Collecting Cyber-News from over 60 sources

Tag: hacker

Threat groups use AI to speed up and scale cyberattacks

Feb 19, 2026 7:01 PM

Tags: ai, breach, cyberattack, exploit, group, hacker, network, threat, vulnerability

A report from Palo Alto Networks finds hackers are increasingly using stolen identities and exploiting critical vulnerabilities within minutes of disclosure. First seen on cybersecuritydive.com Jump to article: www.cybersecuritydive.com/news/threat-groups-ai-speed-scale-cyberattacks/812439/
China-Linked Hackers Use Dell RecoverPoint Flaw to Drop GrimBolt Malware

Feb 19, 2026 5:00 PM

Tags: china, cve, data, exploit, flaw, hacker, malware, software, vulnerability

Dell warns of a critical security hole in its RecoverPoint software exploited by hackers. Learn how to protect your data from the CVE-2026-22769 vulnerability and the new GrimBolt malware. First seen on hackread.com Jump to article: hackread.com/china-hackers-dell-recoverpoint-flaw-grimbolt-malware/
Hackers target Microsoft Entra accounts in device code vishing attacks

Feb 19, 2026 2:01 PM

Tags: attack, finance, hacker, microsoft, phishing, technology, threat

Threat actors are targeting technology, manufacturing, and financial organizations in campaigns that combine device code phishing and voice phishing (vishing) to abuse the OAuth 2.0 Device Authorization flow and compromise Microsoft Entra accounts. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/hackers-target-microsoft-entra-accounts-in-device-code-vishing-attacks/
Bug in widely used VoIP phones allows stealthy network footholds, call interception (CVE-2026-2329)

Feb 19, 2026 2:01 PM

Tags: control, hacker, network, phone, voip, vulnerability

A critical security vulnerability (CVE-2026-2329) in Grandstream VoIP phones could let hackers remotely take full control of the devices and even intercept calls, Rapid7 … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2026/02/19/grandstream-voip-phones-vulnerability-cve-2026-2329/
Texas sues TP-Link over Chinese hacking risks, user deception

Feb 19, 2026 2:01 PM

Tags: access, china, exploit, firmware, hacker, hacking, risk, router, vulnerability

Texas sued networking giant TP-Link Systems, accusing the company of deceptively marketing its routers as secure while allowing Chinese state-backed hackers to exploit firmware vulnerabilities and access users’ devices. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/texas-sues-tp-link-over-chinese-hacking-risks-user-deception/
Hackers can turn Grok, Copilot into covert commandcontrol channels, researchers warn

Feb 19, 2026 12:01 PM

Tags: ai, automation, awareness, cloud, control, detection, framework, governance, hacker, identity, monitoring, network, risk, saas, tool

Steps to take: Security leaders should not respond by blocking AI outright, analysts said, but by applying the same governance discipline used for other high-risk SaaS platforms.Varkey recommended starting with a comprehensive inventory of all AI tools in use and establishing a clear policy framework for approving and enabling them.Organizations should also implement AI-specific traffic…
Buchungssystem gehackt: Hacker übernachtet für nur einen Cent in Luxushotels

Feb 19, 2026 12:01 PM

Tags: hacker

Ein 20-jähriger Spanier soll eine Buchungsplattform gehackt und mehrere Hotels dadurch um Zehntausende Euro betrogen haben. First seen on golem.de Jump to article: www.golem.de/news/buchungssystem-gehackt-hacker-uebernachtet-fuer-nur-einen-cent-in-luxushotels-2602-205592.html
Hackers Hide Malware in Emoji-Based Code to Bypass Security Defenses

Feb 19, 2026 10:01 AM

Tags: ai, control, cyber, data, defense, exploit, hacker, malicious, malware

Hackers are increasingly abusing emoji and other Unicode tricks to hide malicious code, bypass filters, and evade modern security controls, including AI-powered defenses. This emerging technique, known as emoji or Unicode smuggling, turns harmless-looking characters into stealth carriers for commands, data, and exploit payloads. Emoji smuggling is an obfuscation technique in which attackers encode malicious content using…
Hackers Hide Malware in Emoji-Based Code to Bypass Security Defenses

