Top Security News for Today
Predator spyware can turn off Apple indicators showing when microphone, camera are in use
https://therecord.media/predator-spyware-iphone-camera-microphone-indicators
Amaranth-Dragon: Weaponizing CVE-2025-8088 for Targeted Espionage in the Southeast Asia
https://research.checkpoint.com/2026/amaranth-dragon-weaponizes-cve-2025-8088-for-targeted-espionage/
US Declassifies Information on JUMPSEAT Spy Satellites
https://www.schneier.com/blog/archives/2026/02/us-declassifies-information-on-jumpseat-spy-satellites.html
Ukraine tightens controls on Starlink terminals to counter Russian drones
https://therecord.media/ukraine-tightens-starlink-controls-counter-russian-drones
Exclusive: US used cyber weapons to disrupt Iranian air defenses during 2025 strikes
https://therecord.media/iran-nuclear-cyber-strikes-us
Detecting backdoored language models at scale
https://www.microsoft.com/en-us/security/blog/2026/02/04/detecting-backdoored-language-models-at-scale/
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
Predator spyware can turn off Apple indicators showing when microphone, camera are in use
https://therecord.media/predator-spyware-iphone-camera-microphone-indicators
Amaranth-Dragon: Weaponizing CVE-2025-8088 for Targeted Espionage in the Southeast Asia
https://research.checkpoint.com/2026/amaranth-dragon-weaponizes-cve-2025-8088-for-targeted-espionage/
US Declassifies Information on JUMPSEAT Spy Satellites
https://www.schneier.com/blog/archives/2026/02/us-declassifies-information-on-jumpseat-spy-satellites.html
Ukraine tightens controls on Starlink terminals to counter Russian drones
https://therecord.media/ukraine-tightens-starlink-controls-counter-russian-drones
Exclusive: US used cyber weapons to disrupt Iranian air defenses during 2025 strikes
https://therecord.media/iran-nuclear-cyber-strikes-us
Detecting backdoored language models at scale
https://www.microsoft.com/en-us/security/blog/2026/02/04/detecting-backdoored-language-models-at-scale/
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
therecord.media
Research: Predator spyware can turn off Apple indicators showing when microphone, camera are in use
The new research from Jamf Threat Labs demonstrates how Predator spyware can stay hidden on targeted phones by “intercepting sensor activity” to hide the indicators.
Top Security News for Today
Backdoor in Notepad++
https://www.schneier.com/blog/archives/2026/02/backdoor-in-notepad.html
Researchers uncover vast cyberespionage operation targeting dozens of governments worldwide
https://therecord.media/research-cyber-espionage-targeting-dozens-worldwide
Italy blames Russia-linked hackers for cyberattacks ahead of Winter Olympics
https://therecord.media/italy-blames-russia-linked-hackers-winter-games-cyberattack
Substack warns customers of data breach following hacker’s dark web claims
https://therecord.media/substack-data-breach-notification
Russian hackers attacking European maritime and transport orgs using Microsoft Office exploit
https://therecord.media/russian-hackers-microsoft-office-europe
The security implementation gap: Why Microsoft is supporting Operation Winter SHIELD
https://www.microsoft.com/en-us/security/blog/2026/02/05/the-security-implementation-gap-why-microsoft-is-supporting-operation-winter-shield/
CISA gives federal agencies one year to rip out end-of-life devices
https://therecord.media/cisa-gives-federal-agencies-one-year-end-of-life-devices
New Clickfix variant ‘CrashFix’ deploying Python Remote Access Trojan
https://www.microsoft.com/en-us/security/blog/2026/02/05/clickfix-variant-crashfix-deploying-python-rat-trojan/
Get the Most from Testing Your Applications
https://bishopfox.com/blog/get-the-most-from-testing-your-applications
U.S. Public Sector Under Siege
https://www.trendmicro.com/en_us/research/26/b/us-public-sector-under-siege.html
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
Backdoor in Notepad++
https://www.schneier.com/blog/archives/2026/02/backdoor-in-notepad.html
Researchers uncover vast cyberespionage operation targeting dozens of governments worldwide
https://therecord.media/research-cyber-espionage-targeting-dozens-worldwide
Italy blames Russia-linked hackers for cyberattacks ahead of Winter Olympics
https://therecord.media/italy-blames-russia-linked-hackers-winter-games-cyberattack
Substack warns customers of data breach following hacker’s dark web claims
https://therecord.media/substack-data-breach-notification
Russian hackers attacking European maritime and transport orgs using Microsoft Office exploit
https://therecord.media/russian-hackers-microsoft-office-europe
The security implementation gap: Why Microsoft is supporting Operation Winter SHIELD
https://www.microsoft.com/en-us/security/blog/2026/02/05/the-security-implementation-gap-why-microsoft-is-supporting-operation-winter-shield/
CISA gives federal agencies one year to rip out end-of-life devices
https://therecord.media/cisa-gives-federal-agencies-one-year-end-of-life-devices
New Clickfix variant ‘CrashFix’ deploying Python Remote Access Trojan
https://www.microsoft.com/en-us/security/blog/2026/02/05/clickfix-variant-crashfix-deploying-python-rat-trojan/
Get the Most from Testing Your Applications
https://bishopfox.com/blog/get-the-most-from-testing-your-applications
U.S. Public Sector Under Siege
https://www.trendmicro.com/en_us/research/26/b/us-public-sector-under-siege.html
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
Schneier on Security
Backdoor in Notepad++ - Schneier on Security
Hackers associated with the Chinese government used a Trojaned version of Notepad++ to deliver malware to selected users. Notepad++ said that officials with the unnamed provider hosting the update infrastructure consulted with incident responders and found…
Top Security News for Today
iPhone Lockdown Mode Protects Washington Post Reporter
https://www.schneier.com/blog/archives/2026/02/iphone-lockdown-mode-protects-washington-post-reporter.html
Romania’s oil pipeline operator confirms cyberattack as hackers claim data theft
https://therecord.media/romania-conpet-oil-pipeline-ransomware-attack
Hacking a cheap Wi-Fi toy drone
https://www.reddit.com/r/netsec/comments/1qxawcm/hacking_a_cheap_wifi_toy_drone/
The RCE that AMD won't fix!
https://www.reddit.com/r/netsec/comments/1qxdzcu/the_rce_that_amd_wont_fix/
Illinois man pleads guilty to hacking hundreds of Snapchat accounts to steal nude photos
https://therecord.media/illinois-man-pleads-guilty-snapchat-nude-photo-hacks
Experiment demonstrates AI-generated identities bypassing KYC-based verification systems
https://www.reddit.com/r/netsec/comments/1qxdxjy/experiment_demonstrates_algenerated_identities/
EU threatens TikTok with massive fine over addictive design features
https://therecord.media/eu-threatens-tiktok-with-fine-over-addictive-features
NYC explores using AI cameras to spot subway fare evaders
https://therecord.media/nyc-explores-ai-cameras-fare-evaders-subway
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
iPhone Lockdown Mode Protects Washington Post Reporter
https://www.schneier.com/blog/archives/2026/02/iphone-lockdown-mode-protects-washington-post-reporter.html
Romania’s oil pipeline operator confirms cyberattack as hackers claim data theft
https://therecord.media/romania-conpet-oil-pipeline-ransomware-attack
Hacking a cheap Wi-Fi toy drone
https://www.reddit.com/r/netsec/comments/1qxawcm/hacking_a_cheap_wifi_toy_drone/
The RCE that AMD won't fix!
