Latest Cybersecurity News and Articles
Microsoft Patches CVE-2026-26119 Privilege Escalation in Windows Admin Center
19 February 2026
Microsoft has disclosed a now-patched security flaw in Windows Admin Center that could allow an attacker to escalate their privileges.
Windows Admin Center is a locally deployed, browser-based management tool set that lets users manage their Windows Clients, Servers, and Clusters without the need for connecting to the cloud.
The high-severity vulnerability, tracked as CVE-2026-26119, carries a
1.2M Bank Accounts Exposed in French National Bank Account Registry Breach
19 February 2026
It is currently unknown how many accounts had data accessed and/or extracted.
French Government Says 1.2 Million Bank Accounts Exposed in Breach
19 February 2026
The Ministry of Economy reported discovering unauthorized access to the national bank account registry FICOBA.
The post French Government Says 1.2 Million Bank Accounts Exposed in Breach appeared first on SecurityWeek.
ThreatsDay Bulletin: OpenSSL RCE, Foxit 0-Days, Copilot Leak, AI Password Flaws & 20+ Stories
19 February 2026
The cyber threat space doesn’t pause, and this week makes that clear. New risks, new tactics, and new security gaps are showing up across platforms, tools, and industries — often all at the same time.
Some developments are headline-level. Others sit in the background but carry long-term impact. Together, they shape how defenders need to think about exposure, response, and preparedness right now
Why Small Businesses Can’t Afford To Ignore Cyberinsurance
19 February 2026
This week in cybersecurity from the editors at Cybercrime Magazine Sausalito, Calif. – Feb. 19, 2026 –Read the full story in Charter Capital Three out of five small-to-midsized businesses (SMBs) permanently shuttered their doors within six months of being hit by a data breach or
The post Why Small Businesses Can’t Afford To Ignore Cyberinsurance appeared first on Cybercrime Magazine.
Nearly 1 Million User Records Compromised in Figure Data Breach
19 February 2026
The blockchain-based lender has confirmed a data breach after ShinyHunters leaked over 2GB of data allegedly stolen from the company.
The post Nearly 1 Million User Records Compromised in Figure Data Breach appeared first on SecurityWeek.
Venice Security Emerges From Stealth With $33M Funding for Privileged Access Management
19 February 2026
Formerly named Valkyrie, the company’s funding includes $25 million raised in a Series A round.
The post Venice Security Emerges From Stealth With $33M Funding for Privileged Access Management appeared first on SecurityWeek.
Ivanti Exploitation Surges as Zero-Day Attacks Traced Back to July 2025
19 February 2026
Security researchers have seen the vulnerabilities being exploited to deliver shells, conduct reconnaissance, and download malware.
The post Ivanti Exploitation Surges as Zero-Day Attacks Traced Back to July 2025 appeared first on SecurityWeek.
From Exposure to Exploitation: How AI Collapses Your Response Window
19 February 2026
We’ve all seen this before: a developer deploys a new cloud workload and grants overly broad permissions just to keep the sprint moving. An engineer generates a "temporary" API key for testing and forgets to revoke it. In the past, these were minor operational risks, debts you’d eventually pay down during a slower cycle.
In 2026, “Eventually” is Now
But today, within minutes, AI-powered
OpenClaw Security Issues Continue as SecureClaw Open Source Tool Debuts
19 February 2026
OpenClaw faces security vulnerabilities and misconfiguration risks despite rapid patches and its transition to an OpenAI-backed foundation.
The post OpenClaw Security Issues Continue as SecureClaw Open Source Tool Debuts appeared first on SecurityWeek.
Fake IPTV Apps Spread Massiv Android Malware Targeting Mobile Banking Users
19 February 2026
Cybersecurity researchers have disclosed details of a new Android trojan called Massiv that's designed to facilitate device takeover (DTO) attacks for financial theft.
The malware, according to ThreatFabric, masquerades as seemingly harmless IPTV apps to deceive victims, indicating that the activity is primarily singling out users looking for the online TV applications.
"This new threat, while
German Rail Giant Deutsche Bahn Hit by Large-Scale DDoS Attack
19 February 2026
The cyberattack disrupted information and booking systems and lasted for several hours.
The post German Rail Giant Deutsche Bahn Hit by Large-Scale DDoS Attack appeared first on SecurityWeek.
CRESCENTHARVEST Campaign Targets Iran Protest Supporters With RAT Malware
19 February 2026
Cybersecurity researchers have disclosed details of a new campaign dubbed CRESCENTHARVEST, likely targeting supporters of Iran's ongoing protests to conduct information theft and long-term espionage.
The Acronis Threat Research Unit (TRU) said it observed the activity after January 9, with the attacks designed to deliver a malicious payload that serves as a remote access trojan (RAT) and
Citizen Lab Finds Cellebrite Tool Used on Kenyan Activist’s Phone in Police Custody
18 February 2026
New research from the Citizen Lab has found signs that Kenyan authorities used a commercial forensic extraction tool manufactured by Israeli company Cellebrite to break into a prominent dissident's phone, making it the latest case of abuse of the technology targeting civil society.
The interdisciplinary research unit at the University of Toronto's Munk School of Global Affairs & Public
Grandstream GXP1600 VoIP Phones Exposed to Unauthenticated Remote Code Execution
18 February 2026
Cybersecurity researchers have disclosed a critical security flaw in the Grandstream GXP1600 series of VoIP phones that could allow an attacker to seize control of susceptible devices.
The vulnerability, tracked as CVE-2026-2329, carries a CVSS score of 9.3 out of a maximum of 10.0. It has been described as a case of unauthenticated stack-based buffer overflow that could result in remote code
Stone, parchment or laser-written glass? Scientists find new way to preserve data
18 February 2026
Hard disks and magnetic tape have a limited lifespan, but glass storage developed by Microsoft could last millenniaSome cultures used stone, others used parchment. Some even, for a time, used floppy disks. Now scientists have come up with a new way to keep archived data safe that, they say, could endure for millennia: laser-writing in glass.From personal photos that are kept for a lifetime to business documents, medical information, data for scientific research, national records and heritage data, there is no shortage of information that needs to be preserved for very long periods of time. Continue reading...
New Keenadu Android Malware Found on Thousands of Devices
18 February 2026
The malware has been preinstalled on many devices but it has also been distributed through Google Play and other app stores.
The post New Keenadu Android Malware Found on Thousands of Devices appeared first on SecurityWeek.
Cogent Security Raises $42 Million for AI-Driven Vulnerability Management
18 February 2026
The Series A funding round, led by Bain Capital, brings the total raised by Cogent to $53 million.
The post Cogent Security Raises $42 Million for AI-Driven Vulnerability Management appeared first on SecurityWeek.
The Playbook For Organized Cybercrime
18 February 2026
This week in cybersecurity from the editors at Cybercrime Magazine Sausalito, Calif. – Feb. 18, 2026 –Read the full report in GlobeNewswire Cybercrime has become the world’s third-largest economy, with costs projected to reach $12.2 trillion annually by 2031, according to Cybersecurity Ventures. A new report from Huntress
The post The Playbook For Organized Cybercrime appeared first on Cybercrime Magazine.
Global Leaders, Executives Exposed in Data Leak
18 February 2026
A financial summit accidentally exposed the passports and state identity cards of more than 700 individuals.