[go: up one dir, main page]

171 Security Blogs

Last Updated: 23 Feb 26 02:05 UTC

Blog List | Github | OPML

2026-03-19

Dark Reading
[Virtual Event] Shields Up: Key Technologies Reshaping Cybersecurity Defenses


2026-02-22

Malwarebytes
What can’t you say on TikTok?


2026-02-21

Malwr Analysis
Crypto Compensation Scam: Fake BTC Payout Lure Abusing Survey & Payment Flows

ISC SANS
Japanese-Language Phishing Emails, (Sat, Feb 21st)

Cloudflare
Cloudflare outage on February 20, 2026


2026-02-20

Schneier on Security
Friday Squid Blogging: Squid Cartoon

Rapid7
Metasploit Wrap-Up 02/20/2026

Dark Reading
Attackers Use New Tool to Scan for React2Shell Exposure

Amazon Security
AI-augmented threat actor accesses FortiGate devices at scale

Krebs on Security
‘Starkiller’ Phishing Service Proxies Real Login Pages, MFA

Binarly
Vulnerability REsearch using VulHunt

Dark Reading
'God-Like' Attack Machines: AI Agents Ignore Security Policies

Dark Reading
Lessons From AI Hacking: Every Model, Every Layer Is Risky

SentinelOne
The Good, the Bad and the Ugly in Cybersecurity – Week 8

Rapid7
Hacktivism and the Winter Olympics 2026: What We’re Seeing and What it Signals

Trail of Bits
Using threat modeling and prompt injection to audit Comet

Praetorian
There’s Always Something: Secrets Detection at Engagement Scale with Titus

Malwarebytes
Age verification vendor Persona left frontend exposed, researchers say

Cloudflare
Code Mode: give agents an entire API in 1,000 tokens

Dark Reading
Latin America's Cyber Maturity Lags Threat Landscape

Schneier on Security
Ring Cancels Its Partnership with Flock

Malwarebytes
Facebook ads spread fake Windows 11 downloads that steal passwords and crypto wallets

ISC SANS
ISC Stormcast For Friday, February 20th, 2026 https://isc.sans.edu/podcastdetail/9818, (Fri, Feb 20th)

Auth0
The Revenue Potential of Shared Accounts With Fine-Grained Authorization (FGA)

Elastic Security Labs
The Immutable Illusion: Pwning Your Kernel with Cloud Files

Teleport Blog
How to Secure Microservices with SPIFFE and Istio

Sansec Threat Research
Digital skimmer hits global supermarket chain

Datadog HQ
Identify untested code across every level of your codebase

Elastic Security Labs
MIMICRAT: ClickFix Campaign Delivers Custom RAT via Compromised Legitimate Websites

Auth0
Why Your AI Agents Need an Identity Layer: Lessons from OWASP Top 10 for Agentic Applications


2026-02-19

Eclypsium
Eclypsium @ RSAC 2026

Dark Reading
Emerging Chiplet Designs Spark Fresh Cybersecurity Challenges

Dark Reading
Supply Chain Attack Secretly Installs OpenClaw for Cline Users

Dark Reading
Best-in-Class 'Starkiller' Phishing Kit Bypasses MFA

Zero Day Initiative
CVE-2026-20841: Arbitrary Code Execution in the Windows Notepad

Dark Reading
Abu Dhabi Finance Week Exposed VIP Passport Details

ISC SANS
Under the Hood of DynoWiper, (Thu, Feb 19th)

Talos Intelligence
Using AI to defeat AI

Eclypsium
Counterfeit Network Gear Creates Cyber Risk in Critical Infrastructure

The Citizen Lab
Submissions to the Committee on Enforced Disappearances: And the UN Working Group on Enforced and Involuntary Disappearances

Praetorian
Praetorian Guard finds critical flaws in OpenClaw – And What It Means for Your Software Supply Chain

Auth0
How Advanced Customizations for Universal Login (ACUL) Helps You Build Seamless Auth Experiences

Google Security Blog
Keeping Google Play & Android app ecosystems safe in 2025

Microsoft Security
New e-book: Establishing a proactive defense with Microsoft Security Exposure Management

Google Safety & Security
We’re sharing how we kept the Google Play and Android app ecosystems safe in 2025.

