Attackers finally get around to exploiting critical Microsoft bug from 2024
As if admins haven't had enough to do this week
Patches13 Feb 2026 |
Security
Top Dutch telco Odido admits 6.2M customers caught in contact system caper
Names, addresses, bank account numbers accessed – but biz insists passwords and call data untouched
Cyber-crime13 Feb 2026 | 3
Enforcing piracy policy earned helpdesk worker death threats
On Call Years later, he read about his antagonist doing time for murder
On-Prem13 Feb 2026 | 55
30+ Chrome extensions disguised as AI chatbots steal users' API keys, emails, other sensitive data
Are you a good bot or a bad bot?
Security12 Feb 2026 | 13
Who's the bossware? Ransomware slingers like employee monitoring tools, too
As if snooping on your workers wasn't bad enough
Cyber-crime12 Feb 2026 | 4
Apple patches decade-old iOS zero-day, possibly exploited by commercial spyware
Flaw abused 'in an extremely sophisticated attack against specific targeted individuals'
Cyber-crime12 Feb 2026 | 27
Supply chain attacks now fuel a 'self-reinforcing' cybercrime economy
Researchers say breaches link identity abuse, SaaS compromise, and ransomware into a cascading cycle
Cyber-crime12 Feb 2026 | 2
Feeling brave? Ministry of Defence seeks £300K digital boss to manage £4.6B spend
Whoever gets it will steer UK department's IT, AI strategy, and megabucks vendor deals
Public Sector12 Feb 2026 | 7
Google: China's APT31 used Gemini to plan cyberattacks against US orgs
Meanwhile, IP-stealing 'distillation attacks' on the rise
Cyber-crime12 Feb 2026 | 9
Microsoft warns that poisoned AI buttons and links may betray your trust
Businesses are embedding prompts that produce content they want you to read, not the stuff AI makes if left to its own devices
AI + ML12 Feb 2026 | 17
Devilish devs spawn 287 Chrome extensions to flog your browser history to data brokers
Add-ons with 37M installs leak visited URLs to 30+ recipients, researcher says
Security11 Feb 2026 | 7
Posting AI-generated caricatures on social media is risky, infosec killjoys warn
The more you share online, the more you open yourself to social engineering
Research11 Feb 2026 | 11
Were telcos tipped off to *that* ancient Telnet bug? Cyber pros say the signs stack up
Curious port filtering and traffic patterns suggest advisories weren’t the earliest warning signals sent
Security11 Feb 2026 | 32
Payroll pirates are conning help desks to steal workers' identities and redirect paychecks
Exclusive Attackers using social engineering to exploit business processes, rather than tunnelling in via tech
Cyber-crime11 Feb 2026 | 18
Notepad's new Markdown powers served with a side of remote code execution
Smug faces across all those who opposed the WordPad-ification of Microsoft's humble text editor
Security11 Feb 2026 | 76
Legacy systems blamed as ministers promise no repeat of Afghan breach
UK government grilled over progress made to prevent a second life-threatening leak
Security11 Feb 2026 | 17
Microsoft's Valentine's gift to admins: 6 exploited zero-day fixes
Roses are red, violets are blue ... now get patching
Patches10 Feb 2026 | 15
AI agents spill secrets just by previewing malicious links
Zero-click prompt injection can leak data when AI agents meet messaging apps, researchers warn
Security10 Feb 2026 | 13
Singapore spent 11 months booting China-linked snoops out of telco networks
Operation Cyber Guardian involved 100-plus staff across government and industry
