🎯Today's Cybersecurity Pulse
Updated 31m agoWhat's happening: Cloudflare pushes agile SASE with Cloudflare One to replace legacy VPNs
Cloudflare announced a series of technical deep‑dives showcasing its Cloudflare One agile SASE platform as a remedy for fragmented legacy VPNs and hardware firewalls. The solution uses a single‑pass architecture that runs security checks across a global network spanning over 300 cities, removing service‑chaining bottlenecks. It also integrates zero‑trust capabilities.
Also developing:
By the numbers: Zafran Security raises $60M Series C
News•Feb 19, 2026
Singapore Warns That Vulnerabilities Span the Entire Space Value Chain
Singapore has launched its National Space Agency and warned that cyber‑vulnerabilities permeate every stage of the space value chain, from satellites to ground networks. The February 2022 KA‑SAT attack, which knocked out communications and energy services across Europe, underscored the systemic risk. In response, Singapore is adopting a cybersecurity‑by‑design framework that embeds protection into satellite hardware, ground stations and operational software. The strategy relies on multi‑agency coordination, international norms and public‑private partnerships as the space economy heads toward a $1.8 trillion market by 2035.
By Telecom Review
News•Feb 19, 2026
South Africa’s Cybersecurity Challenge Is Not a Tool Problem
South African enterprises are pouring significant budgets into cybersecurity tools, yet breach rates keep rising. The core issue is execution: security teams are overwhelmed by data and lack the capacity to turn visibility into action. Unified platforms like Rapid7’s Command...
By TechCentral (South Africa)
News•Feb 19, 2026
Agentic AI Era: Cloud Security Shifts From Asset Protection to Identity-First Zero Trust
At the ETCIO Cloud Summit, leaders from Starbucks India and Jio argued that cloud security must shift from protecting static assets to continuously validating identities, especially as AI agents and autonomous workloads proliferate in hybrid environments. They emphasized that bots,...
By ET CIO (India)
Social•Feb 19, 2026
Agent Identities Demand New Sandboxing and Access Controls
Agent identities is going to be a super fun and hard problem for software in the coming years. Most agentic systems today assume that the agent can do everything the user can do, and just operate as an extension of...
By Aaron Levie
News•Feb 19, 2026
Remote Access Abuse Drives Majority of Breaches
Arctic Wolf’s 2026 Threat Report reveals a dramatic shift toward data‑only extortion, which surged from 2% to 22% of incidents in 2025. Remote‑access tool abuse initiated 65% of non‑BEC breaches, while AI‑enhanced phishing powered 85% of BEC attacks. Ransomware remains common,...
By SC Media
News•Feb 19, 2026
From Acceleration to Exposure: Why AI Demands Mature AppSec
AI‑driven development is dramatically speeding code creation, reviews and releases, but application security (AppSec) has not kept pace. Autonomous AI actions now make decisions on dependencies, configurations and remediation, turning isolated flaws into system‑wide risks. When AppSec foundations are immature,...
By iTnews (Australia) – Government
Social•Feb 19, 2026
UL Solutions Sets New Solar Inverter Cybersecurity Standard
UL Solutions develops new standard for solar inverter cybersecurity #energysky -- via Solar Power World: https://t.co/TvHlobdGEg
By Tor “SolarFred” Valenza
Blog•Feb 19, 2026
Smashing Security Podcast #455: Face Off: Meta’s Glasses and America’s Internet Kill Switch
In episode 455 of the Smashing Security podcast, host Graham Cluley and journalist James Ball examine the growing threat of tech sovereignty, questioning whether the United States could effectively shut down Europe’s internet by leveraging Gmail, cloud services, and critical infrastructure. They also...
By Graham Cluley (Security)
News•Feb 19, 2026
Control, Alt, Influence: The Potential for US Cyber Operations in Iran
U.S. policymakers are weighing offensive cyber operations against Iran if diplomatic talks on the nuclear program collapse, positioning cyber as a central element of joint military action rather than a peripheral tool. Recent Senate testimony and statements from US Cyber...
