In February 2026, data obtained from the fintech lending platform Figure was publicly posted online. The exposed data, dating back to January 2026, contained over 900k unique email addresses along with names, phone numbers, physical addresses and dates of birth.…
California Fines Disney $2.75 Million in Record CCPA Case
California regulators have issued their largest penalty yet under the California Consumer Privacy Act, announcing a $2.75 million settlement with The Walt Disney Company after investigators found that consumer opt-out requests were not consistently honored across devices and streaming platforms.…
ISC Stormcast For Wednesday, February 18th, 2026 https://isc.sans.edu/podcastdetail/9814, (Wed, Feb 18th)
This post doesn’t have text content, please click on the link below to view the original article. This article has been indexed from SANS Internet Storm Center, InfoCON: green Read the original article: ISC Stormcast For Wednesday, February 18th, 2026…
DigitStealer Gains Attention as macOS-Targeting Infostealer Exposes Key Infrastructure Weaknesses
DigitStealer, a sophisticated information-stealing malware targeting macOS systems, has recently surged in activity, drawing significant attention from the cybersecurity community. First emerging in late 2025, this malicious software specifically targets Apple M2 devices, distinguishing itself from generic threats. It operates…
AI-Driven Threat Detection for Quantum-Enabled Side-Channel Attacks
Learn how to protect your AI infrastructure from quantum-enabled side-channel attacks using post-quantum cryptography and ai-driven threat detection for MCP. The post AI-Driven Threat Detection for Quantum-Enabled Side-Channel Attacks appeared first on Security Boulevard. This article has been indexed from…
Fraudsters Use Postal Mail to Target Crypto Hardware Wallet Owners
Cybercriminals are using traditional mail services to target cryptocurrency users who own hardware wallets manufactured by Trezor and Ledger. The attackers are distributing printed letters that falsely present themselves as official security notifications and attempt to trick recipients into revealing…
China-linked snoops have been exploiting Dell 0-day since mid-2024, using ‘ghost NICs’ to avoid detection
Full scale of infections remains ‘unknown’ China-linked attackers exploited a maximum-severity hardcoded-credential bug in Dell RecoverPoint for Virtual Machines as a zero-day since at least mid-2024. It’s all part of a long-running effort to backdoor infected machines for long-term access,…
Intellexa’s Predator spyware used to hack iPhone of journalist in Angola, research says
Amnesty International says it found evidence that a government customer of Intellexa, a sanctioned surveillance vendor, used its Predator spyware against a prominent journalist in Angola. This article has been indexed from Security News | TechCrunch Read the original article:…
Understanding User Managed Access
Explore User Managed Access (UMA) 2.0. Learn how this protocol enables granular sharing, party-to-party delegation, and secure AI agent authorization. The post Understanding User Managed Access appeared first on Security Boulevard. This article has been indexed from Security Boulevard Read…
Can Agentic AI operate independently of continuous human oversight?
How Do Non-Human Identities Impact Security in a Cloud Environment? Have you ever pondered how non-human identities (NHIs) play a role? Where organizations migrate to cloud-based systems, security is dramatically shifting. NHIs, essentially machine identities, are rapidly becoming crucial to…
How are DevOps teams empowered by automated secrets rotation?
How Can Automated Secrets Rotation Empower DevOps Teams? What happens when the seamless flow of DevOps is disrupted by security incidents? With DevOps teams continue to embrace the rapid deployment of applications and services across the cloud, the need for…
How secure are Agentic AI-driven compliance audits?
What Are Non-Human Identities, and Why Are They Critical for Secure Cloud Environments? Ensuring the security of non-human identities (NHIs) is paramount for organizations operating in cloud environments. NHIs often refer to machine identities crucial for protecting sensitive data and…
Are the investments in Agentic AI security systems justified?
What Are Non-Human Identities in Cybersecurity? Have you ever wondered what really goes on behind the scenes when machines communicate securely with one another? The answer resides in a concept known as Non-Human Identities (NHIs), which are critical for modern…
Securing the New Control Plane: Introducing Static Scanning for AI Agent Configurations
Announcing the launch of AI Agent Configuration Scanning. The post Securing the New Control Plane: Introducing Static Scanning for AI Agent Configurations appeared first on Security Boulevard. This article has been indexed from Security Boulevard Read the original article: Securing…
IT Security News Hourly Summary 2026-02-18 00h : 4 posts
4 posts were published in the last hour 22:55 : IT Security News Daily Summary 2026-02-17 22:34 : Japan’s Washington Hotel Reports Ransomware Attack 22:13 : Trust No Agent: How to Secure Autonomous Tools on Your Machine 22:13 : China…
IT Security News Daily Summary 2026-02-17
169 posts were published in the last hour 22:34 : Japan’s Washington Hotel Reports Ransomware Attack 22:13 : Trust No Agent: How to Secure Autonomous Tools on Your Machine 22:13 : China remains embedded in US energy networks ‘for the…
Japan’s Washington Hotel Reports Ransomware Attack
Washington Hotel, located in Japan, confirmed a ransomware attack on internal servers and is investigating the extent of the incident. The post Japan’s Washington Hotel Reports Ransomware Attack appeared first on eSecurity Planet. This article has been indexed from eSecurity…
Trust No Agent: How to Secure Autonomous Tools on Your Machine
Two weeks ago, one of my friends called me and asked if it was a good idea to install OpenClaw on a personal machine. The immediate thought that crossed my mind was how about security and how to reduce the…
China remains embedded in US energy networks ‘for the purpose of taking it down’
Plus 3 new goon squads targeted critical infrastructure last year Three new threat groups began targeting critical infrastructure last year, while a well-known Beijing-backed crew – Volt Typhoon – continued to compromise cellular gateways and routers, and then break into…
OpenClaw Flaw Enables AI Log Poisoning Risk
OpenClaw versions prior to 2026.2.13 logged unsanitized WebSocket headers, creating a potential AI log poisoning risk. The post OpenClaw Flaw Enables AI Log Poisoning Risk appeared first on eSecurity Planet. This article has been indexed from eSecurity Planet Read the…
Critical Vulnerabilities in Ivanti EPMM Exploited
We discuss widespread exploitation of Ivanti EPMM zero-day vulns CVE-2026-1281 and CVE-2026-1340. Attackers are deploying web shells and backdoors. The post Critical Vulnerabilities in Ivanti EPMM Exploited appeared first on Unit 42. This article has been indexed from Unit 42…
NDSS 2025 – LADDER: Multi-Objective Backdoor Attack Via Evolutionary Algorithm
Session 12D: ML Backdoors Authors, Creators & Presenters: Dazhuang Liu (Delft University of Technology), Yanqi Qiao (Delft University of Technology), Rui Wang (Delft University of Technology), Kaitai Liang (Delft University of Technology), Georgios Smaragdakis (Delft University of Technology) PAPER LADDER:…
CVE-2026-25903 Impacts Apache NiFi Users
CVE-2026-25903 allows lower-privileged users to modify restricted components in affected Apache NiFi versions. The post CVE-2026-25903 Impacts Apache NiFi Users appeared first on eSecurity Planet. This article has been indexed from eSecurity Planet Read the original article: CVE-2026-25903 Impacts Apache…
Malware in the Wild as Malicious Fork of Legitimate Triton App Surfaces on GitHub
A malicious fork of the legitimate macOS application Triton has surfaced on GitHub, exploiting open-source repositories to distribute malware. The fraudulent repository, created under the account “JaoAureliano,” appeared as a copy of the original Triton app developed by Otávio C.…