Latest Internet & Cybersecurity News

📅February 21, 2026 at 1:00 AM
Major 2026 cyber incidents include massive data breaches at Conduent and Figure, AI leaks, ransomware attacks, critical zero-days in Chrome, Windows, Dell, and rapid AI-accelerated intrusions per Unit 42 report.
1

Unit 42 2026 Report: Attackers Exfiltrate Data in 72 Minutes

Palo Alto Networks' Unit 42 analyzed over 750 incidents, finding attackers can exfiltrate data in as little as 72 minutes, 4x faster than prior years, driven by AI and identity weaknesses in nearly 90% of cases.Source 1Source 7Source 8 Identity issues span multiple attack surfaces in 87% of breaches, urging faster IR playbooks and better logging.Source 1 AI accelerates vulnerability scanning and ransomware deployment.Source 7

2

Figure Technology Solutions Breach by ShinyHunters

Figure confirmed a breach with ShinyHunters leaking ~967,000 user records including financial and personal data.Source 1 The incident highlights social engineering bypassing perimeters via weak identity workflows.Source 1 It increases fraud and account-takeover risks.Source 1

3

Conduent Data Breach Exposes Tens of Millions

Safeway ransomware stole over 8TB, affecting millions including 4M Texans, 10.5M Oregonians, and 7.6M in Maine.Source 2 Triggers multi-state investigations, lawsuits, and $25M+ costs; Texas AG calls it potentially largest U.S. breach.Source 2 Involves health data for Medicaid recipients.Source 2

4

Microsoft Windows Admin Center Privilege Escalation CVE-2026-26119

Critical vuln (CVSS 8.8) allows low-priv attackers to escalate to full domain compromise; patched in Dec 2025 version 2511.Source 4Source 5 No confirmed exploitation yet but rated 'most likely'.Source 5 Update immediately and audit admin accounts.Source 4

5

Google Patches First Chrome 0-Day of 2026

Urgent update for Chrome versions 145.0.7632.75/.76 (Win/macOS) and 144.0.7559.75 (Linux) addresses critical 0-day.Source 5 Part of ongoing rapid patching efforts.Source 5 Users should update stable channel immediately.Source 5

6

UNC6201 Exploits Dell RecoverPoint Zero-Day CVE-2026-22769

Mandiant confirms Grimbolt malware exploiting CVSS 10.0 zero-day in RecoverPoint for data centers.Source 1Source 5 UNC6201 deploys payloads like SLAYSTYLE, BRICKSTORM.Source 5 Dell patched; monitor IOCs and update urgently.Source 5

7

AI Chat App Leaks 300M Messages from 25M Users

Massive consumer data leak exposes AI chat logs tied to 25 million users.Source 1 Adds to billion-record global breaches trend.Source 6 Heightens privacy and security risks for AI platforms.Source 1

8

WormGPT.AI User Database Compromised

Hacking platform WormGPT.AI breached, leaking records of over 19,000 users posted on cybercrime forums.Source 3 Includes full database download for February 2026 users.Source 3 Underscores irony of cybersecurity tool insecurity.Source 3

9

Space Bears Ransomware Hits Texcomp

Ransomware group published SQL database with client PII like names, emails, addresses from IT firm Texcomp.Source 3 Targets businesses for digital transformation services.Source 3 Exposes partner contact details publicly.Source 3

10

North Korean UNC1069 Targets Crypto with AI Social Engineering

Uses fake Zoom, compromised Telegram, ClickFix, and AI-generated video to deploy seven malware families against crypto/DeFi.Source 3Source 5 Part of persistent APT campaigns by nation-states.Source 5 Enhance phishing defenses.Source 3

11

Phobos Ransomware Arrest and Sentencings

Law enforcement actions include Phobos arrest and sentencing for network intrusions.Source 1 Ongoing probes into exploit sales and laptop-farm schemes.Source 1 Strengthens global cyber investigations.Source 1

12

UK CSR Bill Advances, ONCD Pushes AI for Defense

UK Cyber Security Resilience Bill progresses; US ONCD promotes AI in defense without added risks.Source 1 Policy shifts address AI threats and standards like ICO rulings.Source 1 Impacts compliance globally.Source 1

Back to News