By RUSI
News•Feb 19, 2026
Track Vulnerability Remediation with the Updated GitLab Security Dashboard
GitLab’s updated Security Dashboard, now in the 18.9 release, adds advanced filters and visualizations that let teams track vulnerability trends, remediation velocity, and risk scores across projects and groups. The dashboard calculates risk using vulnerability age, EPSS, and KEV data,...
By GitLab Blog
News•Feb 19, 2026
N-Able Inc (NABL) Q4 2025 Earnings Call Transcript
N‑Able reported Q4 2025 revenue of $130 million, a 12% year‑over‑year increase, and ended the year with $540 million in annual recurring revenue, up 12% on a reported basis. Non‑GAAP adjusted EBITDA held steady at a 30% margin, while dollar‑based net revenue retention...
By Motley Fool – Earnings Transcripts
Blog•Feb 18, 2026
Josh Aaron: The Hidden Technology Risk Law Firms Can No Longer Treat as Background Noise
Law firms are increasingly confronted with demanding security questionnaires from Fortune 500 clients, requiring verifiable endpoint protection within tight deadlines. Many firms still rely on manual or semi‑automated processes, leaving gaps in device visibility and patch compliance. This lack of...
By ACEDS Blog
News•Feb 18, 2026
Tech Firms Must Remove ‘Revenge Porn’ in 48 Hours or Risk Being Blocked, Says Starmer
The UK government will amend the Crime and Policing Bill to require tech platforms to delete non‑consensual intimate images, including AI‑generated deepfakes, within 48 hours of notification. Enforcement will be handed to Ofcom, which can levy fines up to 10%...
By The Guardian
News•Feb 18, 2026
Nigerian Man Sentenced to Eight Years in Prison for Computer Intrusion and Theft
A Nigerian national living in Mexico was sentenced to eight years in federal prison and ordered to pay $1.39 million in restitution for a five‑year scheme that compromised Massachusetts tax‑preparation firms. Using phishing emails and Warzone RAT malware, he harvested taxpayer...
By DataBreaches.net
Blog•Feb 18, 2026
French Ministry Confirms Data Access to 1.2 Million Bank Accounts
The French Economy Ministry disclosed that a hacker used stolen government credentials to view data from 1.2 million bank accounts across the country. The breach, detected in late January, exposed personal details such as names, addresses, account numbers and, in some...
By Security Affairs
News•Feb 18, 2026
Sumo Logic Moves Into Sovereign Cloud Regions in Europe
Sumo Logic announced the extension of its cloud‑native analytics platform into the AWS European Sovereign Cloud and an AWS data center in Switzerland. The move lets customers keep logs, telemetry, and security data within national borders, satisfying GDPR and other...
By ChannelE2E
News•Feb 18, 2026
AI Agents and How to Govern Them: Tailscale, Sayvint Offer Solutions
AI agents are moving from occasional chat tools to always‑on assistants, prompting enterprises to confront identity‑governance gaps. Tailscale introduced Aperture, an open‑alpha governance layer that ties AI usage to user or workload identities, offering policy controls, audit‑ready session logs, and...
By Biometric Update
News•Feb 18, 2026
Oklahoma Cheyenne and Arapaho Tribes Say Ransomware Disrupted Tribal Systems
The Cheyenne and Arapaho Tribes of Oklahoma were hit by a ransomware attack that forced the shutdown of their computer networks, halting email, phone services and some tribal operations. Tribal Governor Reggie Wassana confirmed the disruption while recovery efforts began....
By DataBreaches.net
News•Feb 18, 2026
EMudhra Self-Certified as MOSIP System Integrator for Digital ID Projects at Scale
Indian digital‑ID specialist eMudhra has completed self‑certification as a Modular Open Source Identity Platform (MOSIP) system integrator, joining the MOSIP Marketplace. The certification confirms its software and hardware meet MOSIP’s rigorous technical, operational and security standards, enabling it to deliver...
