Top Security News for Today
Husn Canaries - Defense-in-Depth for AI Coding Assistant Governance
https://www.reddit.com/r/netsec/comments/1qmcqt6/husn_canaries_defenseindepth_for_ai_coding/
Memorization Dynamics in Knowledge Distillation for Language Models
https://arxiv.org/abs/2601.16234
CVSweb OpenBSD.org fights AI crawler bots by redirecting hotlinking requests to theannoyingsite.com (labelled "Malware" by eero), gets blacklisted by eero, too, for "Phishing & Deception"
https://www.reddit.com/r/netsec/comments/1qmo7qr/cvswebopenbsdorg_fights_ai_crawler_bots_by/
Your Vibe Coded AI App Can Bankrupt You
https://www.reddit.com/r/netsec/comments/1qmrz3m/your_vibe_coded_ai_app_can_bankrupt_you/
Địt mẹ mày morphisec: When Malware Authors Taunt Security Researchers
https://www.reddit.com/r/netsec/comments/1qmukkb/địt_mẹ_mày_morphisec_when_malware_authors_taunt/
Algorithmic Identity Based on Metaparameters: A Path to Reliability, Auditability, and Traceability
https://arxiv.org/abs/2601.16241
FC-GUARD: Enabling Anonymous yet Compliant Fiat-to-Cryptocurrency Exchanges
https://arxiv.org/abs/2601.16354
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
Husn Canaries - Defense-in-Depth for AI Coding Assistant Governance
https://www.reddit.com/r/netsec/comments/1qmcqt6/husn_canaries_defenseindepth_for_ai_coding/
Memorization Dynamics in Knowledge Distillation for Language Models
https://arxiv.org/abs/2601.16234
CVSweb OpenBSD.org fights AI crawler bots by redirecting hotlinking requests to theannoyingsite.com (labelled "Malware" by eero), gets blacklisted by eero, too, for "Phishing & Deception"
https://www.reddit.com/r/netsec/comments/1qmo7qr/cvswebopenbsdorg_fights_ai_crawler_bots_by/
Your Vibe Coded AI App Can Bankrupt You
https://www.reddit.com/r/netsec/comments/1qmrz3m/your_vibe_coded_ai_app_can_bankrupt_you/
Địt mẹ mày morphisec: When Malware Authors Taunt Security Researchers
https://www.reddit.com/r/netsec/comments/1qmukkb/địt_mẹ_mày_morphisec_when_malware_authors_taunt/
Algorithmic Identity Based on Metaparameters: A Path to Reliability, Auditability, and Traceability
https://arxiv.org/abs/2601.16241
FC-GUARD: Enabling Anonymous yet Compliant Fiat-to-Cryptocurrency Exchanges
https://arxiv.org/abs/2601.16354
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
Reddit
From the netsec community on Reddit: Husn Canaries - Defense-in-Depth for AI Coding Assistant Governance
Explore this post and more from the netsec community
Top Security News for Today
Open sesame: Critical vulnerabilities in dormakaba physical access control system enable unlocking arbitrary doors
https://www.reddit.com/r/netsec/comments/1qncvtn/open_sesame_critical_vulnerabilities_in_dormakaba/
Ireland Proposes Giving Police New Digital Surveillance Powers
https://www.schneier.com/blog/archives/2026/01/ireland-proposes-giving-police-new-digital-surveillance-powers.html
EU launches formal investigation into X and Grok over sexual images
https://therecord.media/grok-sexually-explicit-images-eu-formal-investigation
26th January – Threat Intelligence Report
https://research.checkpoint.com/2026/26th-january-threat-intelligence-report/
After reporting vulnerabilities found in MDT, Microsoft chose to retire the service rather than fix the issues... Admins should follow the defensive recommendations to mitigate the issues if they choose to continue using the software or can’t migrate to a different solution.
https://www.reddit.com/r/netsec/comments/1qng5ag/after_reporting_vulnerabilities_found_in_mdt/
Romania probes two suspects over alleged hitman-for-hire website
https://therecord.media/romania-assassins-for-hire-website-investigation
PeckBirdy: A Versatile Script Framework for LOLBins Exploitation Used by China-aligned Threat Groups
https://www.trendmicro.com/en_us/research/26/a/peckbirdy-script-framework.html
Russian state hackers likely behind wiper malware attack on Poland’s power grid
https://therecord.media/russia-eset-sandworm-poland-hack
Judge awards British critic of Saudis $4.1 million, finds the regime hacked his devices
https://therecord.media/london-judge-sides-with-saudi-critic-spyware-case
Supreme Court to hear Facebook pixel tracking case
https://therecord.media/supreme-court-case-facebook-tracking
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
Open sesame: Critical vulnerabilities in dormakaba physical access control system enable unlocking arbitrary doors
https://www.reddit.com/r/netsec/comments/1qncvtn/open_sesame_critical_vulnerabilities_in_dormakaba/
Ireland Proposes Giving Police New Digital Surveillance Powers
https://www.schneier.com/blog/archives/2026/01/ireland-proposes-giving-police-new-digital-surveillance-powers.html
EU launches formal investigation into X and Grok over sexual images
https://therecord.media/grok-sexually-explicit-images-eu-formal-investigation
26th January – Threat Intelligence Report
https://research.checkpoint.com/2026/26th-january-threat-intelligence-report/
After reporting vulnerabilities found in MDT, Microsoft chose to retire the service rather than fix the issues... Admins should follow the defensive recommendations to mitigate the issues if they choose to continue using the software or can’t migrate to a different solution.
