Welcome to this week's Data Breaches Digest, a catalogue of links concerning Data Breaches and Cyber Security that were published on the Internet during the period between 9th February and 15th February 2026.15th February
AI phishing in 2026: How to spot new attack when grammar is perfect
Canada Goose investigating as hackers leak 600K customer records
Cyberattacks top risk rankings across G7 countries
Interpol backroom warriors fight cyber criminals 'weaponising' AI
Ledger and Trezor customers face new phishing campaign
Lumma Stealer and Ninja Browser malware campaign abusing Google Groups
Microsoft Discloses DNS-Based ClickFix Attack Using Nslookup for Malware Staging
New ClickFix attack abuses nslookup to retrieve PowerShell payload via DNS
Phishing, Smishing, or Vishing? Learn How Fraudsters Empty Your Bank Account
South Korea: Phishing Campaign Targets Corporate Email Users With Government Impersonation
14th February
287 Chrome Extensions Caught Harvesting Browsing Data from 37 Million Users
Blockchain lender Figure confirms data breach
Blockchain Lender Figure Suffers Devastating Data Breach After Insider-Enabled Hack
Breach fatigue grows as phishing and account takeovers get harder to spot
China’s covert cyber attack platform targets critical infrastructure of neighbouring nations
Doorbell surveillance backlash intensifies after Ring scraps Flock deal, FBI retrieves ‘inactive’ Nest footage
Feeling lonely on Valentine's? Attorneys have a crypto warning for you
Figure Technologies Data Breach: ShinyHunters Exposes Customer Info at Public Blockchain Lender
Fintech firm Figure disclosed data breach after employee phishing attack
Homeland Security reportedly sent hundreds of subpoenas seeking to unmask anti-ICE accounts
Jeffrey Epstein spent years building ties to well-known hackers
Looking for love this Valentine’s Day? US romance scam hotspots revealed
Marietta Businesses Face Payment Disruptions Due to Ransomware Attack on BridgePay Network Solutions
New Dark Web Forum “Kurd Hacker Forum” Emerges Targeting Middle Eastern Data Breaches
Nigerian Communications Commission (NCC) Orders Telcos Inform Subscribers of Data Breach within 48 Hours
Odido Reports Major Data Breach Affecting Lakhs
One threat actor responsible for 83% of recent Ivanti RCE attacks
Publicly Traded Blockchain Lender Figure Confirms Customer Data Breach
Snail mail letters target Trezor and Ledger users in crypto-theft attacks
13th February
8,000+ ChatGPT API Keys Left Publicly Accessible
Adversaries Exploiting Proprietary AI Capabilities, API Traffic to Scale Cyberattacks
AI-Driven Phishing and QR Code Quishing Surge in 2025 Spam and Phishing Report
AI-driven ransomware attacks surge, most go unreported
Atlas Air dismisses Everest ransomware attack claims
Attackers are moving at machine speed, defenders are still in meetings
Canandaigua Emergency Squad Warns About Email Phishing Attempt
Check Point Warns of 44% Surge in Valentine’s Day Phishing Ahead of 14th February
Chez Switch Data Breach Exposes 19,000 Customer Records
CISA flags critical Microsoft SCCM flaw as exploited in attacks
CISA orders federal agencies to patch exploited SolarWinds, Apple, Microsoft bugs within weeks
CISA Warns of Actively Exploited SQL Injection Flaw in Microsoft Configuration Manager
Claude LLM artifacts abused to push Mac infostealers in ClickFix attack
Coupang denies allegations that hacker tried to blackmail company with list of adult product customers
Coupang Denies Blackmail Claims Over Data Breach
Cyber risk is becoming a hold-period problem for private equity firms
D&L Parts Data Breach Exposes PII
Data Theft Surges to 96% of Ransomware Attacks
Dragonforce Ransomware Breaches Yelete Group and Empire Express
Dutch Telecom Giant Odido Announces Data Breach Exposing 6.2 Million Customers’ Sensitive Information
Dutch Carrier Odido Discloses Data Breach Impacting 6 Million
Dutch Telecom Operator Odido Suffers Major Data Breach Affecting Over 6 Million Accounts
Emergency Medical Services Authority & Compassion Health Care Settle Data Breach Litigation
Europe may roll back some of its strict privacy rules
Even ransomware actors tire of complicated encryption
Fake AI Assistants in Google Chrome Web Store Steal Passwords and Spy on Emails
Fake job recruiters hide malware in developer coding challenges
Fintech lending giant Figure confirms data breach
First Contact Health in Guernsey makes changes after data breach
Frisco Utility Bills: Online Payments Down From Ransomware; City Waives Penalties
Gmail Users Beware: Scary ‘Subpoena’ Email Scam Strikes Hard
Google Links China, Iran, Russia, North Korea to Coordinated Defense Sector Cyber Operations
Google Ties Suspected Russian Actor to CANFAIL Malware Attacks on Ukrainian Orgs
Guernsey: Data Protection Authority sanctions First Contact Health following phishing breach
Gustave Data Breach: Fleet Management Database for Sale
Hacker Linked to Epstein Removed from Black Hat Conference: Vincenzo Iozzo Scrubbed from the Website
Hackers haven’t replaced humans with AI yet, but they’re certainly trying
Hackers probe, exploit newly patched BeyondTrust RCE flaw (CVE-2026-1731)
Hefty sanctions against Louis Vuitton, Christian Dior and Tiffany: luxury brands fined billions for massive data leaks
IcedID malware creator fakes own death to escape FBI, still gets busted
Increased email spam & phishing threats in APAC region detected
Indian pharmacy chain giant exposed customer data and internal systems
Industrial Ransomware Threats Are Escalating
Issaqueena Pediatric Dentistry PA Data Breach Exposes PHI and PII
Louis Vuitton, Dior, and Tiffany fined $25 million over data breaches
Major hack of Dutch telco Odido was a classic case of social engineering
