ICYMI: 2026-02-16
Latest Headlines
Infostealer Steals OpenClaw AI Agent Configuration Files and Gateway Tokens
Study Uncovers 25 Password Recovery Attacks in Major Cloud Password Managers
Weekly Recap: Outlook Add-Ins Hijack, 0-Day Patches, Wormable Botnet & AI Malware
Safe and Inclusive E‑Society: How Lithuania Is Bracing for AI‑Driven Cyber Fraud
New ZeroDayRAT Mobile Spyware Enables Real-Time Surveillance and Data Theft
New Chrome Zero-Day (CVE-2026-2441) Under Active Attack — Patch Released
The El Paso No-Fly Debacle Is Just the Beginning of a Drone Defense Mess
Dior, Louis Vuitton, Tiffany Fined $25 Million in South Korea After Data Breaches
Android 17 Beta Strengthens Secure-by-Default Design for Privacy and App Security
Amazon Scraps Partnership With Surveillance Company After Super Bowl Ad Backlash
Google Patches First Actively Exploited Chrome Zero-Day of 2026
Noodlophile Malware Creators Evolve Tactics with Fake Job Postings and Phishing Lures
Beware of Fake Shops from Threat Actors to Attack Winter Olympics 2026 Fans
Single IP Dominates Exploitation Campaign Attacking Ivanti EPMM with RCE Vulnerability
Joomla Novarain/Tassos Framework Vulnerabilities Enables SQL injection and Unauthenticated File Read
Hackers Can Weaponize ‘Summarize with AI’ Buttons to Inject Memory Prompts Into AI Recommendations
New Clickfix Variant ‘Matryoshka’ Attacking Users to Deploy macOS Stealer Malware
LockBit’s New 5.0 Version Attacking Windows, Linux and ESXI Systems
Palo Alto Networks Completed Acquisition of Identity Security Firm CyberArk
New ZeroDayRAT Attacking Android and iOS For Real-Time Surveillance and Data Theft
Critical Airleader Vulnerability Exposes Systems to Remote Code Execution Attacks
Washington Hotel in Japan discloses ransomware infection incident
Eurail says stolen traveler data now up for sale on dark web
Man arrested for demanding reward after accidental police data leak
Infostealer malware found stealing OpenClaw secrets for first time
Passwords to passkeys: Staying ISO 27001 compliant in a passwordless era
CISA gives feds 3 days to patch actively exploited BeyondTrust flaw
Google patches first Chrome zero-day exploited in attacks this year
Canada Goose investigating as hackers leak 600K customer records
New ClickFix attack abuses nslookup to retrieve PowerShell payload via DNS
– MTZ