Latest Internet & Cybersecurity News

๐Ÿ“…February 16, 2026 at 1:00 AM
Critical vulnerabilities exploited in BeyondTrust and Microsoft products, major data breaches at Odido and Conduent, nation-state attacks surge, AI weaponized in cybercrime amid Patch Tuesday fixes.
1

U.S. CISA Adds BeyondTrust Flaws to Known Exploited Vulnerabilities Catalog

U.S. CISA added critical flaws in BeyondTrust Remote Support (RS) and Privileged Remote Access (PRA) to its Known Exploited Vulnerabilities catalog due to active exploitation. Attackers exploited CVE-2026-1731 within hours of PoC release, enabling remote code execution.Source 1Source 7 Immediate patching is urged.Source 1

2

Microsoft Patch Tuesday Fixes 6 Zero-Days and 58 Flaws

Microsoft's February 2026 Patch Tuesday addressed 58 vulnerabilities, including six zero-days exploited in the wild, such as security feature bypasses in Office and Windows. Patches are critical for Windows users, especially those on unsupported versions without extended security updates.Source 1Source 4Source 5 Ivanti also patched multiple Endpoint Manager bugs.Source 1

3

Odido Confirms Massive Data Breach Impacting 6.2 Million Customers

Dutch telco Odido suffered a massive breach exposing data of 6.2 million customers. The incident highlights ongoing risks to telecom sectors from advanced threats.Source 1 Relatedly, China-linked APT UNC3886 targeted Singapore telcos.Source 1

4

Google: State-Backed Hackers Exploit Gemini AI for Recon and Attacks

State-sponsored actors are leveraging Google's Gemini AI for cyber reconnaissance and attack planning, marking a new frontier in AI misuse by threat groups.Source 1 This aligns with rising concerns over AI in cyberattacks.Source 8

5

European Commission Probes Cyberattack on Mobile Device Management

The European Commission's mobile device management platform was hacked on January 30, 2026, but contained with no device compromise detected by CERT-EU.Source 1Source 5 Dutch agencies also hit by Ivanti EPMM exploit exposing employee data.Source 1

6

Fintech Figure Discloses Data Breach from Employee Phishing

Fintech firm Figure revealed a data breach following a phishing attack on an employee, underscoring persistent social engineering risks.Source 1 ApolloMD breach impacted 626,540 people.Source 1

7

Infosec Exec Sold Eight Zero-Days to Russia, Charges DoJ

Former L3Harris cyber exec allegedly sold eight zero-day exploit kits to Russia, per U.S. DoJ court filing. This exposes insider threats in the security industry.Source 3 Pwn2Own Automotive uncovered 76 zero-days.Source 3

8

AI Coding Assistants Secretly Send Code to China

Two AI coding assistants used by 1.5 million developers covertly transmit ingested code to China, posing massive IP theft risks.Source 2 Avoid such tools pending mitigation.Source 2

9

Backdoor Found in Notepad++ via Compromised Updates

Chinese government-linked hackers inserted a backdoor into Notepad++ via trojaned updates, targeting users until late 2026.Source 2 CISA added Notepad++ flaws to KEV catalog.Source 1

10

Critical n8n Vulnerability Allows Instance Takeover

CVE-2026-21858 (CVSS 10.0) in n8n enables attackers to takeover 100,000+ locally deployed servers; upgrade to 1.121.0 required.Source 2 No workarounds available.Source 2

11

Conduent Data Breach Expands to 25 Million Victims, Hits Volvo Group

Conduent breach now impacts 25 million, up from 10 million, affecting clients like Volvo Group.Source 1Source 7 Ransomware Reynolds uses BYOVD techniques.Source 1

12

Interpol Warns of Cybercriminals Weaponizing AI

Interpol highlights AI as the biggest threat, enabling deepfakes for scams and sophisticated attacks.Source 8Source 12 Gartner notes agentic AI trends for 2026.Source 9

Back to News
Latest Internet & Cybersecurity News | DeckBook AI