Latest Internet & Cybersecurity News
Microsoft Patch Tuesday: 6 Exploited Zero-Days Fixed
Microsoft has patched over 50 security vulnerabilities in February 2026 Patch Tuesday, including six zero-day vulnerabilities actively exploited by attackers in the wild. Among the critical fixes are three vulnerabilities that allow attackers to bypass security features
.
BeyondTrust Remote Support Vulnerability Under Active Attack
A critical unauthenticated remote code execution flaw (CVE-2026-1731) in BeyondTrust Remote Support is experiencing active exploitation attempts. The vulnerability allows attackers to execute arbitrary code on affected systems without authentication.
SolarWinds WHD Instances Targeted by Attackers
Unpatched SolarWinds Webhelpdesk (WHD) instances are under active attack, with the underlying vulnerability disclosed at the end of January 2026 and likely exploited as a zero-day since December 2025.
Ransomware Groups Target Milan-Cortina 2026 Olympics Infrastructure
In early February 2026, Italian authorities confirmed coordinated cyberattack attempts attributed to pro-Russian groups, including the NoName057(16) collective, targeting embassies, hotels, and systems connected to the Olympic event. The attacks, detected between February 2-6, aimed to cause reputational and operational instability but were successfully intercepted before causing damage
.
Critical Notepad++ Vulnerability Actively Exploited
CISA has issued an urgent alert for a critical vulnerability (CVE-2025-15556) in Notepad++ that allows remote code execution through the WinGUp updater without additional authentication. The flaw is being actively exploited and users are advised to upgrade to version 8.8.9 or later
.
SmarterTools Breached via SmarterMail Vulnerability
SmarterTools, creator of the popular Microsoft Exchange alternative SmarterMail, was breached by a ransomware group that exploited a recently fixed vulnerability in their solution.
European Commission Mobile Device Management Platform Hacked
The European Commission's mobile device management platform was compromised, though the incident was swiftly contained with no compromise of mobile devices detected. The intrusion was discovered on January 30, 2026, by CERT-EU
.
Phishing Remains Top Cyber Threat with 75% of Attacks Starting via Email
According to the 2026 Kaseya Cybersecurity Outlook Report, over 75% of cyberattacks begin with phishing emails, and 56% of businesses have been impacted by phishing-related incidents. Nearly 70% of surveyed businesses expect to fall victim to a successful phishing attack in the next 12 months
.
AI-Powered Romance Scams Growing with Deepfake Technology
Global cybercrime syndicates are increasingly targeting victims through romance scams using AI-generated deepfake images, videos, and voice cloning technology. These deepfakes have become sophisticated enough to bypass previous detection methods, with scammers no longer relying on obvious errors like spelling mistakes
.
Discord Implementing Mandatory Age Verification with Face Scans
Discord will require users to verify their age using ID or face scans starting in early March 2026 to access certain features. The changes will apply to both new and existing accounts following earlier limited deployments
.
Google Expands Tools for Removing Sensitive Personal Information from Search
Google has expanded its 'Results about you' tool to give users more control over sensitive personal information and added functionality to request removal of non-consensual explicit images from Search results.
Microsoft Updates Secure Boot Certificates Before June 2026 Expiration
Microsoft has begun updating Secure Boot certificates originally issued in 2011 to ensure Windows devices can properly verify boot software before older certificates expire in June 2026.