The Hacker News

⚡ 53% of national security orgs still rely on manual data transfers, inviting human error as attacks surge 25%. The Everfox CYBER360 report calls for a "Cybersecurity Trinity": Zero Trust + Data-Centric Security + Cross-Domain Solutions. 🔗 The framework for mission-speed security: https://thehackernews.com/2026/02/manual-processes-are-putting-national.html

🚨 A former L3Harris employee was sentenced to just over 7 years for selling 8 zero-day exploits to Russian broker Operation Zero. Prosecutors say he received up to $4M in crypto, and the theft is estimated to have cost L3Harris $35M. Washington has sanctioned the broker and related entities. 🔗 Full story here: https://thehackernews.com/2026/02/defense-contractor-employee-jailed-for.html

🔥 Microsoft just open-sourced LiteBox, a Rust-based sandboxing library OS. Developed via the LVBS project, it shrinks attack surfaces by stripping the interface between apps and the host. It enables unmodified Linux programs to run securely on Windows or within isolated Linux environments. 🔗 Read: https://thehackernews.com/2026/02/weekly-recap-double-tap-skimmers.html#:~:text=Microsoft%20Unveils%20LiteBox

Most breaches start with low-severity alerts no one owns. SolarWinds had DNS quirks, odd Azure AD auth, strange SAML tokens. Each looked minor. Together, they meant compromise. SOCs are built for volume and speed. Rare, cross-domain signals fall outside playbooks and KPIs. 🔗 Why long-tail alerts slip through SOCs → https://thehackernews.com/expert-insights/2026/02/the-riskiest-alert-types-and-why.html

⚠️ ALERT: SolarWinds patched four critical 9.1 CVSS flaws in Serv-U that can lead to remote code execution as root. SolarWinds says there’s no sign of active attacks, but earlier Serv-U flaws were used by Storm-0322. 🔗 Details → https://thehackernews.com/2026/02/solarwinds-patches-4-critical-serv-u.html

🚨 CISA added CVE-2026-25108 to its KEV list after active exploitation. The FileZen bug allows an authenticated user to execute OS commands via crafted HTTP requests. Impacts versions 4.2.1–4.2.8 and 5.0.0–5.0.10 when Antivirus Check is enabled. At least one incident confirmed. 🔗 Read → https://thehackernews.com/2026/02/cisa-confirms-active-exploitation-of.html

⚠️ A flaw in #GitHub Codespaces let attackers hide malicious Copilot instructions inside a GitHub issue. When a developer opened a Codespace from that issue, Copilot could silently run the injected prompt and leak a privileged GITHUB_TOKEN. The research also warns of “promptware” attacks built entirely through prompts. 🔗 Exploit Details → https://thehackernews.com/2026/02/roguepilot-flaw-in-github-codespaces.html

🚨 Kremlin-linked cyber hit on Ukraine aid. Spoofed court email tricked European reconstruction bank into installing malware via nested archives, then RMS remote control. Classic Ukraine playbook, new Western targets. 🔗 Read → https://thehackernews.com/2026/02/uac-0050-targets-european-financial.html

🔥 TOMORROW: Infosec Compliance Now 2026! Will you be joining us tomorrow? Register for Infosec Compliance Now to learn about AI governance, global regulations, and audit readiness from industry experts. Bonus: Earn up to 4 CPE credits. 🔗 Register Now → https://thn.news/cyber-risk-2026

Most IAM teams still chase ticket volume. Real risk rises when weaknesses align into a toxic combination. An orphan account without MFA isn’t minor. Add recent activity or elevated privileges and exposure increases sharply. Identity risk isn’t a checklist. It’s contextual. 🔗 How toxic combinations create real-world exposure → https://thehackernews.com/2026/02/identity-prioritization-isnt-backlog.html

🛡️💻 Lazarus used Medusa ransomware in a Middle East attack, Symantec reports. The group also targeted a U.S. healthcare org. Medusa claims 366+ victims, with recent U.S. ransoms averaging $260K. Analysts see a shift to off-the-shelf RaaS over custom code. 🔗 Details → https://thehackernews.com/2026/02/lazarus-group-uses-medusa-ransomware-in.html

Sensitive data now spans cloud, SaaS, on-prem & AI pipelines. The challenge isn’t storage, it’s knowing what’s sensitive and who can access it. This new guide compares leading data classification tools of 2026. 🔗 Read more → https://thn.news/data-tools-li