88/69 Friday, February 13, 2026 A cybersecurity monitoring center has identified a new attack vector involving a malicious add-in distributed through the Microsoft Office Store-the first incident of its kind. An application named AgreeTo, originally a legitimate meeting scheduling tool, was compromised after threat actors took control of an unused developer domain (an orphaned URL) […]
87/69 Thursday, February 12, 2026 Researchers from mobile security firm iVerify have discovered a new commercial spyware called “ZeroDayRAT,” which is being advertised for sale on Telegram. The tool is promoted as a platform capable of providing full remote control over victims’ devices. It reportedly supports Android versions 5 through 16 and iOS up to […]
86/69 Thursday, February 12, 2026 The Government of Senegal has confirmed a cyberattack affecting the Directorate of File Automation (DAF), the government agency responsible for issuing national identity cards, passports, and managing the country’s biometric data systems. Following reports of a ransomware attack, authorities ordered the temporary closure of the agency to contain the situation […]
85/69 Thursday, February 12, 2026 Cybersecurity experts have identified an attack campaign involving a fraudulent website impersonating the popular file archiver 7-Zip. The attackers are using the domain 7zip[.]com (the legitimate site is 7-zip[.]org) and have designed the webpage to closely resemble the official version, making it difficult for users to distinguish between the two. […]
84/69 Wednesday, February 11, 2026 Germany’s cybersecurity authorities, including the Federal Office for Information Security (BSI) and the Federal Office for the Protection of the Constitution (BfV), have issued a warning and heightened surveillance after detecting targeted attack attempts against senior military officials, diplomats, and investigative journalists across Europe. Attackers have shifted from malware-based methods […]
83/69 Wednesday, February 11, 2026 BeyondTrust has released a security update to address a critical pre-authentication vulnerability, tracked as CVE-2026-1731, which carries a CVSS score of 9.9. The flaw affects certain versions of the company’s Remote Support and Privileged Remote Access (PRA) products, allowing unauthenticated attackers to send specially crafted requests that can execute operating […]
82/69 Wednesday, February 11, 2026 The hacker group known as UNC3886 has breached the networks of Singapore’s four largest telecommunications providers—Singtel, StarHub, M1, and Simba-at least once over the past year. The Cyber Security Agency of Singapore (CSA) described the incident as a well-planned and highly targeted operation. Threat actors reportedly exploited zero-day vulnerabilities to […]
81/69 Tuesday, February 10, 2026 Researchers from eSentire have reported the discovery of Prometei botnet malware embedded within a construction company’s Windows Server in the United Kingdom in January 2026. Threat actors gained access through Remote Desktop Protocol (RDP) services that were protected by weak or easily guessable passwords, including default credentials. While Prometei primarily […]
80/69 Tuesday, February 10, 2026 Conpet, the company responsible for operating Romania’s crude oil and petroleum product pipeline network, has disclosed that it detected a cyberattack on February 3, 2026. The incident affected the company’s business IT infrastructure and temporarily rendered its website unavailable. However, Conpet confirmed that its Operational Technology (OT), including SCADA systems […]
79/69 Tuesday, February 10, 2026 Kyle Svara, a 26-year-old man from Illinois, United States, has pleaded guilty in court to hacking nearly 600 women’s Snapchat accounts to steal private and nude photos. He used social engineering tactics by impersonating Snapchat staff and sending messages to more than 4,500 targets, tricking victims into revealing their access […]