https://www.reddit.com/r/netsec/comments/1qng5ag/after_reporting_vulnerabilities_found_in_mdt/
Romania probes two suspects over alleged hitman-for-hire website
https://therecord.media/romania-assassins-for-hire-website-investigation
PeckBirdy: A Versatile Script Framework for LOLBins Exploitation Used by China-aligned Threat Groups
https://www.trendmicro.com/en_us/research/26/a/peckbirdy-script-framework.html
Russian state hackers likely behind wiper malware attack on Poland’s power grid
https://therecord.media/russia-eset-sandworm-poland-hack
Judge awards British critic of Saudis $4.1 million, finds the regime hacked his devices
https://therecord.media/london-judge-sides-with-saudi-critic-spyware-case
Supreme Court to hear Facebook pixel tracking case
https://therecord.media/supreme-court-case-facebook-tracking
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
Reddit
From the netsec community on Reddit: "Open sesame": Critical vulnerabilities in dormakaba physical access control system enable…
Explore this post and more from the netsec community
Top Security News for Today
Judge dismisses case alleging use of Flock cameras in Virginia city is unconstitutional
https://therecord.media/judge-dismisses-flock-case
UK plans sweeping overhaul of policing amid surge in online crimes
https://therecord.media/uk-national-policing-overhaul-cybercrime
Pwn2Own: Researchers Earn $1 Million for 76 Zero-Days
https://www.trendmicro.com/en_us/research/26/a/pwn2own-researchers-earn-1-million-for-76-zero-days.html
Nike probes potential cyber incident after hackers claim data leak
https://therecord.media/nike-probes-alleged-cyber-incident
How I sped up exploit validation in Repeater using Burp AI
https://portswigger.net/blog/how-i-sped-up-exploit-validation-in-repeater-using-burp-ai
OpenSSL January 2026 Security Update: CMS and PKCS#12 Buffer Overflows
https://www.reddit.com/r/netsec/comments/1qonkwp/openssl_january_2026_security_update_cms_and/
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
Judge dismisses case alleging use of Flock cameras in Virginia city is unconstitutional
https://therecord.media/judge-dismisses-flock-case
UK plans sweeping overhaul of policing amid surge in online crimes
https://therecord.media/uk-national-policing-overhaul-cybercrime
Pwn2Own: Researchers Earn $1 Million for 76 Zero-Days
https://www.trendmicro.com/en_us/research/26/a/pwn2own-researchers-earn-1-million-for-76-zero-days.html
Nike probes potential cyber incident after hackers claim data leak
https://therecord.media/nike-probes-alleged-cyber-incident
How I sped up exploit validation in Repeater using Burp AI
https://portswigger.net/blog/how-i-sped-up-exploit-validation-in-repeater-using-burp-ai
OpenSSL January 2026 Security Update: CMS and PKCS#12 Buffer Overflows
https://www.reddit.com/r/netsec/comments/1qonkwp/openssl_january_2026_security_update_cms_and/
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
therecord.media
Judge dismisses case alleging use of Flock cameras in Virginia city is unconstitutional
A Virginia federal judge ruled that the warrantless use of Flock automated license plate cameras in Norfolk, Virginia, is constitutional and dismissed a case seeking to eradicate them.
Top Security News for Today
UK leaders warned country risks 'absorbing' cyber and hybrid attacks without offensive deterrence
https://therecord.media/uk-government-warned-cyber-hybrid-threats-offensive-operations
Cyberattack on Poland’s power grid hit around 30 energy facilities, new report says
https://therecord.media/poland-electrical-grid-cyberattack-30-facilities-affected
Teen swatting suspects arrested in Hungary and Romania
https://therecord.media/teen-swatting-doxxing-suspects-arrested-hungary-romania
Artificial Intelligence in Spanish Gastroenterology: high expectations, limited integration. A national survey
https://arxiv.org/abs/2601.17011
Cyber Security Report 2026
https://research.checkpoint.com/2026/cyber-security-report-2026/
FTC commissioner says online age verification ‘offers a better way’ to protect kids
https://therecord.media/ftc-commissioner-age-verification-children-online
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
UK leaders warned country risks 'absorbing' cyber and hybrid attacks without offensive deterrence
https://therecord.media/uk-government-warned-cyber-hybrid-threats-offensive-operations
Cyberattack on Poland’s power grid hit around 30 energy facilities, new report says
https://therecord.media/poland-electrical-grid-cyberattack-30-facilities-affected
Teen swatting suspects arrested in Hungary and Romania
https://therecord.media/teen-swatting-doxxing-suspects-arrested-hungary-romania
Artificial Intelligence in Spanish Gastroenterology: high expectations, limited integration. A national survey
https://arxiv.org/abs/2601.17011
Cyber Security Report 2026
https://research.checkpoint.com/2026/cyber-security-report-2026/
FTC commissioner says online age verification ‘offers a better way’ to protect kids
https://therecord.media/ftc-commissioner-age-verification-children-online
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
therecord.media
UK leaders warned country risks 'absorbing' cyber and hybrid attacks without offensive deterrence
The government must do more to actively disrupt and deter foreign cyber and hybrid threats, U.K. ministers were told at at a parliamentary hearing.
Top Security News for Today
Notorious Russia-based RAMP cybercrime forum apparently seized by FBI
https://therecord.media/ramp-cybercrime-forum-appreantly-seized-fbi
One-click RCE on Clawd/Moltbot in 2 hours with an AI Hacking Agent
https://www.reddit.com/r/netsec/comments/1qq5h3u/oneclick_rce_on_clawdmoltbot_in_2_hours_with_an/
Supply chain attack on eScan antivirus: detecting and remediating malicious updates
https://securelist.com/escan-supply-chain-attack/118688/
Feds get second guilty plea in takedown of dark web Empire Market
https://therecord.media/feds-second-guilty-plea
Cyberattack on large Russian bread factory disrupts supply deliveries
https://therecord.media/cyberattack-russian-bread-factory-supply-disruptions
New Microsoft Data Security Index report explores secure AI adoption to protect sensitive data
https://www.microsoft.com/en-us/security/blog/2026/01/29/new-microsoft-data-security-index-report-explores-secure-ai-adoption-to-protect-sensitive-data/
French government agency fined nearly $6 million for data security failings
https://therecord.media/france-travail-fined-cnil
New Apple feature will block cell networks from capturing precise location data
https://therecord.media/new-apple-feature-block-location-data-cell-networks
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
Notorious Russia-based RAMP cybercrime forum apparently seized by FBI
https://therecord.media/ramp-cybercrime-forum-appreantly-seized-fbi
One-click RCE on Clawd/Moltbot in 2 hours with an AI Hacking Agent
https://www.reddit.com/r/netsec/comments/1qq5h3u/oneclick_rce_on_clawdmoltbot_in_2_hours_with_an/
Supply chain attack on eScan antivirus: detecting and remediating malicious updates
https://securelist.com/escan-supply-chain-attack/118688/
Feds get second guilty plea in takedown of dark web Empire Market
https://therecord.media/feds-second-guilty-plea
Cyberattack on large Russian bread factory disrupts supply deliveries
https://therecord.media/cyberattack-russian-bread-factory-supply-disruptions
New Microsoft Data Security Index report explores secure AI adoption to protect sensitive data
https://www.microsoft.com/en-us/security/blog/2026/01/29/new-microsoft-data-security-index-report-explores-secure-ai-adoption-to-protect-sensitive-data/
French government agency fined nearly $6 million for data security failings
https://therecord.media/france-travail-fined-cnil
New Apple feature will block cell networks from capturing precise location data
https://therecord.media/new-apple-feature-block-location-data-cell-networks
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
Reddit
From the netsec community on Reddit: One-click RCE on Clawd/Moltbot in 2 hours with an AI Hacking Agent
Explore this post and more from the netsec community
Top Security News for Today
Dating-app giants investigate incidents after cybercriminals claim to steal data
https://therecord.media/bumble-match-dating-apps-data-breaches
How We Exploited Qodo: From a PR Comment to RCE and an AWS Admin Key - Leaked Twice
https://www.reddit.com/r/netsec/comments/1qr7g3t/how_we_exploited_qodo_from_a_pr_comment_to_rce/
AIs Are Getting Better at Finding and Exploiting Security Vulnerabilities
https://www.schneier.com/blog/archives/2026/01/ais-are-getting-better-at-finding-and-exploiting-security-vulnerabilities.html
Coupang CEO questioned by police investigating obstruction of probe into data breach
https://therecord.media/coupang-acting-CEO-questioned-police-investigating-data-breach
Case study: Securing AI application supply chains
https://www.microsoft.com/en-us/security/blog/2026/01/30/case-study-securing-ai-application-supply-chains/
Ex-Google engineer convicted of insider exfiltration of AI trade secrets
https://www.reddit.com/r/netsec/comments/1qror1e/exgoogle_engineer_convicted_of_insider/
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
Dating-app giants investigate incidents after cybercriminals claim to steal data
https://therecord.media/bumble-match-dating-apps-data-breaches
How We Exploited Qodo: From a PR Comment to RCE and an AWS Admin Key - Leaked Twice
https://www.reddit.com/r/netsec/comments/1qr7g3t/how_we_exploited_qodo_from_a_pr_comment_to_rce/
AIs Are Getting Better at Finding and Exploiting Security Vulnerabilities
https://www.schneier.com/blog/archives/2026/01/ais-are-getting-better-at-finding-and-exploiting-security-vulnerabilities.html
Coupang CEO questioned by police investigating obstruction of probe into data breach
https://therecord.media/coupang-acting-CEO-questioned-police-investigating-data-breach
Case study: Securing AI application supply chains
https://www.microsoft.com/en-us/security/blog/2026/01/30/case-study-securing-ai-application-supply-chains/
Ex-Google engineer convicted of insider exfiltration of AI trade secrets
https://www.reddit.com/r/netsec/comments/1qror1e/exgoogle_engineer_convicted_of_insider/
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
therecord.media
Dating-app giants investigate incidents after cybercriminals claim to steal data
Bumble and Match said they each recently responded to network intrusions. The group ShinyHunters claimed to have stolen data from both.