https://www.reddit.com/r/netsec/comments/1qxdzcu/the_rce_that_amd_wont_fix/
Illinois man pleads guilty to hacking hundreds of Snapchat accounts to steal nude photos
https://therecord.media/illinois-man-pleads-guilty-snapchat-nude-photo-hacks
Experiment demonstrates AI-generated identities bypassing KYC-based verification systems
https://www.reddit.com/r/netsec/comments/1qxdxjy/experiment_demonstrates_algenerated_identities/
EU threatens TikTok with massive fine over addictive design features
https://therecord.media/eu-threatens-tiktok-with-fine-over-addictive-features
NYC explores using AI cameras to spot subway fare evaders
https://therecord.media/nyc-explores-ai-cameras-fare-evaders-subway
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
Schneier on Security
iPhone Lockdown Mode Protects Washington Post Reporter - Schneier on Security
404Media is reporting that the FBI could not access a reporter’s iPhone because it had Lockdown Mode enabled: The court record shows what devices and data the FBI was able to ultimately access, and which devices it could not, after raiding the home of the…
Top Security News for Today
trappsec: open source framework for API deception
https://www.reddit.com/r/netsec/comments/1qyfxlw/trappsec_open_source_framework_for_api_deception/
New OSS secret scanner: Kingfisher (Rust) validates exposed creds + maps permissions
https://www.reddit.com/r/netsec/comments/1qyl3yf/new_oss_secret_scanner_kingfisher_rust_validates/
EDK2 UEFI program compiling issue
https://www.reddit.com/r/lowlevel/comments/1qyqdi3/edk2_uefi_program_compiling_issue/
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
trappsec: open source framework for API deception
https://www.reddit.com/r/netsec/comments/1qyfxlw/trappsec_open_source_framework_for_api_deception/
New OSS secret scanner: Kingfisher (Rust) validates exposed creds + maps permissions
https://www.reddit.com/r/netsec/comments/1qyl3yf/new_oss_secret_scanner_kingfisher_rust_validates/
EDK2 UEFI program compiling issue
https://www.reddit.com/r/lowlevel/comments/1qyqdi3/edk2_uefi_program_compiling_issue/
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
Reddit
From the netsec community on Reddit: trappsec: open source framework for API deception
Posted by nikhil-salgaonkar - 6 votes and 2 comments
Top Security News for Today
macOS Touch ID/Bio-metric kill switch like iPhone has - PanicLock
https://www.reddit.com/r/netsec/comments/1qz67d1/macos_touch_idbiometric_kill_switch_like_iphone/
Defense Evasion: The Service Run Failed Successfully
https://www.reddit.com/r/netsec/comments/1qza4lh/defense_evasion_the_service_run_failed/
OverTheWire Bandit: a complete walkthrough with in-depth explanations
https://www.reddit.com/r/netsec/comments/1qzau40/overthewire_bandit_a_complete_walkthrough_with/
Vouch: earn the right to submit a pull request
https://www.reddit.com/r/netsec/comments/1qzgm6r/vouch_earn_the_right_to_submit_a_pull_request/
klint - Linux Kernel Security Scanner
https://www.reddit.com/r/netsec/comments/1qzwqa7/klint_linux_kernel_security_scanner/
Identifying Adversary Tactics and Techniques in Malware Binaries with an LLM Agent
https://arxiv.org/abs/2602.06345
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
macOS Touch ID/Bio-metric kill switch like iPhone has - PanicLock
https://www.reddit.com/r/netsec/comments/1qz67d1/macos_touch_idbiometric_kill_switch_like_iphone/
Defense Evasion: The Service Run Failed Successfully
https://www.reddit.com/r/netsec/comments/1qza4lh/defense_evasion_the_service_run_failed/
OverTheWire Bandit: a complete walkthrough with in-depth explanations
https://www.reddit.com/r/netsec/comments/1qzau40/overthewire_bandit_a_complete_walkthrough_with/
Vouch: earn the right to submit a pull request
https://www.reddit.com/r/netsec/comments/1qzgm6r/vouch_earn_the_right_to_submit_a_pull_request/
klint - Linux Kernel Security Scanner
https://www.reddit.com/r/netsec/comments/1qzwqa7/klint_linux_kernel_security_scanner/
Identifying Adversary Tactics and Techniques in Malware Binaries with an LLM Agent
https://arxiv.org/abs/2602.06345
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
Reddit
From the netsec community on Reddit: macOS Touch ID/Bio-metric kill switch like iPhone has - PanicLock
Posted by seanieb - 4 votes and 1 comment
Top Security News for Today
Klint - Linux Kernel Security Scanner
https://www.reddit.com/r/netsec/comments/1qzwqa7/klint_linux_kernel_security_scanner/
Open Security Architecture - 15 new security patterns with NIST 800-53 mappings (free, CC BY-SA 4.0)
https://www.reddit.com/r/netsec/comments/1qzzxv2/open_security_architecture_15_new_security/
Suspected sabotage disrupts trains in northern Italy as Winter Games begin
https://therecord.media/italy-suspected-sabotage-winter-olympics-trains
LLMs are Getting a Lot Better and Faster at Finding and Exploiting Zero-Days
https://www.schneier.com/blog/archives/2026/02/llms-are-getting-a-lot-better-and-faster-at-finding-and-exploiting-zero-days.html
On the risk of destructive bricking attacks against OT devices (part 1)
https://www.reddit.com/r/netsec/comments/1r01the/on_the_risk_of_destructive_bricking_attacks/
Singapore says China-linked hackers targeted telecom providers in major spying campaign
https://therecord.media/singapore-attributes-telecoms-hacks-unc3886
9th February – Threat Intelligence Report
https://research.checkpoint.com/2026/9th-february-threat-intelligence-report/
EU, Dutch government announce hacks following Ivanti zero-days
https://therecord.media/eu-dutch-government-announce-hacks-ivanti-zero-days
Payment tech provider for Texas, Florida governments working with FBI to resolve ransomware attack
https://therecord.media/payment-tech-provider-texas-florida-govs-ransomware-attack
CVE-2026-2103 - Infor Syteline ERP - Keys Included: No Assembly Required
https://www.reddit.com/r/netsec/comments/1r05rb8/cve20262103_infor_syteline_erp_keys_included_no/
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
Klint - Linux Kernel Security Scanner
https://www.reddit.com/r/netsec/comments/1qzwqa7/klint_linux_kernel_security_scanner/
Open Security Architecture - 15 new security patterns with NIST 800-53 mappings (free, CC BY-SA 4.0)
https://www.reddit.com/r/netsec/comments/1qzzxv2/open_security_architecture_15_new_security/
Suspected sabotage disrupts trains in northern Italy as Winter Games begin
https://therecord.media/italy-suspected-sabotage-winter-olympics-trains
LLMs are Getting a Lot Better and Faster at Finding and Exploiting Zero-Days
https://www.schneier.com/blog/archives/2026/02/llms-are-getting-a-lot-better-and-faster-at-finding-and-exploiting-zero-days.html
On the risk of destructive bricking attacks against OT devices (part 1)
https://www.reddit.com/r/netsec/comments/1r01the/on_the_risk_of_destructive_bricking_attacks/
Singapore says China-linked hackers targeted telecom providers in major spying campaign