Cyber-crime10 Feb 2026 | 7
Nearly 17,000 Volvo staff dinged in supplier breach
HR outsourcer Conduent confirms intruders accessed benefits-related records tied to US personnel
Cyber-crime10 Feb 2026 | 9
Popular
Apple patches decade-old iOS zero-day, possibly exploited by commercial spyware
Flaw abused 'in an extremely sophisticated attack against specific targeted individuals'
The big FOSS vendors don't eat their own dogfood – they pay for proprietary groupware
Open Source Policy Summit 2026 That's not a good idea
Starlink speeds past terrestrial networks – and regulators
APRICOT 2026 Low-earth orbit broadband is a no-brainer for remote area connectivity, but a brain teaser for lawmakers and networkers
Posting AI-generated caricatures on social media is risky, infosec killjoys warn
The more you share online, the more you open yourself to social engineering
AI agent seemingly tries to shame open source developer for rejected pull request
Belligerent bot bullies maintainer in blog post to get its way
Devilish devs spawn 287 Chrome extensions to flog your browser history to data brokers
Add-ons with 37M installs leak visited URLs to 30+ recipients, researcher says
Microsoft warns that poisoned AI buttons and links may betray your trust
Businesses are embedding prompts that produce content they want you to read, not the stuff AI makes if left to its own devices
Google: China's APT31 used Gemini to plan cyberattacks against US orgs
Meanwhile, IP-stealing 'distillation attacks' on the rise
T-Mobile announces its network is now full of AI by rolling out real-time translation
This AI is so network native, the telco tells us, that it all works on existing hardware - no datacenters involved
AI spurs employees to work harder, faster, and with fewer breaks, study finds
Like a puppy, a fun new toy soon turns into an unrelenting taskmaster
STORIES
British Army splashes $86M on AI gear to speed up the battlefield kill chain
Troops fitted with new comms kit as part of Project ASGARD
Public Sector10 Feb 2026 | 38
Someone's attacking SolarWinds WHD to steal high‑privilege credentials - but we don't know who or how
So many CVEs, so little time
Cyber-crime09 Feb 2026 | 5
More than 135,000 OpenClaw instances exposed to internet in latest vibe-coded disaster
By default, the bot listens on all network interfaces, and many users never change it
Security09 Feb 2026 | 15
Dutch data watchdog snitches on itself after getting caught in Ivanti zero-day attacks
Staff data belonging to the regulator and judiciary's governing body accessed
Cyber-crime09 Feb 2026 | 1
Taiwan tells Uncle Sam its chip ecosystem ain't going anywhere
Moving 40% of semiconductor production to America is 'impossible' says vice premier
Systems09 Feb 2026 | 55
How the GNU C Compiler became the Clippy of cryptography
FOSDEM 2026 Security devs forced to hide Boolean logic from overeager optimizer
Security09 Feb 2026 | 86
Follow the money: Switzerland remains Europe's top destination for tech pay
Average Swiss salaries dwarf those on offer across the rest of the continent
Software09 Feb 2026 | 21
European Commission probes intrusion into staff mobile management backend
Officials explore issue affecting infrastructure after CERT-EU detected suspicious activity
Cyber-crime09 Feb 2026 | 3
Indian police commissioner wants ID cards for AI agents
Asia In Brief PLUS: China broadens cryptocurrency crackdown; Australian facial recognition privacy revisited; Singapore debuts electric VTOL; and more!