Top Security News for Today
Glitches to Guests: Fault Injection, Spectre in VMs, and GPU Fuzzing
https://www.reddit.com/r/lowlevel/comments/1qs1pcn/glitches_to_guests_fault_injection_spectre_in_vms/
StopLamers Investigation: From IRC Wars to Android Backdoors
https://www.reddit.com/r/netsec/comments/1qs68tn/stoplamers_investigation_from_irc_wars_to_android/
The Epistemic Planning Domain Definition Language: Official Guideline
https://arxiv.org/abs/2601.20969
Magellan: Autonomous Discovery of Novel Compiler Optimization Heuristics with AlphaEvolve
https://arxiv.org/abs/2601.21096
Scaling Embeddings Outperforms Scaling Experts in Language Models
https://arxiv.org/abs/2601.21204
DOJ releases details alleged talented hacker working for Jeffrey Epstein
https://www.reddit.com/r/netsec/comments/1qsmx92/doj_releases_details_alleged_talented_hacker/
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
Glitches to Guests: Fault Injection, Spectre in VMs, and GPU Fuzzing
https://www.reddit.com/r/lowlevel/comments/1qs1pcn/glitches_to_guests_fault_injection_spectre_in_vms/
StopLamers Investigation: From IRC Wars to Android Backdoors
https://www.reddit.com/r/netsec/comments/1qs68tn/stoplamers_investigation_from_irc_wars_to_android/
The Epistemic Planning Domain Definition Language: Official Guideline
https://arxiv.org/abs/2601.20969
Magellan: Autonomous Discovery of Novel Compiler Optimization Heuristics with AlphaEvolve
https://arxiv.org/abs/2601.21096
Scaling Embeddings Outperforms Scaling Experts in Language Models
https://arxiv.org/abs/2601.21204
DOJ releases details alleged talented hacker working for Jeffrey Epstein
https://www.reddit.com/r/netsec/comments/1qsmx92/doj_releases_details_alleged_talented_hacker/
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
Reddit
From the lowlevel community on Reddit: Glitches to Guests: Fault Injection, Spectre in VMs, and GPU Fuzzing
Explore this post and more from the lowlevel community
Top Security News for Today
DOJ releases details alleged talented hacker working for Jeffrey Epstein
https://www.reddit.com/r/netsec/comments/1qsmx92/doj_releases_details_alleged_talented_hacker/
We ran a live red-team vs blue-team test on autonomous OpenClaw agents
https://www.reddit.com/r/netsec/comments/1qsy9tk/we_ran_a_live_redteam_vs_blueteam_test_on/
1-Click RCE in OpenClaw/Moltbot/ClawdBot
https://www.reddit.com/r/netsec/comments/1qt5wms/1click_rce_in_openclawmoltbotclawdbot/
Notepad++ Hijacked by State-Sponsored Hackers
https://www.reddit.com/r/netsec/comments/1qtif11/notepad_hijacked_by_statesponsored_hackers/
Your Phone Silently Sends GPS to Your Carrier via RRLP/LPP – Here's How the Control Plane Positioning Works
https://www.reddit.com/r/netsec/comments/1qtnr2m/your_phone_silently_sends_gps_to_your_carrier_via/
ShellForge: Adversarial Co-Evolution of Webshell Generation and Multi-View Detection for Robust Webshell Defense
https://arxiv.org/abs/2601.22434
MemeChain: A Multimodal Cross-Chain Dataset for Meme Coin Forensics and Risk Analysis
https://arxiv.org/abs/2601.22185
A Systematic Literature Review on LLM Defenses Against Prompt Injection and Jailbreaking: Expanding NIST Taxonomy
https://arxiv.org/abs/2601.22240
MirrorMark: A Distortion-Free Multi-Bit Watermark for Large Language Models
https://arxiv.org/abs/2601.22246
Rethinking Anonymity Claims in Synthetic Data Generation: A Model-Centric Privacy Attack Perspective
https://arxiv.org/abs/2601.22434
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
DOJ releases details alleged talented hacker working for Jeffrey Epstein
https://www.reddit.com/r/netsec/comments/1qsmx92/doj_releases_details_alleged_talented_hacker/
We ran a live red-team vs blue-team test on autonomous OpenClaw agents
https://www.reddit.com/r/netsec/comments/1qsy9tk/we_ran_a_live_redteam_vs_blueteam_test_on/
1-Click RCE in OpenClaw/Moltbot/ClawdBot
https://www.reddit.com/r/netsec/comments/1qt5wms/1click_rce_in_openclawmoltbotclawdbot/
Notepad++ Hijacked by State-Sponsored Hackers
https://www.reddit.com/r/netsec/comments/1qtif11/notepad_hijacked_by_statesponsored_hackers/
Your Phone Silently Sends GPS to Your Carrier via RRLP/LPP – Here's How the Control Plane Positioning Works
https://www.reddit.com/r/netsec/comments/1qtnr2m/your_phone_silently_sends_gps_to_your_carrier_via/
ShellForge: Adversarial Co-Evolution of Webshell Generation and Multi-View Detection for Robust Webshell Defense
https://arxiv.org/abs/2601.22434
MemeChain: A Multimodal Cross-Chain Dataset for Meme Coin Forensics and Risk Analysis
https://arxiv.org/abs/2601.22185
A Systematic Literature Review on LLM Defenses Against Prompt Injection and Jailbreaking: Expanding NIST Taxonomy
https://arxiv.org/abs/2601.22240
MirrorMark: A Distortion-Free Multi-Bit Watermark for Large Language Models
https://arxiv.org/abs/2601.22246
Rethinking Anonymity Claims in Synthetic Data Generation: A Model-Centric Privacy Attack Perspective
https://arxiv.org/abs/2601.22434
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
Reddit
From the netsec community on Reddit: DOJ releases details alleged talented hacker working for Jeffrey Epstein
Explore this post and more from the netsec community
Top Security News for Today
Hackers attempt to extort parents after school refuses to pay ransom fee
https://therecord.media/hackers-attempt-to-extort-parents-after-school-refuses-ransom-demand
Drone sightings have doubled near UK military bases, warns British government
https://therecord.media/military-drone-sightings-double-uk-government
Spyware maker is hijacking diplomatic efforts to limit commercial hacking, civil society warns
https://therecord.media/spyware-maker-pall-mall-process-reputation
2nd February – Threat Intelligence Report
https://research.checkpoint.com/2026/2nd-february-threat-intelligence-report/
Notepad++ hijacked by suspected state-sponsored hackers
https://therecord.media/popular-text-editor-hijacked-by-suspected-state-sponsored-hackers
Mutagen Astronomy: From Discovery to CISA Recognition—A Seven-Year Journey
https://blog.qualys.com/vulnerabilities-threat-research/2026/02/02/mutagen-astronomy-discovery-to-kev
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
Hackers attempt to extort parents after school refuses to pay ransom fee
