Latest news as of 2/20/2026, 1:15:52 AM
Bleeping Computer
A hacker is threatening to leak 106GB of data allegedly stolen from Spanish telecommunications company Telefónica in a breach that the company did not acknowledge. [...]
The Hacker News
Cybersecurity researchers have shed light on a previously undocumented threat actor called NightEagle (aka APT-Q-95) that has been observed targeting Microsoft Exchange servers as a part of a zero-day exploit chain designed to target government, defense, and technology sectors in China. According to QiAnXin's RedDrip Team, the threat actor has been active since 2023 and has switched network
Graham Cluley
The notorious Hunters International ransomware-as-a-service operation has announced that it has shut down, in a message posted on its dark web leak site. In a statement on its extortion site, the ransomware group says that it has not only "decided to close the Hunters International project" but is also offering free decryption tools to its previous victims - with no ransom payment required. Read more in my article on the Hot for Security blog.
The Hacker News
Cybersecurity researchers have disclosed two security flaws in the Sudo command-line utility for Linux and Unix-like operating systems that could enable local attackers to escalate their privileges to root on susceptible machines. A brief description of the vulnerabilities is below - CVE-2025-32462 (CVSS score: 2.8) - Sudo before 1.9.17p1, when used with a sudoers file that specifies a host
The Hacker News
Generative AI is changing how businesses work, learn, and innovate. But beneath the surface, something dangerous is happening. AI agents and custom GenAI workflows are creating new, hidden ways for sensitive enterprise data to leak—and most teams don’t even realize it. If you’re building, deploying, or managing AI systems, now is the time to ask: Are your AI agents exposing confidential data
The Hacker News
Google has been ordered by a court in the U.S. state of California to pay $314 million over charges that it misused Android device users' cellular data when they were idle to passively send information to the company. The verdict marks an end to a legal class-action complaint that was originally filed in August 2019. In their lawsuit, the plaintiffs argued that Google's Android operating system
Bleeping Computer
A few new code references in the ChatGPT web app and Android point to an Operator-like tool in GPT's chain of thoughts. [...]
Bleeping Computer
A few new code references in the ChatGPT web app and Android point to an Operator-like tool in GPT's chain of thoughts. [...]
Have I Been Pwned
In June 2025, . The breach was due to a SQL injection vulnerability that enabled email addresses and plain text passwords to be extracted from the system. spyware maker Catwatchful suffered a data breach that exposed over 60k customer records
Bleeping Computer
xAI is preparing the rollout of Grok 4, which replaces Grok 3 as the new state-of-the-art model. [...]