Eduard Kovacs

Eduard Kovacs (@EduardKovacs) is senior managing editor at SecurityWeek. He worked as a high school IT teacher before starting a career in journalism in 2011. Eduard holds a bachelor’s degree in industrial informatics and a master’s degree in computer techniques applied in electrical engineering.

Taiwan Security Firm Confirms Flaw Flagged by CISA Likely Exploited by Chinese APTs

The vulnerability in TeamT5 ThreatSonar Anti-Ransomware was recently added to CISA’s KEV catalog.

February 24, 2026

US Healthcare Diagnostic Firm Says 140,000 Affected by Data Breach

The Everest ransomware group has taken credit for a hacker attack on Vikor Scientific, now called Vanta Diagnostics.

February 23, 2026

PayPal Data Breach Led to Fraudulent Transactions

PayPal blamed an application error for the exposure of customer personal information for nearly 6 months.

February 23, 2026

Critical Grandstream Phone Vulnerability Exposes Calls to Interception

The flaw tracked as CVE-2026-2329 can be exploited without authentication for remote code execution with root privileges.

February 21, 2026

BeyondTrust Vulnerability Exploited in Ransomware Attacks

CISA has updated its KEV entry for CVE-2026-1731 to alert organizations of exploitation in ransomware attacks.

February 20, 2026

FBI: $20 Million Losses Caused by 700 ATM Jackpotting Attacks in 2025

The FBI has confirmed that the Ploutus malware, which has been around for over a decade, is still being used in the wild.

February 20, 2026

Chip Testing Giant Advantest Hit by Ransomware

The company is investigating whether any customer or employee data was stolen by hackers.

February 20, 2026

PromptSpy Android Malware Abuses Gemini AI at Runtime for Persistence

The malware leverages Gemini to analyze on-screen elements and ensure that it remains on the device even after a reboot.

February 20, 2026

French Government Says 1.2 Million Bank Accounts Exposed in Breach

The Ministry of Economy reported discovering unauthorized access to the national bank account registry FICOBA.

February 19, 2026

Nearly 1 Million User Records Compromised in Figure Data Breach

The blockchain-based lender has confirmed a data breach after ShinyHunters leaked over 2GB of data allegedly stolen from the company.

February 19, 2026

Ivanti Exploitation Surges as Zero-Day Attacks Traced Back to July 2025

Security researchers have seen the vulnerabilities being exploited to deliver shells, conduct reconnaissance, and download malware.

February 19, 2026

German Rail Giant Deutsche Bahn Hit by Large-Scale DDoS Attack

The cyberattack disrupted information and booking systems and lasted for several hours.

February 19, 2026

New Keenadu Android Malware Found on Thousands of Devices

The malware has been preinstalled on many devices but it has also been distributed through Google Play and other app stores.

February 18, 2026

Cogent Security Raises $42 Million for AI-Driven Vulnerability Management

The Series A funding round, led by Bain Capital, brings the total raised by Cogent to $53 million.

February 18, 2026

Vulnerabilities in Popular PDF Platforms Allowed Account Takeover, Data Exfiltration

Novee researchers discovered 16 vulnerabilities in Foxit and Apryse PDF tools that could have been exploited via malicious documents or URLs.

February 18, 2026

CISA: Hackers Exploiting Vulnerability in Product of Taiwan Security Firm TeamT5

The vulnerability added to CISA’s KEV catalog affects ThreatSonar Anti-Ransomware and it was patched in 2024.

February 18, 2026

Palo Alto Networks to Acquire Koi in Reported $400 Million Transaction

Koi has developed an endpoint security solution that Palo Alto will use to enhance its products.

February 18, 2026

Dell RecoverPoint Zero-Day Exploited by Chinese Cyberespionage Group

GTIG and Mandiant said the zero-day tracked as CVE-2026-22769 has been exploited by UNC6201 since at least 2024.

February 18, 2026

Hackers Offer to Sell Millions of Eurail User Records

Eurail has confirmed that the stolen data is up for sale, but it’s still trying to determine how many individuals are impacted.

February 17, 2026

Man Linked to Phobos Ransomware Arrested in Poland

Polish police said they found evidence of cybercrime on the 47-year-old suspect’s devices.

February 17, 2026

SECURITYWEEK NETWORK:

ICS:

Eduard Kovacs

Taiwan Security Firm Confirms Flaw Flagged by CISA Likely Exploited by Chinese APTs

US Healthcare Diagnostic Firm Says 140,000 Affected by Data Breach

PayPal Data Breach Led to Fraudulent Transactions

Critical Grandstream Phone Vulnerability Exposes Calls to Interception

BeyondTrust Vulnerability Exploited in Ransomware Attacks

FBI: $20 Million Losses Caused by 700 ATM Jackpotting Attacks in 2025

Chip Testing Giant Advantest Hit by Ransomware

PromptSpy Android Malware Abuses Gemini AI at Runtime for Persistence

French Government Says 1.2 Million Bank Accounts Exposed in Breach

Nearly 1 Million User Records Compromised in Figure Data Breach

Ivanti Exploitation Surges as Zero-Day Attacks Traced Back to July 2025

German Rail Giant Deutsche Bahn Hit by Large-Scale DDoS Attack

New Keenadu Android Malware Found on Thousands of Devices

Cogent Security Raises $42 Million for AI-Driven Vulnerability Management

Vulnerabilities in Popular PDF Platforms Allowed Account Takeover, Data Exfiltration

CISA: Hackers Exploiting Vulnerability in Product of Taiwan Security Firm TeamT5

Palo Alto Networks to Acquire Koi in Reported $400 Million Transaction

Dell RecoverPoint Zero-Day Exploited by Chinese Cyberespionage Group

Hackers Offer to Sell Millions of Eurail User Records

Man Linked to Phobos Ransomware Arrested in Poland

Featured

Vulnerabilities

Microsoft Working on Patch for ‘RoguePlanet’ Zero-Day

Vulnerabilities

3 Recently Patched Fortinet FortiSandbox Vulnerabilities in Hacker Crosshairs

Hacker Conversations

Hacker Conversations: Isira Adithya, the Evolution of an Ethical Hacker

Artificial Intelligence

AI and Cybersecurity – Everything You Wanted to Know, But Were Afraid to Ask

ICS/OT

Cal Water Investigating Iranian Hackers’ Claims

Network Security

Cisco Patches Another SD-WAN Zero-Day Exploited in Attacks

Ransomware

Ransomware Attack Shuts Down Mills of Australia’s Second-Largest Sugar Producer

Latest News

Identity & Access

Webinar Today: How Modern Breaches Bypass MFA and Evade Detection

Funding/M&A

1Password Acquires Apono in Reported $250M-$300M Deal

Artificial Intelligence

Tenet Security Emerges From Stealth With $6 Million Seed Funding

ICS/OT

Rockwell Automation Patches Vulnerabilities in ICS Controllers and Software

Malware & Threats

Microsoft Teams Relay Servers Abused in DragonForce Ransomware Attack

Vulnerabilities

Oracle’s Second Monthly Security Updates Deliver 245 Patches

Vulnerabilities

Chrome and Firefox Updated to Patch Critical, High-Severity Vulnerabilities

Daily Briefing Newsletter