https://therecord.media/hackers-attempt-to-extort-parents-after-school-refuses-ransom-demand
Drone sightings have doubled near UK military bases, warns British government
https://therecord.media/military-drone-sightings-double-uk-government
Spyware maker is hijacking diplomatic efforts to limit commercial hacking, civil society warns
https://therecord.media/spyware-maker-pall-mall-process-reputation
2nd February – Threat Intelligence Report
https://research.checkpoint.com/2026/2nd-february-threat-intelligence-report/
Notepad++ hijacked by suspected state-sponsored hackers
https://therecord.media/popular-text-editor-hijacked-by-suspected-state-sponsored-hackers
Mutagen Astronomy: From Discovery to CISA Recognition—A Seven-Year Journey
https://blog.qualys.com/vulnerabilities-threat-research/2026/02/02/mutagen-astronomy-discovery-to-kev
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
therecord.media
Hackers attempt to extort parents after school refuses to pay ransom fee
The attackers are believed to have gained access to the internal networks of OLV Pulhof, a secondary school in the Berchem district of Antwerp, shortly after the Christmas break.
Top Security News for Today
Exploiting CVE-2025-49825 (authentication bypass vulnerability in Teleport)
https://www.reddit.com/r/netsec/comments/1qumhwe/exploiting_cve202549825_authentication_bypass/
The Recent 0-Days in Node.js and React Were Found by an AI
https://www.reddit.com/r/netsec/comments/1quhyoj/the_recent_0days_in_nodejs_and_react_were_found/
SLasH-DSA: Breaking SLH-DSA Using an Extensible End-To-End Rowhammer Framework
https://arxiv.org/abs/2509.13048
Microsoft is Giving the FBI BitLocker Keys
https://www.schneier.com/blog/archives/2026/02/microsoft-is-giving-the-fbi-bitlocker-keys.html
Russian state hackers exploit new Microsoft Office flaw in attacks on Ukraine, EU
https://therecord.media/russian-state-hackers-exploit-new-microsoft-flaw
UK investigating first suspected breach of cyber sanctions
https://therecord.media/uk-investing-first-suspected-breach-cyber-sanctions
Fighting AI anomaly false-positives with firejail and proxychains
https://www.reddit.com/r/netsec/comments/1quws8d/fighting_ai_anomaly_falsepositives_with_firejail/
California city turns off Flock cameras after company shared data without authorization
https://therecord.media/california-city-turns-off-flock-cameras-unauthorized-sharing
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
Exploiting CVE-2025-49825 (authentication bypass vulnerability in Teleport)
https://www.reddit.com/r/netsec/comments/1qumhwe/exploiting_cve202549825_authentication_bypass/
The Recent 0-Days in Node.js and React Were Found by an AI
https://www.reddit.com/r/netsec/comments/1quhyoj/the_recent_0days_in_nodejs_and_react_were_found/
SLasH-DSA: Breaking SLH-DSA Using an Extensible End-To-End Rowhammer Framework
https://arxiv.org/abs/2509.13048
Microsoft is Giving the FBI BitLocker Keys
https://www.schneier.com/blog/archives/2026/02/microsoft-is-giving-the-fbi-bitlocker-keys.html
Russian state hackers exploit new Microsoft Office flaw in attacks on Ukraine, EU
https://therecord.media/russian-state-hackers-exploit-new-microsoft-flaw
UK investigating first suspected breach of cyber sanctions
https://therecord.media/uk-investing-first-suspected-breach-cyber-sanctions
Fighting AI anomaly false-positives with firejail and proxychains
https://www.reddit.com/r/netsec/comments/1quws8d/fighting_ai_anomaly_falsepositives_with_firejail/
California city turns off Flock cameras after company shared data without authorization
https://therecord.media/california-city-turns-off-flock-cameras-unauthorized-sharing
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
Reddit
From the netsec community on Reddit: Exploiting CVE-2025-49825 (authentication bypass vulnerability in Teleport)
Posted by gid0rah - 2 votes and 0 comments
Top Security News for Today
Predator spyware can turn off Apple indicators showing when microphone, camera are in use
https://therecord.media/predator-spyware-iphone-camera-microphone-indicators
Amaranth-Dragon: Weaponizing CVE-2025-8088 for Targeted Espionage in the Southeast Asia
https://research.checkpoint.com/2026/amaranth-dragon-weaponizes-cve-2025-8088-for-targeted-espionage/
US Declassifies Information on JUMPSEAT Spy Satellites
https://www.schneier.com/blog/archives/2026/02/us-declassifies-information-on-jumpseat-spy-satellites.html
Ukraine tightens controls on Starlink terminals to counter Russian drones
https://therecord.media/ukraine-tightens-starlink-controls-counter-russian-drones
Exclusive: US used cyber weapons to disrupt Iranian air defenses during 2025 strikes
https://therecord.media/iran-nuclear-cyber-strikes-us
Detecting backdoored language models at scale
https://www.microsoft.com/en-us/security/blog/2026/02/04/detecting-backdoored-language-models-at-scale/
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
Predator spyware can turn off Apple indicators showing when microphone, camera are in use
https://therecord.media/predator-spyware-iphone-camera-microphone-indicators
Amaranth-Dragon: Weaponizing CVE-2025-8088 for Targeted Espionage in the Southeast Asia
https://research.checkpoint.com/2026/amaranth-dragon-weaponizes-cve-2025-8088-for-targeted-espionage/
US Declassifies Information on JUMPSEAT Spy Satellites
https://www.schneier.com/blog/archives/2026/02/us-declassifies-information-on-jumpseat-spy-satellites.html
Ukraine tightens controls on Starlink terminals to counter Russian drones
https://therecord.media/ukraine-tightens-starlink-controls-counter-russian-drones
Exclusive: US used cyber weapons to disrupt Iranian air defenses during 2025 strikes
https://therecord.media/iran-nuclear-cyber-strikes-us
Detecting backdoored language models at scale
https://www.microsoft.com/en-us/security/blog/2026/02/04/detecting-backdoored-language-models-at-scale/
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
therecord.media
Research: Predator spyware can turn off Apple indicators showing when microphone, camera are in use
The new research from Jamf Threat Labs demonstrates how Predator spyware can stay hidden on targeted phones by “intercepting sensor activity” to hide the indicators.
