IT Security News Daily Summary 2026-02-09

154 posts were published in the last hour

• 22:26 : Hackers Deliver Global Group Ransomware Offline via Phishing Emails
• 22:26 : 10K Claude Desktop Users Exposed by Zero-Click Vulnerability
• 22:26 : Someone’s attacking SolarWinds WHD to steal high‑privilege credentials – but we don’t know who or how
• 21:34 : Critical Fortinet FortiClientEMS flaw allows remote code execution
• 20:37 : BeyondTrust fixes critical pre-auth bug allowing remote code execution
• 20:24 : Google Warns Over 1 Billion Android Phones Are Now at Risk
• 20:24 : 23andMe Data Breach Settlement Deadline Is Near: Here’s How Much You Could Get
• 20:24 : A leader’s guide to integrating EDR, SIEM and SOAR
• 20:24 : Zscaler Bolsters Zero-Trust Arsenal with Acquisition of Browser Security Firm SquareX
• 20:5 : IT Security News Hourly Summary 2026-02-09 21h : 5 posts
• 19:36 : Zscaler Bolsters Zero Trust Arsenal with Acquisition of Browser Security Firm SquareX
• 19:36 : Vulnerability Summary for the Week of February 2, 2026
• 19:18 : AI Agents Are Creating Insider Security Threat Blind Spots, Research Finds
• 19:18 : Is your phone listening to you? (re-air) (Lock and Code S07E03)
• 19:18 : A one-prompt attack that breaks LLM safety alignment
• 18:36 : Cyber Attack Hits European Commission Staff Mobile Systems
• 18:36 : Hacked, leaked, exposed: Why you should never use stalkerware apps
• 18:36 : Hackers Exploiting Ivanti EPMM Devices to Deploy Dormant Backdoors
• 18:36 : China-Linked UNC3886 Targets Singapore Telecom Sector in Cyber Espionage Campaign
• 18:16 : Ukraine Increases Control Over Starlink Terminals
• 18:15 : Student Founders Establish Backed Program to Help Peers Build Startups
• 17:34 : More than 135,000 OpenClaw instances exposed to internet in latest vibe-coded disaster
• 17:34 : Lema AI Emerges From Stealth With $24 Million to Tackle Third-Party Risk
• 17:34 : AI Revolution Reshapes CISO Spending for 2026: Security Leaders Prioritize Defense Automation
• 17:34 : CISA Warns of Actively Exploited SmarterMail Flaw Used in Ransomware Attacks
• 17:34 : New Zero-Click Flaw in Claude Desktop Extensions, Anthropic Declines Fix
• 17:5 : IT Security News Hourly Summary 2026-02-09 18h : 3 posts
• 16:34 : Hacktivist scrapes over 500,000 stalkerware customers’ payment records
• 16:18 : Flaw in Anthropic Claude Extensions Can Lead to RCE in Google Calendar: LayerX
• 16:18 : Two Connecticut Men Charged In Alleged $3m Gambling Fraud Scheme
• 15:36 : Shortlist: Most Inspiring Women in Cyber Awards 2026
• 15:36 : Claude Desktop Extensions 0-Click RCE Vulnerability Exposes 10,000+ Users to Remote Attacks
• 15:36 : Discord to Age-Restrict User Access to Key Features Starting Next Month
• 15:36 : AI chat app leak exposes 300 million messages tied to 25 million users
• 15:36 : Ransomware group breached SmarterTools via flaw in its SmarterMail deployment
• 15:36 : SolarWinds Web Help Desk Exploited for RCE in Multi-Stage Attacks on Exposed Servers
• 15:36 : VoidLink Malware Exhibits Multi-Cloud Capabilities and AI Code
• 15:36 : Cyber Briefing: 2026.02.09
• 15:16 : UNC1069 Targets Cryptocurrency Sector with New Tooling and AI-Enabled Social Engineering
• 15:16 : Flickr’s 35M Users Affected by Third-Party Data Exposure
• 15:16 : BridgePay Ransomware Causes Widespread Payment Outages
• 15:16 : Dutch data watchdog snitches on itself after getting caught in Ivanti zero-day attacks
• 15:15 : Ransomware Groups May Pivot Back to Encryption as Data Theft Tactics Falter
• 14:36 : BeyondTrust Vulnerability Allows Pre-Auth Remote Code Execution
• 14:36 : OpenClaw Adds VirusTotal Scanning to AI Agent Marketplace
• 14:36 : Claude Opus 4.6 Exposes Hundreds of Open-Source Vulnerabilities
• 14:36 : European Commission probes cyberattack on mobile device management system
• 14:36 : European Commission hit by cyberattackers targeting mobile management platform
• 14:36 : BridgePay Confirms Ransomware Attack
• 14:36 : Loxam Reports Data Breach Incident
• 14:36 : EU Commission Probes Staff Mobile System Intrusion