Major telco breach sees 6.2 million users have personal info leaked - here's what we know so far
Malicious Chrome Extensions: AiFrame Exploits AI Popularity, Another Steals Meta Business Suite Data
Malicious Chrome Extensions Caught Stealing Business Data, Emails, and Browsing History
Max Messenger: A fake data breach with genuine consequences
Millions of smart homes at risk as Shelly flaw lets hackers open doors and garages
Most Security Incidents Involve Identity Attacks
Munich Security Conference: Cyber Threats Lead G7 Risk Index, Disinformation Ranks Third
Municipalidad Distrital de Mejía Data Breach Exposes Citizen Form Data
MV Financial Data Breach Exposes SSNs and other PII
Nassau OOGP Vision Group Data Breach Affects Customers
New XWorm RAT Campaign Leverages Phishing and CVE-2018-0802 Excel Exploit to Bypass Detection
New XWorm RAT Campaign Uses Themed Phishing Lures and CVE‑2018‑0802 Excel Exploit to Evade Detection
Nigeria: 23 victims freed from scam slavery - death and organ harvesting for missed quotas
North Dakota School District Loses $4.9 Million to Email Scam
Odido CRM Data Breach Exposes 6.2 Million Customer Records
Odido cyberattack exposes personal data of 6.2 million customers in the Netherlands
OysterLoader Evasion Tactics Exposed: Advanced Obfuscation and Rhysida Ransomware Ties Uncovered
OysterLoader Multi‑Stage Evasion Loader Uncovered with Advanced Obfuscation and Rhysida Ransomware Links
Peabody alerts residents about data breach. Expert says cities and towns are "treasure trove" for hackers
Phishing Campaigns Target Users with Fake Meeting Invites and Update Alerts via Zoom, Teams, and Google Meet
Police arrest distributor of JokerOTP password-stealing bot
Progress Foundation Data Breach Exposes SSNs
Qilin attack-related breach confirmed by Conpet
Qilin ransomware gang claims theft of 1TB of data from Romania’s oil pipeline operator Conpet
Ransomware attacks increase against IT and food sectors
Ransomware attacks up almost 50 percent in 2025
Ransomware Groups Claimed 2,000 Attacks in Just Three Months
Ransomware Hackers Targeting Employee Monitoring Software To Access Computers
Report highlights supply chain attack threat
RES Exhibit Services Data Breach Exposes SSNs, Financial Details, and More
Researchers Observe In-the-Wild Exploitation of BeyondTrust CVSS 9.9 Vulnerability
Ring ends partnership plans with Flock days after privacy blowback from Super Bowl ad
Safeguarding Solar Energy Through Smarter Cybersecurity
Sex toys maker Tenga says hacker stole customer information
Should you pay ransomware actors?
Siem Srl Targeted by SpaceBears Ransomware Attack
Sophisticated RustyRocket malware added to WorldLeaks ransomware’s arsenal
South Korea fines Louis Vuitton, Christian Dior, Tiffany $25M for SaaS security failures
South Korea fines LVMH brands $25 million over customer data breach
South Korea publishes investigation results into Coupang data breach
State College Borough investigating cyber attack that impacted services
State-Backed Hackers Use Gemini AI for Cyberattacks Aimed at Cyber Espionage
Substack Data Breach Leaks Nearly 700,000 User Records
Surge in AI-Driven Phishing Attacks and QR Code Quishing in 2025 Spam and Phishing Report
Terra Holdings Data Breach Exposes SSNs
Texas attorney general launches investigation into Conduent breach
Texas Probes Massive Health Data Breach Impacting Millions
The $17 Billion Wake-Up Call: Securing Crypto in the Age of AI Scams
The Gentlemen Ransomware Hits Autostrad & Emirates National Group
Two teenagers accused of 'highly sophisticated' £39 million cyber-attack on Transport for London (TfL) are kept behind bars as trial date is confirmed
UAT-9921 Deploys VoidLink Malware to Target Technology and Financial Sectors
Valentine’s Day 2026: Inside the Industrial-Scale Romance Scam Economy
Vanguard Data Breach Exposes Social Security Numbers
Viral AI Caricatures Highlight Shadow AI Dangers
Welcome Savings Bank Seomyeon branch prevents 16 million won voice phishing loss
What Interoperability in Healthcare Really Means for Security and Privacy
Why secure Operational Technology (OT) protocols still struggle to catch on
Windows LNK exploits allow malicious payload deployment
Windscribe Confirms Dutch Authorities Seized One of Its VPN Servers
Winona County gives update on ransomware incident affecting computer network
Winona County provides update on recent ransomware attack
WIRX Pharmacy Data Breach Exposes PHI and PII
York City cyberattack prompted $500K ransom payout, former mayor says
12th February
83% of Ivanti EPMM Exploits Linked to Single IP on Bulletproof Hosting Infrastructure
42,900 OpenClaw Exposed Control Panels and Why You Should Care
A Match Made in Heaven: How Valentine’s Day Fuels Seasonal Phishing Attacks
After Poland cyberattacks, CISA warns US energy sector to change default passwords
AI is Supercharging Romance Scams with Deepfakes and Bots
AI Skills Represent Dangerous New Attack Surface
AMOS infostealer targets macOS through a popular AI app
APGO Taiwan Data Breach: 12,000 Customer Records Leaked
ApolloMD Data Breach Impacts 626,000 Individuals
ApolloMD data breach impacts 626,540 people
Apple Fixes Exploited Zero-Day Affecting iOS, macOS, and Apple Devices
Apple fixes zero-day flaw exploited in targeted attacks (CVE-2026-20700)
Atlas Air attackers warn Boeing intellectual property at risk in suspected supply chain hack
Bithumb warns against phishing posing as compensation for misdirected bitcoin
Black Hat Removes Hacker Linked To Epstein
BlackFog’s 2025 State of Ransomware Report Reveals 49% Increase in Attacks Year on Year
BQTLock and GREENBLOOD Target Organizations With Ransomware Attacks