Feb 19, 2026 10:01 AM

Tags: ai, control, cyber, data, defense, exploit, hacker, malicious, malware

Hackers are increasingly abusing emoji and other Unicode tricks to hide malicious code, bypass filters, and evade modern security controls, including AI-powered defenses. This emerging technique, known as emoji or Unicode smuggling, turns harmless-looking characters into stealth carriers for commands, data, and exploit payloads. Emoji smuggling is an obfuscation technique in which attackers encode malicious content using…
Hackers Abuse nslookup.exe in ClickFix Campaign to Deliver Malware via DNS

Feb 19, 2026 10:01 AM

Tags: cyber, dns, email, hacker, malicious, malware, phishing, social-engineering, tool

Social engineering campaigns are becoming increasingly sophisticated, moving beyond simple phishing emails to more complex technical deceptions. The >>ClickFix<>fix<< a fake browser error, has undergone significant evolution. Security researcher Muhammad Hassoub has observed attackers moving away from high-noise tools that trigger immediate […] The post Hackers Abuse nslookup.exe in ClickFix Campaign to Deliver Malware via…
Hackers Abuse nslookup.exe in ClickFix Campaign to Deliver Malware via DNS

Feb 19, 2026 10:01 AM

Tags: cyber, dns, email, hacker, malicious, malware, phishing, social-engineering, tool

Social engineering campaigns are becoming increasingly sophisticated, moving beyond simple phishing emails to more complex technical deceptions. The >>ClickFix<>fix<< a fake browser error, has undergone significant evolution. Security researcher Muhammad Hassoub has observed attackers moving away from high-noise tools that trigger immediate […] The post Hackers Abuse nslookup.exe in ClickFix Campaign to Deliver Malware via…
Hackers Abuse nslookup.exe in ClickFix Campaign to Deliver Malware via DNS

Feb 19, 2026 10:01 AM

Tags: cyber, dns, email, hacker, malicious, malware, phishing, social-engineering, tool

Social engineering campaigns are becoming increasingly sophisticated, moving beyond simple phishing emails to more complex technical deceptions. The >>ClickFix<>fix<< a fake browser error, has undergone significant evolution. Security researcher Muhammad Hassoub has observed attackers moving away from high-noise tools that trigger immediate […] The post Hackers Abuse nslookup.exe in ClickFix Campaign to Deliver Malware via…
Chinese hackers exploited zero-day Dell RecoverPoint flaw for 1.5 years

Feb 19, 2026 12:00 AM

Tags: access, backdoor, china, credentials, detection, endpoint, exploit, firewall, flaw, hacker, linkedin, linux, malware, mandiant, network, service, vmware, zero-day

Pivot techniques: In addition to the payloads themselves, the investigation also revealed new techniques. For example, the legitimate shell script convert_hosts.sh that exists on these appliances has been modified to include the path of the backdoors to achieve persistence.The SLAYSTYLE web shell, which is designed to receive commands over HTTP and execute them on the…
Hacking conference Def Con bans three people linked to Epstein

Feb 19, 2026 12:00 AM

Tags: conference, hacker, hacking

The Def Con hacking conference banned hackers Pablos Holman and Vincenzo Iozzo, as well as former MIT Media Lab director Joichi Ito, from attending the annual conference after their reported connections with Jeffrey Epstein. First seen on techcrunch.com Jump to article: techcrunch.com/2026/02/18/hacking-conference-def-con-bans-three-people-linked-to-epstein/
French Ministry confirms data access to 1.2 Million bank accounts