https://therecord.media/singapore-attributes-telecoms-hacks-unc3886
9th February – Threat Intelligence Report
https://research.checkpoint.com/2026/9th-february-threat-intelligence-report/
EU, Dutch government announce hacks following Ivanti zero-days
https://therecord.media/eu-dutch-government-announce-hacks-ivanti-zero-days
Payment tech provider for Texas, Florida governments working with FBI to resolve ransomware attack
https://therecord.media/payment-tech-provider-texas-florida-govs-ransomware-attack
CVE-2026-2103 - Infor Syteline ERP - Keys Included: No Assembly Required
https://www.reddit.com/r/netsec/comments/1r05rb8/cve20262103_infor_syteline_erp_keys_included_no/
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
Reddit
From the netsec community on Reddit: klint - Linux Kernel Security Scanner
Posted by Short_Radio_1450 - 4 votes and 0 comments
Top Security News for Today
Germany warns of state-linked phishing campaign targeting journalists, government officials
https://therecord.media/germany-warns-phishing-campaign-signal-gov-officials-journalists
Chinese crypto scammer sentenced in absentia to 20 years after fleeing US
https://therecord.media/chinese-crypto-scammer-sentenced-after-fleeing-us
North Korean hackers targeted crypto exec with fake Zoom meeting, ClickFix scam
https://therecord.media/north-korean-hackers-targeted-crypto-exec-clickfix
Manipulating AI memory for profit: The rise of AI Recommendation Poisoning
https://www.microsoft.com/en-us/security/blog/2026/02/10/ai-recommendation-poisoning/
LOTUSLITE: Targeted espionage leveraging geopolitical themes
https://www.reddit.com/r/netsec/comments/1r17r76/lotuslite_targeted_espionage_leveraging/
Adbleed: partially de-anonymizing VPN users with adblock filter lists
https://www.reddit.com/r/netsec/comments/1r14rlh/adbleed_partially_deanonymizing_vpn_users_with/
Microsoft Patch Tuesday, February 2026 Security Update Review
https://blog.qualys.com/vulnerabilities-threat-research/2026/02/10/microsoft-patch-tuesday-february-2026-security-update-review
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
Germany warns of state-linked phishing campaign targeting journalists, government officials
https://therecord.media/germany-warns-phishing-campaign-signal-gov-officials-journalists
Chinese crypto scammer sentenced in absentia to 20 years after fleeing US
https://therecord.media/chinese-crypto-scammer-sentenced-after-fleeing-us
North Korean hackers targeted crypto exec with fake Zoom meeting, ClickFix scam
https://therecord.media/north-korean-hackers-targeted-crypto-exec-clickfix
Manipulating AI memory for profit: The rise of AI Recommendation Poisoning
https://www.microsoft.com/en-us/security/blog/2026/02/10/ai-recommendation-poisoning/
LOTUSLITE: Targeted espionage leveraging geopolitical themes
https://www.reddit.com/r/netsec/comments/1r17r76/lotuslite_targeted_espionage_leveraging/
Adbleed: partially de-anonymizing VPN users with adblock filter lists
https://www.reddit.com/r/netsec/comments/1r14rlh/adbleed_partially_deanonymizing_vpn_users_with/
Microsoft Patch Tuesday, February 2026 Security Update Review
https://blog.qualys.com/vulnerabilities-threat-research/2026/02/10/microsoft-patch-tuesday-february-2026-security-update-review
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
therecord.media
Germany warns of state-linked phishing campaign targeting journalists, government officials
In a joint advisory issued late last week, Germany’s domestic intelligence agency (BfV) and federal cybersecurity office (BSI) said attackers are attempting to gain access to private messaging accounts in order to monitor confidential communications and potentially…
Top Security News for Today
Georgia healthcare company data breach impacts more than 620,000
https://therecord.media/georgia-healthcare-company-data-breach-impacts-620000
Spam and phishing in 2025
https://securelist.com/spam-and-phishing-report-2025/118785/
Prompt Injection Via Road Signs
https://www.schneier.com/blog/archives/2026/02/prompt-injection-via-road-signs.html
The game is over: when “free” comes at too high a price. What we know about RenEngine
https://securelist.com/renengine-campaign-with-hijackloader-lumma-and-acr-stealer/118891/
Entropy-Based Evidence for Bitcoin's Discrete Time Mechanism
https://arxiv.org/abs/2602.09027
Non-existence of Information-Geometric Fermat Structures: Violation of Dual Lattice Consistency in Statistical Manifolds with $L^n$ Structure
https://arxiv.org/abs/2602.09028
Scaling GraphLLM with Bilevel-Optimized Sparse Querying
https://arxiv.org/abs/2602.09029
The strategic SIEM buyer’s guide: Choosing an AI-ready platform for the agentic era
https://www.microsoft.com/en-us/security/blog/2026/02/11/the-strategic-siem-buyers-guide-choosing-an-ai-ready-platform-for-the-agentic-era/
Microsoft's Notepad Got Pwned (CVE-2026-20841)
https://www.reddit.com/r/netsec/comments/1r2n8rk/microsofts_notepad_got_pwned_cve202620841/
40 state AGs warn House KOSA bill falls short of protecting children online
https://therecord.media/40-state-ags-warn-house-kosa-bill-falls-short
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
Georgia healthcare company data breach impacts more than 620,000
https://therecord.media/georgia-healthcare-company-data-breach-impacts-620000
Spam and phishing in 2025
https://securelist.com/spam-and-phishing-report-2025/118785/
Prompt Injection Via Road Signs
https://www.schneier.com/blog/archives/2026/02/prompt-injection-via-road-signs.html
The game is over: when “free” comes at too high a price. What we know about RenEngine
https://securelist.com/renengine-campaign-with-hijackloader-lumma-and-acr-stealer/118891/
Entropy-Based Evidence for Bitcoin's Discrete Time Mechanism
https://arxiv.org/abs/2602.09027
Non-existence of Information-Geometric Fermat Structures: Violation of Dual Lattice Consistency in Statistical Manifolds with $L^n$ Structure
https://arxiv.org/abs/2602.09028
Scaling GraphLLM with Bilevel-Optimized Sparse Querying
https://arxiv.org/abs/2602.09029
The strategic SIEM buyer’s guide: Choosing an AI-ready platform for the agentic era
https://www.microsoft.com/en-us/security/blog/2026/02/11/the-strategic-siem-buyers-guide-choosing-an-ai-ready-platform-for-the-agentic-era/
Microsoft's Notepad Got Pwned (CVE-2026-20841)
https://www.reddit.com/r/netsec/comments/1r2n8rk/microsofts_notepad_got_pwned_cve202620841/
40 state AGs warn House KOSA bill falls short of protecting children online
https://therecord.media/40-state-ags-warn-house-kosa-bill-falls-short
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
therecord.media
Georgia healthcare company data breach impacts more than 620,000
The company told victims in September about the breach, and said an investigation revealed hackers were in ApolloMD’s IT environment between May 22 and May 23.