Bryan Texas Utilities (BTU) restores credit card payments after vendor ransomware attack
California fines Disney $2.75 million for data privacy violations
Cedar Point Health Data Breach Exposes PII and PHI
Claude AI assistant is one calendar invite away from total system compromise
Cloud teams are hitting maturity walls in governance, security, and AI use
Cottage Hospital data breach exposes 1,600 personal records
Critical Apple Flaw Exploited in ‘Sophisticated’ Attacks, Company Urges Rapid Patching
Critical BeyondTrust RCE flaw now exploited in attacks, patch now
CryptoXScanner Data Breach - 14,000 User Records Leaked
Cyber attack on North Ferry’s payment system
Cybercriminals Exploit Employee Monitoring and SimpleHelp Tools in Ransomware Attacks
Dark Web Profile: The Gentlemen Ransomware
Data breach incidents at Yorkshire Ambulance Service 'on the rise'
Data extortion intrusions spike
‘Dead’ Outlook add-in hijacked to phish 4,000 Microsoft Office Store users
Discord Voluntarily Pushes Mandatory Age Verification Despite Recent Data Breach
DragonForce Ransomware Group Expands Its Influence with Cartel-like Operations and Targeting 363 Companies Since 2023
DragonForce Ransomware Group Targets 363 Companies, Expands Cartel-Like Operations Since 2023
Dutch mobile phone giant Odido announces data breach
Dutch police arrest 21-year-old for alleged involvement in JokerOTP password stealer
Dutch telco Odido suffers data breach exposing data of 6.2 million customers
EgyptAir refutes allegations of employee data breach
Fake AI Chrome extensions with 300K users steal credentials, emails
Fishman, Larsen & Callister Data Breach Exposes PII
Food and Ag-ISAC reports 82% surge in ransomware attacks as Qilin, Akira and CL0P lead campaigns against sector
Global Cyber Attacks Rise In January 2026 As Ransomware Activity Increases And GenAI-Driven Data Exposure Expands
Google Exposes AI Weaponization in Cyber Attack Wave
Google Reports State Hackers From Four Nations Exploited Its Gemini AI
Google Reports State-Backed Hackers Using Gemini AI for Recon and Attack Support
Google says hacker groups are using Gemini to augment attacks - and companies are even ‘stealing’ its models
Google says hackers are abusing Gemini AI for all attacks stages
Google Says Scam Tactics Are Evolving Through AI Usage
Google Threat Intelligence Group (GTIG) Analysis Exposes Growing Cyber Threats To Military Infrastructure
Hacker linked to Epstein removed from Black Hat cyber conference website
Hacker Reveals Over 3 Billion Emails in Massive Data Leak
Hackers ditch noisy ransomware for stealthy data theft
Hackers Hijack Outlook Add-In to Steal 4,000+ Microsoft Accounts
Hackers turn bossware against the bosses
Healthcare Remains the Sector Most Targeted by Ransomware Groups as Attacks Increase 49% YOY
Huge OneFly data breach sees traveler IDs and payment details leaked
INC Ransomware Hits Tourigny, Chadwick, Aux, and HF Planners
India: How Central Bureau of Investigation (CBI) busted a national cyber gang that used thousands of illegal SIMs to dupe people
India Brings AI-Generated Content Under Formal Regulation with IT Rules Amendment
Institute for Human Resources and Services Data Breach Exposes Sensitive PII and PHI
iOS 26.3 Fixes an Important Security Flaw Exploited in Targeted Hacker Attacks. Update Now!
IRS Data Breach Sparks Outcry Over Immigration Deal
Java security work is becoming a daily operational burden
Kenya: Phone hacker busted in Eldoret with 13 stolen phones and hacking equipment
Kenya: Suspected phone hacker nabbed in Turbo as police recover flashing tools, devices
Korean units of Louis Vuitton, Dior, Tiffany fined $24.9 million over customer data leaks
Lazarus Campaign Plants Malicious Packages in npm and PyPI Ecosystems
Malicious Microsoft Outlook Add-in Stole 4,000 Account Credentials and Credit Card Details
Malicious Outlook Add-In ‘AgreeToSteal’ Compromises 4,000 Accounts via Subdomain Takeover
McDonald’s faces data breach as AI recruitment chatbot shared applicants’ info
Microsoft: New Windows LNK spoofing issues aren't vulnerabilities
Microsoft Outlook Add-in Stolen 4,000 Microsoft account Credentials and Credit Card Numbers
Microsoft’s February Patch Tuesday Fixes 6 Zero-Days Under Attack
Minnesota Sends $1.2 Million to Aid St. Paul Cyber Attack Recovery
More than half of Denmark’s municipalities warned over Google data violations
More US investors sue South Korean government over handling of Coupang data breach
Naming and shaming: How ransomware groups tighten the screws on victims
Nation-State Hackers Embrace Gemini AI for Malicious Campaigns
Nation-state hackers ramping up use of Gemini for target reconnaissance, malware coding, Google says
Nonprofit health system hit by two data breaches settles class-action lawsuit for $14 Million
Odido cyber attack: Hackers gained access to 6.2 million people's data
Odido data breach exposes personal info of 6.2 million customers
Odido Telecom Suffers Cyberattack - 6.2 Million Customer Accounts Affected
Payroll Fraud: Direct Deposit Attacks Target Payroll Systems Like Workday via Social Engineering
Peabody Residents Victimized In Cyber Attack On City Systems
Personal data of 6.2 Million Odido customers breached
Personalis Data Breach Potentially Exposes PII and PHI
Phishing campaign chains old Office flaw with fileless XWorm RAT to evade detection
'Pinay Gold Medalist' Video Links Going Viral: What to Know About Zyan Cabrera's Clips Before Clicking
'Pinay Gold Medalist' Viral Video Links Found Mostly On Telegram? Why Scandal, Phishing Links Spread On Messaging App
Poisoning of AI Buttons for Recommendations Rise as Attackers Hide Instructions in Over 50 Web Links, Microsoft Warns
Polish hacker charged seven years after massive Morele.net data breach