Legal09 Feb 2026 | 5
Telcos aren't saying how they fought back against China's Salt Typhoon attacks
Infosec In Brief PLUS: OpenClaw teams with VirusTotal; Crypto kidnappings in France; Critical vulns at SmarterMail; And more
Security08 Feb 2026 | 3
Study confirms experience beats youthful enthusiasm
Research shows productivity and judgment peak decades after graduation
Offbeat07 Feb 2026 | 104
Flickr emails users about data breach, pins it on third party
Attackers may have snapped user locations and activity information, message warns
Cyber-crime06 Feb 2026 | 5
DDoS deluge: Brit biz battered as botnet blitzes break records
UK leaps to sixth in global flood charts as mega-swarm unleashes 31.4 Tbps Yuletide pummeling
Security06 Feb 2026 | 8
Ad blocking is alive and well, despite Chrome's attempts to make it harder
The end isn't nigh after all
Security06 Feb 2026 | 66
OpenClaw reveals meaty personal information after simple cracks
Skills marketplace is full of stuff - like API keys and credit card numbers - that crims will find tasty
Security05 Feb 2026 | 12
Substack says intruder lifted emails, phone numbers in months-old breach
Contact details were accessed in an intrusion that went undetected for months, the blogging outfit says
Cyber-crime05 Feb 2026 | 7
Asia-based government spies quietly broke into critical networks across 37 countries
And their toolkit includes a new, Linux kernel rootkit
Cyber-crime05 Feb 2026 | 17
Betterment breach may expose 1.4M users after social engineering attack
Breach-tracking site flags dataset following impersonation-based intrusion
Cyber-crime05 Feb 2026 | 2
Italy claims cyberattacks 'of Russian origin' are pelting Winter Olympics
Right on cue, petulant hacktivists attempt to disrupt yet another global sporting event
Cyber-crime05 Feb 2026 | 33
n8n security woes roll on as new critical flaws bypass December fix
Patch meant to close a severe expression bug fails to stop attackers with workflow access
Security05 Feb 2026 | 5
Cloud sovereignty is no longer just a public sector concern
Interview Businesses still chase the cheapest option, but politics and licensing shocks are changing priorities, says OpenNebula Systems
PaaS + IaaS05 Feb 2026 | 2
Three clues that your LLM may be poisoned with a sleeper-agent back door
It's a threat straight out of sci-fi, and fiendishly hard to detect
Security05 Feb 2026 | 38
Satya Nadella decides Microsoft needs an engineering quality czar
Picks chap who used to lead Redmond’s security, lures replacement from Google
Software05 Feb 2026 | 82
AWS intruder achieved admin access in under 10 minutes thanks to AI assist, researchers say
UPDATED LLMs automated most phases of the attack
Cyber-crime04 Feb 2026 | 31
Critical SolarWinds Web Help Desk bug under attack
US agencies told to patch by Friday
Patches04 Feb 2026 | 4
Nitrogen ransomware is so broken even the crooks can't unlock your files
Gang walks away with nothing, victims are left with irreparable hypervisors
Cyber-crime04 Feb 2026 | 45
Universal £7,500 payout offered to PSNI staff over major data breach
Affected police officers squeezed mental health services, relocated over safety fears
Security04 Feb 2026 | 3
Clouds rush to deliver OpenClaw-as-a-service offerings
As analyst house Gartner declares AI tool ‘comes with unacceptable cybersecurity risk’ and urges admins to snuff it out
PaaS + IaaS04 Feb 2026 | 1
AI agents can't yet pull off fully autonomous cyberattacks – but they are already very helpful to crims
Don't relax: This is a 'when, not if' scenario
Security03 Feb 2026 | 8
Critical React Native Metro dev server bug under attack as researchers scream into the void
Too slow react-ion time
Patches03 Feb 2026 | 4
CISA updated ransomware intel on 59 bugs last year without telling defenders
GreyNoise's Glenn Thorpe counts the cost of missed opportunities
CSO03 Feb 2026 | 4
X marks the raid: French cops swoop on Musk's Paris ops
Algorithmic bias probe continues, CEO and former boss summoned to defend the platform's corner
Security03 Feb 2026 | 76
Microsoft finally sends TLS 1.0 and 1.1 to the cloud retirement home
Azure Storage now requires version 1.2 or newer for encrypted connections
Storage03 Feb 2026 | 7
Polish cops bail 20-year-old bedroom botnet operator
DDoSer of 'strategically important' websites admitted to most charges
Cyber-crime03 Feb 2026 | 4
DIY AI bot farm OpenClaw is a security 'dumpster fire'
Your own personal Jarvis. A bot to hear your prayers. A bot that cares. Just not about keeping you safe
Security03 Feb 2026 | 36
British military to get legal OK to swat drones near bases
Armed Forces Bill would let troops take action against unmanned threats around defense sites
Public Sector03 Feb 2026 | 56
Notepad++ hijacking blamed on Chinese Lotus Blossom crew behind Chrysalis backdoor