Top Security News for Today
Dutch police arrest 21-year-old for alleged involvement in JokerOTP password stealer
https://therecord.media/dutch-police-arrest-man-over-jokerotp-password-stealer
US wants cyber partnerships to send ‘coordinated, strategic message’ to adversaries
https://therecord.media/us-wants-cyber-partnerships-to-send-message-to-adversaries
California fines Disney $2.75 million for data privacy violations
https://therecord.media/california-fines-disney-data-privacy
WhatsApp says Russia tried to fully block platform, push users to state app
https://therecord.media/whatsapp-russia-blocked-state
Nation-state hackers ramping up use of Gemini for target reconnaissance, malware coding
https://therecord.media/nation-state-hackers-using-gemini-for-malicious-campaigns
Critical RCE Vulnerability in Unstructured.io (CVE-2025–64712) - CVSS 9.8
https://www.reddit.com/r/netsec/comments/1r35ydb/critical_rce_vulnerability_in_unstructuredio/
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
Dutch police arrest 21-year-old for alleged involvement in JokerOTP password stealer
https://therecord.media/dutch-police-arrest-man-over-jokerotp-password-stealer
US wants cyber partnerships to send ‘coordinated, strategic message’ to adversaries
https://therecord.media/us-wants-cyber-partnerships-to-send-message-to-adversaries
California fines Disney $2.75 million for data privacy violations
https://therecord.media/california-fines-disney-data-privacy
WhatsApp says Russia tried to fully block platform, push users to state app
https://therecord.media/whatsapp-russia-blocked-state
Nation-state hackers ramping up use of Gemini for target reconnaissance, malware coding
https://therecord.media/nation-state-hackers-using-gemini-for-malicious-campaigns
Critical RCE Vulnerability in Unstructured.io (CVE-2025–64712) - CVSS 9.8
https://www.reddit.com/r/netsec/comments/1r35ydb/critical_rce_vulnerability_in_unstructuredio/
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
therecord.media
Dutch police arrest 21-year-old for alleged involvement in JokerOTP password stealer
The Dordrecht native was detained on Tuesday by police in East Brabant on accusations he distributed a bot called JokerOTP, which is used widely by cybercriminals to intercept the codes delivered by many platforms as part of multi-factor authentication sign…
Top Security News for Today
Pwning Supercomputers - A 20yo vulnerability in Munge
https://www.reddit.com/r/netsec/comments/1r3kavf/pwning_supercomputers_a_20yo_vulnerability_in/
Europe must adapt to ‘permanent’ cyber and hybrid threats, Sweden warns
https://therecord.media/sweden-cyber-threats-europe-permanent
US needs to impose ‘real costs’ on bad actors, State Department cyber official says
https://therecord.media/usa-cyber-actors-consequences
CISA orders federal agencies to patch exploited SolarWinds, Apple, Microsoft bugs within weeks
https://therecord.media/cisa-orders-federal-agencies-to-patch-solarwinds-microsoft-apple-bugs
Estonia spy chief calls on Europe to invest in its own offensive cyber capabilities
https://therecord.media/estonia-spy-chief-calls-on-europe-to-invest-in-own-offense
Brutus: Open-source credential testing tool for offensive security
https://www.reddit.com/r/netsec/comments/1r3s9wo/brutus_opensource_credential_testing_tool_for/
China may be rehearsing a digital siege, Taiwan warns
https://therecord.media/china-taiwan-digital-siege-munich
NATO must impose costs on Russia, China over cyber and hybrid attacks, says deputy chief
https://therecord.media/nato-must-impost-costs-russia-china-cyber-hybrid-deputy-secretary
EU can’t be ‘naive’ about enemies shutting down critical infrastructure, warns tech official
https://therecord.media/eu-cyber-critical-infrastructure-tech
Space emerges as new front in great power competition, officials warn
https://therecord.media/space-cybersecurity-new-front-war
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
Pwning Supercomputers - A 20yo vulnerability in Munge
https://www.reddit.com/r/netsec/comments/1r3kavf/pwning_supercomputers_a_20yo_vulnerability_in/
Europe must adapt to ‘permanent’ cyber and hybrid threats, Sweden warns
https://therecord.media/sweden-cyber-threats-europe-permanent
US needs to impose ‘real costs’ on bad actors, State Department cyber official says
https://therecord.media/usa-cyber-actors-consequences
CISA orders federal agencies to patch exploited SolarWinds, Apple, Microsoft bugs within weeks
https://therecord.media/cisa-orders-federal-agencies-to-patch-solarwinds-microsoft-apple-bugs
Estonia spy chief calls on Europe to invest in its own offensive cyber capabilities
https://therecord.media/estonia-spy-chief-calls-on-europe-to-invest-in-own-offense
Brutus: Open-source credential testing tool for offensive security
https://www.reddit.com/r/netsec/comments/1r3s9wo/brutus_opensource_credential_testing_tool_for/
China may be rehearsing a digital siege, Taiwan warns
https://therecord.media/china-taiwan-digital-siege-munich
NATO must impose costs on Russia, China over cyber and hybrid attacks, says deputy chief
https://therecord.media/nato-must-impost-costs-russia-china-cyber-hybrid-deputy-secretary
EU can’t be ‘naive’ about enemies shutting down critical infrastructure, warns tech official
https://therecord.media/eu-cyber-critical-infrastructure-tech
Space emerges as new front in great power competition, officials warn
https://therecord.media/space-cybersecurity-new-front-war
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
Reddit
From the netsec community on Reddit: Pwning Supercomputers - A 20yo vulnerability in Munge
Explore this post and more from the netsec community
Top Security News for Today
Hacking a pharmacy to get free prescription drugs and more
https://www.reddit.com/r/netsec/comments/1r4kmv7/hacking_a_pharmacy_to_get_free_prescription_drugs/
I’m building graph-based compliance risk engine, looking for honest feedback
https://www.reddit.com/r/netsec/comments/1r4nud6/im_building_graphbased_compliance_risk_engine/
Upcoming Speaking Engagements
https://www.schneier.com/blog/archives/2026/02/upcoming-speaking-engagements-53.html
Abuse-prevention design: using IP reputation as one signal in signup defense-in-depth
https://www.reddit.com/r/netsec/comments/1r4qcry/abuseprevention_design_using_ip_reputation_as_one/
Cloudflare Pages “Continue Read” Redirect Kit Abused for Phishing, Adware, and Malware Delivery
https://www.reddit.com/r/netsec/comments/1r4u08r/cloudflare_pages_continue_read_redirect_kit/
First Ever OffSec USA Chapter Meetup - DMV Area!
