Off-the-shelf tools helped Russian-speaking cybercrime group run riot Cybercriminals armed with off-the-shelf generative AI tools compromised more than 600 internet-exposed FortiGate firewalls across 55 countries in just over a month, according to a new incident report from AWS.… This article…
Hundreds of FortiGate Firewalls Hacked in AI-Powered Attacks: AWS
Threat actors relying on AI have been exploiting exposed ports and weak credentials to take over FortiGate devices. The post Hundreds of FortiGate Firewalls Hacked in AI-Powered Attacks: AWS appeared first on SecurityWeek. This article has been indexed from SecurityWeek…
Romanian Hacker Pleads Guilty to Selling Access to US State Network
Catalin Dragomir admitted in a US court to selling access to an Oregon state government office’s network. The post Romanian Hacker Pleads Guilty to Selling Access to US State Network appeared first on SecurityWeek. This article has been indexed from…
Leading Semiconductor Supplier Advantest Hit by Ransomware Attack
Advantest, a Japanese specialist in testing computer chips for major semiconductor manufacturers, has deployed incident response protocols following a cybersecurity incident This article has been indexed from www.infosecurity-magazine.com Read the original article: Leading Semiconductor Supplier Advantest Hit by Ransomware Attack
AI-powered campaign compromises 600 FortiGate systems worldwide
A Russian-speaking cybercriminal used commercial generative AI tools to hack over 600 FortiGate devices across 55 countries. Amazon Threat Intelligence reports that a Russian-speaking, financially motivated threat actor used commercial generative AI services to compromise more than 600 FortiGate devices…
When AI Knows Something is Wrong, But No One is Accountable
When AI systems detect violent intent but private companies decide whether it’s “imminent enough” to alert authorities, we are operating inside a regulatory void. A recent Canadian tragedy exposes the uncomfortable reality that tech platforms are quietly acting as risk…
Malicious npm Packages Harvest Crypto Keys, CI Secrets, and API Tokens
Cybersecurity researchers have disclosed what they say is an active “Shai-Hulud-like” supply chain worm campaign that has leveraged a cluster of at least 19 malicious npm packages to enable credential harvesting and cryptocurrency key theft. The campaign has been codenamed…
WhatsApp Tests Optional Account Password for Logins
WhatsApp is working on a new security feature called an optional login password that could make account hijacking harder. Thank you for being a Ghacks reader. The post WhatsApp Tests Optional Account Password for Logins appeared first on gHacks. This…
IT Security News Hourly Summary 2026-02-23 12h : 11 posts
11 posts were published in the last hour 11:2 : Starkiller Phishing Kit Clones Real Login Pages to Evade MFA Protections 11:2 : UK Government-Backed Cyber Security Programme Alumni Raise £47.4m in Follow-On Investment 11:2 : Recent RoundCube Webmail Vulnerability…
Starkiller Phishing Kit Clones Real Login Pages to Evade MFA Protections
New phishing framework Starkiller is enabling more convincing, scalable credential theft by proxying real login pages and bypassing multi-factor authentication (MFA), significantly raising the bar for defenders. Traditional phishing kits typically serve static HTML clones of popular login portals, which…
UK Government-Backed Cyber Security Programme Alumni Raise £47.4m in Follow-On Investment
Innovate UK has announced that alumni of its Cyber Security Academic Startup Accelerator Programme (CyberASAP) have secured £47.4 million in post-programme funding over the past nine years, with 68% of this funding coming from private investment (including angel investment, venture…
Recent RoundCube Webmail Vulnerability Exploited in Attacks
Patched in December 2025, the exploited flaw leads to XSS attacks via the animate tags in SVG documents. The post Recent RoundCube Webmail Vulnerability Exploited in Attacks appeared first on SecurityWeek. This article has been indexed from SecurityWeek Read the…
Mississippi Hospital System Closes All Clinics After Ransomware Attack
A ransomware attack forced the University of Mississippi Medical Center to close all of its roughly three dozen clinics around the state and cancel elective procedures. The post Mississippi Hospital System Closes All Clinics After Ransomware Attack appeared first on…
Police seize 100,000 stolen Facebook credentials in cybercrime raid
Officers from Poland’s Central Bureau for Combating Cybercrime (CBZC) dismantled an organized group that used phishing to seize Facebook accounts and extract BLIK payment codes from victims. Arrest (Source: Poland’s Central Bureau for Combating Cybercrime) Eleven members of an organized…
Jackpotting Surge Costs Banks Over $20m, Warns FBI
A new FBI Flash alert claims $20m was lost to ATM jackpotting attacks in 2025 alone This article has been indexed from www.infosecurity-magazine.com Read the original article: Jackpotting Surge Costs Banks Over $20m, Warns FBI
AI vs. AI: Why cybersecurity’s new front line is behavioral intelligence
Behavioral analytics and automation in the age of AI-driven cyber attacks. This article has been indexed from Cybersecurity Dive – Latest News Read the original article: AI vs. AI: Why cybersecurity’s new front line is behavioral intelligence
CISA Warns of Actively Exploited Roundcube Vulnerabilities
On February 20, 2026, the Cybersecurity and Infrastructure Security Agency (CISA) updated its Known Exploited Vulnerabilities (KEV) Catalog by adding two critical flaws in Roundcube Webmail. These vulnerabilities, CVE-2025-49113 and CVE-2025-68461, are being actively exploited by threat actors. Roundcube, a…
DPRK Linked Operators Sustain Aggressive Crypto Targeting 12 Months After Bybit Breach
February 21, 2026, marks one year since North Korea (DPRK)-linked operators stole approximately $1.46 billion in cryptoassets from Dubai-based exchange Bybit — the largest confirmed crypto theft in history. Rather than slowing down after that breach, the group has only…
Google Suspends OpenClaw Users from Antigravity AI After OAuth Token Abuse
Google has suspended access to its Antigravity AI platform for numerous users of the open-source tool OpenClaw, sparking backlash over aggressive enforcement of terms of service (ToS). The move targets developers leveraging OpenClaw’s OAuth plugin to tap into subsidized Gemini…
Ransomware Readiness is the Difference Between A Bad Day at Work and No More Workplace
Ransomware is now a routine business risk. True resilience comes from governance, tested incident response plans, recovery readiness, legal preparation, and trained leadership—not just security technology. The post Ransomware Readiness is the Difference Between A Bad Day at Work and…
jsPDF Flaw Exposes Millions of Developers to Object Injection
A serious security flaw in jsPDF, a widely used JavaScript library for generating PDFs in web browsers, puts millions of developers and their users at risk. CVE-2026-25755 allows attackers to perform PDF Object Injection through the library’s addJS method. This…
Every day in every way, passwords are getting worse and worse
The only good password is no password at all Passwords turn 65 this year. They became a feature of computer users’ lives in 1961, with MIT’s Compatible Time-Sharing System (CTSS). Before then, sysops were real sysops. All jobs went through…
PayPal Data Breach Led to Fraudulent Transactions
PayPal blamed an application error for the exposure of customer personal information for nearly 6 months. The post PayPal Data Breach Led to Fraudulent Transactions appeared first on SecurityWeek. This article has been indexed from SecurityWeek Read the original article:…
Quality Assurance for Fintech Risk and Compliance Systems in the Age of AI
Fintech operates under constant regulatory pressure. At the same time, competitive pressure demands speed, innovation, and intelligent automation. Risk and compliance systems sit at the…Read More The post Quality Assurance for Fintech Risk and Compliance Systems in the Age of…