Latest Internet & Cybersecurity News
Hackers Exploit NGINX and Baota Panel to Hijack Web Traffic
Hackers are exploiting vulnerabilities in NGINX and Baota Panel to inject malicious configurations, redirecting traffic from Asian domains, government, and educational sites for data theft. Sophisticated scripts enable long-term undetected access, evading standard security checks.
Sources include BleepingComputer and TheHackerNews reports.
Asia State-Sponsored Shadow Campaign Targets Global Infrastructure
Palo Alto Networks identified TGR-STA-1030, a likely Chinese group, compromising 70 organizations in 37 countries since 2025. They use phishing, ShadowGuard rootkit, and exploit known flaws in Microsoft, SAP, and others targeting government agencies.
The campaign poses long-term threats to national security.
EDR Killer Tool Abuses Signed Kernel Driver
Cybercriminals exploit revoked EnCase kernel drivers to disable endpoint detection tools and bypass protections. Fake updates and stolen VPN credentials allow deep system access and process termination.
This maintains hidden persistence in targeted systems.
Iron Mountain Faces Everest Ransomware Extortion Deadline
Everest gang claims 1.4TB data theft from Iron Mountain, posting on leak site with February 11 deadline. Includes internal documents and possible client data; company denies confidential info breach.
Source: Cybernews.
Panera Bread Breach Affects 5.1 Million Customers
ShinyHunters leaked 5.1 million records including emails, names, phones after failed extortion, down from initial 14 million estimate. Breach used Microsoft Entra SSO; data on dark web.
Source: TechRadar Pro.
FBI Launches Operation Winter SHIELD for Cyber Resilience
FBI unveiled Operation Winter SHIELD on February 5, 2026, with 10 recommendations for IT/OT hardening based on real attacks. Weekly guidance over 10 weeks emphasizes prevention, backups, and response.
Targets industry, government, infrastructure.
Russian-Linked Cyberattacks Foiled Ahead of 2026 Winter Olympics
Italian officials stopped DDoS attacks by pro-Kremlin hackers on embassies, hotels, and Olympic sites in retaliation for Ukraine support. CISA shares real-time intel with partners.
Low-skill but high-volume threats expected.
Qilin Ransomware Hits Romania's Conpet Oil Pipeline Operator
Qilin claims 1TB data breach from Conpet, posting documents and passports on dark web; IT disrupted but OT/SCADA unaffected. Most prolific 2025 ransomware with 700 attacks.
Targets critical sectors.
CISA Orders Removal of Unsupported Edge Devices
Binding Directive 26-02 requires federal agencies to update/catalog end-of-support edge devices within 12-18 months to curb espionage. Immediate action on vendor-supported updates; report to CISA.
Reduces cyber risks from outdated tech.
Chat & Ask AI App Exposes 300M Messages and 25M Users
Security researcher found exposed database with user messages and info; developers fixed promptly across apps. Affects popular AI mobile app privacy.
Source: Business and Human Rights Centre.
Portland Public Schools Data Breach Impacts 12,000
Maine school district notifies over 12,000 of 2025 breach; no identity theft reported, offering free credit monitoring. Source: WGME Portland.
Highlights education sector vulnerabilities.
Google Urges Post-Quantum Cryptography Preparation
Google calls on governments and industry to adopt post-quantum crypto amid quantum computing advances. Accelerate to counter future decryption threats.
Prepares for quantum-era cybersecurity.