https://www.reddit.com/r/netsec/comments/1r51491/first_ever_offsec_usa_chapter_meetup_dmv_area/
Introducing IDA-Free-MCP: mcp server for IDA Free version (native)
https://www.reddit.com/r/netsec/comments/1r57sow/introducing_idafreemcp_mcp_server_for_ida_free/
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
Hacking a pharmacy to get free prescription drugs and more
https://www.reddit.com/r/netsec/comments/1r4kmv7/hacking_a_pharmacy_to_get_free_prescription_drugs/
I’m building graph-based compliance risk engine, looking for honest feedback
https://www.reddit.com/r/netsec/comments/1r4nud6/im_building_graphbased_compliance_risk_engine/
Upcoming Speaking Engagements
https://www.schneier.com/blog/archives/2026/02/upcoming-speaking-engagements-53.html
Abuse-prevention design: using IP reputation as one signal in signup defense-in-depth
https://www.reddit.com/r/netsec/comments/1r4qcry/abuseprevention_design_using_ip_reputation_as_one/
Cloudflare Pages “Continue Read” Redirect Kit Abused for Phishing, Adware, and Malware Delivery
https://www.reddit.com/r/netsec/comments/1r4u08r/cloudflare_pages_continue_read_redirect_kit/
First Ever OffSec USA Chapter Meetup - DMV Area!
https://www.reddit.com/r/netsec/comments/1r51491/first_ever_offsec_usa_chapter_meetup_dmv_area/
Introducing IDA-Free-MCP: mcp server for IDA Free version (native)
https://www.reddit.com/r/netsec/comments/1r57sow/introducing_idafreemcp_mcp_server_for_ida_free/
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
Reddit
From the netsec community on Reddit: Hacking a pharmacy to get free prescription drugs and more
Explore this post and more from the netsec community
Top Security News for Today
Product engineering teams must own supply chain risk
https://www.reddit.com/r/netsec/comments/1r5fa5e/product_engineering_teams_must_own_supply_chain/
I built a free, open-source platform to learn GenAI security, learning content + hands-on labs against real LLMs (beta, looking for feedback)
https://www.reddit.com/r/netsec/comments/1r5sdlo/i_built_a_free_opensource_platform_to_learn_genai/
Understanding stack of a process
https://www.reddit.com/r/lowlevel/comments/1r5i426/understanding_stack_of_a_process/
Your code. Your rules.
https://www.reddit.com/r/lowlevel/comments/1r62391/your_code_your_rules/
sandboxec: A lightweight command sandbox for Linux, secure-by-default, built on Landlock.
https://www.reddit.com/r/netsec/comments/1r640ry/sandboxec_a_lightweight_command_sandbox_for_linux/
Architectural Isolation Tradeoffs in the OpenClaw Ecosystem After CVE-2026-25253
https://www.reddit.com/r/netsec/comments/1r63te8/architectural_isolation_tradeoffs_in_the_openclaw/
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
Product engineering teams must own supply chain risk
https://www.reddit.com/r/netsec/comments/1r5fa5e/product_engineering_teams_must_own_supply_chain/
I built a free, open-source platform to learn GenAI security, learning content + hands-on labs against real LLMs (beta, looking for feedback)
https://www.reddit.com/r/netsec/comments/1r5sdlo/i_built_a_free_opensource_platform_to_learn_genai/
Understanding stack of a process
https://www.reddit.com/r/lowlevel/comments/1r5i426/understanding_stack_of_a_process/
Your code. Your rules.
https://www.reddit.com/r/lowlevel/comments/1r62391/your_code_your_rules/
sandboxec: A lightweight command sandbox for Linux, secure-by-default, built on Landlock.
https://www.reddit.com/r/netsec/comments/1r640ry/sandboxec_a_lightweight_command_sandbox_for_linux/
Architectural Isolation Tradeoffs in the OpenClaw Ecosystem After CVE-2026-25253
https://www.reddit.com/r/netsec/comments/1r63te8/architectural_isolation_tradeoffs_in_the_openclaw/
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
Reddit
From the netsec community on Reddit: [ Removed by moderator ]
Posted by ArtisticProgrammer11 - 14 votes and 0 comments
Top Security News for Today
Starlink restrictions hit Russian forces as Moscow seeks workarounds
https://therecord.media/starlink-restrictions-hit-russian-forces
Over 500,000 VKontakte accounts hijacked through malicious Chrome extensions
https://therecord.media/500000-vkontakte-accounts-hijacked-chrome-extensions
New Joomla! Novarain/Tassos Framework Vulnerabilities Advisory
https://www.reddit.com/r/netsec/comments/1r64yhj/new_joomla_novaraintassos_framework/
sandboxec: A lightweight command sandbox for Linux, secure-by-default, built on Landlock.
https://www.reddit.com/r/netsec/comments/1r640ry/sandboxec_a_lightweight_command_sandbox_for_linux/
[Analysis] Massive Active GitHub Malware Campaign | Hundreds of Malicious Repositories Identified
https://www.reddit.com/r/netsec/comments/1r66u2r/analysis_massive_active_github_malware_campaign/
The Promptware Kill Chain
https://www.schneier.com/blog/archives/2026/02/the-promptware-kill-chain.html
When Audits Fail Part 2: From Pre-Auth SSRF to RCE in TRUfusion Enterprise
https://www.reddit.com/r/netsec/comments/1r6l5e3/when_audits_fail_part_2_from_preauth_ssrf_to_rce/
Almost Impossible: Java Deserialization Through Broken Crypto in OpenText Directory Services
https://www.reddit.com/r/netsec/comments/1r6r7no/almost_impossible_java_deserialization_through/
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
Starlink restrictions hit Russian forces as Moscow seeks workarounds
https://therecord.media/starlink-restrictions-hit-russian-forces
Over 500,000 VKontakte accounts hijacked through malicious Chrome extensions
https://therecord.media/500000-vkontakte-accounts-hijacked-chrome-extensions
New Joomla! Novarain/Tassos Framework Vulnerabilities Advisory
https://www.reddit.com/r/netsec/comments/1r64yhj/new_joomla_novaraintassos_framework/
sandboxec: A lightweight command sandbox for Linux, secure-by-default, built on Landlock.
https://www.reddit.com/r/netsec/comments/1r640ry/sandboxec_a_lightweight_command_sandbox_for_linux/
[Analysis] Massive Active GitHub Malware Campaign | Hundreds of Malicious Repositories Identified
https://www.reddit.com/r/netsec/comments/1r66u2r/analysis_massive_active_github_malware_campaign/
The Promptware Kill Chain
https://www.schneier.com/blog/archives/2026/02/the-promptware-kill-chain.html
When Audits Fail Part 2: From Pre-Auth SSRF to RCE in TRUfusion Enterprise
https://www.reddit.com/r/netsec/comments/1r6l5e3/when_audits_fail_part_2_from_preauth_ssrf_to_rce/
Almost Impossible: Java Deserialization Through Broken Crypto in OpenText Directory Services
https://www.reddit.com/r/netsec/comments/1r6r7no/almost_impossible_java_deserialization_through/
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
therecord.media
Starlink restrictions hit Russian forces as Moscow seeks workarounds
Ukraine's security service said Russia was trying to recruit locals to help restore access to blocked Starlink satellite internet terminals.
