlines CISO on building resilience

Feb 15, 2026 10:58 AM

Tags: ciso, exploit, rce, remote-code-execution, resilience, WeeklyReview

Here’s an overview of some of last week’s most interesting news, articles, interviews and videos: United Airlines CISO on building resilience when disruption is inevitable In … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2026/02/15/week-in-review-exploited-newly-patched-beyondtrust-rce-united-airlines-ciso-on-building-resilience/
U.S. CISA adds a flaw in BeyondTrust RS and PRA to its Known Exploited Vulnerabilities catalog

Feb 14, 2026 5:58 PM

Tags: cisa, cve, cybersecurity, exploit, flaw, infrastructure, kev, update, vulnerability

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds a flaw in BeyondTrust RS and PRA to its Known Exploited Vulnerabilities catalog. The U.S. Cybersecurity and Infrastructure Security Agency (CISA) added an BeyondTrust RS and PRA vulnerability, tracked as CVE-2026-1731 (CVSS score of 9.9), to its Known Exploited Vulnerabilities (KEV) catalog. This week BeyondTrust released security updates to…
U.S. CISA adds a flaw in BeyondTrust RS and PRA to its Known Exploited Vulnerabilities catalog

Feb 14, 2026 5:58 PM

Tags: cisa, cve, cybersecurity, exploit, flaw, infrastructure, kev, update, vulnerability

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds a flaw in BeyondTrust RS and PRA to its Known Exploited Vulnerabilities catalog. The U.S. Cybersecurity and Infrastructure Security Agency (CISA) added an BeyondTrust RS and PRA vulnerability, tracked as CVE-2026-1731 (CVSS score of 9.9), to its Known Exploited Vulnerabilities (KEV) catalog. This week BeyondTrust released security updates to…