Top Security News for Today
Backdoor in Notepad++
https://www.schneier.com/blog/archives/2026/02/backdoor-in-notepad.html
Researchers uncover vast cyberespionage operation targeting dozens of governments worldwide
https://therecord.media/research-cyber-espionage-targeting-dozens-worldwide
Italy blames Russia-linked hackers for cyberattacks ahead of Winter Olympics
https://therecord.media/italy-blames-russia-linked-hackers-winter-games-cyberattack
Substack warns customers of data breach following hacker’s dark web claims
https://therecord.media/substack-data-breach-notification
Russian hackers attacking European maritime and transport orgs using Microsoft Office exploit
https://therecord.media/russian-hackers-microsoft-office-europe
The security implementation gap: Why Microsoft is supporting Operation Winter SHIELD
https://www.microsoft.com/en-us/security/blog/2026/02/05/the-security-implementation-gap-why-microsoft-is-supporting-operation-winter-shield/
CISA gives federal agencies one year to rip out end-of-life devices
https://therecord.media/cisa-gives-federal-agencies-one-year-end-of-life-devices
New Clickfix variant ‘CrashFix’ deploying Python Remote Access Trojan
https://www.microsoft.com/en-us/security/blog/2026/02/05/clickfix-variant-crashfix-deploying-python-rat-trojan/
Get the Most from Testing Your Applications
https://bishopfox.com/blog/get-the-most-from-testing-your-applications
U.S. Public Sector Under Siege
https://www.trendmicro.com/en_us/research/26/b/us-public-sector-under-siege.html
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
Backdoor in Notepad++
https://www.schneier.com/blog/archives/2026/02/backdoor-in-notepad.html
Researchers uncover vast cyberespionage operation targeting dozens of governments worldwide
https://therecord.media/research-cyber-espionage-targeting-dozens-worldwide
Italy blames Russia-linked hackers for cyberattacks ahead of Winter Olympics
https://therecord.media/italy-blames-russia-linked-hackers-winter-games-cyberattack
Substack warns customers of data breach following hacker’s dark web claims
https://therecord.media/substack-data-breach-notification
Russian hackers attacking European maritime and transport orgs using Microsoft Office exploit
https://therecord.media/russian-hackers-microsoft-office-europe
The security implementation gap: Why Microsoft is supporting Operation Winter SHIELD
https://www.microsoft.com/en-us/security/blog/2026/02/05/the-security-implementation-gap-why-microsoft-is-supporting-operation-winter-shield/
CISA gives federal agencies one year to rip out end-of-life devices
https://therecord.media/cisa-gives-federal-agencies-one-year-end-of-life-devices
New Clickfix variant ‘CrashFix’ deploying Python Remote Access Trojan
https://www.microsoft.com/en-us/security/blog/2026/02/05/clickfix-variant-crashfix-deploying-python-rat-trojan/
Get the Most from Testing Your Applications
https://bishopfox.com/blog/get-the-most-from-testing-your-applications
U.S. Public Sector Under Siege
https://www.trendmicro.com/en_us/research/26/b/us-public-sector-under-siege.html
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
Schneier on Security
Backdoor in Notepad++ - Schneier on Security
Hackers associated with the Chinese government used a Trojaned version of Notepad++ to deliver malware to selected users. Notepad++ said that officials with the unnamed provider hosting the update infrastructure consulted with incident responders and found…
Top Security News for Today
iPhone Lockdown Mode Protects Washington Post Reporter
https://www.schneier.com/blog/archives/2026/02/iphone-lockdown-mode-protects-washington-post-reporter.html
Romania’s oil pipeline operator confirms cyberattack as hackers claim data theft
https://therecord.media/romania-conpet-oil-pipeline-ransomware-attack
Hacking a cheap Wi-Fi toy drone
https://www.reddit.com/r/netsec/comments/1qxawcm/hacking_a_cheap_wifi_toy_drone/
The RCE that AMD won't fix!
https://www.reddit.com/r/netsec/comments/1qxdzcu/the_rce_that_amd_wont_fix/
Illinois man pleads guilty to hacking hundreds of Snapchat accounts to steal nude photos
https://therecord.media/illinois-man-pleads-guilty-snapchat-nude-photo-hacks
Experiment demonstrates AI-generated identities bypassing KYC-based verification systems
https://www.reddit.com/r/netsec/comments/1qxdxjy/experiment_demonstrates_algenerated_identities/
EU threatens TikTok with massive fine over addictive design features
https://therecord.media/eu-threatens-tiktok-with-fine-over-addictive-features
NYC explores using AI cameras to spot subway fare evaders
https://therecord.media/nyc-explores-ai-cameras-fare-evaders-subway
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
iPhone Lockdown Mode Protects Washington Post Reporter
https://www.schneier.com/blog/archives/2026/02/iphone-lockdown-mode-protects-washington-post-reporter.html
Romania’s oil pipeline operator confirms cyberattack as hackers claim data theft
https://therecord.media/romania-conpet-oil-pipeline-ransomware-attack
Hacking a cheap Wi-Fi toy drone
https://www.reddit.com/r/netsec/comments/1qxawcm/hacking_a_cheap_wifi_toy_drone/
The RCE that AMD won't fix!