Top Security News for Today
Dutch police arrest man who refused to delete confidential files shared by mistake
https://therecord.media/netherlands-arrest-confidential-files-police
Hackers target supporters of Iran protests in new espionage campaign
https://therecord.media/hackers-target-iran-protest-supporters-cyber-campaign
AI in the Middle: Turning Web-Based AI Services into C2 Proxies & The Future Of AI Driven Attacks
https://research.checkpoint.com/2026/ai-in-the-middle-turning-web-based-ai-services-into-c2-proxies-the-future-of-ai-driven-attacks/
Unify now or pay later: New research exposes the operational cost of a fragmented SOC
https://www.microsoft.com/en-us/security/blog/2026/02/17/unify-now-or-pay-later-new-research-exposes-the-operational-cost-of-a-fragmented-soc/
Assessing Spear-Phishing Website Generation in Large Language Model Coding Agents
https://arxiv.org/abs/2602.13363
Unsafer in Many Turns: Benchmarking and Defending Multi-Turn Safety Risks in Tool-Using Agents
https://arxiv.org/abs/2602.13379
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
Dutch police arrest man who refused to delete confidential files shared by mistake
https://therecord.media/netherlands-arrest-confidential-files-police
Hackers target supporters of Iran protests in new espionage campaign
https://therecord.media/hackers-target-iran-protest-supporters-cyber-campaign
AI in the Middle: Turning Web-Based AI Services into C2 Proxies & The Future Of AI Driven Attacks
https://research.checkpoint.com/2026/ai-in-the-middle-turning-web-based-ai-services-into-c2-proxies-the-future-of-ai-driven-attacks/
Unify now or pay later: New research exposes the operational cost of a fragmented SOC
https://www.microsoft.com/en-us/security/blog/2026/02/17/unify-now-or-pay-later-new-research-exposes-the-operational-cost-of-a-fragmented-soc/
Assessing Spear-Phishing Website Generation in Large Language Model Coding Agents
https://arxiv.org/abs/2602.13363
Unsafer in Many Turns: Benchmarking and Defending Multi-Turn Safety Risks in Tool-Using Agents
https://arxiv.org/abs/2602.13379
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
therecord.media
Dutch police arrest man who refused to delete confidential files shared by mistake
Dutch police have arrested a 40-year-old man who refused to delete confidential documents law enforcement accidentally sent to him.
Top Security News for Today
Predator spyware used to infect phone belonging to Angolan journalist, report says
https://therecord.media/predator-spyware-used-to-infect-phone-angola-journalist
AI Found Twelve New Vulnerabilities in OpenSSL
https://www.schneier.com/blog/archives/2026/02/ai-found-twelve-new-vulnerabilities-in-openssl.html
Poland bans Chinese-made cars from entering military sites
https://therecord.media/poland-bans-chinese-made-cars-from-military-sites
New backdoor found in Android tablets targeting users in Russia, Germany and Japan
https://therecord.media/new-backdoor-found-in-android-russia-japan-brazil
Texas sues TP-Link, alleging it allows China to hack into routers
https://therecord.media/texas-sues-tp-link-china-allegations
Fed agencies ordered to patch Dell bug by Saturday after exploitation warning
https://therecord.media/fed-agencies-ordered-to-patch-dell-bug-after-exploitation-warning
State of Passkey Authentication in the Wild: A Census of the Top 100K sites
https://arxiv.org/abs/2602.15032
Exploiting Layer-Specific Vulnerabilities to Backdoor Attack in Federated Learning
https://arxiv.org/abs/2602.15135
Weight space Detection of Backdoors in LoRA Adapters
https://arxiv.org/abs/2602.15161
EduResearchBench: A Hierarchical Atomic Task Decomposition Benchmark for Full-Lifecycle Educational Research
https://arxiv.org/abs/2602.15195
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
Predator spyware used to infect phone belonging to Angolan journalist, report says
https://therecord.media/predator-spyware-used-to-infect-phone-angola-journalist
AI Found Twelve New Vulnerabilities in OpenSSL
https://www.schneier.com/blog/archives/2026/02/ai-found-twelve-new-vulnerabilities-in-openssl.html
Poland bans Chinese-made cars from entering military sites
https://therecord.media/poland-bans-chinese-made-cars-from-military-sites
New backdoor found in Android tablets targeting users in Russia, Germany and Japan
https://therecord.media/new-backdoor-found-in-android-russia-japan-brazil
Texas sues TP-Link, alleging it allows China to hack into routers
https://therecord.media/texas-sues-tp-link-china-allegations
Fed agencies ordered to patch Dell bug by Saturday after exploitation warning
https://therecord.media/fed-agencies-ordered-to-patch-dell-bug-after-exploitation-warning
State of Passkey Authentication in the Wild: A Census of the Top 100K sites
https://arxiv.org/abs/2602.15032
Exploiting Layer-Specific Vulnerabilities to Backdoor Attack in Federated Learning
https://arxiv.org/abs/2602.15135
Weight space Detection of Backdoors in LoRA Adapters
https://arxiv.org/abs/2602.15161
EduResearchBench: A Hierarchical Atomic Task Decomposition Benchmark for Full-Lifecycle Educational Research
https://arxiv.org/abs/2602.15195
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
therecord.media
Predator spyware used to infect phone belonging to Angolan journalist, report says
The finding is the latest evidence that despite being placed on the U.S. government’s Entity List in July 2023, Predator manufacturer the Intellexa Consortium has continued to operate in the shadows.
