It’s time to file your tax return. And cybercriminals are lurking to make an already stressful period even more edgy. 10 Feb 2026 • , 5 min. read To misquote Benjamin Franklin, nothing is certain in this world except for… Read More "Top IRS scams to look out for in 2026"
A long-running cyber-espionage campaign targeting high-value telecommunications infrastructure in South Asia has been attributed to a sophisticated threat actor tracked as UAT-7290. The activity, disclosed by Cisco Talos in an advisory published today, has been ongoing since at least 2022… Read More "China-Linked UAT-7290 Targets Telecom Networks In South Asia"
Several vulnerabilities in ChatGPT allowed an attacker to request the tool to leak sensitive data from popular services, such as Gmail, Outlook, Google Drive or GitHub, with a newly ideitified prompt injection technique. This new method, dubbed ‘ZombieAgent,’ was discovered… Read More "New Zero-Click Attack Lets ChatGPT User Steal Data"
The affected function is commonly used in many large, established SAP CRM landscapes such as call centers. The underlying flaw is a generic function module invocation path that can be abused to execute unauthorized critical functionality, he said. A realistic… Read More "February 2026 Patch Tuesday: Six new and actively exploited Microsoft vulnerabilities addressed"
A botnet known as GoBruteforcer has been actively targeting Linux servers exposed to the internet, using large-scale brute-force attacks against common services such as FTP, MySQL, PostgreSQL and phpMyAdmin. In a new advisory published on Wednesday, Check Point Research (CPR)… Read More "GoBruteforcer Botnet Targets Linux Servers"
US law enforcers have issued a new alert to domestic and foreign organizations about ongoing North Korean phishing campaigns that use QR codes to bypass email security. The FBI Flash report issued yesterday claimed that Pyongyang’s prolific Kimsuky APT group… Read More "FBI Warns of North Korean QR Phishing Campaigns"
PRA versions 25.1 and greater are not affected by this vulnerability, however, versions older than those covered by the patches are impacted. Users on older versions will have to upgrade first before applying the patch. The vulnerability, tracked as CVE-2026-1731,… Read More "BeyondTrust fixes critical RCE flaw in remote access tools"
Security researchers have uncovered a highly sophisticated, AI-assisted investment fraud operation in which victims are drawn into a personalized Truman Show-style controlled reality. Check Point discovered the scam in October 2025 after observing victims being targeted via SMS and messaging… Read More "AI-Powered Truman Show Operation Industrializes Investment Fraud"
The rapid advancement of deepfakes is becoming a major challenge for sustaining trust in digital identity systems, the World Economic Forum (WEF) has warned Deepfake-generating technologies, and especially face-swapping tools, are enabling malicious actors to bypass know-your-customer (KYC) and remote verification processes, creating… Read More "WEF: Deepfake Face-Swapping Tools Are Creating Critical Risks"
Almost three dozen people have been arrested as part of multi-national law enforcement operation targeting the international cybercriminal group Black Axe. With support from Europol, the Spanish National Police, working alongside the Bavarian State Criminal Police Office, arrested suspects across… Read More "Europol Leads Global Crackdown on Black Axe Cybercrime Gang, 34 Arrest"