Feb 19, 2026 12:00 AM

Tags: access, breach, credentials, data, finance, government, hacker

A hacker accessed data from 1.2 million French bank accounts using stolen official credentials, the Economy Ministry said. A hacker gained access to data from 1.2 million French bank accounts using stolen credentials belonging to a government official, according to the French Economy Ministry. French authorities said affected account holders will be notified in the…
Notepad++ patches flaw used to hijack update system

Feb 18, 2026 10:01 PM

Tags: apt, china, flaw, group, hacker, infrastructure, malware, update, vulnerability

Notepad++ patched a vulnerability that attackers used to hijack its update system and deliver malware to targeted users. Notepad++ fixed a vulnerability that allowed a China-linked APT group to hijack its update mechanism and selectively push malware to chosen targets. In early February, the Notepad++ maintainer revealed that nation-state hackers compromised the hosting provider’s infrastructure,…
Data breach at fintech giant Figure affects close to a million customers

Feb 18, 2026 7:58 PM

Tags: breach, data, data-breach, email, fintech, hacker, phone

The Figure data breach allowed hackers to steal customer names, dates of birth, physical addresses, phone numbers, and email addresses. First seen on techcrunch.com Jump to article: techcrunch.com/2026/02/18/data-breach-at-fintech-giant-figure-affects-close-to-a-million-customers/
Substack Breach May Have Leaked Nearly 700,000 User Details Online

Feb 18, 2026 7:58 PM

Tags: breach, data-breach, email, hacker, phone

Substack says hackers accessed user emails, phone numbers, and internal metadata in October 2025, with a database of 697,313 records later posted online. The post Substack Breach May Have Leaked Nearly 700,000 User Details Online appeared first on TechRepublic. First seen on techrepublic.com Jump to article: www.techrepublic.com/article/news-substack-data-breach-user-accounts-leaked/
Cybercrime Goes Corporate: Huntress Report Reveals Rise of Scalable, Stealth-First Attacks

Feb 18, 2026 7:58 PM

Tags: attack, corporate, cyber, cybercrime, exploit, group, hacker, threat

Cybercriminals are no longer lone hackers exploiting flashy zero-days; they are running streamlined, profit-driven operations that mirror legitimate businesses. That’s the key takeaway from the newly released Huntress 2026 Cyber Threat Report, which exposes how organised cybercrime groups are standardising their playbooks to maximise efficiency and revenue. Drawing on telemetry from more than 4.6 million…
Hackers Increasingly Prefer Fast and Low-Complexity Attacks

Feb 18, 2026 6:58 PM

Tags: access, attack, business, email, exploit, hacker, hacking, ransomware, threat

Incident Responders Detail Top Ransomware and Business Email Compromise Tactics. There’s no need to invest into sophisticated hacking operations when moving fast and exploiting well-trod techniques gives threat actors all the access they want. Threat actors are prioritizing low-complexity entry points, rather than investing in sophisticated exploits, say incident responders. First seen on govinfosecurity.com Jump…
Threat groups using AI to speed up and scale cyberattacks

Feb 18, 2026 5:58 PM

Tags: ai, breach, cyberattack, exploit, group, hacker, network, threat, vulnerability

A report from Palo Alto Networks finds hackers are increasingly using stolen identities and exploiting critical vulnerabilities within minutes of disclosure. First seen on cybersecuritydive.com Jump to article: www.cybersecuritydive.com/news/threat-groups-ai-speed-scale-cyberattacks/812439/
VS Code extensions with 125M+ installs expose users to cyberattacks

Feb 18, 2026 4:58 PM

Tags: cyberattack, flaw, hacker, microsoft

Four popular VS Code extensions with 125M+ installs have flaws that could let hackers steal files and run code remotely. OX Security researchers warn that security flaws in four widely used VS Code extensions (Live Server, Code Runner, Markdown Preview Enhanced, and Microsoft Live Preview) could allow attackers to steal local files and execute code…
China-linked hackers exploited Dell zero-day since 2024 (CVE-2026-22769)