The group targets telecoms, critical infrastructure - all the usual high-value orgs
Cyber-crime02 Feb 2026 | 15
StopICE hacked to send alarming text messages, admins accuse border patrol agent of sabotage
The ICE-tracking service says it doesn't store usernames or addresses
Security02 Feb 2026 | 47
Russia-linked APT28 attackers already abusing new Microsoft Office zero-day
Ukraine’s CERT says the bug went from disclosure to active exploitation in days
Cyber-crime02 Feb 2026 | 12
McDonald's is not lovin' your bigmac, happymeal, and mcnuggets passwords
Your favorite menu item might be easy to remember but it will not secure your account
Security02 Feb 2026 | 51
OpenClaw patches one-click RCE as security Whac-A-Mole continues
Researchers disclose rapid exploit chain that let attackers run code via a single malicious web page
Security02 Feb 2026 | 2
Notepad++ update service hijacked in targeted state-linked attack
Breach lingered for months before stronger signature checks shut the door
Cyber-crime02 Feb 2026 | 59
Infrastructure cyberattacks are suddenly in fashion. We can buck the trend
Opinion Don't be scared of the digital dark – learn how to keep the lights on
Cyber-crime02 Feb 2026 | 8
Why native cloud security falls short
Your cloud security must stand alone
Partner Content
Open-source AI is a global security nightmare waiting to happen, say researchers
Infosec in Brief Also, South Korea gets a pentesting F, US Treasury says bye bye to BAH, North Korean hackers evolve, and more
Security01 Feb 2026 | 15
AI security startup CEO posts a job. Deepfake candidate applies, inner turmoil ensues.
'I did not think it was going to happen to me, but here we are'
CSO01 Feb 2026 | 57
January blues return as Ivanti coughs up exploited EPMM zero-days
Consider yourselves compromised, experts warn
Security30 Jan 2026 | 5
Thousands more Oregon residents learn their health data was stolen in TriZetto breach
Parent company Cognizant hit with multiple lawsuits
Cyber-crime30 Jan 2026 | 11
Java developers want container security, just not the job that comes with it
BellSoft survey finds 48% prefer pre‑hardened images over managing vulnerabilities themselves
Devops30 Jan 2026 | 17
Maybe CISA should take its own advice about insider threats hmmm?
opinion The call is coming from inside the house
Security29 Jan 2026 | 6
To stop crims, Google starts dismantling residential proxy network they use to hide
The Chocolate Factory strikes again, targeting the infrastructure attackers use to stay anonymous
Cyber-crime29 Jan 2026 | 18
AV vendor goes to war with security shop over update server scare
eScan lawyers up after Morphisec claimed 'critical supply-chain compromise'
Security29 Jan 2026 | 1
Seven habits that help security teams reduce risk without slowing delivery
The right habits change everything
Sponsored Post
ShinyHunters swipes right on 10M records in alleged dating app data grab
Extortion crew says it's found love in someone else's info as Match Group plays down the impact
Cyber-crime29 Jan 2026 | 1
Patch or perish: Vulnerability exploits now dominate intrusions
Apply fixes within a few hours or face the music, say the pros
Security29 Jan 2026 | 8
Cyberattack on Poland's power grid could have turned deadly in winter cold
Close call after an apparently deliberate attempt to starve a country of energy at the worst time
Cyber-crime29 Jan 2026 | 8
Ransomware crims forced to take off-RAMP as FBI seizes forum
Cybercrime solved. The end
Cyber-crime28 Jan 2026 | 1
Everybody is WinRAR phishing, dropping RATs as fast as lightning
Russians, Chinese spies, run-of-the-mill crims …
Cyber-crime28 Jan 2026 | 27
Fortinet unearths another critical bug as SSO accounts borked post-patch
More work for admins on the cards as they await a full dump of fixes
Security28 Jan 2026 | 3
Old Windows quirks help punch through new admin defenses
Google researcher sits on UAC bypass for ages, only for it to become valid with new security feature
Security28 Jan 2026 | 12
Paranoid WhatsApp users rejoice: Encrypted app gets one-click privacy toggle
Meta also replaces a legacy C++ media-handling security library with Rust
Security27 Jan 2026 | 35
Let them eat sourdough: ShinyHunters claims Panera Bread as stolen credentials victim
Plus, the gang says it got in via Microsoft Entra SSO
Cyber-crime27 Jan 2026 | 3
China-linked group accused of spying on phones of UK prime ministers' aides – for years
Reports say Salt Typhoon attackers accessed handsets of senior govt folk
Cyber-crime27 Jan 2026 | 31
France to replace US videoconferencing wares with unfortunately named sovereign alternative
French govt says state-run service 'Visio' will be more secure. Now where have we heard that name before?