https://www.reddit.com/r/netsec/comments/1qxdzcu/the_rce_that_amd_wont_fix/
Illinois man pleads guilty to hacking hundreds of Snapchat accounts to steal nude photos
https://therecord.media/illinois-man-pleads-guilty-snapchat-nude-photo-hacks
Experiment demonstrates AI-generated identities bypassing KYC-based verification systems
https://www.reddit.com/r/netsec/comments/1qxdxjy/experiment_demonstrates_algenerated_identities/
EU threatens TikTok with massive fine over addictive design features
https://therecord.media/eu-threatens-tiktok-with-fine-over-addictive-features
NYC explores using AI cameras to spot subway fare evaders
https://therecord.media/nyc-explores-ai-cameras-fare-evaders-subway
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
Schneier on Security
iPhone Lockdown Mode Protects Washington Post Reporter - Schneier on Security
404Media is reporting that the FBI could not access a reporter’s iPhone because it had Lockdown Mode enabled: The court record shows what devices and data the FBI was able to ultimately access, and which devices it could not, after raiding the home of the…
Top Security News for Today
trappsec: open source framework for API deception
https://www.reddit.com/r/netsec/comments/1qyfxlw/trappsec_open_source_framework_for_api_deception/
New OSS secret scanner: Kingfisher (Rust) validates exposed creds + maps permissions
https://www.reddit.com/r/netsec/comments/1qyl3yf/new_oss_secret_scanner_kingfisher_rust_validates/
EDK2 UEFI program compiling issue
https://www.reddit.com/r/lowlevel/comments/1qyqdi3/edk2_uefi_program_compiling_issue/
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
trappsec: open source framework for API deception
https://www.reddit.com/r/netsec/comments/1qyfxlw/trappsec_open_source_framework_for_api_deception/
New OSS secret scanner: Kingfisher (Rust) validates exposed creds + maps permissions
https://www.reddit.com/r/netsec/comments/1qyl3yf/new_oss_secret_scanner_kingfisher_rust_validates/
EDK2 UEFI program compiling issue
https://www.reddit.com/r/lowlevel/comments/1qyqdi3/edk2_uefi_program_compiling_issue/
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
Reddit
From the netsec community on Reddit: trappsec: open source framework for API deception
Posted by nikhil-salgaonkar - 6 votes and 2 comments
Top Security News for Today
macOS Touch ID/Bio-metric kill switch like iPhone has - PanicLock
https://www.reddit.com/r/netsec/comments/1qz67d1/macos_touch_idbiometric_kill_switch_like_iphone/
Defense Evasion: The Service Run Failed Successfully
https://www.reddit.com/r/netsec/comments/1qza4lh/defense_evasion_the_service_run_failed/
OverTheWire Bandit: a complete walkthrough with in-depth explanations
https://www.reddit.com/r/netsec/comments/1qzau40/overthewire_bandit_a_complete_walkthrough_with/
Vouch: earn the right to submit a pull request
https://www.reddit.com/r/netsec/comments/1qzgm6r/vouch_earn_the_right_to_submit_a_pull_request/
klint - Linux Kernel Security Scanner
https://www.reddit.com/r/netsec/comments/1qzwqa7/klint_linux_kernel_security_scanner/
Identifying Adversary Tactics and Techniques in Malware Binaries with an LLM Agent
https://arxiv.org/abs/2602.06345
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
macOS Touch ID/Bio-metric kill switch like iPhone has - PanicLock
https://www.reddit.com/r/netsec/comments/1qz67d1/macos_touch_idbiometric_kill_switch_like_iphone/
Defense Evasion: The Service Run Failed Successfully
https://www.reddit.com/r/netsec/comments/1qza4lh/defense_evasion_the_service_run_failed/
OverTheWire Bandit: a complete walkthrough with in-depth explanations
https://www.reddit.com/r/netsec/comments/1qzau40/overthewire_bandit_a_complete_walkthrough_with/
Vouch: earn the right to submit a pull request
https://www.reddit.com/r/netsec/comments/1qzgm6r/vouch_earn_the_right_to_submit_a_pull_request/
klint - Linux Kernel Security Scanner
https://www.reddit.com/r/netsec/comments/1qzwqa7/klint_linux_kernel_security_scanner/
Identifying Adversary Tactics and Techniques in Malware Binaries with an LLM Agent
https://arxiv.org/abs/2602.06345
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
Reddit
From the netsec community on Reddit: macOS Touch ID/Bio-metric kill switch like iPhone has - PanicLock
Posted by seanieb - 4 votes and 1 comment
Top Security News for Today
Klint - Linux Kernel Security Scanner
https://www.reddit.com/r/netsec/comments/1qzwqa7/klint_linux_kernel_security_scanner/
Open Security Architecture - 15 new security patterns with NIST 800-53 mappings (free, CC BY-SA 4.0)
https://www.reddit.com/r/netsec/comments/1qzzxv2/open_security_architecture_15_new_security/
Suspected sabotage disrupts trains in northern Italy as Winter Games begin
https://therecord.media/italy-suspected-sabotage-winter-olympics-trains
LLMs are Getting a Lot Better and Faster at Finding and Exploiting Zero-Days
https://www.schneier.com/blog/archives/2026/02/llms-are-getting-a-lot-better-and-faster-at-finding-and-exploiting-zero-days.html
On the risk of destructive bricking attacks against OT devices (part 1)
https://www.reddit.com/r/netsec/comments/1r01the/on_the_risk_of_destructive_bricking_attacks/
Singapore says China-linked hackers targeted telecom providers in major spying campaign
https://therecord.media/singapore-attributes-telecoms-hacks-unc3886
9th February – Threat Intelligence Report
https://research.checkpoint.com/2026/9th-february-threat-intelligence-report/
EU, Dutch government announce hacks following Ivanti zero-days
https://therecord.media/eu-dutch-government-announce-hacks-ivanti-zero-days
Payment tech provider for Texas, Florida governments working with FBI to resolve ransomware attack
https://therecord.media/payment-tech-provider-texas-florida-govs-ransomware-attack
CVE-2026-2103 - Infor Syteline ERP - Keys Included: No Assembly Required
https://www.reddit.com/r/netsec/comments/1r05rb8/cve20262103_infor_syteline_erp_keys_included_no/
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
Klint - Linux Kernel Security Scanner
https://www.reddit.com/r/netsec/comments/1qzwqa7/klint_linux_kernel_security_scanner/
Open Security Architecture - 15 new security patterns with NIST 800-53 mappings (free, CC BY-SA 4.0)
https://www.reddit.com/r/netsec/comments/1qzzxv2/open_security_architecture_15_new_security/
Suspected sabotage disrupts trains in northern Italy as Winter Games begin
https://therecord.media/italy-suspected-sabotage-winter-olympics-trains
LLMs are Getting a Lot Better and Faster at Finding and Exploiting Zero-Days
https://www.schneier.com/blog/archives/2026/02/llms-are-getting-a-lot-better-and-faster-at-finding-and-exploiting-zero-days.html
On the risk of destructive bricking attacks against OT devices (part 1)
https://www.reddit.com/r/netsec/comments/1r01the/on_the_risk_of_destructive_bricking_attacks/
Singapore says China-linked hackers targeted telecom providers in major spying campaign