Promptware - Hackers Can Use Google Calendar Invites to Stream Victims’ Cameras via Zoom
Promptware Attack Lets Hackers Weaponize Google Calendar Invites to Spy via Zoom Camera
Qilin Ransomware Breaches Sakata Seed, Conectados, Campbell Rappold, Derbez, Ducasse, and On-Point Defense
Ransomware Attacks Amplified by Employee Monitoring Software Exploits
Ransomware gang abuses legitimate software for network persistence
Repediu Data Breach Exposes Over 21 Million Customer and User Records
Romania's oil pipeline operator Conpet confirms data stolen in attack
Security experts warn Discord age checks create "identity honey pot" as teens find bypasses
Shadow AI: The Invisible Insider Threat
SmarterMail facing widespread attacks targeting critical flaws
SmarterMail flaw exploited in China-linked ransomware push
SMS and OTP Bombing Campaigns Found Abusing API, SSL and Cross-Platform Automation
South Korea confirms scale of Coupang data breach
South Korea fines Louis Vuitton, Dior and Tiffany $24.9 million over customer data breaches
Supply chain attacks now fuel a 'self-reinforcing' cybercrime economy
Suspected JokerOTP phishing tool seller arrested in Netherlands
Taiwan Government Agencies Faced 637 Cybersecurity Incidents in H2 2025
Telegram Data Breach allegedly exposes details of 200 million Users
Terry Reilly Health Services Data Breach: 5,421 Affected
Texas attorney general investigates massive data breach affecting 4 million Texans
The FBI Recovered “Deleted” Nest Cam Footage - Here’s Why Every CISO Should Panic
The Gentlemen Breaches Clark Foam, Ghana Bauxite, Thammasat, Erg Otoyol, and WCT Holdings
The Mortgage Firm Data Breach Exposes PII
These 4 critical AI vulnerabilities are being exploited faster than defenders can respond
Threat Actors Leveraging Employee Monitoring and SimpleHelp Tools to Deploy Ransomware Attacks
Time to Exploit Plummets as N-Day Flaws Dominate
Toll of Georgia health firm hack exceeds 620K
Travel company hit by prolonged data breach leaving thousands of customers' details exposed for months
Trenchant Boss Sold Advanced Cyber Tools that Could Compromise Millions of Computers Worldwide to Russian Broker
Volvo Falls Victim of a Data Breach
Volvo Group says 16,991 employees affected as Conduent data breach grows to 25 million people
WebKit flaws lead Apple to release urgent update for iPhones and block hacker attacks
When security decisions come too late, and attackers know it
Who's the bossware? Ransomware slingers like employee monitoring tools, too
Windows Notepad Markdown feature opens door to RCE (CVE-2026-20841)
WordPress plugin with 900k installs vulnerable to critical RCE flaw
World Leaks Ransomware Group Adds Stealthy, Custom Malware ‘RustyRocket’ to Attacks
You may now remove your ID from Google search results, but will it disappear from the web?
'Your data is public': Hacker warns victims after leaking 6.8 billion emails online
11th February
25 Million Americans’ sensitive data at risk in one of the biggest US data breaches
A cyberattack on the U.S. healthcare system: The wife of the Kazakh hacker arrested in Italy: "Don't extradite him."
AI Agents Leak Data via Messaging App Link Previews as AI Adoption Has Outpaced Security Governance
AI to Supercharge Cyber Threats in 2026: Global Ransomware Losses Expected to Near ₹6.1 lakh crore
Apple fixes zero-day flaw used in 'extremely sophisticated' attacks
APT36 and SideCopy Launch Cross-Platform RAT Campaigns Against Indian Entities
APT36 Targets Linux Systems With New Disruption Tools
Arts Centre Melbourne deploys MDR services to contain phishing incident
Automotive Giant Volvo Employee Information Exposed via Third-Party Conduent Data Breach
BeyondTrust critical vulnerability: thousands of hosts and nearly 200K web properties discovered
BravoX Hits Vatier, John O’s, Fusion Hill, SPEC, WVPCA, Hood River
Bring Your Own Vulnerable Driver (BYOVD) technique embedded in nascent Reynolds ransomware
Canadians lost $43 million to spear phishing in 2025: Here’s how scammers use social media to target you
Cephalus Ransomware Emerges as Go-Based Double-Extortion Threat Exploiting Exposed RDP Access
Cephalus Ransomware Emerges as Go-Based Double-Extortion Threat Targeting Exposed RDP
Cephalus Ransomware Exploits Exposed RDP in Double-Extortion Attacks
CISA flags six actively exploited Microsoft zero-days
Cl0p Ransomware Attacks Anstech, Hudson Executive, CFDT, and 22 Others
Coinbase Cartel Prioritizes Data Theft in Targeted Extortion Campaign
Conduent Breach Hits Volvo Group: Nearly 17,000 Employees’ Data Exposed
Conduent data breach might have been much worse than initially expected
Coupang Delivery Data Breach: 140 Million Accesses Considered Leaks
Coupang Delivery Info Accessed 140 Million Times in Hack
Crazy ransomware gang abuses employee monitoring tool in attacks
Critical Notepad vulnerability reignites criticism of Microsoft’s forced AI features
Critical UUID Flaw in Fiber v2 on Go 1.24+ Enables Session Hijacking and CSRF Bypass
Cyber Attack Disrupts Local Government Payment Systems
Cyberattacks shift to stealthy, long-term access over ransomware
Cybersecurity expert explains impact of ransomware attack halting online payments for Bryan Texas Utilities (BTU) customers
Cybersecurity Lapses Cost FIIG Securities ₹13.5 Crore as Court Imposes Landmark Penalty
Data breach affecting 11 physician practices confirmed to impact 627K patients
Data breach reported at Tulsa International Airport, no impact in operations
Department of Justice (DOJ) says Trenchant boss sold exploits to Russian broker capable of accessing ‘millions of computers and devices’
Desktop Window Manager Zero-Day Vulnerability Allows Privilege Escalation
