Fortinet products targeted Threat actors are targeting Fortinet FortiGate devices via automated attacks that make rogue accounts and steal firewall settings info. The campaign began earlier this year when threat actors exploited an unknown bug in the devices’ single-sign-on (SSO)…
Author: IT Security News Bot
Unsecured Database Exposes 149 Million Logins Linked to Infostealer Malware Operations
Appearing without warning on the internet, a massive collection of personal login details became reachable to any passerby. This trove – spanning about 96 gigabytes – included close to 150 million distinct credentials gathered from various sources. Not shielded…
ACF Plugin Flaw Exposes 50,000 WordPress Sites to Admin Takeover
A critical vulnerability in the Advanced Custom Fields: Extended (ACF Extended) WordPress plugin has exposed around 50,000 sites to potential hacker takeovers. Tracked as CVE-2025-14533, this flaw affects versions up to 0.9.2.1 and allows unauthenticated attackers to gain administrator…
BridgePay Payment Gateway Hit by Ransomware, Causing Nationwide Outages
BridgePay Network Solutions, a major U.S. payment gateway provider, confirmed a ransomware attack caused a widespread outage, disrupting card processing for merchants nationwide. The outage began early on February 6, 2026, around 3:29 a.m. EST with degraded performance in systems…
IT Security News Hourly Summary 2026-02-07 15h : 3 posts
3 posts were published in the last hour 13:22 : Hackers Linked to State Actors Target Signal Messages of Military Officials and Journalists 13:22 : Organizations Urged to Replace Discontinued Edge Devices 13:22 : China-Linked DKnife Threat Underscores Risks to…
Hackers Linked to State Actors Target Signal Messages of Military Officials and Journalists
Germany’s top security agencies issued an urgent warning yesterday regarding a sophisticated cyber espionage campaign targeting high-ranking officials and journalists across Europe. The Federal Office for the Protection of the Constitution (BfV) and the Federal Office for Information Security (BSI)…
Organizations Urged to Replace Discontinued Edge Devices
Edge devices that are no longer supported have been targeted in attacks by state-sponsored hackers, the US says. The post Organizations Urged to Replace Discontinued Edge Devices appeared first on SecurityWeek. This article has been indexed from SecurityWeek Read the…
China-Linked DKnife Threat Underscores Risks to Network Edge Devices
Despite adversaries increasing their focus on the network edge, recent findings suggest a sustained and deliberate effort to weaponize routing infrastructure itself for surveillance and delivery purposes. An attacker can observe, modify, and selectively redirect data streams in transit…
Apple Pay Users Targeted by Phishing Attack Aimed at Stealing Payment Details
A sophisticated new phishing campaign is targeting Apple Pay users, leveraging high-quality email design and social engineering to bypass security measures. Unlike typical scams that rely on poorly spelled emails and suspicious links, this campaign uses a “hybrid” approach involving…
Study confirms experience beats youthful enthusiasm
Research shows productivity and judgment peak decades after graduation A growing body of research continues to show that older workers are generally more productive than younger employees.… This article has been indexed from The Register – Security Read the original…
German Agencies Warn of Signal Phishing Targeting Politicians, Military, Journalists
Germany’s Federal Office for the Protection of the Constitution (aka Bundesamt für Verfassungsschutz or BfV) and Federal Office for Information Security (BSI) have issued a joint advisory warning of a malicious cyber campaign undertaken by a likely state-sponsored threat actor…
State-Backed Hackers Target Military Officials and Journalists on Signal in Latest Cyberattack
German intelligence and security agencies have issued a high-priority warning regarding a sophisticated cyber espionage campaign targeting military officials, diplomats, and investigative journalists across Europe. The Bundesamt für Verfassungsschutz (BfV) and the Federal Office for Information Security (BSI) identified the…
Moltbook, the Social Network for AI Agents, Exposed Real Humans’ Data
Plus: Apple’s Lockdown mode keeps the FBI out of a reporter’s phone, Elon Musk’s Starlink cuts off Russian forces, and more. This article has been indexed from Security Latest Read the original article: Moltbook, the Social Network for AI Agents,…
CISA pushes Federal agencies to retire end-of-support edge devices
CISA ordered U.S. federal agencies to improve management of edge network devices and replace unsupported ones within 12–18 months. The U.S. Cybersecurity and Infrastructure Security Agency (CISA) instructed U.S. federal civilian agencies to strengthen how they manage edge network devices…
BeyondTrust Remote Access Products 0-Day Vulnerability Allows Remote Code Execution
BeyondTrust has disclosed a critical pre-authentication remote code execution vulnerability affecting its Remote Support (RS) and Privileged Remote Access (PRA) platforms, potentially exposing thousands of organizations to system compromise. The flaw, tracked as CVE-2026-1731 and classified under CWE-78 (OS Command…
OpenClaw Partners with VirusTotal to Secure AI Agent Skill Marketplace
OpenClaw announced today a partnership with VirusTotal, Google’s threat intelligence platform, to implement automated security scanning for all skills published to ClawHub, its AI agent marketplace. The integration marks the first comprehensive security initiative for the emerging AI agent ecosystem.…
OpenClaw v2026.2.6 Released With Support for Opus 4.6, GPT-5.3-Codex and Safety Scanner
OpenClaw v2026.2.6 enhances security in response to growing concerns about malicious skills within its ecosystem. This release features a code safety scanner and model support while addressing recent vulnerabilities highlighted by researchers. OpenClaw, an open-source framework for local AI agents…
IT Security News Hourly Summary 2026-02-07 09h : 2 posts
2 posts were published in the last hour 7:34 : Cybercriminals Use Malicious Cybersquatting Attacks to Distribute Malware and Hijack Data 7:34 : nmapUnleashed Makes Nmap Scanning More Comfortable and Effective
Cybercriminals Use Malicious Cybersquatting Attacks to Distribute Malware and Hijack Data
Digital squatting has evolved from a simple trademark nuisance into a dangerous cybersecurity threat. In 2025, the World Intellectual Property Organization (WIPO) handled a record-breaking 6,200 domain disputes. This represents a 68% increase since 2020. Security experts warn that criminal…
nmapUnleashed Makes Nmap Scanning More Comfortable and Effective
nmapUnleashed emerges as a powerful CLI wrapper enhancing Nmap’s capabilities for penetration testers and network auditors. Released in late January 2026 by developer Sharkeonix, this open-source tool streamlines complex scans while retaining full Nmap compatibility. nmapUnleashed, or “nu,” wraps Nmap…