41Articles
6Categories
2026-02-19Date
🐛 COMMON VULNERABILITIES AND EXPOSURES 18[−]
19 FebMicrosoft Patches CVE-2026-26119 Privilege Escalation in Windows Admin CenterMicrosoft has disclosed a now-patched security flaw in Windows Admin Center that could allow an attacker to escalate their privileges. Windows Admin Center is a locally deployed, browser-based management tool set that lets users manage their Windows Clients, Servers, and Clusters…THEHACKERNEWS.COM
19 FebCVE-2026-21535 Microsoft Teams Information Disclosure VulnerabilityImproper access control in Microsoft Teams allows an unauthorized attacker to disclose information over a network.MSRC.MICROSOFT.COM
19 FebCVE-2026-21528 Azure IoT Explorer Information Disclosure VulnerabilityCorrected the CVE description and title. This is an informational change only.MSRC.MICROSOFT.COM
19 FebZDI-26-122: PDF-XChange Editor TrackerUpdate Uncontrolled Search Path Element Local Privilege Escalation VulnerabilityThis vulnerability allows local attackers to escalate privileges on affected installations of PDF-XChange Editor. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The ZDI has assigned a CVSS rati…ZERODAYINITIATIVE.COM
19 FebZDI-26-121: GIMP XWD File Parsing Out-Of-Bounds Write Remote Code Execution VulnerabilityThis vulnerability allows remote attackers to execute arbitrary code on affected installations of GIMP. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The ZDI has assigned a CVSS rating of 7.8. T…ZERODAYINITIATIVE.COM
19 FebZDI-26-120: GIMP ICNS File Parsing Heap-based Buffer Overflow Remote Code Execution VulnerabilityThis vulnerability allows remote attackers to execute arbitrary code on affected installations of GIMP. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The ZDI has assigned a CVSS rating of 7.8. T…ZERODAYINITIATIVE.COM
19 FebZDI-26-119: GIMP XWD File Parsing Out-Of-Bounds Write Remote Code Execution VulnerabilityThis vulnerability allows remote attackers to execute arbitrary code on affected installations of GIMP. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The ZDI has assigned a CVSS rating of 7.8. T…ZERODAYINITIATIVE.COM
19 FebZDI-26-118: GIMP PGM File Parsing Uninitialized Memory Remote Code Execution VulnerabilityThis vulnerability allows remote attackers to execute arbitrary code on affected installations of GIMP. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The ZDI has assigned a CVSS rating of 7.8. T…ZERODAYINITIATIVE.COM
19 FebZDI-26-117: RustDesk Client for Windows Transfer File Link Following Information Disclosure VulnerabilityThis vulnerability allows local attackers to disclose sensitive information on affected installations of RustDesk Client for Windows. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The ZDI has …ZERODAYINITIATIVE.COM
19 FebZDI-26-116: TensorFlow HDF5 Library Uncontrolled Search Path Element Local Privilege Escalation VulnerabilityThis vulnerability allows local attackers to escalate privileges on affected installations of TensorFlow. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The ZDI has assigned a CVSS rating of 7.…ZERODAYINITIATIVE.COM
19 FebZDI-26-115: Fortinet FortiClient VPN FCConfig Utility Link Following Local Privilege Escalation VulnerabilityThis vulnerability allows local attackers to escalate privileges on affected installations of Fortinet FortiClient VPN. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The ZDI has assigned a CVS…ZERODAYINITIATIVE.COM
19 FebZDI-26-114: Dassault Systèmes eDrawings Viewer EPRT File Parsing Out-Of-Bounds Write Remote Code Execution VulnerabilityThis vulnerability allows remote attackers to execute arbitrary code on affected installations of Dassault Syst��mes eDrawings Viewer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The ZDI has a…ZERODAYINITIATIVE.COM
19 FebZDI-26-113: Dassault Systèmes eDrawings Viewer EPRT File Parsing Memory Corruption Remote Code Execution VulnerabilityThis vulnerability allows remote attackers to execute arbitrary code on affected installations of Dassault Syst��mes eDrawings Viewer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The ZDI has a…ZERODAYINITIATIVE.COM
19 FebZDI-26-112: Dassault Systèmes eDrawings Viewer EPRT File Parsing Uninitialized Variable Remote Code Execution VulnerabilityThis vulnerability allows remote attackers to execute arbitrary code on affected installations of Dassault Syst��mes eDrawings Viewer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The ZDI has a…ZERODAYINITIATIVE.COM