By Biometric Update
Social•Feb 18, 2026
Seeing Bugs in IDE Boosts Fixes From 0% to 70%
“At Facebook, they found that when security vulnerabilities were reported as issues, nearly 0% got fixed. But when these same problems appeared directly in the developer’s IDE, where the red squiggles were difficult to ignore, fix rates jumped to around...
By Sean D. Mack
News•Feb 18, 2026
Dataminr Report: Cyber Risk Shifted in 2025 with Increased Threat Actor Activity and Mega-Loss Events
Dataminr’s 2026 Cyber Threat Landscape Report shows a dramatic shift in cyber risk during 2025, with threat‑actor alerts soaring 225% year‑over‑year. Identity‑based intrusions now account for nearly 30% of attacks, driven by an 84% rise in infostealer malware and AI‑enhanced...
By SC Media
Blog•Feb 18, 2026
OMB Rescinds the “Common Form” Secure Software Attestation Requirement
On Jan. 23, 2026 the Office of Management and Budget issued Memorandum M‑26‑05, rescinding the Biden‑era mandate that all federal agencies obtain a CISA “Common Form” software attestation. The new memo replaces the one‑size‑fits‑all requirement with a risk‑based, agency‑specific approach while...
By Inside Government Contracts
News•Feb 18, 2026
Cryptojacking Campaign Exploits Driver to Boost Monero Mining
Security firm Trellix uncovered a new cryptojacking operation that spreads through pirated software installers and installs a customized XMRig miner. The malware uses a controller named Explorer.exe for persistence and a signed driver (WinRing0x64.sys, CVE‑2020‑14979) to gain kernel access, boosting...
By Infosecurity Magazine
News•Feb 18, 2026
Dell Warns of RecoverPoint for VMs Zero-Day (Exploited Since Mid-2024)
Dell has issued an urgent advisory for RecoverPoint for Virtual Machines after discovering CVE‑2026‑22769, a critical 10.0 CVSS flaw that embeds admin credentials in its Tomcat‑based web layer. The vulnerability allows unauthenticated attackers to log in as administrators, upload malicious...
By Guru3D
News•Feb 18, 2026
Why Insider Threats May Make Satellite Hacking Significantly Easier
The article argues that insider threats could dramatically lower the barriers to satellite hacking, as insiders can bypass air‑gap protections and exploit the growing use of off‑the‑shelf Linux hardware. It highlights how complex supply chains, contractor relationships, and recent geopolitical...
By Via Satellite
News•Feb 18, 2026
The 20 Coolest Security Operations, Risk And Threat Intelligence Companies Of 2026: The Security 100
CRN’s Security 100 list spotlights 20 security‑operations, risk and threat‑intelligence vendors that distinguished themselves in 2026. The roundup underscores a rapid shift toward AI‑driven, agentic SOC solutions that automate triage, investigation and response. Companies such as 7AI, Arctic Wolf, Google Cloud and...
By CRN (US)
News•Feb 18, 2026
Microsoft Says Office Bug Exposed Customers’ Confidential Emails to Copilot AI
Microsoft confirmed a bug in its 365 Copilot Chat that allowed the AI to read and summarize customers' confidential emails for weeks, even when data‑loss‑prevention policies were in place. The issue, tracked as CW1226324, affected both draft and sent messages...
By TechCrunch (Cybersecurity)
News•Feb 18, 2026
Poland Bans Chinese-Made Cars From Entering Military Sites
Poland’s senior army commanders have issued a directive barring Chinese‑manufactured cars from entering protected military facilities. The move targets vehicles whose sensors, software or connectivity modules could transmit location and other sensitive data. It aligns Poland with recent U.S. and...
