Keenadu Firmware Backdoor Infects Android Tablets via Signed OTA Updates
A new Android backdoor that's embedded deep into the device firmware can silently harvest data and remotely control its behavior, according to new findings from Kaspersky. The Russian cybersecurity vendor…
SmartLoader Attack Uses Trojanized Oura MCP Server to Deploy StealC Infostealer
Ravie LakshmananFeb 17, 2026Infostealer / Artificial Intelligence Cybersecurity researchers have disclosed details of a new SmartLoader campaign that involves distributing a trojanized version of a Model Context Protocol (MCP) server…
How Modern SOC Teams Use AI and Context to Investigate Cloud Breaches Faster
The Hacker NewsFeb 17, 2026Cloud Security / Digital Forensics Cloud attacks move fast — faster than most incident response teams. In data centers, investigations had time. Teams could collect disk…
Microsoft Finds “Summarize with AI” Prompts Manipulating Chatbot Recommendations
Ravie LakshmananFeb 17, 2026Enterprise Security / Artificial Intelligence New research from Microsoft has revealed that legitimate businesses are gaming artificial intelligence (AI) chatbots via the "Summarize with AI" button that's…
Apple Tests End-to-End Encrypted RCS Messaging in iOS 26.4 Developer Beta
Ravie LakshmananFeb 17, 2026Encryption / Mobile Security Apple on Monday released a new developer beta of iOS and iPadOS with support for end-to-end encryption (E2EE) in Rich Communications Services (RCS)…
Study Uncovers 25 Password Recovery Attacks in Major Cloud Password Managers
Ravie LakshmananFeb 16, 2026Vulnerability / Encryption A new study has found that multiple cloud-based password managers, including Bitwarden, Dashlane, and LastPass, are susceptible to password recovery attacks under certain conditions.…
Infostealer Steals OpenClaw AI Agent Configuration Files and Gateway Tokens
Ravie LakshmananFeb 16, 2026Artificial Intelligence / Threat Intelligence Cybersecurity researchers disclosed they have detected a case of an information stealer infection successfully exfiltrating a victim's OpenClaw (formerly Clawdbot and Moltbot)…
Outlook Add-Ins Hijack, 0-Day Patches, Wormable Botnet & AI Malware
Ravie LakshmananFeb 16, 2026 This week’s recap shows how small gaps are turning into big entry points. Not always through new exploits, often through tools, add-ons, cloud setups, or workflows…
How Lithuania Is Bracing for AI‑Driven Cyber Fraud
Presentation of the KTU Consortium Mission ‘A Safe and Inclusive Digital Society’ at the Innovation Agency event ‘Innovation Breakfast: How Mission-Oriented Science and Innovation Programmes Will Address Societal Challenges’. Technologies…
New Chrome Zero-Day (CVE-2026-2441) Under Active Attack — Patch Released
Ravie LakshmananFeb 16, 2026Zero-Day / Browser Security Google on Friday released security updates for its Chrome browser to address a security flaw that it said has been exploited in the…
Microsoft Discloses DNS-Based ClickFix Attack Using Nslookup for Malware Staging
Microsoft has disclosed details of a new version of the ClickFix social engineering tactic in which the attackers trick unsuspecting users into running commands that carry out a Domain Name…