Feb 18, 2026 4:58 PM

Tags: china, cyberespionage, exploit, flaw, group, hacker, software, zero-day

A suspected China-linked cyberespionage group has been covertly exploiting a critical zero-day flaw (CVE-2026-22769) in Dell’s RecoverPoint for Virtual Machines software since … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2026/02/18/exploited-dell-zero-day-cve-2026-22769-brickstorm-grimbolt/
Carelessness versus craftsmanship in cryptography

Feb 18, 2026 3:58 PM

Tags: access, advisory, api, attack, authentication, computing, credentials, cryptography, data, email, encryption, github, hacker, oracle, side-channel, software, threat, tool, update, vpn, vulnerability

Two popular AES libraries, aes-js and pyaes, “helpfully” provide a default IV in their AES-CTR API, leading to a large number of key/IV reuse bugs. These bugs potentially affect thousands of downstream projects. When we shared one of these bugs with an affected vendor, strongSwan, the maintainer provided a model response for security vendors. The…
Carelessness versus craftsmanship in cryptography

Feb 18, 2026 3:58 PM

Tags: access, advisory, api, attack, authentication, computing, credentials, cryptography, data, email, encryption, github, hacker, oracle, side-channel, software, threat, tool, update, vpn, vulnerability

Two popular AES libraries, aes-js and pyaes, “helpfully” provide a default IV in their AES-CTR API, leading to a large number of key/IV reuse bugs. These bugs potentially affect thousands of downstream projects. When we shared one of these bugs with an affected vendor, strongSwan, the maintainer provided a model response for security vendors. The…
Data breach at fintech firm Figure affects nearly 1 million accounts

Feb 18, 2026 3:58 PM

Tags: blockchain, breach, data, data-breach, finance, fintech, hacker, technology

Hackers have stolen the personal and contact information of nearly 1 million accounts after breaching the systems of Figure Technology Solutions, a self-described blockchain-native financial technology company. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/data-breach-at-fintech-firm-figure-affects-nearly-1-million-accounts/
Bahn.de und DB Navigator: Hackerangriff trifft die Bahn

Feb 18, 2026 3:58 PM

Tags: cyberattack, ddos, hacker

Russische Hacker sollen hinter einem massiven DDoS-Angriff auf die Deutsche Bahn stecken. Der DB Navigator und bahn.de waren lange nicht erreichbar. First seen on golem.de Jump to article: www.golem.de/news/bahn-de-und-db-navigator-hackerangriff-trifft-die-bahn-2602-205560.html
Sicherheitslücke Werkstatt: Hacker nehmen das Handwerk ins Visier

Feb 18, 2026 2:58 PM

Tags: bug, hacker

Wer denkt, Hacker interessieren sich nur für Banken und Konzerne, irrt. Das Handwerk ist längst zum attraktiven Ziel geworden. First seen on it-daily.net Jump to article: www.it-daily.net/it-sicherheit/cybercrime/hacker-handwerk-ins-visier
(g+) Anthropics Bericht über KI-Hacker: Keine CVE-ID – didn’t happen!

Feb 18, 2026 2:58 PM

Tags: ai, cve, hacker, LLM, risk

Ohne gründliche Dokumentation sind Anthropics Berichte über KI-Hacker unglaubwürdig. Das heißt nicht, dass LLMs kein Risiko darstellen. First seen on golem.de Jump to article: www.golem.de/news/anthropics-bericht-ueber-ki-hacker-keine-cve-id-didn-t-happen-2602-205498.html
Attacken auf VMs: Hacker nutzen fest kodierte Zugangsdaten in Dell-Tool aus

Feb 18, 2026 9:58 AM

Tags: hacker, tool

Dell hat in einem Back-up-Tool für virtuelle Maschinen Admin-Zugangsdaten zurückgelassen. Angreifer missbrauchen diese schon seit Mitte 2024. First seen on golem.de Jump to article: www.golem.de/news/attacken-auf-vms-hacker-nutzen-fest-kodierte-zugangsdaten-in-dell-tool-aus-2602-205531.html