By The Record by Recorded Future
Social•Feb 18, 2026
Public S3 Buckets: A Cloud Security Wake‑Up
The most exposed lady in the cloud? Lady S3 Bucket. ☂️ If you use AWS, you know the shame. Public access is NOT a vibe. https://youtube.com/shorts/q_T0RC87aRg #DevOps #CloudComputing #Security
By Tatiana (DevOps Pink)
News•Feb 18, 2026
Global Leaders, Executives Exposed in Data Leak
At the Abu Dhabi Finance Week summit, an unsecured cloud server exposed the passports and national ID cards of more than 700 attendees, including former British Prime Minister David Cameron, hedge‑fund billionaire Alan Howard, and former White House communications director...
By Security Magazine (Cybersecurity)
News•Feb 18, 2026
From 2016 Hack to $150M Endowment: The DAO’s Second Act Focuses on Ethereum Security
A decade after the 2016 DAO hack, the DAO Security Fund will stake roughly 75,000 dormant ETH—now worth about $150 million—to generate yield for Ethereum security initiatives. The fund will keep claims open indefinitely for original token holders and shift from...
By CoinDesk
News•Feb 18, 2026
Amazon Fends Off Blowback for Ring’s Search Party Tool
Amazon’s Ring introduced the “Search Party” feature, allowing users to share video clips from their doorbell cameras with friends, family, or law‑enforcement agencies to help locate missing persons. The rollout triggered immediate privacy backlash from civil‑rights groups who argue the...
By Bloomberg – Technology (sitewide)
News•Feb 18, 2026
Safeguarding IoT & Edge Data Pipelines: QA Best Practices
The migration of data processing from centralized servers to edge devices is reshaping QA strategies for IoT pipelines. Unstable networks, fragmented device fleets, and expanded attack surfaces demand testing that goes beyond functional checks. Specialized IoT testing services now employ...
By Datafloq
News•Feb 18, 2026
Pathologists, Vendors Talk LIS-IMS Integration
Pathology labs are accelerating digital transformation, but integrating laboratory information systems (LIS) with imaging management systems (IMS) remains a hurdle. Cybersecurity and image management top the agenda as AI-driven diagnostics expand. Cloud‑based LIS‑IMS solutions promise stronger security controls and scalable...
By CAP Today
News•Feb 18, 2026
3 Ways to Start Your Intelligent Workflow Program
Security, IT and engineering teams face pressure to accelerate outcomes while extracting AI value, yet 88% of AI proofs‑of‑concept never reach production despite 70% of workers seeking time‑saving automation. The Hacker News article outlines three pre‑built intelligent‑workflow use cases—automated phishing response,...
By The Hacker News
News•Feb 18, 2026
ClickFix Exploits Homebrew Workflow to Deploy Cuckoo Stealer for macOS Credential Theft
ClickFix is weaponizing a fake Homebrew installation workflow to deliver Cuckoo Stealer, a macOS credential‑stealing RAT. The campaign uses typosquatted domains such as homabrews.org that mimic brew.sh and inject a malicious curl | bash command into the clipboard, prompting developers to run it....
By GBHackers On Security
News•Feb 18, 2026
Security Metrics That Actually Predict a Breach
The article argues that traditional security dashboards hide the true predictors of a breach, emphasizing metrics that expose process debt, access sprawl, and human behavior. It highlights four high‑impact signals: credential reuse and identity drift, stale access paths, alert‑fatigue ratios,...
By Security Boulevard
News•Feb 18, 2026
AI Likely to Put a Major Strain on Global Networks—Are Enterprises Ready?
Enterprise networks face unprecedented strain as AI workloads surge, generating unpredictable, high‑volume traffic across regions. A recent Broadcom study shows only 49% of organizations believe their networks can meet AI’s bandwidth and latency demands, despite 99% adopting cloud strategies. Retrieval‑augmented...
By Network World (sitewide)
News•Feb 18, 2026
A New Approach for GenAI Risk Protection
Generative AI’s rapid consumer adoption has exposed enterprises to data leakage risks, prompting security teams to reassess protection strategies. Traditional DLP solutions are expensive and cumbersome, limiting their use to large organizations. Two viable paths emerge: purchasing enterprise‑grade GenAI licenses...