https://therecord.media/singapore-attributes-telecoms-hacks-unc3886
9th February – Threat Intelligence Report
https://research.checkpoint.com/2026/9th-february-threat-intelligence-report/
EU, Dutch government announce hacks following Ivanti zero-days
https://therecord.media/eu-dutch-government-announce-hacks-ivanti-zero-days
Payment tech provider for Texas, Florida governments working with FBI to resolve ransomware attack
https://therecord.media/payment-tech-provider-texas-florida-govs-ransomware-attack
CVE-2026-2103 - Infor Syteline ERP - Keys Included: No Assembly Required
https://www.reddit.com/r/netsec/comments/1r05rb8/cve20262103_infor_syteline_erp_keys_included_no/
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
Reddit
From the netsec community on Reddit: klint - Linux Kernel Security Scanner
Posted by Short_Radio_1450 - 4 votes and 0 comments
Top Security News for Today
Germany warns of state-linked phishing campaign targeting journalists, government officials
https://therecord.media/germany-warns-phishing-campaign-signal-gov-officials-journalists
Chinese crypto scammer sentenced in absentia to 20 years after fleeing US
https://therecord.media/chinese-crypto-scammer-sentenced-after-fleeing-us
North Korean hackers targeted crypto exec with fake Zoom meeting, ClickFix scam
https://therecord.media/north-korean-hackers-targeted-crypto-exec-clickfix
Manipulating AI memory for profit: The rise of AI Recommendation Poisoning
https://www.microsoft.com/en-us/security/blog/2026/02/10/ai-recommendation-poisoning/
LOTUSLITE: Targeted espionage leveraging geopolitical themes
https://www.reddit.com/r/netsec/comments/1r17r76/lotuslite_targeted_espionage_leveraging/
Adbleed: partially de-anonymizing VPN users with adblock filter lists
https://www.reddit.com/r/netsec/comments/1r14rlh/adbleed_partially_deanonymizing_vpn_users_with/
Microsoft Patch Tuesday, February 2026 Security Update Review
https://blog.qualys.com/vulnerabilities-threat-research/2026/02/10/microsoft-patch-tuesday-february-2026-security-update-review
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
Germany warns of state-linked phishing campaign targeting journalists, government officials
https://therecord.media/germany-warns-phishing-campaign-signal-gov-officials-journalists
Chinese crypto scammer sentenced in absentia to 20 years after fleeing US
https://therecord.media/chinese-crypto-scammer-sentenced-after-fleeing-us
North Korean hackers targeted crypto exec with fake Zoom meeting, ClickFix scam
https://therecord.media/north-korean-hackers-targeted-crypto-exec-clickfix
Manipulating AI memory for profit: The rise of AI Recommendation Poisoning
https://www.microsoft.com/en-us/security/blog/2026/02/10/ai-recommendation-poisoning/
LOTUSLITE: Targeted espionage leveraging geopolitical themes
https://www.reddit.com/r/netsec/comments/1r17r76/lotuslite_targeted_espionage_leveraging/
Adbleed: partially de-anonymizing VPN users with adblock filter lists
https://www.reddit.com/r/netsec/comments/1r14rlh/adbleed_partially_deanonymizing_vpn_users_with/
Microsoft Patch Tuesday, February 2026 Security Update Review
https://blog.qualys.com/vulnerabilities-threat-research/2026/02/10/microsoft-patch-tuesday-february-2026-security-update-review
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
therecord.media
Germany warns of state-linked phishing campaign targeting journalists, government officials
In a joint advisory issued late last week, Germany’s domestic intelligence agency (BfV) and federal cybersecurity office (BSI) said attackers are attempting to gain access to private messaging accounts in order to monitor confidential communications and potentially…
Top Security News for Today
Georgia healthcare company data breach impacts more than 620,000
https://therecord.media/georgia-healthcare-company-data-breach-impacts-620000
Spam and phishing in 2025
https://securelist.com/spam-and-phishing-report-2025/118785/
Prompt Injection Via Road Signs
https://www.schneier.com/blog/archives/2026/02/prompt-injection-via-road-signs.html
The game is over: when “free” comes at too high a price. What we know about RenEngine
https://securelist.com/renengine-campaign-with-hijackloader-lumma-and-acr-stealer/118891/
Entropy-Based Evidence for Bitcoin's Discrete Time Mechanism
https://arxiv.org/abs/2602.09027
Non-existence of Information-Geometric Fermat Structures: Violation of Dual Lattice Consistency in Statistical Manifolds with $L^n$ Structure
https://arxiv.org/abs/2602.09028
Scaling GraphLLM with Bilevel-Optimized Sparse Querying
https://arxiv.org/abs/2602.09029
The strategic SIEM buyer’s guide: Choosing an AI-ready platform for the agentic era
https://www.microsoft.com/en-us/security/blog/2026/02/11/the-strategic-siem-buyers-guide-choosing-an-ai-ready-platform-for-the-agentic-era/
Microsoft's Notepad Got Pwned (CVE-2026-20841)
https://www.reddit.com/r/netsec/comments/1r2n8rk/microsofts_notepad_got_pwned_cve202620841/
40 state AGs warn House KOSA bill falls short of protecting children online
https://therecord.media/40-state-ags-warn-house-kosa-bill-falls-short
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
Georgia healthcare company data breach impacts more than 620,000
https://therecord.media/georgia-healthcare-company-data-breach-impacts-620000
Spam and phishing in 2025
https://securelist.com/spam-and-phishing-report-2025/118785/
Prompt Injection Via Road Signs
https://www.schneier.com/blog/archives/2026/02/prompt-injection-via-road-signs.html
The game is over: when “free” comes at too high a price. What we know about RenEngine
https://securelist.com/renengine-campaign-with-hijackloader-lumma-and-acr-stealer/118891/
Entropy-Based Evidence for Bitcoin's Discrete Time Mechanism
https://arxiv.org/abs/2602.09027
Non-existence of Information-Geometric Fermat Structures: Violation of Dual Lattice Consistency in Statistical Manifolds with $L^n$ Structure
https://arxiv.org/abs/2602.09028
Scaling GraphLLM with Bilevel-Optimized Sparse Querying
https://arxiv.org/abs/2602.09029
The strategic SIEM buyer’s guide: Choosing an AI-ready platform for the agentic era
https://www.microsoft.com/en-us/security/blog/2026/02/11/the-strategic-siem-buyers-guide-choosing-an-ai-ready-platform-for-the-agentic-era/
Microsoft's Notepad Got Pwned (CVE-2026-20841)
https://www.reddit.com/r/netsec/comments/1r2n8rk/microsofts_notepad_got_pwned_cve202620841/
40 state AGs warn House KOSA bill falls short of protecting children online
https://therecord.media/40-state-ags-warn-house-kosa-bill-falls-short
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
therecord.media
Georgia healthcare company data breach impacts more than 620,000
The company told victims in September about the breach, and said an investigation revealed hackers were in ApolloMD’s IT environment between May 22 and May 23.