19 FebZDI-26-111: MLflow Use of Default Password Authentication Bypass VulnerabilityThis vulnerability allows remote attackers to bypass authentication on affected installations of MLflow. Authentication is not required to exploit this vulnerability. The ZDI has assigned a CVSS rating of 9.8. The following CVEs are assigned: CVE-2026-2635.ZERODAYINITIATIVE.COM
19 FebZDI-26-110: Bosch Rexroth IndraWorks Print Settings File Parsing Deserialization Of Untrusted Data Remote Code Execution VulnerabilityThis vulnerability allows remote attackers to execute arbitrary code on affected installations of Bosch Rexroth IndraWorks. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The ZDI has assigned a C…ZERODAYINITIATIVE.COM
19 FebZDI-26-109: Bosch Rexroth IndraWorks OPC.TestClient XML File Parsing Deserialization Of Untrusted Data Remote Code Execution VulnerabilityThis vulnerability allows remote attackers to execute arbitrary code on affected installations of Bosch Rexroth IndraWorks. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The ZDI has assigned a C…ZERODAYINITIATIVE.COM
19 FebZDI-26-108: Bosch Rexroth IndraWorks UA.TestClient XML File Parsing Deserialization Of Untrusted Data Remote Code Execution VulnerabilityThis vulnerability allows remote attackers to execute arbitrary code on affected installations of Bosch Rexroth IndraWorks. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The ZDI has assigned a C…ZERODAYINITIATIVE.COM
⚠️ VULNERABILITY DISCLOSURE 11[−]
19 FebINTERPOL Operation Red Card 2.0 Arrests 651 in African Cybercrime CrackdownAn international cybercrime operation against online scams has led to 651 arrests and recovered more than $4.3 million as part of an effort led by law enforcement agencies from 16 African countries. The initiative, codenamed Operation Red Card 2.0, took place between December 8, …THEHACKERNEWS.COM
19 FebThreatsDay Bulletin: OpenSSL RCE, Foxit 0-Days, Copilot Leak, AI Password Flaws & 20+ StoriesThe cyber threat space doesn’t pause, and this week makes that clear. New risks, new tactics, and new security gaps are showing up across platforms, tools, and industries — often all at the same time. Some developments are headline-level. Others sit in the background but carry lo…THEHACKERNEWS.COM
19 FebFrom Exposure to Exploitation: How AI Collapses Your Response WindowWe’ve all seen this before: a developer deploys a new cloud workload and grants overly broad permissions just to keep the sprint moving. An engineer generates a "temporary" API key for testing and forgets to revoke it. In the past, these were minor operational risks, debts you’d …THEHACKERNEWS.COM
19 FebFake IPTV Apps Spread Massiv Android Malware Targeting Mobile Banking UsersCybersecurity researchers have disclosed details of a new Android trojan called Massiv that's designed to facilitate device takeover (DTO) attacks for financial theft. The malware, according to ThreatFabric, masquerades as seemingly harmless IPTV apps to deceive victims, indicati…THEHACKERNEWS.COM
19 FebCRESCENTHARVEST Campaign Targets Iran Protest Supporters With RAT MalwareCybersecurity researchers have disclosed details of a new campaign dubbed CRESCENTHARVEST, likely targeting supporters of Iran's ongoing protests to conduct information theft and long-term espionage. The Acronis Threat Research Unit (TRU) said it observed the activity after Janua…THEHACKERNEWS.COM
19 FebGoogle says its AI systems helped deter Play Store malware in 2025Google said it prevented 1.75 million bad apps from going live on Google Play during 2025, a figure that's down from previous years.TECHCRUNCH.COM
19 FebNews alert: Link11’s ‘AI Management Dashboard’ makes AI traffic, AI access policies enforceableFRANKFURT, Feb. 19, 2026, CyberNewswire — Link11 launches its new “ AI Management Dashboard ”, closing a critical gap in how companies manage AI traffic. Artificial intelligence is fundamentally changing internet traffic. But while many companies are already feeling the … (…LASTWATCHDOG.COM
19 Feb KEVKeeping Google Play & Android app ecosystems safe in 2025Posted by Vijaya Kaza, VP and GM, App & Ecosystem Trust The Android ecosystem is a thriving global community built on trust, giving billions of users the confidence to download the latest apps. In order to maintain that trust, we’re focused on ensuring that apps do not cause real…SECURITY.GOOGLEBLOG.COM
19 FebPhishing via Google Tasks | Kaspersky official blogCybercriminals are sending out phishing links by exploiting Google Tasks notifications.KASPERSKY.COM