Varonis
How Cybercriminals Buy Access: Logins, Cookies, and Backdoors

Microsoft Security
Running OpenClaw safely: identity, isolation, and runtime risk

Dark Reading
Connected and Compromised: When IoT Devices Turn Into Threats

Binarly
VulHunt in Practice: Detecting a Remote Code Execution Vulnerability in rsync

Malwarebytes
AI-generated passwords are a security risk

Bishop Fox Security
AI & Security Risks: Reviewing Governance and Guardrails

Schneier on Security
Malicious AI

Malwarebytes
Intimate products maker Tenga spilled customer data

Malwarebytes
Meta patents AI that could keep you posting from beyond the grave

Moonlock
Can you get a virus from a PDF? Here’s what to do if you’ve already gotten one

Dark Reading
More Than 40% of South Africans Were Scammed in 2025

Snyk
How “Clinejection” Turned an AI Bot into a Supply Chain Attack

TrustedSec
Notepad++ Plugins: Plug and Payload

ISC SANS
ISC Stormcast For Thursday, February 19th, 2026 https://isc.sans.edu/podcastdetail/9816, (Thu, Feb 19th)

Fastly
Multi-CDN: A Critical Decision for a Resilient Architecture

Datadog HQ
Make use of guardrail metrics and stop babysitting your releases

Datadog HQ
Monitor Versa Networks SD-WAN performance in Datadog


2026-02-18

Dark Reading
Scam Abuses Gemini Chatbots to Convince People to Buy Fake Crypto

Dark Reading
Critical Grandstream VoIP Bug Highlights SMB Security Blind Spot

Dark Reading
Threat Intelligence Has a Human-Shaped Blind Spot

Dark Reading
Dell's Hard-Coded Flaw: A Nation-State Goldmine

Dark Reading
A CISO's Playbook for Defending Data Assets Against AI Scraping

Malwarebytes
Betterment data breach might be worse than we thought

SentinelOne
OneClaw: Discovery and Observability for the Agentic Era

Searchlight Cyber
February 18th – This Week’s Top Cybersecurity and Dark Web Stories

Rapid7
The Phone is Listening: A Cold War–Style Vulnerability in Modern VoIP

Black Hills Info Sec
OSINT: How to Find, Use, and Control Open-Source Intelligence

Rapid7
CVE-2026-2329: Critical Unauthenticated Stack Buffer Overflow in Grandstream GXP1600 VoIP Phones (FIXED)

Malwarebytes
Job scam uses fake Google Forms site to harvest Google logins

Schneier on Security
AI Found Twelve New Vulnerabilities in OpenSSL

Trail of Bits
Carelessness versus craftsmanship in cryptography

Talos Intelligence
“Good enough” emulation: Fuzzing a single thread to uncover vulnerabilities

Malwarebytes
Scammers use fake “Gemini” AI chatbot to sell fake “Google Coin”

ISC SANS
Tracking Malware Campaigns With Reused Material, (Wed, Feb 18th)

Snyk
Snyk and Cline: Securing the Future of Autonomous Coding

ISC SANS
ISC Stormcast For Wednesday, February 18th, 2026 https://isc.sans.edu/podcastdetail/9814, (Wed, Feb 18th)

Dark Reading
Singapore & Its 4 Major Telcos Fend Off Chinese Hackers

Sansec Threat Research
Building a faster YARA engine in pure Go

Auth0
Inside OpenFGA's Improved ListObjects Algorithm: A Streaming Pipeline Traversal

Datadog HQ
Improve performance and reliability with APM Recommendations

Datadog HQ
Remediate transitive vulnerabilities faster with Datadog Software Composition Analysis