Digital squatters are weaponizing your muscle memory to steal passwords
Emerging Ransomware BQTLock and GREENBLOOD Drive Rapid Business Disruption
Evolving Phishing Tactics: Understanding the Psychological Manipulation Behind Cyberattacks in 2026
Fake Azure Support Scams Spread via Malicious Bing Advertisements
First Malicious Outlook Add-In Found Stealing 4,000+ Microsoft Credentials
FortiOS Authentication Bypass Vulnerability Allows Attackers to Bypass LDAP Login
Forum of Incident Response and Security Teams (FIRST) Forecasts Record-Breaking 50,000+ CVEs in 2026
From 10 Million to 25 Million: Conduent Breach Balloons Into One of 2025’s Largest
GDQuest Data Breach: 37,000 User Records Leaked
Generative AI Cyber Threats 2026: Deepfake Fraud Scams and Synthetic Identity Fraud Deepfakes Surge
Georgia healthcare company data breach impacts more than 620,000
Georgia housing authority hit by Qilin ransomware, applicant data exposed
Global cyberattacks rise in January 2026 as ransomware activity increases and GenAI-driven data exposure expands
Google and Shein pay up: French data watchdog hands out €486M in fines
Google Search introduces new ways to remove sensitive personal information and explicit images
Hacker reveals 6.8 billion emails online and warns victims “your data is public”
Hackers Use LLM to Create React2Shell Malware, the Latest Example of AI-Generated Threat
India: 12 Lakh SIM Cards Cancelled, over 3 Lakh IMEI Numbers Blocked as Centre Intensifies Crackdown on Cybercrime
Ivanti Endpoint Manager Vulnerability Allows Remote Attackers to Leak Arbitrary Data
Ivanti EPMM exploitation: Researchers warn of “sleeper” webshells
Japan Airlines says up to 28,000 users affected by data breach
Joint probe finds 33.67 million accounts affected in Coupang data breach
Kaspersky identifies 50 cyber-attack victims of Stan Ghouls
LummaStealer infections surge after CastleLoader malware campaigns
McLaren Health agrees to $14 Million settlement over two data breaches
Microsoft February 2026 Patch Tuesday Fixes 54 Vulnerabilities, Including 6 Zero-Days
Microsoft Fixes Six Zero Day Vulnerabilities in February Patch Tuesday
Microsoft Patch Tuesday: 6 exploited zero-days fixed in February 2026
Microsoft Patch Tuesday February Update Flags Exchange and Azure Vulnerabilities as High-Priority Risks
Microsoft Patches 59 Vulnerabilities Including Six Actively Exploited Zero-Days
Microsoft says hackers are exploiting critical zero-day bugs to target Windows and Office users
Microsoft Store Outlook add-in hijacked to steal 4,000 Microsoft accounts
Microsoft Word Zero-Day Vulnerability Allows Attackers to Bypass Security Features
North Ferry’s payment system victim of cyber attack: Pass holders will still gain access to ferries
North Korea-Linked UNC1069 Uses AI Lures to Attack Cryptocurrency Organizations
North Korean Hackers Use Deepfake Video Calls to Target Crypto Firms
North Korean Operatives Impersonate Real Professionals on LinkedIn, the Security Alliance Warns
Northern Ireland police officers offered data breach compensation
0APT ransomware group rises swiftly with bluster, along with genuine threat of attack
Ohio: Wooster-area counseling center submits notice of data breach
OneFly Data Breach: 1000s of IDs & Credit Cards Leaked
Onesource Industries Takes Website Offline Following Phishing Attack Detection
Over 60 Software Vendors Issue Security Fixes Across OS, Cloud, and Network Platforms
Phishing campaign exploits Pride Month to target employees
Phishing emails posing as Momo e-invoice prize notices circulate in Taiwan
Phishing in The Philippines Jumps 423 Percent as Cyber Threats Intensify in 2025
Phishing scams exploit Bithumb Bitcoin mispayment across South Korea
Phishing Scams in 2026: How to Spot and Avoid Them
Phishing Sites in the Philippines Jump 423% in 2025
Police arrest seller of JokerOTP MFA passcode capturing tool
Qilin admits Georgia housing authority breach, leaks files
Qilin Breaches Cox & Sanchez, Andringa Law, Mt Barker Co-Op
Ransomware attack targets Tulsa International Airport
Ransomware hackers say NO to Data Exfiltration and YES to Encryption
Reynolds ransomware uses BYOVD to disable security before encryption
Romance, Fake Platforms, $73 Million Lost: Crypto Scam Leader Gets 20 Years
Security teams are paying for sprawl in more ways than one
Singapore: Public warned of Land Transport Authority (LTA) and Royal Malaysia Police phishing scams targeting travellers
Singapore travellers lose S$24,000 in Malaysia toll phishing scam
Singapore travellers to Malaysia lose S$24,000 in phishing scams
SmarterMail Users Urged to Update After Ransomware Exploitation by Storm-2603
South Korea blames Coupang data breach on management failure, not sophisticated attack
South Korea jails Thai voice-phishing team leaders up to 14 years
Southern Oregon neurosurgery clinic sued over data breach
SSHStalker Botnet Uses IRC C2 to Control Linux Systems via Legacy Kernel Exploits
Surge in Ransomware Incidents Prompts Federal Cybersecurity Guidance and Enforcement Across Sectors
Telegram Data Breach: Over 200 Million User Records Exposed
Telemon SRL Data Breach Exposes 42,000 User Records Including Debt Data
Thousands of Volvo customers possibly affected in major data breach - 17,000 affected, here's what we know
Travelers beware: thousands of customer IDs and full payment details leaked
Tulsa International Airport hit with ransomware attack
Tulsa International Airport Reports Ransomware Attack, Says Flights Not Impacted
US Court Hands Crypto Scammer 20 Years in $73m Case
Volvo Group hit in massive Conduent data breach
Wales: Too many firms unprepared for cyber attack risk
Weaponising AI: The New Cyber Attack Surface
What is Phishing?