19 FebIs Poshmark safe? How to buy and sell without getting scammedLike any other marketplace, the social commerce platform has its share of red flags. It pays to know what to look for so you can shop or sell without headaches.WELIVESECURITY.COM
19 Feb2025 Cloud Threat Hunting and Defense LandscapeThreat actors are doubling down on cloud infrastructure — exploiting misconfigurations, abusing native services, and pivoting through hybrid environments to maximize impact. See how attack patterns are evolving across exploitation, ransomware, credential abuse, and AI service tar…RECORDEDFUTURE.COM
🔥 INCIDENT REPORTING 1[−]
19 FebAI-Assisted Social Engineering Attacks Continue to RiseSocial engineering remained the top initial access vector for cyberattacks in 2025, with increasing assistance from AI tools, according to a report from ThreatDown. The researchers warn that AI will likely become a core component of social engineering attacks throughout 2026.KNOWBE4.COM
🕵️ THREAT INTELLIGENCE 5[−]
19 FebMalicious AIInteresting : Summary: An AI agent of unknown ownership autonomously wrote and published a personalized hit piece about me after I rejected its code, attempting to damage my reputation and shame me into accepting its changes into a mainstream python library. This represents a fir…SCHNEIER.COM
19 FebPromptSpy Android Malware Abuses Gemini AI to Automate Recent-Apps PersistenceCybersecurity researchers have discovered what they say is the first Android malware that abuses Gemini, Google's generative artificial intelligence (AI) chatbot, as part of its execution flow and achieves persistence. The malware has been codenamed PromptSpy by ESET. The malware…THEHACKERNEWS.COM
19 FebNew e-book: Establishing a proactive defense with Microsoft Security Exposure ManagementRead the new maturity-based guide that helps organizations move from fragmented, reactive security practices to a unified exposure management approach that enables proactive defense. The post New e-book: Establishing a proactive defense with Microsoft Security Exposure Management…MICROSOFT.COM
19 FebRunning OpenClaw safely: identity, isolation, and runtime riskSelf-hosted agents execute code with durable credentials and process untrusted input. This creates dual supply chain risk, where skills and external instructions converge in the same runtime. As OpenClaw-like systems enter enterprises, governance and runtime isolation become crit…MICROSOFT.COM
19 FebN00b wanting to get into this field - NL Cybersecuritysubmitted by LOLseas to cybersecurity 12 points | 11 comments Hi all, first post. I moved to The Netherlands a few years ago, and am wanting to prepare for a career change from helpdesk to cyber security. I’m also doing a Dutch language course 1 day every week, ik moet het leren.…INFOSEC.PUB
🌐 CYBER THREAT LANDSCAPE 2[−]
19 FebSmashing Security podcast #455: Face off: Meta’s Glasses and America’s internet kill switchCould America turn off Europe's internet? That’s one of the questions that Graham and special guest James Ball will be exploring as they discuss tech sovereignty. Could Gmail, cloud services, and critical infrastructure really become geopolitical leverage? And is anyone actually …GRAHAMCLULEY.COM
19 FebPromptSpy ushers in the era of Android threats using GenAIESET researchers discover PromptSpy, the first known Android malware to abuse generative AI in its execution flowWELIVESECURITY.COM
📡 INFOSEC NEWS 4[−]
19 FebFBI says ATM ‘jackpotting’ attacks are on the rise, and netting hackers millions in stolen cashThe FBI says hacks that trick ATMs into spitting out cash on demand are rising, with hundreds of attacks in the past year alone netting hackers millions in stolen bills.TECHCRUNCH.COM
19 FebCellebrite cut off Serbia citing abuse of its phone unlocking tools. Why not others?Cellebrite, which makes phone unlocking and hacking tools, stopped sales to countries that allegedly abused its tools. But after new allegations in Jordan and Kenya, the company has changed its approach.TECHCRUNCH.COM
19 FebSex toys maker Tenga says hacker stole customer informationThe Japanese sex toy maker said a hacker broke into an employee's inbox and stole customer names, email addresses, and correspondence, including order details and customer service inquiries.TECHCRUNCH.COM
19 FebBug in student admissions website exposed children’s personal informationRavenna Hub, which lets parents apply and track the status of their kids' applications across thousands of schools, allowed any logged-in user to access the personally identifiable data associated with any other user, including their children.TECHCRUNCH.COM