Top Security News for Today
Arkanix Stealer: a C++ & Python infostealer
https://securelist.com/arkanix-stealer/119006/
Attackers breach France’s national bank account database
https://therecord.media/attackers-breach-france-national-bank-account-database
Ransomware gang threatens Cheyenne and Arapaho Tribes after shutting down schools
https://therecord.media/cheyenne-arapaho-ransomware-rhysida
[DroidGround Demo](https://www.reddit.com/r/netsec/comments/1r8u940/droidground_demo/)
https://www.reddit.com/r/netsec/comments/1r8u940/droidground_demo/
[Compromising Cline's Production Releases just by Prompting an Issue Triager](https://www.reddit.com/r/netsec/comments/1r8vdkb/compromising_clines_production_releases_just_by/)
https://www.reddit.com/r/netsec/comments/1r8vdkb/compromising_clines_production_releases_just_by/
[Malicious AI](https://www.schneier.com/blog/archives/2026/02/malicious-ai.html)
https://www.schneier.com/blog/archives/2026/02/malicious-ai.html
[Kimwolf Botnet Swamps Anonymity Network I2P](https://krebsonsecurity.com/2026/02/kimwolf-botnet-swamps-anonymity-network-i2p/)
https://krebsonsecurity.com/2026/02/kimwolf-botnet-swamps-anonymity-network-i2p/
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
Arkanix Stealer: a C++ & Python infostealer
https://securelist.com/arkanix-stealer/119006/
Attackers breach France’s national bank account database
https://therecord.media/attackers-breach-france-national-bank-account-database
Ransomware gang threatens Cheyenne and Arapaho Tribes after shutting down schools
https://therecord.media/cheyenne-arapaho-ransomware-rhysida
[DroidGround Demo](https://www.reddit.com/r/netsec/comments/1r8u940/droidground_demo/)
https://www.reddit.com/r/netsec/comments/1r8u940/droidground_demo/
[Compromising Cline's Production Releases just by Prompting an Issue Triager](https://www.reddit.com/r/netsec/comments/1r8vdkb/compromising_clines_production_releases_just_by/)
https://www.reddit.com/r/netsec/comments/1r8vdkb/compromising_clines_production_releases_just_by/
[Malicious AI](https://www.schneier.com/blog/archives/2026/02/malicious-ai.html)
https://www.schneier.com/blog/archives/2026/02/malicious-ai.html
[Kimwolf Botnet Swamps Anonymity Network I2P](https://krebsonsecurity.com/2026/02/kimwolf-botnet-swamps-anonymity-network-i2p/)
https://krebsonsecurity.com/2026/02/kimwolf-botnet-swamps-anonymity-network-i2p/
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
Top Security News for Today
Your AD password complexity policies are security theater — one RPC call bypasses all of them (PoC scripts + defense included)
https://www.reddit.com/r/netsec/comments/1r9qkpl/your_ad_password_complexity_policies_are_security/
Hackers breach contractor linked to Ukraine’s central bank collectible coin store
https://therecord.media/hackers-breach-ukraine-national-bank-contractor
Discovery & Analysis of CVE-2025-29969
https://www.reddit.com/r/netsec/comments/1r9th6w/discovery_analysis_of_cve202529969/
Building CrowdStrike workflows with Claude Code skills
https://www.reddit.com/r/netsec/comments/1r9s0ah/building_crowdstrike_workflows_with_claude_code/
Ring Cancels Its Partnership with Flock
https://www.schneier.com/blog/archives/2026/02/ring-cancels-its-partnership-with-flock.html
Russia stepping up hybrid attacks, preparing for long standoff with West, Dutch intelligence warns
https://therecord.media/russia-cyberattacks-europe-warfare
In Memoriam: Jason Snitker, a.k.a. Parmaster. RIP Legend
https://www.reddit.com/r/netsec/comments/1r9wmyj/in_memoriam_jason_snitker_aka_parmaster_rip_legend/
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
Your AD password complexity policies are security theater — one RPC call bypasses all of them (PoC scripts + defense included)
https://www.reddit.com/r/netsec/comments/1r9qkpl/your_ad_password_complexity_policies_are_security/
Hackers breach contractor linked to Ukraine’s central bank collectible coin store
https://therecord.media/hackers-breach-ukraine-national-bank-contractor
Discovery & Analysis of CVE-2025-29969
https://www.reddit.com/r/netsec/comments/1r9th6w/discovery_analysis_of_cve202529969/
Building CrowdStrike workflows with Claude Code skills
https://www.reddit.com/r/netsec/comments/1r9s0ah/building_crowdstrike_workflows_with_claude_code/
Ring Cancels Its Partnership with Flock
https://www.schneier.com/blog/archives/2026/02/ring-cancels-its-partnership-with-flock.html
Russia stepping up hybrid attacks, preparing for long standoff with West, Dutch intelligence warns
https://therecord.media/russia-cyberattacks-europe-warfare
In Memoriam: Jason Snitker, a.k.a. Parmaster. RIP Legend
https://www.reddit.com/r/netsec/comments/1r9wmyj/in_memoriam_jason_snitker_aka_parmaster_rip_legend/
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
Reddit
From the netsec community on Reddit: Your AD password complexity policies are security theater — one RPC call bypasses all of them…
Posted by Suitable-Baker7584 - 1 vote and 1 comment
Top Security News for Today
'Starkiller’ Phishing Service Proxies Real Login Pages, MFA
https://krebsonsecurity.com/2026/02/starkiller-phishing-service-proxies-real-login-pages-mfa/
Large-scale online deanonymization with LLMs
https://arxiv.org/abs/2602.16800
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
'Starkiller’ Phishing Service Proxies Real Login Pages, MFA
https://krebsonsecurity.com/2026/02/starkiller-phishing-service-proxies-real-login-pages-mfa/
Large-scale online deanonymization with LLMs
https://arxiv.org/abs/2602.16800
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
Krebs on Security
‘Starkiller’ Phishing Service Proxies Real Login Pages, MFA
Most phishing websites are little more than static copies of login pages for popular online destinations, and they are often quickly taken down by anti-abuse activists and security firms. But a stealthy new phishing-as-a-service offering lets customers sidestep…
Top Security News for Today
How a single typo led to RCE in Firefox
https://www.reddit.com/r/netsec/comments/1rbjdso/how_a_single_typo_led_to_rce_in_firefox/
Malicious Chrome extension targeting Apple App Store Connect developers through fake ASO service - full analysis
https://www.reddit.com/r/netsec/comments/1rbzbyv/malicious_chrome_extension_targeting_apple_app/
Scary datapoints re network visibility in Dragos annual report on OT cyberattacks
https://www.reddit.com/r/netsec/comments/1rc6t3w/scary_datapoints_re_network_visibility_in_dragos/
I built a network security analyzer using information geometry (Riemannian manifolds) instead of traditional rule-based detection
https://www.reddit.com/r/netsec/comments/1rc91zq/i_built_a_network_security_analyzer_using/
Large-scale online deanonymization with LLMs
https://arxiv.org/abs/2602.16800
Variational approach to nonholonomic and inequality-constrained mechanics
https://arxiv.org/abs/2409.11063
23rd February – Threat Intelligence Report
https://research.checkpoint.com/2026/23rd-february-threat-intelligence-report/
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
How a single typo led to RCE in Firefox
https://www.reddit.com/r/netsec/comments/1rbjdso/how_a_single_typo_led_to_rce_in_firefox/