Windows 11 Notepad flaw let files execute silently via Markdown links
Windows Shell Zero-Day Vulnerability Allows Attackers to Bypass Authentication
10th February
10K Claude Desktop Users Exposed by Zero-Click Vulnerability
200 Million+ Telegram user records shared on a data leak forum
AI hacking platform WormGPT has user data leaked, attackers claim
AI-Generated Malware Exploits React2Shell Vulnerability as LLM-Assisted Cyberattacks Target Cloud Infrastructure
APT36 Hacker Group Attacking Linux Systems with New Tools to Disturb Services
Archive.today is hiding a script that turns visitors into DDoS attackers
Armed with new tools, North Koreans ramp up attacks on lucrative crypto sector
Attackers exploit SolarWinds vulnerability to deploy ransomware
Attackers Weaponize Windows Shortcut Files to Deploy Global Group Ransomware
Attackers Weaponizing Windows Shortcut File to Deliver Global Group Ransomware
Australia Alerts Frequent Flyers as Qantas Loyalty Points Become Prime Target in Nationwide Phishing Surge
Betterment data breach exposes 1.4 million accounts
Bloody Wolf Hackers Deploy NetSupport RAT In Targeted Attacks
Capita data-breach claims can go ahead, rules High Court
Chinese crypto scammer sentenced in absentia to 20 years after fleeing US
Claude Desktop Extensions Zero-Click RCE Flaw Exposes Over 10,000 Users to Silent Attacks
Coupang obstructed Korean probe into data breach, Korean ministry says
Criminals blackmail toothbrush manufacturer Trisa
Critical Gogs Vulnerability Enables Remote Command Execution and 2FA Bypass
Cyberattack disrupts Senegal ID department’s operations
Cybersecurity group identifies person behind Manage My Health hack
Data breach that went unnoticed in October 2024 may have left millions of Americans vulnerable
“Digital Parasite” Warning as Attackers Favor Stealth for Extortion
Discord users will have to scan their entire face for full access after hackers stole 70,000 government IDs in data breach
Discord’s Mandatory Face Scan Faces Backlash Amid Data Breach
Dutch Authorities Confirm Ivanti Zero-Day Exploit Exposed Employee Contact Data
ENISA Updates Its International Strategy to Strengthen EU’s Cybersecurity Cooperation
European Commission hit by cyber attack targeting mobile presence
European Governments Breached in Zero-Day Attacks Targeting Ivanti
European Union probes cyberattack on mobile device management systems after limited staff data exposure
Expect “relentless barrage” of cyberattacks on defense industry, Google says
Face scans and ID checks are coming to Discord
Fake Out: 0APT Data-Leak Ransomware Group Branded a Scam
Fancy Bear Hackers Abuse Microsoft Zero-Day in Email Theft Campaign
Federal Communications Commission (FCC) Urges Communications Providers to Strengthen Ransomware Defenses
Federal Trade Commission (FTC) Details Ransomware Threat, Tech Support Scams in Annual Cyber Report
FIIG Securities faces $2.5m fine following 2023 cyber attack
FIIG Securities Fined AU$2.5 Million Following Prolonged Cybersecurity Failures
Foreign state spies infiltrate high-profile Signal accounts without hacking: two tricks abused
Fortinet Patches Critical SQLi Flaw Enabling Unauthenticated Code Execution
From Ransomware to Residency: Inside the Rise of the Digital Parasite
Fugitive behind $73 Million 'pig butchering' scheme gets 20 years in prison
Germany warns of state-linked phishing campaign targeting journalists, government officials
Google sent personal and financial information of student journalist to ICE
Hackers siege Ivanti EPMM with thousands of IPs, dozens of organizations compromised
How AI is reshaping attack path analysis
Huge stalkerware data breach sees 500,000 records leaked by hacktivists
Inc Ransomware Claims Attack on US Construction Firm Core Supply
Indonesia Investigates Claims of 58 Million Student Data Breach
Instructing AI to “act drunk” may help bypass security guardrails
Ivanti Zero-Day Vulnerabilities Exploited in Global Cyberattacks, Dutch Government Breached, Possibly European Commission
Joint probe finds 33.6 million accounts exposed in Coupang data breach, dwarfing initial claim
Joint Team Finds Data from over 33 Million Users Comprised in Coupang's Data Breach
Just 11% of UK healthcare breaches account for 65% of data exposed
Legal Aid Service Data Breach Exposes Sensitive PHI and PII
Lone Star Pain Relief Data Breach Exposes PII of 500 Texans
Malicious 7-Zip site distributes installer laced with proxy tool
Malicious LNK Files Used to Deploy Global Group Ransomware Worldwide
Microsoft February 2026 Patch Tuesday fixes 6 zero-days, 58 flaws
Montana Department of Labor warns of email phishing scam
Most Engagement Data Is Compromised and That’s a Major Security Problem
National Cyber Security Centre (NCSC) Issues Warning Over “Severe” Cyber-Attacks Targeting Critical National Infrastructure
New Cybercrime Group 0APT Accused of Faking Hundreds of Breach Claims
New Linux botnet SSHStalker uses old-school IRC for C2 comms
New Mobile Spyware ZeroDayRAT Targets Android and iOS
New Ransomware Embeds BYOVD Technique to Evade Endpoint Detection
North Korean hackers targeted crypto exec with fake Zoom meeting, ClickFix scam
North Korean hackers use new macOS malware in crypto-theft attacks
North Korean IT Workers Impersonate Professionals On LinkedIn To Secure Remote Jobs
North Korean Operatives Impersonate Professionals on LinkedIn to Infiltrate Companies
Panda Express to automatically pay Americans $5,000 thanks to $2.45million data breach settlement
Panda Express to Pay Americans Up to $5,000 After Data Breach
Pavlus Travel Hit by PEAR Ransomware: 380GB Data Allegedly Stolen
