Breaking News – Cyber Threats (last 6h)
Generated: 2026-02-19 07:00 PST
- ThreatsDay Bulletin: OpenSSL RCE, Foxit 0-Days, Copilot Leak, AI Password Flaws & 20+ Stories
The Hacker News • 2026-02-19 06:35 • thehackernews.com
The cyber threat space doesn’t pause, and this week makes that clear. New risks, new tactics, and new security gaps are showing up across platforms, tools, and industries — often all at the same time.
Some developments are headline-level. Others sit in the background but carry long-term impact. Together, they shape how defenders need to think about exposure, response, and preparedness right now
https://thehackernews.com/2026/02/threatsday-bulletin-openssl-rce-foxit-0.html - Nigerian man gets eight years in prison for hacking tax firms
BleepingComputer • 2026-02-19 05:51 • www.bleepingcomputer.com
A Nigerian national was sentenced to eight years in prison for hacking multiple tax preparation firms in Massachusetts and filing fraudulent tax returns seeking over $8.1 million in refunds. […]
https://www.bleepingcomputer.com/news/security/nigerian-man-gets-eight-years-in-prison-for-hacking-tax-firms/ - Texas sues TP-Link over Chinese hacking risks, user deception
BleepingComputer • 2026-02-19 04:36 • www.bleepingcomputer.com
Texas sued networking giant TP-Link Systems, accusing the company of deceptively marketing its routers as secure while allowing Chinese state-backed hackers to exploit firmware vulnerabilities and access users’ devices. […]
https://www.bleepingcomputer.com/news/security/texas-sues-tp-link-over-chinese-hacking-risks-user-deception/ - Hackers target Microsoft Entra accounts in device code vishing attacks
BleepingComputer • 2026-02-19 04:30 • www.bleepingcomputer.com
Threat actors are targeting technology, manufacturing, and financial organizations in campaigns that combine device code phishing and voice phishing (vishing) to abuse the OAuth 2.0 Device Authorization flow and compromise Microsoft Entra accounts. […]
https://www.bleepingcomputer.com/news/security/hackers-target-microsoft-entra-accounts-in-device-code-vishing-attacks/ - Malicious AI
Schneier on Security • 2026-02-19 04:05 • www.schneier.comSummary: An AI agent of unknown ownership autonomously wrote and published a personalized hit piece about me after I rejected its code, attempting to damage my reputation and shame me into accepting its changes into a mainstream python library. This represents a first-of-its-kind case study of misaligned AI behavior in the wild, and raises serious concerns about currently deployed AI agents executing blackmail threats.
https://www.schneier.com/blog/archives/2026/02/malicious-ai.html
- From Exposure to Exploitation: How AI Collapses Your Response Window
The Hacker News • 2026-02-19 03:55 • thehackernews.com
We’ve all seen this before: a developer deploys a new cloud workload and grants overly broad permissions just to keep the sprint moving. An engineer generates a “temporary” API key for testing and forgets to revoke it. In the past, these were minor operational risks, debts you’d eventually pay down during a slower cycle.
In 2026, “Eventually” is Now
But today, within minutes, AI-powered
https://thehackernews.com/2026/02/from-exposure-to-exploitation-how-ai.html - Police arrests 651 suspects in African cybercrime crackdown
BleepingComputer • 2026-02-19 03:24 • www.bleepingcomputer.com
African authorities arrested 651 suspects and recovered over $4.3 million in a joint operation targeting investment fraud, mobile money scams, and fake loan applications. […]
https://www.bleepingcomputer.com/news/security/police-arrests-651-suspects-in-african-cybercrime-crackdown/ - Arkanix Stealer: a C++ & Python infostealer
Securelist • 2026-02-19 03:00 • securelist.com
Kaspersky researchers analyze a C++ and Python stealer dubbed “Arkanix Stealer”, which was active for several months, targeted wide range of data, was distributed as MaaS and offered referral program to its partners.
https://securelist.com/arkanix-stealer/119006/ - Fake IPTV Apps Spread Massiv Android Malware Targeting Mobile Banking Users
The Hacker News • 2026-02-19 02:24 • thehackernews.com
Cybersecurity researchers have disclosed details of a new Android trojan called Massiv that’s designed to facilitate device takeover (DTO) attacks for financial theft.
The malware, according to ThreatFabric, masquerades as seemingly harmless IPTV apps to deceive victims, indicating that the activity is primarily singling out users looking for the online TV applications.
“This new threat, while
https://thehackernews.com/2026/02/fake-iptv-apps-spread-massiv-android.html - New 'Massiv' Android banking malware poses as an IPTV app
BleepingComputer • 2026-02-19 02:00 • www.bleepingcomputer.com
A newly identified Android banking trojan named Massiv has been under active distribution across south Europe, disguised as an IPTV app. […]
https://www.bleepingcomputer.com/news/security/new-massiv-android-banking-malware-poses-as-an-iptv-app/
Sources: BleepingComputer, The Hacker News, KrebsOnSecurity, SANS ISC, CISA.
