IT Security Weekend Catch Up – February 7, 2026

Comments
close searching

07.02.2026 | 20:48

IT Security Weekend Catch Up – February 7, 2026
avatar

badcyber

comments

IT Security Weekend Catch Up – February 7, 2026

Afraid of missing important security news during the week? We're here to help! Every week we put together a curated list of all important security news in one place, for your reading pleasure. Enjoy!

For the less technical

  1. New OpenAI tool renews fears that “AI slop” will overwhelm scientific research
  2. Former Google engineer found guilty of economic espionage and theft of confidential AI technology
  3. “Incognito Market” owner sentenced to 30 years for operating one of the world’s largest online narcotics marketplaces
  4. Inside a sophisticated recovery scam network: Evidence from a live investigation into legal services impersonation
  5. Rublevka team: Anatomy of a Russian crypto drainer operation
  6. Russia’s Matryoshka bots begin Epstein-themed disinfo campaign, focusing false claims against Ukraine and France
  7. Spain becomes first country in Europe to ban social media for under-16s

For the more technical

  1. Attributive questions in high profile incidents
  2. APT28’s stealthy multi-stage campaign leveraging CVE‑2026‑21509 and cloud C2 infrastructure
  3. APT28 leverages CVE-2026-21509 in operation Neusploit
  4. Someone knows bash far too well, and we love it (Ivanti EPMM pre-auth RCEs CVE-2026-1281 & CVE-2026-1340)
  5. n8n sandbox escape: Critical vulnerabilities in n8n exposes hundreds of thousands of enterprise AI systems to complete takeover
  6. CVE-2026-25049 expression escape vulnerability leading to RCE in n8n
  7. A deep dive into CVE-2026-25049: n8n remote code execution
  8. Metro4Shell: Exploitation of React Native’s Metro server in the wild
  9. Notepad++ hijacked by state-sponsored hackers
  10. The Chrysalis backdoor: A deep dive into Lotus Blossom’s toolkit
  11. The Notepad++ supply chain attack - unnoticed execution chains and new IoCs
  12. Web traffic hijacking: When your Nginx configuration turns malicious
  13. Technical analysis of Marco stealer
  14. Novel fake CAPTCHA chain delivering  Amatera stealer
  15. New Clickfix variant ‘CrashFix’ deploying Python remote access trojan
  16. Android trojan campaign uses Hugging Face hosting for RAT payload delivery
  17. GlassWorm loader hits Open VSX via developer account compromise
  18. Strengthening supply-chain security in Open VSX
  19. Nitrogen Ransomware: ESXi malware has a bug

Did you enjoy this list? You can subscribe to one of our feeds on Twitter, Facebook or RSS.


Afraid of missing important security news during the week? We’re here to help! Every week we put together a curated list of all important security news in one place, for your reading pleasure. Enjoy! For the less technical New OpenAI tool renews fears that “AI slop” will overwhelm scientific research Former Google engi 2026-02-07T20:48:15+01:00

Comments