Security News

darkreading Feb 19, 2026 at 23:17

Emerging Chiplet Designs Spark Fresh Cybersecurity Challenges

As scaled-down circuits with limited functions redefine computing for AI systems and autonomous vehicles, their flexibility demands new approaches to safeguard critical infrastructure.

Read Article

darkreading Feb 19, 2026 at 22:33

Supply Chain Attack Secretly Installs OpenClaw for Cline Users

The malicious version of Cline's npm package — 2.3.0 — was downloaded more than 4,000 times before it was removed.

Read Article

darkreading Feb 19, 2026 at 22:06

Best-in-Class 'Starkiller' Phishing Kit Bypasses MFA

A user-friendly PhaaS tool beats standard methods for detecting phishing attacks by live-proxying legitimate login sites.

Read Article

darkreading Feb 19, 2026 at 20:50

Abu Dhabi Finance Week Exposed VIP Passport Details

Unprotected cloud data sends the wrong signal at a time when the emirate's trying to attract investors and establish itself as a global financial center.

Read Article

darkreading Feb 19, 2026 at 15:18

Connected and Compromised: When IoT Devices Turn Into Threats

Reused passwords, a lack of network segmentation, and poor sanitization processes make the Internet of Things' attack surfaces more dangerous.

Read Article

darkreading Feb 19, 2026 at 07:00

More Than 40% of South Africans Were Scammed in 2025

Survey underscores the reality that scammers follow "scalable opportunities and low friction," rather than rich targets that tend to be better protected.

Read Article

darkreading Feb 18, 2026 at 21:47

Scam Abuses Gemini Chatbots to Convince People to Buy Fake Crypto

A convincing presale site for phony "Google Coin" features an AI assistant that engages victims with a slick sales pitch, funneling payment to attackers.

Read Article

darkreading Feb 18, 2026 at 21:15

Critical Grandstream VoIP Bug Highlights SMB Security Blind Spot

CVE-2026-2329 allows unauthenticated root-level access to SMB phone infrastructure, so attackers can intercept calls, commit toll fraud, and impersonate users.

Related CVEs: CVE-2026-2329

Read Article

darkreading Feb 18, 2026 at 20:56

Threat Intelligence Has a Human-Shaped Blind Spot

How I realized what I was taught to about threat intelligence was missing something crucial.

Read Article

darkreading Feb 18, 2026 at 20:49

Dell's Hard-Coded Flaw: A Nation-State Goldmine

A China-related attacker has exploited the vendor flaw since mid-2024, allowing it to move laterally, maintain persistent access, and deploy malware.

Read Article

darkreading Feb 18, 2026 at 19:13

A CISO's Playbook for Defending Data Assets Against AI Scraping

Discover a strategic approach to govern scraping risks, balance security with business growth, and safeguard intellectual capital from automated data harvesting.

Read Article

darkreading Feb 18, 2026 at 01:00

Singapore & Its 4 Major Telcos Fend Off Chinese Hackers

After detecting a zero-day attack, the country's effective response was attributed to the tight relationship between its government and private industry.

Read Article

darkreading Feb 17, 2026 at 22:06

Supply Chain Attack Embeds Malware in Android Devices

Keenadu downloads payloads that hijack browser searches, commit ad fraud, and execute other actions without user knowledge.

Read Article

darkreading Feb 17, 2026 at 21:31

Poland Energy Survives Attack on Wind, Solar Infrastructure

Russia-aligned groups are probable culprits behind the wiper attacks against renewable energy farms, a manufacturer, and a heating and power plant.

Read Article

darkreading Feb 17, 2026 at 21:01

RMM Abuse Explodes as Hackers Ditch Malware

It's the path of lesser resistance, as remote monitoring and management (RMM) software offers stealth, persistence, and operational efficiency.

Read Article

darkreading Feb 17, 2026 at 17:03

ClickFix Attacks Abuses DNS Lookup Command to Deliver ModeloRAT

ClickFix campaigns have adapted to the latest defenses with a new technique to trick users into infecting their own machines with malware.

Read Article

darkreading Feb 16, 2026 at 14:00

260K+ Chrome Users Duped by Fake AI Browser Extensions

30 copycat apps tricked users, and Google itself, into thinking they're legitimate AI tools.

Read Article

darkreading Feb 16, 2026 at 01:07

Operation DoppelBrand: Weaponizing Fortune 500 Brands

The GS7 cyberthreat group targets US financial institutions with near-perfect imitations of corporate portals to steal credentials and gain remote access.

Read Article

darkreading Feb 13, 2026 at 21:58

Zscaler-SquareX Deal Boosts Zero Trust, Secure Browsing Capabilities

Zscaler's acquisition of SquareX comes as competitors like CrowdStrike and Palo Alto Networks are also investing in secure browser technologies.

Read Article

darkreading Feb 13, 2026 at 17:08

Microsoft Under Pressure to Bolster Defenses for BYOVD Attacks

Threat actors are exploiting security gaps to weaponize Windows drivers and terminate security processes in targeted networks, and there may be no easy fixes in sight.

Read Article