IT Security News Daily Summary 2026-02-13

150 posts were published in the last hour

• 22:36 : New threat actor UAT-9921 deploys VoidLink against enterprise sectors
• 21:38 : 260K Users Exposed in AI Extension Scam
• 21:38 : Fintech lending giant Figure confirms data breach
• 21:9 : CISO’s guide: How to prevent business email compromise
• 21:9 : Malicious Chrome Extensions Hijack 500,000 VK Accounts in Stealth Campaign
• 21:9 : Survey: Most Security Incidents Involve Identity Attacks
• 20:38 : Sex toys maker Tenga says hacker stole customer information
• 20:22 : The End is Just the Beginning of Better Security: Enhanced Vulnerability Management with OpenEoX
• 20:5 : IT Security News Hourly Summary 2026-02-13 21h : 6 posts
• 19:34 : Why PAM Implementations Struggle
• 19:16 : Quantum-Safe Trading Systems: Preparing Risk Engines for the Post-Quantum Threat
• 19:15 : News brief: 6 Microsoft zero days and a warning from CISA
• 19:15 : 1,800+ Windows Servers Hit by BADIIS SEO Malware
• 19:15 : Valentine’s Day: Cyber Experts Heed Caution When Looking For Love (and Gifts) Online
• 19:15 : Attackers finally get around to exploiting critical Microsoft bug from 2024
• 18:36 : Randall Munroe’s XKCD ‘International Station’
• 18:36 : State-Backed Hackers Are Turning to AI Tools to Plan, Build, and Scale Cyber Attacks
• 18:15 : CISA Announces New Town Halls to Engage with Stakeholders on Cyber Incident Reporting for Critical Infrastructure
• 18:15 : Malicious Chrome AI Extensions Attacking 260,000 Users via Injected IFrames
• 17:34 : Check Point Unveils a New Security Strategy for Enterprises in the AI Age
• 17:34 : Google Links China, Iran, Russia, North Korea to Coordinated Defense Sector Cyber Operations
• 17:34 : Google Ties Suspected Russian Actor to CANFAIL Malware Attacks on Ukrainian Orgs
• 17:22 : What Interoperability in Healthcare Really Means for Security and Privacy
• 17:22 : Scaling Enterprise RPA With Secure Automation and Robust Governance
• 17:22 : Ransomware Groups Claimed 2,000 Attacks in Just Three Months
• 17:22 : A Decade of NSE 8: Why the Industry’s Highest Technical Bar Still Matters
• 17:22 : The Rise of Continuous Penetration Testing-as-a-Service (PTaaS)
• 17:5 : IT Security News Hourly Summary 2026-02-13 18h : 11 posts
• 16:40 : Corporate AI Use Shifts from Hypothetical Risk to Everyday Reality, New Research Shows
• 16:40 : NDSS 2025 – Density Boosts Everything
• 16:18 : Smart Office Hacking Challenges
• 16:18 : How to Combat Insider Threats in the Age of Synthetic Identities
• 16:18 : From Errors to Automation: Securing Your Crypto Payroll In 2026
• 16:18 : Agentic AI In Banking: Driving Operational Efficiency and Competitive Advantage
• 16:18 : Amazon’s Ring cancels partnership with Flock, a network of AI cameras used by ICE, feds, and police
• 16:18 : Dutch phone giant Odido says millions of customers affected by data breach
• 16:18 : Panera Bread Reportedly Hit by ShinyHunters Data Breach, 14 Million Records Exposed
• 16:18 : UAT-9921 Deploys VoidLink Malware to Target Technology and Financial Sectors
• 16:18 : Phishing Prevention Guide
• 15:32 : Attackers exploit BeyondTrust CVE-2026-1731 within hours of PoC release
• 15:32 : In Other News: Google Looks at AI Abuse, Trump Pauses China Bans, Disney’s $2.7M Fine
• 15:32 : Shadowserver Finds 6,000 Exposed SmarterMail Servers Hit by Critical Flaw
• 15:32 : Snap Faces Lawsuit From Creators Over Alleged AI Data Misuse
• 15:32 : Cyber Briefing: 2026.02.13
• 15:18 : OpenClaw 2026.2.12 Released With Fix for 40+ Security Issues