Phorpiex malware delivers global group ransomware via phishing
Phorpiex Phishing Delivers Low-Noise Global Group Ransomware
'Pinay Gold Medalist' Zyan Cabrera Videos Are Stealing Your Social Media Passwords - Here's How
Poor cybersecurity leaves consumers exposed to ransomware
Possible Data Breach of Japan Airlines (JAL) Same-Day Baggage Delivery Service Reservation System
Pride Month Phishing Targets Employees via Trusted Email Services
Prometei Botnet Targets Windows Servers to Gain Remote Access and Deploy Malware
Qantas Warns Customers of Phishing Scams Targeting Unused Loyalty Points
Ransomware encryption to regain traction amid weakening data exfiltration tactics
Reynolds Ransomware Embeds BYOVD Driver to Disable EDR Security Tools
Security measures helpless against critical Xiaomi Redmi Buds vulnerability
Senegal Confirms Cyberattack on Agency Managing National ID and Biometric Data
Senegal Confirms National ID Agency Breach After Ransomware Attack, Threat Actors Claim Stealing 139 GB of Data
Senegal data breach disrupts national ID issuance
Senegal shuts National ID office after ransomware attack
Senegal shuts national ID systems after ransomware group claims data theft
Sermo Data Breach Impacts 2,674: Exposes SSNs
Singapore: Police warn of phishing scams impersonating Land Transport Authority (LTA), targeting Singaporean travellers to Malaysia
Singapore says China-backed hackers targeted its four largest phone companies
Singapore Takes Down Chinese Hackers Targeting Telco Networks
Singapore telcos breached in China-linked cyber espionage campaign
Sleeperware Surges As Hackers Switch From Ransomware
Smarter machine-learning models can improve phishing website detection
SmarterMail vulnerabilities exploited in ransomware campaigns
South Korea Blames Coupang Data Breach on Management Failure, Not Sophisticated Attack
South Korea blames Coupang data breach on 'management failures,' not cyber attack
Stalkerware Data Breach: Hacktivist Leaks Over 530,000 Customer Records
Stalkerware vendor data breach exposes over half a million customer records
Staten Island University Hospital Settles Lawsuit Over Business Associate Data Breach
Trojanized 7-Zip downloads turn home computers into proxy nodes
Understanding Breaches Before and After They Happen: What Every Organization Should Know
University of Pennsylvania data leaked after University refused to pay $1 million ransom, hacker group says
Unpatched SolarWinds WHD instances under active attack
Volvo Group North America customer data exposed in Conduent hack
Warlock Ransomware Breaches SmarterTools Through Unpatched SmarterMail Server
What Minimum Viable Cybersecurity Really Looks Like for K–12 Districts
When dating apps get hacked, your private life goes public
Windows shortcut files targeted by ransomware gang Global Group
Windows shortcut weaponized in Phorpiex-linked ransomware campaign
Workers’ Compensation Insurer Beacon Mutual Dealing With Ransomware Attack
WormGPT.AI Data Breach Exposes 19,000 Users and Payment Data
YouTube tutorials spread fake 7-zip downloads as brand impersonation and domain mix-ups put PCs at risk
ZeroDayRAT malware grants full access to Android, iOS devices
9th February
Another active exploitation of SolarWinds Web Help Desk detected
Beware of Apple Pay Phishing Attack that Aims to Steal Your Payment Details
BeyondTrust Fixes Critical Pre-Auth RCE Vulnerability in Remote Support and Privileged Remote Access (PRA)
BeyondTrust warns of critical RCE flaw in remote support software
Black Basta Ransomware Actors Embeds BYOVD Defense Evasion Component with Ransomware Payload Itself
Black Basta Ransomware Integrates BYOVD Technique to Evade Defenses
Bloody Wolf Targets Uzbekistan, Russia Using NetSupport RAT in Spear-Phishing Campaign
BridgePay Confirms Ransomware Attack, No Card Data Compromised
BridgePay hit by ransomware attack, disrupting payment gateway services
BridgePay payments system knocked offline by ransomware attack
BridgePay ransomware attack triggers nationwide card processing outage
China-Linked DKnife Spyware Hijacking Internet Routers Since 2019
Chinese cyberspies breach Singapore's four largest telcos
ClickFix access broker campaign hits Windows with Python-driven backdoors
CoinbaseCartel hacker claims American audio behemoth Dolby
Cyber Attack Hits European Commission Staff Mobile Systems
Discord faces backlash over age checks after data breach exposed 70,000 IDs
Discord to introduce face scans or ID checks for all users in global rollout, months after admitting data breach
Discord to require video selfies or government IDs to verify all users’ ages
Discord will soon ask for a face scan or ID to access sensitive content
Don’t Pay The Ransom Demand After A Ransomware Attack: Cyber Storage Resilience To The Rescue
EgyptAir Data Breach: 104k Records and HR Data Allegedly Leaked
EgyptAir Data Breach Alert: Massive Employee Records Allegedly Leaked Online
EU Officials Respond After Cyber-Attack Exposes European Commission Mobile Devices
EU, Dutch government announce hacks following Ivanti zero-days
European Commission Contains Cyber-Attack Targeting Staff Mobile Data
European Commission discloses breach that exposed staff data
European Commission hit by cyberattackers targeting mobile management platform
European Commission Hit by Mobile Management Data Breach
European Commission mobile infrastructure targeted in cyber-attack
European Commission probes cyberattack on mobile device management system
European Commission responds to cyber-attack on its central mobile infrastructure
