Breaking News – Cyber Threats (last 6h)
Generated: 2026-02-18 12:00 PST
- Citizen Lab Finds Cellebrite Tool Used on Kenyan Activist’s Phone in Police Custody
The Hacker News • 2026-02-18 09:30 • thehackernews.com
New research from the Citizen Lab has found signs that Kenyan authorities used a commercial forensic extraction tool manufactured by Israeli company Cellebrite to break into a prominent dissident’s phone, making it the latest case of abuse of the technology targeting civil society.
The interdisciplinary research unit at the University of Toronto’s Munk School of Global Affairs & Public
https://thehackernews.com/2026/02/citizen-lab-finds-cellebrite-tool-used.html - Grandstream GXP1600 VoIP Phones Exposed to Unauthenticated Remote Code Execution
The Hacker News • 2026-02-18 08:35 • thehackernews.com
Cybersecurity researchers have disclosed a critical security flaw in the Grandstream GXP1600 series of VoIP phones that could allow an attacker to seize control of susceptible devices.
The vulnerability, tracked as CVE-2026-2329, carries a CVSS score of 9.3 out of a maximum of 10.0. It has been described as a case of unauthenticated stack-based buffer overflow that could result in remote code
https://thehackernews.com/2026/02/grandstream-gxp1600-voip-phones-exposed.html - Telegram channels expose rapid weaponization of SmarterMail flaws
BleepingComputer • 2026-02-18 08:27 • www.bleepingcomputer.com
Underground Telegram channels shared SmarterMail exploit PoCs and stolen admin credentials within days of disclosure. Flare explains how monitoring these communities reveals rapid weaponization of CVE-2026-24423 and CVE-2026-23760 tied to ransomware activity. […]
https://www.bleepingcomputer.com/news/security/telegram-channels-expose-rapid-weaponization-of-smartermail-flaws/ - Microsoft: Anti-phishing rules mistakenly blocked emails, Teams messages
BleepingComputer • 2026-02-18 08:26 • www.bleepingcomputer.com
Microsoft says an Exchange Online issue that mistakenly quarantined legitimate emails last week was triggered by faulty heuristic detection rules designed to block credential phishing campaigns. […]
https://www.bleepingcomputer.com/news/microsoft/microsoft-anti-phishing-rules-mistakenly-blocked-emails-teams-messages/ - Data breach at fintech firm Figure affects nearly 1 million accounts
BleepingComputer • 2026-02-18 06:01 • www.bleepingcomputer.com
Hackers have stolen the personal and contact information of nearly 1 million accounts after breaching the systems of Figure Technology Solutions, a self-described blockchain-native financial technology company. […]
https://www.bleepingcomputer.com/news/security/data-breach-at-fintech-firm-figure-affects-nearly-1-million-accounts/
Sources: BleepingComputer, The Hacker News, KrebsOnSecurity, SANS ISC, CISA.