Elastic Security Labs
Speeding APT Attack Confirmation with Attack Discovery, Workflows, and Agent Builder


2026-02-17

Dark Reading
Supply Chain Attack Embeds Malware in Android Devices

Mend
Securing the New Control Plane: Introducing Static Scanning for AI Agent Configurations

Dark Reading
Poland Energy Survives Attack on Wind, Solar Infrastructure

SentinelOne
Shadow Agents: How SentinelOne Secures the AI Tools That Act Like Users

Dark Reading
RMM Abuse Explodes as Hackers Ditch Malware

Dark Reading
ClickFix Attacks Abuses DNS Lookup Command to Deliver ModeloRAT

Ars Technica Security
Password managers' promise that they can't see your vaults isn't always true

Varonis
Data Classification in the Age of LLMs: A Technical Deep Dive

Malwr Analysis
Kraken Darknet Access via Clearnet Gateways

Google Safety & Security
Resilience in the AI era: Google at MSC 2026

Malwarebytes
Chrome “preloading” could be leaking your data and causing problems in Browser Guard

Offensive Security
Building an AI-Ready Cybersecurity Team

Microsoft Security
Unify now or pay later: New research exposes the operational cost of a fragmented SOC

Rapid7
Building the Future of Cloud Security: Rapid7 Recognized in Cloud Native Application Protection, Q1 2026

Praetorian
MCP Server Security: The Hidden AI Attack Surface

Searchlight Cyber
‘Supergroups’ to Shadow Exposure: Insights from Ransomware’s Record Year

Malwarebytes
Scam Guard for desktop: A second set of eyes for suspicious moments 

Palo Alto Networks
Securing the Agentic Endpoint

Malwarebytes
Update Chrome now: Zero-day bug allows code execution via malicious webpages

Schneier on Security
Side-Channel Attacks Against LLMs

Palo Alto Networks
Introducing Unit 42 Managed XSIAM 2.0

Palo Alto Networks
2026 Unit 42 Global Incident Response Report — Attacks Now 4x Faster

Malwarebytes
Hobby coder accidentally creates vacuum robot army

Eye Security
Log poisoning in AI agents: The OpenClaw case

ISC SANS
Fake Incident Report Used in Phishing Campaign, (Tue, Feb 17th)

Eye Security Research
Log Poisoning in OpenClaw

Troy Hunt
Weekly Update 491

TrustedSec
Updated GSA Contractor CUI Protection Requirements

Snyk
Weaving Security into the Flow: New Snyk Studio Capabilities Power the AI Security Fabric

Snyk
Securing the Agent Skill Ecosystem: How Snyk and Vercel Are Locking Down the New Software Supply Chain

ISC SANS
ISC Stormcast For Tuesday, February 17th, 2026 https://isc.sans.edu/podcastdetail/9812, (Tue, Feb 17th)

Teleport Blog
2026 Research: The Top AI Infrastructure Risks and Identity Gaps

Auth0
Federated Identity vs. Single Sign-On: Key Differences

Datadog HQ
Generate audit-ready vulnerability and compliance reports with Datadog Sheets

Infernux Blog
Defender XDR - Custom Detection Rules PowerShell Module


2026-02-16

Amazon Security
Building an AI-powered defense-in-depth security architecture for serverless microservices

Dark Reading
Operation DoppelBrand: Weaponizing Fortune 500 Brands

Moonlock
How to check if your phone is hacked, and what to do if it is

Dark Reading
260K+ Chrome Users Duped by Fake AI Browser Extensions

Malwarebytes
ClickFix added nslookup commands to its arsenal for downloading RATs

Schneier on Security
The Promptware Kill Chain

Moonlock
How to get rid of a Safari virus on your Mac or iPhone

Malwarebytes
A week in security (February 9 – February 15)

MaskRay's Blog
Call relocation types

ISC SANS
2026 64-Bits Malware Trend, (Mon, Feb 16th)

Moonlock
Is Tor Browser safe to use? How well does it protect you from tracking?