📰 Cyber Feed Aggregator

📰 News

• Microsoft announces new mobile-style Windows security controls
  BleepingComputer — Tue, 10 Feb 2026 08:16:32 -0500

  Microsoft wants to introduce smartphone-style app permission prompts in Windows 11 to request user consent before apps can access sensitive resources such as files, cameras, and microphones. [...]

• ZeroDayRAT malware grants full access to Android, iOS devices
  BleepingComputer — Tue, 10 Feb 2026 08:00:00 -0500

  A new commercial mobile spyware platform dubbed ZeroDayRAT is being advertised to cybercriminals on Telegram as a tool that provides full remote control over compromised Android and iOS devices. [...]

• Unpatched SolarWinds WHD instances under active attack
  Latest Newsroom — Tue, 10 Feb 2026 11:56:45 +0000

  Unpatched SolarWinds WHD instances under active attack Read more Published Date: Feb 10, 2026 (1 hour, 43 minutes ago) Vulnerabilities has been mentioned in this article. CVE-2025-26399

• ZAST.AI Raises $6M Pre-A to Scale "Zero False Positive" AI-Powered Code Security
  The Hacker News — Tue, 10 Feb 2026 17:10:00 +0530

  January 5, 2026, Seattle, USA — ZAST.AI announced the completion of a $6 million Pre-A funding round. This investment came from the well-known investment firm Hillhouse Capital, bringing ZAST.AI's total funding close to $10 million. This marks a recognition from leading capital markets of a new solution: ending the...

• Warlock Ransomware Breaches SmarterTools Through Unpatched SmarterMail Server
  Latest Newsroom — Tue, 10 Feb 2026 10:24:00 +0000

  Warlock Ransomware Breaches SmarterTools Through Unpatched SmarterMail Server Read more Published Date: Feb 10, 2026 (3 hours, 16 minutes ago) Vulnerabilities has been mentioned in this article. CVE-2026-24858 CVE-2026-21509 CVE-2026-24423 CVE-2026-23760 CVE-2025-52691 CVE-2025-8088

• Warlock Ransomware Breaches SmarterTools Through Unpatched SmarterMail Server
  The Hacker News — Tue, 10 Feb 2026 15:54:00 +0530

  SmarterTools confirmed last week that the Warlock (aka Storm-2603) ransomware gang breached its network by exploiting an unpatched SmarterMail instance. The incident took place on January 29, 2026, when a mail server that was not updated to the latest version was compromised, the company's Chief Commercial Officer,...

• Fancy Bear Hackers Exploiting Microsoft Zero-Day Vulnerability to Deploy Backdoors and Email Stealers
  Latest Newsroom — Tue, 10 Feb 2026 10:21:37 +0000

  Fancy Bear Hackers Exploiting Microsoft Zero-Day Vulnerability to Deploy Backdoors and Email Stealers Read more Published Date: Feb 10, 2026 (3 hours, 18 minutes ago) Vulnerabilities has been mentioned in this article. CVE-2026-21509

• Axios Vulnerability Let Attackers Triggers DoS Condition and Crash Node.js Servers
  Latest Newsroom — Tue, 10 Feb 2026 10:11:34 +0000

  Axios Vulnerability Let Attackers Triggers DoS Condition and Crash Node.js Servers Read more Published Date: Feb 10, 2026 (3 hours, 28 minutes ago) Vulnerabilities has been mentioned in this article. CVE-2026-25639

• 30-Year-Old Libpng Vulnerability Exposes Millions of Systems to Code Execution Attacks
  Latest Newsroom — Tue, 10 Feb 2026 10:01:11 +0000

  30-Year-Old Libpng Vulnerability Exposes Millions of Systems to Code Execution Attacks Read more Published Date: Feb 10, 2026 (3 hours, 39 minutes ago) Vulnerabilities has been mentioned in this article.

• Dutch Authorities Confirm Ivanti Zero-Day Exploit Exposed Employee Contact Data
  The Hacker News — Tue, 10 Feb 2026 13:52:00 +0530

  The Netherlands' Dutch Data Protection Authority (AP) and the Council for the Judiciary confirmed both agencies (Rvdr) have disclosed that their systems were impacted by cyber attacks that exploited the recently disclosed security flaws in Ivanti Endpoint Manager Mobile (EPMM), according to a notice sent to the...

• Fugitive behind $73M 'pig butchering' scheme gets 20 years in prison
  BleepingComputer — Tue, 10 Feb 2026 03:17:54 -0500

  A dual Chinese and St. Kitts and Nevis national was sentenced to 20 years in prison in absentia for his role in an international cryptocurrency investment scheme (also known as pig butchering or romance baiting) that defrauded victims of more than $73 million. [...]

• Inside the Operations of Inception Framework: A Decade of Stealth, Espionage, and Global Targeting
  Brandefense — Tue, 10 Feb 2026 07:36:49 +0000

  Inception Framework is a long-running Russian-speaking cyberespionage group focused on government, diplomatic, and defense targets using stealthy spearphishing and cloud-based intrusion techniques. The post Inside the Operations of Inception Framework: A Decade of Stealth, Espionage, and Global Targeting appeared...