• 14:36 : Lyft Launches Teen Accounts With Safety Features
• 14:36 : Men Charged In FanDuel Identity Theft Scheme
• 14:18 : Criminal IP Integrates with IBM QRadar to Deliver Real-Time Threat Intelligence Across SIEM and SOAR
• 14:18 : From Solo to Squad: The Evolution of Cyber Security Training in the AI Era
• 14:18 : Taiwan tells Uncle Sam its chip ecosystem ain’t going anywhere
• 14:18 : Critical 0-Click RCE Vulnerability in Claude Desktop Extensions Exposes 10,000+ Users to Remote Attacks
• 14:18 : Outtake Raises $40 Million to Bolster Digital Trust Against AI-Driven Threats
• 14:18 : Sandworm Hackers Fail in DynoWiper Attack on Poland’s Power Grid
• 14:18 : EU targets Meta over WhatsApp AI access restrictions
• 14:18 : ⚡ Weekly Recap: AI Skill Malware, 31Tbps DDoS, Notepad++ Hack, LLM Backdoors and More
• 14:5 : IT Security News Hourly Summary 2026-02-09 15h : 9 posts
• 13:41 : European Commission Mitigates Cyberattack Aimed at Employee Mobile Information
• 13:41 : Hackers Abuse Apple & PayPal Invoice Emails in DKIM Replay Attack Campaign
• 13:40 : Officials sound the alarm: Phishing attacks on politicians, journalists via Signal messenger
• 13:40 : Attackers abuse SolarWinds Web Help Desk to install Zoho agents and Velociraptor
• 13:40 : Cybersecurity M&A Roundup: 34 Deals Announced in January 2026
• 13:26 : Hackers Use Signal QR Codes to Spy on Military and Political Leaders
• 13:26 : Active Exploitation of SolarWinds Web Help Desk RCE Used to Drop Custom Malware
• 13:26 : Node.js LTX Stealer Emerges as New Threat to Login Credentials
• 13:26 : Recent SolarWinds Flaws Potentially Exploited as Zero-Days
• 12:34 : New Node.js Based LTX Stealer Attack Users to Exfiltrate Login Credentials
• 12:34 : Roundcube Webmail Vulnerability Let Attackers Track Email Opens
• 12:34 : Hackers Exploit Legitimate Apple and PayPal Invoice Emails in DKIM Replay Attacks
• 12:33 : Microsoft Exchange Online Flags Customers Legitimate Email as Phishing
• 12:33 : SmarterTools Hit by Ransomware via Vulnerability in Its Own Product
• 12:33 : ShinyHunters Targets Okta and Microsoft SSO in Data Breach
• 12:33 : How Top CISOs Solve Burnout and Speed up MTTR without Extra Hiring
• 12:23 : YARA-X 1.13.0 Release, (Mon, Feb 9th)
• 12:23 : Quick Howto: Extract URLs from RTF files, (Mon, Feb 9th)
• 12:23 : ISC Stormcast For Monday, February 9th, 2026 https://isc.sans.edu/podcastdetail/9800, (Mon, Feb 9th)
• 12:23 : ScarCruft Exploits Trusted Cloud Services and OLE Documents to Deliver Malware
• 12:23 : How the GNU C Compiler became the Clippy of cryptography
• 12:23 : AI Is Here to Replace Nuclear Treaties. Scared Yet?
• 12:23 : Follow the money: Switzerland remains Europe’s top destination for tech pay
• 12:22 : Linux kernel 6.19 reaches stable release, kernel 7.0 work is already underway
• 12:22 : BeyondTrust fixes easy-to-exploit pre-auth RCE vulnerability in remote access tools (CVE-2026-1731)
• 12:22 : BridgePay Confirms Ransomware Attack, No Card Data Compromised
• 11:32 : Hackers Abuse ClawHub Skills to Evade VirusTotal via Social Engineering
• 11:32 : Iran’s Digital Surveillance Machine Is Almost Complete
• 11:32 : January 2026 Cyber Attacks Statistics
• 11:32 : APT Hackers Target Edge Devices by Abusing Trusted Services to Deploy Malware
• 11:32 : Hackers Exploiting ClawHub Skills to Bypass VirusTotal Detections via Social Engineering
• 11:32 : European Commission Contains Cyber-Attack Targeting Staff Mobile Data
• 11:32 : ScarCruft Abuses Legitimate Cloud Services for C2 and OLE-based Chain to Drop Malware
• 11:32 : Fake 7-Zip downloads are turning home PCs into proxy nodes
• 11:32 : TikTok under EU pressure to change its addictive algorithm
• 11:32 : OpenAI updates Europe privacy policy, adding new data categories
• 11:32 : Bloody Wolf Targets Uzbekistan, Russia Using NetSupport RAT in Spear-Phishing Campaign
• 11:11 : China-Linked DKnife Spyware Hijacking Internet Routers Since 2019
• 11:11 : APT Hackers Abuse Trusted Edge Services to Stealthily Deploy Malware
• 11:11 : New RecoverIt Tool Abuses Windows Service Failure Recovery to Execute Malicious Payloads
