Latest Internet & Cybersecurity News

📅February 9, 2026 at 1:00 AM
Major cybersecurity threats dominate 2026 news: nation-state hacks on Notepad++, Office, VMware; ransomware exploits; AI-driven attacks surging; global arrests and tightening laws.
1

Chinese State-Sponsored Attackers Hijack Notepad++ Updates

Suspected Chinese hackers compromised Notepad++'s shared hosting server, intercepting update traffic to notepad-plus-plus.org. The breach, linked to Lotus Blossom APT, highlights supply chain risks. Rapid7 confirms nation-state involvement.Source 1Source 2

2

Russian APT28 Exploits Microsoft Office Vulnerability CVE-2026-21509

Fancy Bear (APT28) is targeting the recently patched Office flaw in Operation Neusploit. Microsoft issued an emergency fix last week. Attacks focus on high-value targets.Source 1Source 2

3

CISA Confirms Ransomware Exploitation of VMware ESXi CVE-2025-22225

Ransomware groups are using the arbitrary write vulnerability in attacks, added to CISA's KEV catalog. Broadcom patched it in March 2025. Federal agencies urged to patch immediately.Source 1Source 2

4

ShinyHunters Bypass MFA in New Data Theft Campaigns

Hackers are flipping MFA protections to steal data more effectively. The technique targets authentication flows. Details reveal evolving tactics against multi-factor defenses.Source 1

5

Polish Police Arrest 20-Year-Old for Global DDoS Attacks

CBZC arrested a suspect for DDoS on high-profile sites worldwide. Attacks hit strategically important targets. Investigation ongoing.Source 1

6

International Sting Dismantles Illegal Streaming Empire

Authorities from Italy, Romania, Spain, UK, Canada, Kosovo, South Korea seized services serving millions. Eurojust and Europol supported. Focus on cybercrime revenue streams.Source 1

7

Pro-Russian Noname057(16) DDoS Milano Cortina 2026 Olympics

Group launched attacks on Italy's Winter Olympics infrastructure. Italy mitigated Russian-linked cyber efforts. Geopolitical tensions evident.Source 2

8

Quorum Cyber 2026 Outlook: AI and Ransomware Reshape Threats

Report notes 30% rise in ransomware groups, 21% more vulnerabilities over 35,000, AI automating 90% of intrusions. Ransom demands up 179% in finance. Shift to data exfiltration.Source 3

9

Hong Kong Revives Mandatory Data Breach Reporting Laws

Privacy regulator plans PDPO amendments for mandatory reporting and fines. Aligns with global standards like US 72-hour rule. Phased rollout targets large users first.Source 5

10

Microsoft Warns of Info-Stealers Expanding to macOS

Attacks use Python and trusted platforms, moving from Windows. Rapid evolution noted. Defenders urged to update cross-platform protections.Source 2

11

Over 400 Malicious OpenClaw Packages Spread Malware

Campaign abuses AI skills for Claude Code with MoltBot stealer. Uploaded in days via PyPI. Targets developers with password theft.Source 2

12

CISA Adds SolarWinds, FreePBX, GitLab Flaws to KEV Catalog

New entries require federal patching. Highlights ongoing exploitation risks. Agencies must prioritize.Source 2

Back to News