Latest Internet & Cybersecurity News
Kyndryl Launches Cyber Defense Operations Center in Bengaluru
Kyndryl launched its first Cyber Defense Operations Center on February 19, 2026, unifying network and security operations to combat AI-driven cyber risks and IT complexity. The center provides 24x7 monitoring, threat detection, and incident response, integrated with Kyndryl Bridge AI platform for global customers.
It addresses findings from the 2025 Kyndryl Readiness Report where only 31% of organizations are ready for external risks.
Mandiant Confirms Grimbolt Malware Exploiting Dell RecoverPoint Zero-Day
Mandiant and Google Threat Intelligence identified UNC6201 exploiting CVE-2026-22769 in Dell RecoverPoint for Virtual Machines via hard-coded credentials. The Grimbolt malware, an evolution of Brickstorm, deploys persistent backdoors and pivots to VMware infrastructure and SaaS.
It uses C# with AOT compilation for stealth on resource-constrained appliances.
CISA Adds Four Vulnerabilities to Known Exploited Vulnerabilities Catalog
CISA expanded its KEV catalog with four actively exploited flaws in Google Chrome, Microsoft Windows, Zimbra, and security software, setting patching deadlines for federal agencies. These vulnerabilities are being utilized by attackers in the wild.
Federal agencies must mitigate risks promptly.
Kaspersky Identifies Canidu Firmware Backdoor in Android Devices
Kaspersky discovered the Canidu backdoor embedded in Android device firmware, affecting thousands globally for data harvesting and remote control. The malware integrates during firmware build, enabling persistent access even after resets.
It harvests sensitive user data stealthily.
Asahi Group Holdings Suffers Cyber Attack Leaking 115K Records
A cyber attack on Asahi Group Holdings leaked over 115,000 personal records of employees and clients, following operational disruptions at plants. The breach confirms significant data exposure.
The company has implemented mitigation measures.
CISA Issues BOD 26-02 Urging Adoption of OpenEoX Standard
CISA's Binding Operational Directive 26-02 requires federal agencies to replace end-of-support edge devices and adopt OpenEoX for lifecycle management. The standard streamlines asset tracking to curb cyber risks from unsupported tech.
Private sector urged to follow suit.
Enterprise Security Spending Hits Record Highs Amid Quantum Threats
Global IT spending projected at $6.15 trillion in 2026, with security focus on AI-augmented defenses and quantum readiness. Nation-state actors conduct 'harvest now, decrypt later' campaigns.
Companies like Fortinet, CrowdStrike see growth in AI security.
Top Cyber Threats for 2026: AI-Driven Attacks and Identity Theft
2026 threats include AI-generated phishing, deepfakes, identity compromise via SSO, and supply chain breaches. Average US data breach cost hit $10.22 million in 2025; 13% of firms faced AI incidents.
Credential abuse tops breach causes.
Ransomware Evolves with Data Theft, DDoS in 2026
Ransomware now combines encryption, data exfiltration, extortion, and DDoS for multi-layered pressure. Credential abuse rises in cloud environments, amplified by AI.
Deepfakes enhance social engineering for fraud.
Study Warns Cyber-Attacks Could Target Time in Smart Factories
University of East London research reveals vulnerabilities in smart factories where attacks on time synchronization could disrupt operations. Hidden timing flaws expose industrial systems.
New defenses needed for precise timing protocols.
Jisc Predicts AI-Enabled Threats, Ransomware Shifts for 2026
Increased AI malicious activity, ransomware ecosystem disruptions, and identity/remote access pressures expected in 2026. Sustained focus on these trends matters for defenses.
Observations from recent patterns inform predictions.
Credit Unions Warned of Ransomware, Data Theft in 2026
Modern ransomware steals data before encryption, threatening public release; targets financial institutions like credit unions. Preparation focuses on beyond-encryption tactics.
Member data protection critical.