By CSO Online
News•Feb 18, 2026
CYBERSPAN Brings AI-Driven, Agentless Network Detection to MSSP Environments
IntelliGenesis launched CYBERSPAN, an AI‑driven network detection and response solution tailored for managed security service providers. The platform offers a multi‑tenant, agentless architecture that can be deployed on‑premises or in the cloud, integrating with existing SIEM, SOAR and ticketing tools...
By Help Net Security
Blog•Feb 18, 2026
Actionstep Completes SOC 2® Type 2 Examination, Reinforcing Commitment to Law Firm Security
Actionstep, a cloud‑based practice‑management platform used by nearly 5,000 law firms, announced completion of its SOC 2 Type 2 examination conducted by Prescient Assurance. The audit evaluated both the design and operating effectiveness of the company’s security controls over a defined period, providing...
By Legal Tech Daily (aggregator)
Social•Feb 18, 2026
Risk Assessments Are Performative; Focus on Impact, Not Count
🔥🔥🔥 This hits on something that has bothered me for most of my career... Much of what orgs do to "assess risk" is largely performative, and has very little do with actual risk. Impact is what matters. Your AI Pentester Found...
By Casey Ellis
Social•Feb 18, 2026
EVMbench Tests AI Agents on Real Smart Contract Vulnerabilities
OpenAI and Paradigm launched EVMbench, a benchmark testing AI agents’ ability to detect, patch, and exploit real smart contract vulnerabilities. What's the meaning of it? Come join us! https://t.co/2YgOdrosIO
By Laura Shin
News•Feb 18, 2026
SANS and siberX Introduce NOW // AI to Help Leaders Manage AI Risk, Strengthen Security Controls, and Defend Enterprise Value
SANS Institute and cybersecurity firm siberX have launched NOW // AI, an immersive simulation program built on the SANS AI Blueprint. The curriculum targets executives and security teams, focusing on three pillars—Protect AI, Utilize AI, and Govern AI—to tighten risk...
By AiThority
Social•Feb 18, 2026
Identity and Supply Chain Demand Heightened Cybersecurity Focus
Identity and supply chain need more attention, risk intelligence firm says | Cybersecurity Dive https://t.co/917wKw3CC3
By Chuck Brooks
Social•Feb 18, 2026
Angolan Journalist Targeted with Predator Spyware, Study Shows
A new investigation from @AmnestyTech found that a journalist in Angola was targeted with Predator spyware in 2024. We also know that @citizenlab found links to Predator infrastructure in Angola in 2023, and links to FinFisher infrastructure in 2015. https://t.co/N2TIUdGKkn
By Runa Sandvik
Social•Feb 18, 2026
EU Parliament Bans AI Chatbots over US Data Security Concerns
The European Parliament banned AI chatbots like Claude and Copilot from lawmakers' devices, citing cybersecurity risks from cloud data uploads to US firms https://t.co/KCPJ57Qqs1 #ArtificialIntelligence #Innovation #Technology #Tech #TechNews https://t.co/uigKl4zdY7
By Tim Hughes
Social•Feb 18, 2026
Researcher Traces Death Threats to Snowflake Hack Suspect
When hacker named "Waifu" and "Judische" made death threats against security researcher Allison Nixon, she had no idea why he targeted her. So she set out to unmask him. The quest led her to Connor Moucka, a 25-yr-old behind infamous...
By Kim Zetter
Social•Feb 18, 2026
AI and Quantum Forces Redefine Cybersecurity Strategies
Why Cybersecurity Strategies and Frameworks Must Be Recalibrated in the Age of AI and Quantum Threats by @ChuckDBrooks https://t.co/KGZ9x9TO0T #CyberSecurity #ai #Quantum
By Chuck Brooks
Social•Feb 18, 2026
AI-Integrated Security Boosts PANW Demand and Value
PANW strong q/good initial guide with CyberArk. The need for AI-native, integrated security platforms rather than fragmented point solutions is further increasing demand for PANW platform. AI increasing PANW’s value proposition-not displacing it. $225 PT..very well positioned🏆
By Dan Ives