Ionut Arghire

SAP Patches Critical CRM, S/4HANA, NetWeaver Vulnerabilities

SAP has released 26 new and one updated security notes on February 2026 security patch day.

February 10, 2026

Backslash Raises $19 Million to Secure Vibe Coding

The company will use the investment to expand its R&D team and operations, deepen platform capabilities, and scale go-to-market presence.

February 10, 2026

New ‘SSHStalker’ Linux Botnet Uses Old Techniques

Estimated to have infected 7,000 systems, the botnet uses a mass-compromise pipeline, deploying various scanners and malware.

February 10, 2026

BeyondTrust Patches Critical RCE Vulnerability

Affecting both RS and PRA, the bug can be exploited remotely via crafted requests without authentication.

February 10, 2026

Singapore: Rootkits, Zero-Day Used in Chinese Attack on Major Telecom Firms

China-linked UNC3886 targeted all four major telecom providers, but did not disrupt services or access customer information.

February 10, 2026

Ransomware Groups May Pivot Back to Encryption as Data Theft Tactics Falter

As only data exfiltration for extortion no longer delivers ROI, ransomware gangs may increasingly encrypting data for additional leverage.

February 9, 2026

Recent SolarWinds Flaws Potentially Exploited as Zero-Days

Vulnerable SolarWinds Web Help Desk instances were exploited in December 2025 for initial access.

February 9, 2026

SmarterTools Hit by Ransomware via Vulnerability in Its Own Product

SmarterTools says customers were impacted after hackers compromised a data center used for quality control testing.

February 9, 2026

European Commission Investigating Cyberattack

The signs of a cyberattack were identified on systems EU's main executive body uses for mobile device management.

February 9, 2026

Organizations Urged to Replace Discontinued Edge Devices

Edge devices that are no longer supported have been targeted in attacks by state-sponsored hackers, the US says.

February 7, 2026

Airrived Emerges From Stealth With $6.1 Million in Funding

The startup aims to unify SOC, GRC, IAM, vulnerability management, IT, and business operations through its Agentic OS platform.

February 6, 2026

‘DKnife’ Implant Used by Chinese Threat Actor for Adversary-in-the-Middle Attacks

Used since at least 2019, DKnife has been targeting the desktop, mobile, and IoT devices of Chinese users.

February 6, 2026

Critical SmarterMail Vulnerability Exploited in Ransomware Attacks

The security defect allows unauthenticated attackers to execute arbitrary code remotely via malicious HTTP requests.

February 6, 2026

VS Code Configs Expose GitHub Codespaces to Attacks

VS Code-integrated configuration files are automatically executed in Codespaces when the user opens a repository or pull request.

February 5, 2026

SystemBC Infects 10,000 Devices After Defying Law Enforcement Takedown

The malware is known for dropping ransomware and other payloads, and for abusing infected machines to proxy traffic.

February 5, 2026

Critical N8n Sandbox Escape Could Lead to Server Compromise

The vulnerability could allow attackers to execute arbitrary commands and steal credentials and other secrets.

February 5, 2026

Cisco, F5 Patch High-Severity Vulnerabilities

The security defects can lead to DoS conditions, arbitrary command execution, and privilege escalation.

February 5, 2026

Orion Raises $32 Million for Data Security

The startup will use the funding to accelerate product development and go-to-market operations.

February 4, 2026

DockerDash Flaw in Docker AI Assistant Leads to RCE, Data Theft

The critical vulnerability exists in the contextual trust in MCP Gateway architecture, as instructions are passed without validation.

February 4, 2026

Cryptominers, Reverse Shells Dropped in Recent React2Shell Attacks

Two IP addresses accounted for the majority of the 1.4 million exploitation attempts observed over the past week.

February 4, 2026

SECURITYWEEK NETWORK:

ICS:

Ionut Arghire

SAP Patches Critical CRM, S/4HANA, NetWeaver Vulnerabilities

Backslash Raises $19 Million to Secure Vibe Coding

New ‘SSHStalker’ Linux Botnet Uses Old Techniques

BeyondTrust Patches Critical RCE Vulnerability

Singapore: Rootkits, Zero-Day Used in Chinese Attack on Major Telecom Firms

Ransomware Groups May Pivot Back to Encryption as Data Theft Tactics Falter

Recent SolarWinds Flaws Potentially Exploited as Zero-Days

SmarterTools Hit by Ransomware via Vulnerability in Its Own Product

European Commission Investigating Cyberattack

Organizations Urged to Replace Discontinued Edge Devices

Airrived Emerges From Stealth With $6.1 Million in Funding

‘DKnife’ Implant Used by Chinese Threat Actor for Adversary-in-the-Middle Attacks

Critical SmarterMail Vulnerability Exploited in Ransomware Attacks

VS Code Configs Expose GitHub Codespaces to Attacks

SystemBC Infects 10,000 Devices After Defying Law Enforcement Takedown

Critical N8n Sandbox Escape Could Lead to Server Compromise

Cisco, F5 Patch High-Severity Vulnerabilities

Orion Raises $32 Million for Data Security

DockerDash Flaw in Docker AI Assistant Leads to RCE, Data Theft

Cryptominers, Reverse Shells Dropped in Recent React2Shell Attacks

Featured

Data Breaches

More Cybersecurity Firms Disclose Impact From Klue Hack

Data Breaches

Texas Parks & Wildlife Data Breach Affects 3 Million Individuals

Malware & Threats

FortiBleed: 86,000 Fortinet Device Credentials Compromised

Supply Chain Security

Cybersecurity Firms Impacted by Klue Supply Chain Attack

Vulnerabilities

Splunk Enterprise Vulnerability Exploited in Attacks Days After Disclosure

Funding/M&A

Accenture to Acquire Majority Stake in Dragos, All of runZero, NetRise in $4.1 Billion OT Cybersecurity Push

Data Breaches

Kodak Admits Data Breach After ShinyHunters Hack Claims

Latest News

Data Protection

Decades-Old Squid Proxy Flaw ‘Squidbleed’ Can Expose User Data

Vulnerabilities

Attackers Exploit Gravity SMTP Plugin Flaw to Harvest Valuable WordPress Data

Supply Chain Security

North Korean Hackers Blamed for Mastra NPM Supply Chain Attack

Cybercrime

What the Latest ShinyHunters Breaches Reveal About Modern Cyberattacks

Mobile & Wireless

New Exploit Bypasses Apple’s Boot Defenses, Affects Millions of iPhones

Network Security

Fortinet Responds to FortiBleed Campaign

Data Breaches

Texas Parks & Wildlife Data Breach Affects 3 Million Individuals

Daily Briefing Newsletter