• Fortinet Patches Critical SQLi Flaw Enabling Unauthenticated Code Execution
  The Hacker News — Tue, 10 Feb 2026 10:08:00 +0530

  Fortinet has released security updates to address a critical flaw impacting FortiClientEMS that could lead to the execution of arbitrary code on susceptible systems. The vulnerability, tracked as CVE-2026-21643, has a CVSS rating of 9.1 out of a maximum of 10.0. "An improper neutralization of special elements used...

• Chinese cyberspies breach Singapore's four largest telcos
  BleepingComputer — Mon, 09 Feb 2026 17:47:53 -0500

  The Chinese threat actor tracked as UNC3886 breached Singapore's four largest telecommunication service providers, Singtel, StarHub, M1, and Simba, at least once last year. [...]

• Hackers exploit SolarWinds WHD flaws to deploy DFIR tool in attacks
  BleepingComputer — Mon, 09 Feb 2026 15:28:15 -0500

  Hackers are now exploiting SolarWinds Web Help Desk (WHD) vulnerabilities to gain code execution rights on exposed systems and deploy legitimate tools, including the Velociraptor forensics tools, for persistence and remote control. [...]

• China-Linked UNC3886 Targets Singapore Telecom Sector in Cyber Espionage Campaign
  The Hacker News — Mon, 09 Feb 2026 22:31:00 +0530

  The Cyber Security Agency (CSA) of Singapore on Monday revealed that the China-nexus cyber espionage group known as UNC3886 targeted its telecommunications sector. "UNC3886 had launched a deliberate, targeted, and well-planned campaign against Singapore's telecommunications sector," CSA said. "All four of...

• APT27
  Brandefense — Sat, 31 Jan 2026 11:06:00 +0000

  APT27 is a long-running China-aligned cyber espionage group targeting governments, defense contractors, and critical infrastructure through stealthy, high-impact operations. The post APT27 appeared first on Brandefense.

• APT3 (BORON): A Pioneering China-Aligned Cyber Espionage Group
  Brandefense — Fri, 30 Jan 2026 09:35:02 +0000

  APT3 (BORON) is one of the earliest China-aligned APT groups, known for exploit-driven espionage campaigns targeting defense, advanced manufacturing, and government sectors. The post APT3 (BORON): A Pioneering China-Aligned Cyber Espionage Group appeared first on Brandefense.

• FIN11 (DEV-0950 / Lace Tempest / TA505 / TEMP.Warlock / UNC902): A 1000-Word Intelligence
  Brandefense — Thu, 29 Jan 2026 09:24:56 +0000

  FIN11 is a globally active, financially motivated cybercrime group known for large-scale phishing campaigns, malware distribution, and ransomware ecosystem enablement. The post FIN11 (DEV-0950 / Lace Tempest / TA505 / TEMP.Warlock / UNC902): A 1000-Word Intelligence appeared first on Brandefense.

• From Shadow IT to Shadow AI: Clawdbot (Moltbot/Openclaw) and the Rise of Unmanaged Agent Gateways
  Brandefense — Wed, 28 Jan 2026 09:09:39 +0000

  Shadow AI is emerging as the next evolution of Shadow IT. This analysis reveals how misconfigured Clawdbot agent gateways expose LLM keys, corporate data, and integration tokens—creating a silent but critical attack surface. The post From Shadow IT to Shadow AI: Clawdbot (Moltbot/Openclaw) and the Rise of Unmanaged...

• User Scanner: Scan a username across multiple social, developer, gaming and creator platforms to see if it’s available
  OSINT - Dark Web Informer — Thu, 11 Dec 2025 20:06:04 GMT

  User Scanner: Scan a username across multiple social, developer, gaming and creator platforms to see if it’s available

• GitHub: Threat Actor Usernames Scrape
  OSINT - Dark Web Informer — Thu, 11 Dec 2025 19:14:53 GMT

  GitHub: Threat Actor Usernames Scrape

• WebSift: An Open-Source OSINT Tool for Web-Based Threat Hunting
  OSINT - Dark Web Informer — Wed, 03 Dec 2025 13:47:00 GMT

  WebSift: An Open-Source OSINT Tool for Web-Based Threat Hunting

• Scilla: Information Gathering tool - DNS / Subdomains / Ports / Directories enumeration
  OSINT - Dark Web Informer — Tue, 05 Aug 2025 17:19:27 GMT

  Scilla: Information Gathering tool - DNS / Subdomains / Ports / Directories enumeration

• OSGINT: OSINT tool to find informations about a github user (email2username, username2email, creation date ...)
  OSINT - Dark Web Informer — Sat, 02 Aug 2025 20:17:14 GMT

  OSGINT: OSINT tool to find informations about a github user (email2username, username2email, creation date ...)