Top Security News for Today
Dutch police arrest 21-year-old for alleged involvement in JokerOTP password stealer
https://therecord.media/dutch-police-arrest-man-over-jokerotp-password-stealer
US wants cyber partnerships to send ‘coordinated, strategic message’ to adversaries
https://therecord.media/us-wants-cyber-partnerships-to-send-message-to-adversaries
California fines Disney $2.75 million for data privacy violations
https://therecord.media/california-fines-disney-data-privacy
WhatsApp says Russia tried to fully block platform, push users to state app
https://therecord.media/whatsapp-russia-blocked-state
Nation-state hackers ramping up use of Gemini for target reconnaissance, malware coding
https://therecord.media/nation-state-hackers-using-gemini-for-malicious-campaigns
Critical RCE Vulnerability in Unstructured.io (CVE-2025–64712) - CVSS 9.8
https://www.reddit.com/r/netsec/comments/1r35ydb/critical_rce_vulnerability_in_unstructuredio/
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
Dutch police arrest 21-year-old for alleged involvement in JokerOTP password stealer
https://therecord.media/dutch-police-arrest-man-over-jokerotp-password-stealer
US wants cyber partnerships to send ‘coordinated, strategic message’ to adversaries
https://therecord.media/us-wants-cyber-partnerships-to-send-message-to-adversaries
California fines Disney $2.75 million for data privacy violations
https://therecord.media/california-fines-disney-data-privacy
WhatsApp says Russia tried to fully block platform, push users to state app
https://therecord.media/whatsapp-russia-blocked-state
Nation-state hackers ramping up use of Gemini for target reconnaissance, malware coding
https://therecord.media/nation-state-hackers-using-gemini-for-malicious-campaigns
Critical RCE Vulnerability in Unstructured.io (CVE-2025–64712) - CVSS 9.8
https://www.reddit.com/r/netsec/comments/1r35ydb/critical_rce_vulnerability_in_unstructuredio/
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
therecord.media
Dutch police arrest 21-year-old for alleged involvement in JokerOTP password stealer
The Dordrecht native was detained on Tuesday by police in East Brabant on accusations he distributed a bot called JokerOTP, which is used widely by cybercriminals to intercept the codes delivered by many platforms as part of multi-factor authentication sign…
Top Security News for Today
Pwning Supercomputers - A 20yo vulnerability in Munge
https://www.reddit.com/r/netsec/comments/1r3kavf/pwning_supercomputers_a_20yo_vulnerability_in/
Europe must adapt to ‘permanent’ cyber and hybrid threats, Sweden warns
https://therecord.media/sweden-cyber-threats-europe-permanent
US needs to impose ‘real costs’ on bad actors, State Department cyber official says
https://therecord.media/usa-cyber-actors-consequences
CISA orders federal agencies to patch exploited SolarWinds, Apple, Microsoft bugs within weeks
https://therecord.media/cisa-orders-federal-agencies-to-patch-solarwinds-microsoft-apple-bugs
Estonia spy chief calls on Europe to invest in its own offensive cyber capabilities
https://therecord.media/estonia-spy-chief-calls-on-europe-to-invest-in-own-offense
Brutus: Open-source credential testing tool for offensive security
https://www.reddit.com/r/netsec/comments/1r3s9wo/brutus_opensource_credential_testing_tool_for/
China may be rehearsing a digital siege, Taiwan warns
https://therecord.media/china-taiwan-digital-siege-munich
NATO must impose costs on Russia, China over cyber and hybrid attacks, says deputy chief
https://therecord.media/nato-must-impost-costs-russia-china-cyber-hybrid-deputy-secretary
EU can’t be ‘naive’ about enemies shutting down critical infrastructure, warns tech official
https://therecord.media/eu-cyber-critical-infrastructure-tech
Space emerges as new front in great power competition, officials warn
https://therecord.media/space-cybersecurity-new-front-war
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
Pwning Supercomputers - A 20yo vulnerability in Munge
https://www.reddit.com/r/netsec/comments/1r3kavf/pwning_supercomputers_a_20yo_vulnerability_in/
Europe must adapt to ‘permanent’ cyber and hybrid threats, Sweden warns
https://therecord.media/sweden-cyber-threats-europe-permanent
US needs to impose ‘real costs’ on bad actors, State Department cyber official says
https://therecord.media/usa-cyber-actors-consequences
CISA orders federal agencies to patch exploited SolarWinds, Apple, Microsoft bugs within weeks
https://therecord.media/cisa-orders-federal-agencies-to-patch-solarwinds-microsoft-apple-bugs
Estonia spy chief calls on Europe to invest in its own offensive cyber capabilities
https://therecord.media/estonia-spy-chief-calls-on-europe-to-invest-in-own-offense
Brutus: Open-source credential testing tool for offensive security
https://www.reddit.com/r/netsec/comments/1r3s9wo/brutus_opensource_credential_testing_tool_for/
China may be rehearsing a digital siege, Taiwan warns
https://therecord.media/china-taiwan-digital-siege-munich
NATO must impose costs on Russia, China over cyber and hybrid attacks, says deputy chief
https://therecord.media/nato-must-impost-costs-russia-china-cyber-hybrid-deputy-secretary
EU can’t be ‘naive’ about enemies shutting down critical infrastructure, warns tech official
https://therecord.media/eu-cyber-critical-infrastructure-tech
Space emerges as new front in great power competition, officials warn
https://therecord.media/space-cybersecurity-new-front-war
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
Reddit
From the netsec community on Reddit: Pwning Supercomputers - A 20yo vulnerability in Munge
Explore this post and more from the netsec community
Top Security News for Today
Hacking a pharmacy to get free prescription drugs and more
https://www.reddit.com/r/netsec/comments/1r4kmv7/hacking_a_pharmacy_to_get_free_prescription_drugs/
I’m building graph-based compliance risk engine, looking for honest feedback
https://www.reddit.com/r/netsec/comments/1r4nud6/im_building_graphbased_compliance_risk_engine/
Upcoming Speaking Engagements
https://www.schneier.com/blog/archives/2026/02/upcoming-speaking-engagements-53.html
Abuse-prevention design: using IP reputation as one signal in signup defense-in-depth
https://www.reddit.com/r/netsec/comments/1r4qcry/abuseprevention_design_using_ip_reputation_as_one/
Cloudflare Pages “Continue Read” Redirect Kit Abused for Phishing, Adware, and Malware Delivery
https://www.reddit.com/r/netsec/comments/1r4u08r/cloudflare_pages_continue_read_redirect_kit/
First Ever OffSec USA Chapter Meetup - DMV Area!
https://www.reddit.com/r/netsec/comments/1r51491/first_ever_offsec_usa_chapter_meetup_dmv_area/
Introducing IDA-Free-MCP: mcp server for IDA Free version (native)
https://www.reddit.com/r/netsec/comments/1r57sow/introducing_idafreemcp_mcp_server_for_ida_free/
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
Hacking a pharmacy to get free prescription drugs and more
https://www.reddit.com/r/netsec/comments/1r4kmv7/hacking_a_pharmacy_to_get_free_prescription_drugs/
I’m building graph-based compliance risk engine, looking for honest feedback
https://www.reddit.com/r/netsec/comments/1r4nud6/im_building_graphbased_compliance_risk_engine/
Upcoming Speaking Engagements
https://www.schneier.com/blog/archives/2026/02/upcoming-speaking-engagements-53.html
Abuse-prevention design: using IP reputation as one signal in signup defense-in-depth
https://www.reddit.com/r/netsec/comments/1r4qcry/abuseprevention_design_using_ip_reputation_as_one/
Cloudflare Pages “Continue Read” Redirect Kit Abused for Phishing, Adware, and Malware Delivery
https://www.reddit.com/r/netsec/comments/1r4u08r/cloudflare_pages_continue_read_redirect_kit/
First Ever OffSec USA Chapter Meetup - DMV Area!
https://www.reddit.com/r/netsec/comments/1r51491/first_ever_offsec_usa_chapter_meetup_dmv_area/
Introducing IDA-Free-MCP: mcp server for IDA Free version (native)
https://www.reddit.com/r/netsec/comments/1r57sow/introducing_idafreemcp_mcp_server_for_ida_free/
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
Reddit
From the netsec community on Reddit: Hacking a pharmacy to get free prescription drugs and more
Explore this post and more from the netsec community