• 11:11 : European Commission probes intrusion into staff mobile management backend
• 11:5 : IT Security News Hourly Summary 2026-02-09 12h : 7 posts
• 10:32 : Vortex Werewolf Targets Organizations With Tor-Enabled RDP, SMB, SFTP, and SSH Backdoors
• 10:32 : Heimdal Claims Industry First with IASME-Aligned Cyber Essentials PEDM Mapping
• 10:32 : Critical FortiClientEMS Vulnerability Let Attackers Execute Malicious Code Remotely
• 10:32 : New RecoverIt Tool Exploits Windows Service Failure Recovery Functions to Execute Payload
• 10:32 : Vortex Werewolf Attacking Organizations to Gain Tor-Enabled Remote Access Over the RDP, SMB, SFTP, and SSH Protocols
• 10:32 : TeamPCP Worm Exploits Cloud Infrastructure to Build Criminal Infrastructure
• 10:32 : Social Media Platforms Earn Billions from Scam Ads
• 9:32 : Critical Fortinet FortiClient EMS Vulnerability Allows Remote Code Execution
• 9:32 : Romania’s national oil pipeline firm Conpet reports cyberattack
• 9:32 : New Paper and Tool Help Security Teams Move Beyond Blind Reliance on CISA’s KEV Catalog
• 9:32 : US Agencies Told to Scrap End of Support Edge Devices
• 9:32 : Researchers Find 40,000+ Exposed OpenClaw Instances
• 9:7 : Is it ok to reply ‘stop’ to unsolicited text messages?
• 8:33 : Amazon To Spend $200bn This Year Amid AI Bet
• 8:33 : Substack Discloses Major Data Breach
• 8:33 : A week in security (February 2 – February 8)
• 8:33 : European Commission Investigating Cyberattack
• 8:32 : BeyondTrust Fixes Critical Pre-Auth RCE Vulnerability in Remote Support and PRA
• 8:32 : OpenClaw embraces VirusTotal, CISA EOL Deadline, ransomware hits BridgePay
• 8:16 : Anthropic Targets ChatGPT Advertising In Super Bowl Spots
• 8:16 : Detecting Ransomware Using Windows Minifilters to Intercept File Change Events
• 8:16 : OpenClaw Becomes New Target in Rising Wave of Supply Chain Poisoning Attacks
• 8:16 : Black Basta Ransomware Actors Embeds BYOVD Defense Evasion Component with Ransomware Payload Itself
• 8:16 : Ransomware Detection With Windows Minifilter by Intercepting File Filter and Change Events
• 8:16 : New Telegram Phishing Attack Abuses Authentication Workflows to Obtain Full Authorized User Sessions
• 8:5 : IT Security News Hourly Summary 2026-02-09 09h : 3 posts
• 7:36 : Black Basta Ransomware Integrates BYOVD Technique to Evade Defenses
• 7:7 : Cybersquatting Attacks Exploit Trusted Brands to Steal Customer Data and Spread Malware
• 7:7 : United Airlines CISO on building resilience when disruption is inevitable
• 6:37 : Beware of Apple Pay Phishing Attack that Aims to Steal Your Payment Details
• 6:36 : Hackers Attacking IT & OSINT Professionals with New PyStoreRAT to Gain Remote Access
• 6:36 : Allama: Open-source AI security automation
• 6:23 : BeyondTrust Remote Access Products Hit by 0-Day RCE Vulnerability
• 6:23 : New Telegram Phishing Scam Hijacks Login Flow to Steal Fully Authorized User Sessions
• 6:23 : Over 5 Million Misconfigured Git Web Servers Found Exposing Secrets Online
• 6:23 : AI agents behave like users, but don’t follow the same rules
• 6:23 : Wireless Network Security: A Beginner’s Guide
• 5:34 : Emerging AI Threats and Innovations in Cybersecurity
• 5:20 : New “Crypto Scanner” Tool Helps Developers Identify Quantum Risks Before Q-Day
• 5:20 : OpenClaw Taps VirusTotal to Safeguard AI Agent Skill Ecosystem
• 5:20 : State-Backed Hackers Target Military Officials, Journalists via Signal
• 5:20 : Hackers Actively Exploiting SolarWinds Web Help Desk RCE Vulnerability to Deploy Custom Tools
• 5:20 : Hackers Leveraging Free Firebase Developer Accounts to Send Phishing Emails
• 5:5 : IT Security News Hourly Summary 2026-02-09 06h : 1 posts
• 4:36 : Indian police commissioner wants ID cards for AI agents
• 2:5 : IT Security News Hourly Summary 2026-02-09 03h : 1 posts
• 1:35 : Flickr moves to contain data exposure, warns users of phishing
• 23:5 : IT Security News Hourly Summary 2026-02-09 00h : 3 posts
• 22:58 : IT Security News Weekly Summary 06
• 22:55 : IT Security News Daily Summary 2026-02-08