• 15:18 : New ClickFix Attack Wave Targeting Windows Systems to Deploy StealC Stealer
• 15:18 : Chrome Extensions Infected 500K Users to Hijack VKontakte Accounts
• 15:18 : Palo Alto Pulls Back from Linking China to Spying Campaign
• 15:18 : HoneyMyte Upgrades CoolClient: New Browser Stealers Target Asia, Europe
• 15:18 : Bitwarden Launches Cupid Vault Feature
• 15:18 : Leaked Files Show China Rehearsing Cyberattacks
• 15:18 : Epstein-Linked Hacker Removed From Black Hat
• 15:18 : Ask Me Anything Cyber: Pursuing a Degree in Cybersecurity
• 14:34 : Windows 11 Notepad Lets Files Run Silently
• 14:34 : Malicious Chrome Extensions Steal Data
• 14:34 : ApolloMD Breach Impacts 626,540 People
• 14:34 : Odido Announces Data Breach
• 14:34 : Ransomware Halts Payments For BTU Customers
• 14:18 : Unzipping the Threat: How to Block Malware Hidden in Password-Protected ZIP Files
• 14:18 : Odido CRM Data Breach Exposes 6.2M Customer Records
• 14:18 : How to find and remove credential-stealing Chrome extensions
• 14:5 : IT Security News Hourly Summary 2026-02-13 15h : 7 posts
• 13:34 : Twisted 2D magnet creates skyrmions for ultra dense data storage
• 13:34 : Bitcoin trading firm CEO gets 20 years for operating $200 million Ponzi scheme
• 13:34 : Top Cybersecurity Job Openings (January 2026)
• 13:22 : Phishing Campaigns Target Users with Fake Meeting Invites and Update Alerts via Zoom, Teams, and Google Meet
• 13:22 : New XWorm RAT Campaign Uses Themed Phishing Lures and CVE‑2018‑0802 Excel Exploit to Evade Detection
• 13:22 : Zimbra Security Update – Patch for XSS, XXE & LDAP Injection Vulnerabilities
• 13:22 : Check Point Announces Trio of Acquisitions Amid Solid 2025 Earnings Beat
• 12:34 : CVE-2025-64712 in Unstructured.io Puts Amazon, Google, and Tech Giants at Risk of Remote Code Execution
• 12:34 : Dutch Carrier Odido Discloses Data Breach Impacting 6 Million
• 12:34 : Malicious Chrome Extensions Caught Stealing Business Data, Emails, and Browsing History
• 12:34 : Munich Security Conference: Cyber Threats Lead G7 Risk Index, Disinformation Ranks Third
• 12:13 : KnowBe4 Appoints Kelly Morgan as Chief Customer Officer to Drive Global Customer Lifecycle Strategy
• 12:13 : Top Dutch telco Odido admits 6.2M customers caught in contact system caper
• 11:34 : Static Design to Adaptive Control: How Artificial Intelligence Improves Modern Material Handling Equipment Systems
• 11:34 : The $17 Billion Wake-Up Call: Securing Crypto in the Age of AI Scams
• 11:34 : Google: state-backed hackers exploit Gemini AI for cyber recon and attacks
• 11:34 : BeyondTrust Vulnerability Targeted by Hackers Within 24 Hours of PoC Release
• 11:34 : npm’s Update to Harden Their Supply Chain, and Points to Consider
• 11:34 : Fake AI Assistants in Google Chrome Web Store Steal Passwords and Spy on Emails
• 11:5 : IT Security News Hourly Summary 2026-02-13 12h : 14 posts
• 11:5 : Malicious Chrome AI Extensions Target 260,000 Users with Injected Iframes
• 11:5 : Chrome Extensions Infect 500K Users to Hijack VKontakte Accounts
• 11:5 : Surge in AI-Driven Phishing Attacks and QR Code Quishing in 2025 Spam and Phishing Report
• 11:4 : OysterLoader Multi‑Stage Evasion Loader Uncovered with Advanced Obfuscation and Rhysida Ransomware Links
• 11:4 : CISA Warns of Exploited SolarWinds, Notepad++, Microsoft Vulnerabilities
• 11:4 : Hackers probe, exploit newly patched BeyondTrust RCE flaw (CVE-2026-1731)
• 10:32 : Check Point Sets Out Four-Pillar Blueprint for Securing the AI-Driven Enterprise
• 10:32 : Post‑Quantum Authentication: How Consumer Apps Can Stay Secure in a Quantum‑Ready World?