Farcaster Data Leak Exposure: 1.3GB of Wallet and Profile Data
Fédération Française de Tir Data Breach Impacts 35,000 Members
FIIG Securities Faces $2.5M Penalty After Cyber Attack Exposes Weak Incident Response
Flickr confirms data breach, tells customers their private info may have been affected - here's what we know
Flickr Data Breach Exposes User Info via Email Provider
Flickr issues warning over possible user data exposure
Flickr moves to contain data exposure, warns users of phishing
Flickr says it may have suffered a third-party data breach
Flickr warns of data breach
Flickr’s 35 Million Users Affected by Third-Party Data Exposure
From Fileless Attacks to Identity Abuse: The Hard Truth About Ransomware in 2026
German intelligence warns of state-sponsored phishing attacks on messaging apps
Gold Medalist Viral Video Scandal 2026 Turns Out To Be A Phishing Scam: Here's What Could Happen If You Click It
Hacker Attack hits Uffizi Museum
Hacker behind one of Poland’s biggest data leaks arrested after 8 years
Hacker behind Poland’s largest ever data leaks caught after eight-year hunt
Hackers breach Dutch privacy regulator, employee data compromised
Hackers breach SmarterTools network using flaw in its own software
Hackers Deliver Global Group Ransomware Offline via Phishing Emails
Hackers exploit SolarWinds WHD flaws to deploy DFIR tool in attacks
Hackers fuel panic with claims linking crypto data leak to recent kidnappings in France
Hackers Leveraging Free Firebase Developer Accounts to Send Phishing Emails
Hackers Use Signal QR Codes to Spy on Military and Political Leaders
High Court blocks Capita bid to throw out data breach claims
High Court clears way for thousands to pursue Capita data breach claims
Illinois Man Charged in Massive Snapchat Hacking Scheme Targeting Hundreds of Women
Irish consumers warned devices such as dodgy boxes may have been compromised in cyber attack
Jacobite Matrimony Database Leak Exposes Over 1,000 User Records
Kenya’s Hidden Cybercrime Battles and the Cost of Keeping Them Private
KillSec Ransomware Group Claims Cyberattack on Nigerian Fintech Getly
Leaked technical documents show China rehearsing cyberattacks on neighbors’ critical infrastructure
Loxam reports data breach
Matomo Analytics Alleged Data Breach Exposes 12.6GB SQL Database
Men charged in FanDuel scheme fueled by thousands of stolen identities
New Federal Trade Commission (FTC) Report Says Ransomware Makes Up Just 2% of Fraud Reports
New Telegram Phishing Attack Abuses Authentication Workflows to Obtain Full Authorized User Sessions
New Telegram Phishing Scam Hijacks Login Flow to Steal Fully Authorized User Sessions
New Zero-Click Flaw in Claude Desktop Extensions, Anthropic Declines Fix
Old meets new: Kaspersky reviews the evolution of phishing threats in 2025
Payment tech provider for Texas, Florida governments working with FBI to resolve ransomware attack
Phishing Alert: Cyber criminals target politicians, military officials, journalists on Signal Messenger
Phishing and Social Engineering pose biggest cybersecurity risks for South African organisations
Possible EgyptAir Cyberattack: 104,000 Records and Sensitive Documents Allegedly For Sale
Ransomware group breached SmarterTools via flaw in its SmarterMail deployment
Ransomware Groups May Pivot Back to Encryption as Data Theft Tactics Falter
Record rise in digital squatting fuels phishing wave
Researchers Find 40,000+ Exposed OpenClaw Instances
'Reynolds' Bundles BYOVD With Ransomware Payload
Russia grants asylum to Spanish professor wanted for alleged pro-Moscow cyber operations
Rutherford Investment Company Hit by Anubis Ransomware
Senegal confirms breach of national ID card department after ransomware claims
Signal Accounts Targeted by State-Backed Phishing Campaign - Here’s How to Stay Safe
Signature Phishing Up 200% As January Losses Pass $6 Million
Singapore: 4 telcos targeted in cyber attack by threat group, no sensitive data leaked
Singapore: Telecom Cyberattack Contained, No Data Breach
Singapore launches largest coordinated cyber defense operation after targeted attack on all major telcos
Singapore Launches Largest-Ever Cyber Defense Operation After UNC3886 Targets All Major Telcos
Singapore telcos hit by China‑linked hackers UNC3886; cyber agency says no disruption, no data breach
SmarterTools hacked via its own product
SmarterTools Hit by Ransomware via Vulnerability in Its Own Product
Social Media Platforms Earn Billions from Scam Ads
SolarWinds Web Help Desk Exploited for RCE in Multi-Stage Attacks on Exposed Servers
Someone’s phishing with the Vancouver Giants
Substack CEO apologises for security breach affecting personal data
Substack Discloses Major Data Breach
TeamPCP Worm Exploits Cloud Infrastructure to Build Criminal Infrastructure
Thousands of exposed Moltbot control panels may be vulnerable to takeover
Two Connecticut Men Charged In Alleged $3m Gambling Fraud Scheme
UNC3886 Cyber Espionage Group Linked to Singapore Telecom Infrastructure Cyberattacks: Singtel, StarHub, M1, Simba Telecom
US Agencies Told to Scrap End of Support Edge Devices
Use of XMRig Cryptominer by Threat Actors Expanding
VoidLink Malware Exhibits Multi-Cloud Capabilities and AI Code
Vortex Werewolf Attacking Organizations to Gain Tor-Enabled Remote Access Over the RDP, SMB, SFTP, and SSH Protocols
Vortex Werewolf Targets Organizations With Tor-Enabled RDP, SMB, SFTP, and SSH Backdoors
Warlock Gang Breaches SmarterTools Via SmarterMail Bugs
Why Ransomware Is a Growing Threat to UCaaS and CPaaS Providers in 2026
Zimbabwe: 11 Hackers Arrested Over US$61,000 EcoCash Phishing Scam