Malicious Chrome extension targeting Apple App Store Connect developers through fake ASO service - full analysis
https://www.reddit.com/r/netsec/comments/1rbzbyv/malicious_chrome_extension_targeting_apple_app/
Scary datapoints re network visibility in Dragos annual report on OT cyberattacks
https://www.reddit.com/r/netsec/comments/1rc6t3w/scary_datapoints_re_network_visibility_in_dragos/
I built a network security analyzer using information geometry (Riemannian manifolds) instead of traditional rule-based detection
https://www.reddit.com/r/netsec/comments/1rc91zq/i_built_a_network_security_analyzer_using/
Large-scale online deanonymization with LLMs
https://arxiv.org/abs/2602.16800
Variational approach to nonholonomic and inequality-constrained mechanics
https://arxiv.org/abs/2409.11063
23rd February – Threat Intelligence Report
https://research.checkpoint.com/2026/23rd-february-threat-intelligence-report/
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
Reddit
From the netsec community on Reddit: How a single typo led to RCE in Firefox
Explore this post and more from the netsec community
Top Security News for Today
Scary datapoints re network visibility in Dragos annual report on OT cyberattacks
https://therecord.media/data-protection-authorities-warn-ai-companies-of-sharing-images
Ransomware gangs advancing Moscow’s geopolitical aims, Romanian cyber chief warns
https://therecord.media/ransomware-gangs-advancing-moscow-geopolitical-interests-warns-romania
Ukraine says cyberattacks on energy grid now used to guide missile strikes
https://therecord.media/ukraine-cyberattacks-guiding-russian-missile-strikes
On the Security of Password Managers
https://www.schneier.com/blog/archives/2026/02/on-the-security-of-password-managers.html
Malicious OpenClaw Skills Used to Distribute Atomic MacOS Stealer
https://www.trendmicro.com/en_us/research/26/b/openclaw-skills-used-to-distribute-atomic-macos-stealer.html
Air Côte d'Ivoire confirms cyberattack following ransomware claims
https://therecord.media/air-cote-divoire-confirms-cyberattack
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
Scary datapoints re network visibility in Dragos annual report on OT cyberattacks
https://therecord.media/data-protection-authorities-warn-ai-companies-of-sharing-images
Ransomware gangs advancing Moscow’s geopolitical aims, Romanian cyber chief warns
https://therecord.media/ransomware-gangs-advancing-moscow-geopolitical-interests-warns-romania
Ukraine says cyberattacks on energy grid now used to guide missile strikes
https://therecord.media/ukraine-cyberattacks-guiding-russian-missile-strikes
On the Security of Password Managers
https://www.schneier.com/blog/archives/2026/02/on-the-security-of-password-managers.html
Malicious OpenClaw Skills Used to Distribute Atomic MacOS Stealer
https://www.trendmicro.com/en_us/research/26/b/openclaw-skills-used-to-distribute-atomic-macos-stealer.html
Air Côte d'Ivoire confirms cyberattack following ransomware claims
https://therecord.media/air-cote-divoire-confirms-cyberattack
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
therecord.media
Global data protection authorities warn generative AI companies against replicating real people
The joint statement comes on the heels of the Grok AI chatbot creating and sharing millions of images of “nudified” real people.
Top Security News for Today
North Korean state hackers seen using Medusa ransomware in attacks on US, Middle East
https://therecord.media/north-korean-hackers-using-medusa-ransomware
Is AI Good for Democracy?
https://www.schneier.com/blog/archives/2026/02/is-ai-good-for-democracy.html
Ukraine pushes tighter Telegram regulation, citing Russian recruitment of locals
https://therecord.media/ukraine-telegram-regulation-russia-sabotage-recruitment
UAE claims it stopped ‘terrorist’ ransomware attack
https://therecord.media/uae-claims-it-stopped-terrorist-ransomware-attack
Scaling security operations with Microsoft Defender autonomous defense and expert-led services
https://www.microsoft.com/en-us/security/blog/2026/02/24/scaling-security-operations-with-microsoft-defender-autonomous-defense-and-expert-led-services/
Goodbye innerHTML, Hello setHTML: Stronger XSS Protection in Firefox 148 – Mozilla Hacks - the Web developer blog
https://www.reddit.com/r/netsec/comments/1rdi8m9/goodbye_innerhtml_hello_sethtml_stronger_xss/
Crypto platform Step Finance shutting down after $40 million theft
https://therecord.media/step-finance-cryptocurrency-theft-shutdown
Reddit fined $20 million by UK for not effectively checking users’ ages
https://therecord.media/reddit-children-age-checks-uk-ico-fine
US ‘committed’ to fighting transnational gangs behind Southeast Asian scam compounds: FBI
https://therecord.media/us-committed-to-fighting-southeast-asia-scam-compounds
Phishing operation with links to Russia, Armenia compromised Western cargo companies, researchers find
https://therecord.media/phishing-operation-russia-armenia-targeting-us-european-cargoDCInject: Persistent Backdoor Attacks via Frequency Manipulation in Personal Federated Learning
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
North Korean state hackers seen using Medusa ransomware in attacks on US, Middle East
https://therecord.media/north-korean-hackers-using-medusa-ransomware
Is AI Good for Democracy?
https://www.schneier.com/blog/archives/2026/02/is-ai-good-for-democracy.html
Ukraine pushes tighter Telegram regulation, citing Russian recruitment of locals
https://therecord.media/ukraine-telegram-regulation-russia-sabotage-recruitment
UAE claims it stopped ‘terrorist’ ransomware attack
https://therecord.media/uae-claims-it-stopped-terrorist-ransomware-attack
Scaling security operations with Microsoft Defender autonomous defense and expert-led services
https://www.microsoft.com/en-us/security/blog/2026/02/24/scaling-security-operations-with-microsoft-defender-autonomous-defense-and-expert-led-services/
Goodbye innerHTML, Hello setHTML: Stronger XSS Protection in Firefox 148 – Mozilla Hacks - the Web developer blog
https://www.reddit.com/r/netsec/comments/1rdi8m9/goodbye_innerhtml_hello_sethtml_stronger_xss/
Crypto platform Step Finance shutting down after $40 million theft
https://therecord.media/step-finance-cryptocurrency-theft-shutdown
Reddit fined $20 million by UK for not effectively checking users’ ages
https://therecord.media/reddit-children-age-checks-uk-ico-fine
US ‘committed’ to fighting transnational gangs behind Southeast Asian scam compounds: FBI
https://therecord.media/us-committed-to-fighting-southeast-asia-scam-compounds
Phishing operation with links to Russia, Armenia compromised Western cargo companies, researchers find
https://therecord.media/phishing-operation-russia-armenia-targeting-us-european-cargoDCInject: Persistent Backdoor Attacks via Frequency Manipulation in Personal Federated Learning
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
therecord.media
North Korean state hackers seen using Medusa ransomware in attacks on US, Middle East
Cybersecurity researchers said they saw Medusa attacks launched by members of Lazarus — a well-known North Korean hacking operation housed within the country’s military — against a company in the Middle East and a healthcare organization in the U.S.