Software27 Jan 2026 | 104
Microsoft illegally installed cookies on schoolkid's tech, data protection ruling finds
Updated Austrian education ministry unaware of tracking software until campaigners launched case
Applications27 Jan 2026 | 17
High Court to grill London cops over live facial recognition creep
Victim and Big Brother Watch will argue the Met's policies are incompatible with human rights law
Security27 Jan 2026 | 28
Office zero-day exploited in the wild forces Microsoft OOB patch
Updated Another actively abused Office bug, another emergency patch – Office 2016 and 2019 users are left with registry tweaks instead of fixes.
Security27 Jan 2026 | 6
Canva among ~100 targets of ShinyHunters Okta identity-theft campaign
Atlassian, RingCentral, ZoomInfo also among tech targets
Cyber-crime26 Jan 2026 | 3
EU looking into Elon Musk's X after Grok produces deepfake sex images
Probe follows outcry over use of creepy image generation tool
Personal Tech26 Jan 2026 | 27
Data thieves borrow Nike's 'Just Do It' mantra, claim they ran off with 1.4TB
US sports brand launches probe after extortion crew WorldLeaks claims it stole huge dataset
Cyber-crime26 Jan 2026 | 4
Moscow likely behind wiper attack on Poland’s power grid, experts say
Cyber sleuths believe Sandworm up to its old tricks with a brand-new sabotage toy
Cyber-crime26 Jan 2026 | 38
Oracle AI sailed the world on Royal Navy flagship via cloud-at-the-edge kit
Big Red says 'sovereign' platform supports decision-making and operational learning at sea
AI + ML26 Jan 2026 | 34
UK digital ID goes in-house, government swears it isn't an ID card
Minister dodges cost questions while promising smartphone-free access and 'robust' verification
Public Sector26 Jan 2026 | 84
Pwn2Own Automotive 2026 uncovers 76 zero-days, pays out more than $1M
infosec in brief Also, cybercriminals get breached, Gemini spills the calendar beans, and more
Security25 Jan 2026 | 7
UK border tech budget swells by £100M as Home Office targets small boat crossings
Drone, satellite, and other data combined to monitor unwanted vessels
Public Sector24 Jan 2026 | 26
Feds totally skipping infosec industry's biggest conference this year
updated But ex-CISA boss and new RSAC CEO Jen Easterly will be there
Security24 Jan 2026 | 7
Patch or die: VMware vCenter Server bug fixed in 2024 under attack today
If you skipped it back then, now’s a very good time
Patches23 Jan 2026 | 7
Surrender as a service: Microsoft unlocks BitLocker for feds
updated If you're serious about encryption, keep control of your encryption keys
Security23 Jan 2026 | 77
ShinyHunters claims Okta customer breaches, leaks data belonging to 3 orgs
'A lot more' victims to come, we're told
Cyber-crime23 Jan 2026 | 6
AI-powered cyberattack kits are 'just a matter of time,' warns Google exec
Security chief says criminals are already automating workflows, with full end-to-end tools likely within years
CSO23 Jan 2026 | 10
Biting the hand that feeds IT
