The Hacker News

651 arrests across 16 African nations after an INTERPOL crackdown on online scams. Operation Red Card 2.0 hit investment fraud, mobile loan apps, and telecom breaches. Investigators linked cases to $45M in victim losses and seized thousands of devices. 🔗 Read → https://thehackernews.com/2026/02/interpol-operation-red-card-20-arrests.html

🛑 Microsoft patched a Windows Admin Center flaw enabling privilege escalation across managed systems. CVE-2026-26119 (CVSS 8.8) stems from improper authentication and could grant rights equal to the running user. 🔗 Read → https://thehackernews.com/2026/02/microsoft-patches-cve-2026-26119.html

⚠️ Android malware now uses Gemini AI. Researchers say PromptSpy sends screen XML to Gemini, gets JSON tap steps, and pins itself in Recent Apps to stay alive. It then enables VNC remote access. 🔗 Learn how the AI loop keeps it alive → https://thehackernews.com/2026/02/promptspy-android-malware-abuses-google.html

The SANS State of ICS/OT Security 2025 Report reveals an industry advancing at two speeds. Detection is faster, but recovery still lags—with one in five incidents taking over a month to restore operations. Get the intel 👉https://thn.news/ics-security-25-x

Machine identities now outnumber humans 82 to 1. AI attackers use that sprawl to hop from dev containers to production systems in seconds, chaining minor gaps into real attack paths. Critical flaws aren’t required. Patch cycles can’t match machine speed. 🔗 AI-driven breach paths + CTEM response → https://thehackernews.com/2026/02/from-exposure-to-exploitation-how-ai.html

🔒 Today's encryption = Tomorrow's plaintext. Quantum is closer than you think. Master hybrid PQC, zero-trust inspection & first-to-market solutions from Zscaler. 📢 Webinar: Post-Quantum Cryptography in Action for Security Leaders 🔗 Register now → https://thehacker.news/post-quantum-cryptography

⚡ Android trojan "Massiv" is using fake IPTV apps to hijack devices and drain bank accounts. It enables full remote control, screen streaming, SMS theft & banking overlays to capture credentials and run fraudulent transactions unnoticed. 🔗 Details → https://thehackernews.com/2026/02/fake-iptv-apps-spread-massiv-android.html

🚨 Researchers tracked a new espionage campaign, CRESCENTHARVEST, targeting supporters of Iran’s protests. Lures use protest media & reports to deliver RAT malware via disguised .LNK files, stealing credentials, Telegram data & keystrokes. 🔗Read → https://thehackernews.com/2026/02/crescentharvest-campaign-targets-iran.html

🛑 Citizen Lab found Cellebrite tools used on a Kenyan activist’s phone while it was in police custody. Boniface Mwangi’s Samsung device was accessed in July 2025 and later returned without password protection. Full extraction could include messages, files, and passwords. The findings follow similar cases in Jordan. 🔗 Read → https://thehackernews.com/2026/02/citizen-lab-finds-cellebrite-tool-used.html

Researchers found a stack overflow in Grandstream GXP1600 phones (CVE-2026-2329, 9.3 CVSS). A crafted API request can overwrite memory and run code remotely—no login required. Post-exploitation includes credential theft and VoIP call interception via rogue SIP proxy. 🔗 Read → https://thehackernews.com/2026/02/grandstream-gxp1600-voip-phones-exposed.html

🚨 There’s an extreme scarcity of skilled GenAI red teamers—experts estimate fewer than 10,000 globally, while one security industry analyst believes there are fewer than 10 capable of tackling frontier AI risks. 📽️ From TELUS Digital's Fuel iX team: Watch Uncharted: The AI Safety & Security Summit on demand to hear from top security leaders and industry experts as they uncover: • Hidden vulnerabilities in GenAI models • How automated red teaming is transforming risk detection • Actionable strategies to safeguard your AI systems 👉 Watch now: https://thn.news/ai-security-summit-tg

Cybersecurity isn’t preparing for storms anymore. Instability is permanent. AI threats, regulatory pressure, and geopolitical risk now shape how systems are built and run—not just defended. 🔗 What security looks like when volatility is baseline → https://thehackernews.com/2026/02/cybersecurity-tech-predictions-for-2026.html