• 10:31 : The Law of Cyberwar is Pretty Discombobulated
• 10:31 : Proofpoint acquires Acuvity to secure AI and agent-driven workflows
• 10:16 : Top Security Incidents of 2025:  The Emergence of the ChainedShark APT Group
• 10:16 : OpenAI released GPT-5.3-Codex-Spark, a real-time coding model
• 10:15 : Police arrests distributor of JokerOTP password-stealing bot
• 10:15 : Brutus: Open-source credential testing tool for offensive security
• 10:15 : Researchers Observe In-the-Wild Exploitation of BeyondTrust CVSS 9.9 Vulnerability
• 9:32 : U.S. CISA adds SolarWinds Web Help Desk, Notepad++, Microsoft Configuration Manager, and Apple devices flaws to its Known Exploited Vulnerabilities catalog
• 9:32 : Fake shops target Winter Olympics 2026 fans
• 9:32 : Why secure OT protocols still struggle to catch on
• 9:9 : OpenClaw 2026.2.12 Released to Patch Over 40 Security Vulnerabilities
• 9:9 : New XWorm RAT Campaign Leverages Phishing and CVE-2018-0802 Excel Exploit to Bypass Detection
• 9:9 : CISA Alerts Users to Notepad++ Flaw Allowing Code Execution
• 8:32 : Portugal Approves Social Media Restrictions For Under-16s
• 8:32 : Chrome 145 Patches 11 Vulnerabilities
• 8:31 : Hackers abuse Gemini, Apple patches ancient bug, CISA criticizes shutdown
• 8:20 : Italian Tax Police Raid Amazon’s Milan Office
• 8:20 : CISA Issues Urgent Warning on Microsoft Configuration Manager SQL Injection Vulnerability Under Active Exploitation
• 8:20 : OysterLoader Evasion Tactics Exposed: Advanced Obfuscation and Rhysida Ransomware Ties Uncovered
• 8:20 : Over 1,800 Windows Servers Compromised by BADIIS Malware in Large-Scale SEO Poisoning Campaign
• 8:20 : Critical Vulnerability in Next-Mdx-Remote Allows Arbitrary Code Execution in React Server-Side Rendering
• 8:20 : AI Governance. When AI becomes an Identity.
• 8:20 : Why Every Enterprise Needs a Strong Identity and Access Management Framework
• 8:20 : CVE-2026-1281 & CVE-2026-1340: Actively Exploited Pre-Authentication RCE in Ivanti EPMM
• 8:20 : 150+ Key Compliance Statistics: AI, Data Privacy, Cybersecurity & Regulatory Trends to Know in 2026
• 8:5 : IT Security News Hourly Summary 2026-02-13 09h : 8 posts
• 7:31 : Enforcing piracy policy earned helpdesk worker death threats
• 7:31 : Ubuntu 24.04.4 LTS arrives with cumulative security and bug fixes
• 7:31 : Arctic Wolf expands MSP Security with Aurora Managed Endpoint Defense
• 7:18 : UK’s Digital ID U-Turn: What It Means for Security
• 7:18 : next-mdx-remote Vulnerability Allows Arbitrary Code Execution in React SSR
• 7:17 : AI-Driven Phishing and QR Code Quishing Surge in 2025 Spam and Phishing Report
• 7:17 : China Revives Tianfu Cup Hacking Contest Under Increased Secrecy
• 7:17 : Edge computing’s biggest lie: “We’ll patch it later”
• 6:31 : New ClickFix Attack Wave Targets Windows Systems to Deploy StealC Stealer
• 6:20 : Attackers are moving at machine speed, defenders are still in meetings
• 6:20 : Cyber risk is becoming a hold-period problem for private equity firms
• 5:34 : Zimbra Issues Security Update to Address XSS, XXE, and LDAP Injection Flaws
• 5:34 : BADIIS Malware Targets Over 1,800 Windows Servers in Massive SEO Poisoning Attack
• 5:34 : CISA Warns of Notepad++ Code Execution Vulnerability Exploited in Attacks
• 5:34 : Cross-Platform Spyware Campaigns Target Indian Defense and Government Sectors
• 5:34 : Exploited Microsoft Vulnerabilities, Phishing Tactics & Romance Scams: Cybersecurity Today
• 5:15 : BeyondTrust RCE Vulnerability Under Active Exploitation – Urgent Patch Released
• 5:15 : ASU’s CISO: AI craze is a strategic opportunity for security
• 5:15 : New infosec products of the week: February 13, 2026
• 3:15 : AI-Powered Knowledge Graph Generator & APTs, (Thu, Feb 12th)
• 3:15 : Naming and shaming: How ransomware groups tighten the screws on victims
• 3:15 : Closing the Cross-Platform Security Gap in Citizen Developer Apps
• 2:9 : ISC Stormcast For Friday, February 13th, 2026 https://isc.sans.edu/podcastdetail/9808, (Fri, Feb 13th)
• 2:9 : Understanding WS-Trust: A Guide to Secure Token Exchange
• 2:9 : Understanding Authentication Methods
• 2:9 : Demystifying SAML: The Basics of Secure Single Sign-On
• 2:9 : Examples of SAML Providers
• 2:5 : IT Security News Hourly Summary 2026-02-13 03h : 2 posts
• 1:13 : RFC 4058 – Authentication Protocol Overview
• 1:13 : Anomaly Detection in Post-Quantum Encrypted MCP Metadata Streams
• 0:16 : From challenge to champion: Elevate your vulnerability management strategy
• 23:13 : 30+ Chrome extensions disguised as AI chatbots steal users’ API keys, emails, other sensitive data
• 23:5 : IT Security News Hourly Summary 2026-02-13 00h : 6 posts
• 22:55 : IT Security News Daily Summary 2026-02-12