Fake Huorong security site infects users with ValleyRAT
A convincing lookalike of the popular Huorong Security antivirus has been used to deliver ValleyRAT, a sophisticated Remote Access Trojan (RAT) built on the Winos4.0…
Month: February 2026
How Exposed Endpoints Increase Risk Across LLM Infrastructure
The Hacker NewsFeb 23, 2026Artificial Intelligence / Zero Trust As more organizations run their own Large Language Models (LLMs), they are also deploying more internal…
CVE-2026-1731 fuels ongoing attacks on BeyondTrust remote access products
CVE-2026-1731 fuels ongoing attacks on BeyondTrust remote access products Pierluigi Paganini February 23, 2026 Attackers are exploiting CVE-2026-1731 in BeyondTrust RS and PRA to deploy…
Recently patched RoundCube flaws now exploited in attacks
CISA flagged two Roundcube Webmail vulnerabilities as actively exploited in attacks and ordered U.S. federal agencies to patch them within three weeks. Roundcube Webmail is…
CISA Warns of Multiple Roundcube Vulnerabilities Exploited in Attacks
CISA has officially updated its Known Exploited Vulnerabilities (KEV) Catalog to include new security flaws affecting a popular webmail platform. On February 20, 2026, the…
HPE Telco Service Activator Vulnerability Allows Attackers to Bypass Access Controls
Hewlett Packard Enterprise (HPE) has issued a security bulletin warning customers of a serious vulnerability in its Telco Service Activator product that could allow attackers to remotely…
Hackers Use Excel Exploit to Hide XWorm 7.2 in JPEG Files, Hijack PCs
If a strange email about a “payment detail request” or “signed bank document” lands in your inbox, your best bet is to delete it immediately.…
€126bn in Dutch tech projects blocked by permits and grid limits
Former ASML CEO Peter Wennink has identified €126bn in investment potential across four strategic technology domains, but argues regulatory barriers are blocking deployment. His deregulation…
AI-powered campaign compromises 600 FortiGate systems worldwide
AI-powered campaign compromises 600 FortiGate systems worldwide Pierluigi Paganini February 23, 2026 A Russian-speaking cybercriminal used commercial generative AI tools to hack over 600 FortiGate…
Starkiller Phishing Kit Clones Real Login Pages to Evade MFA Protections
New phishing framework Starkiller is enabling more convincing, scalable credential theft by proxying real login pages and bypassing multi-factor authentication (MFA), significantly raising the bar…
Malicious npm Packages Harvest Crypto Keys, CI Secrets, and API Tokens
Cybersecurity researchers have disclosed what they say is an active “Shai-Hulud-like” supply chain worm campaign that has leveraged a cluster of at least 19 malicious…
Aussie Broadband lifts 2028 strategic “ambition” to 1.5 million customers
Aussie Broadband has revised its strategic ambition for 2028 upward to have 1.5 million NBN broadband customers, half a million more than initially projected. This…