Cybersecurity

Are You Safe from the February 2026 UnitedDomains Phishing Scam? Mechanics of the Fraud Attackers distribute messages claiming your UnitedDomains subscription payment failed. The emails urge you to click an “Update payment details now” link to resolve the fabricated billing issue. These deceptive messages consistently omit your specific customer number and exact subscription details.​ Hijacked …

Can Intellexa Alliance Malware Disable Your iPhone Recording Dots Without Detection? The Predator spyware, developed by the Intellexa Alliance, actively disables the built-in camera and microphone recording indicators on Apple devices to conduct stealth surveillance. This advanced capability intercepts sensor data before it reaches the user interface, posing a severe privacy risk to iOS users. …

Can you opt out of Germany’s centralized health-data database—and what does the GFF lawsuit mean for patients with rare diseases? What’s happening Germany’s Society for Civil Rights (GFF) is continuing a legal case that challenges the central collection and storage of health data tied to around 73 million people with statutory health insurance. GFF argues …

Is your personal info safe after the Sportdeal24 shop hack in February 2026? Critical Update: Sportdeal24 Security Incident A significant security breach has affected the online retailer Sportdeal24. This incident occurred earlier this month. We confirmed the details after a reader alerted us on February 24, 2026. You need to understand the risks if you …

What customer data was leaked in the brillen.de 2026 data breach? The German eyewear retailer brillen.de experienced two significant data security incidents between 2024 and 2026. The company first suffered a massive data exposure in August 2024. In a separate, targeted attack in September 2025, hackers stole over 1.5 million customer records, which later surfaced …

Is the Galaxy S26 Ultra Privacy Display worth caring about, and what does the early Dubai retail unit leak tell buyers? Samsung is trying to limit how far an early Galaxy S26 Ultra leak spreads after creator Sahil Karoul posted a short clip on X that showed the new “Privacy Display” working in real time. …

Was Safran really hacked, or was it a third‑party data breach—and what does the leak include? A threat actor is claiming to possess and sell data linked to Safran Group, a major French aerospace and defense company, and has posted samples alongside the sales claim. Safran says it did not suffer a direct cyberattack; instead, …

What Are the Legal Steps to Fight the 1N Telecom Contract Penalty in 2026? The Federation of German Consumer Organizations (vzbv) has officially filed a class-action lawsuit against 1N Telecom GmbH to help affected consumers recover unjustified contract penalties. This legal action, registered at the Higher Regional Court of Hamm, addresses widespread deceptive marketing practices …

Are You Affected by the Recent 1&1 Account Breaches? A growing concern has surfaced among 1&1 customers following recent reports of unauthorized account access. Multiple users have begun receiving notifications from 1&1’s security team, specifically from the address “[email protected],” warning that third parties might have breached their contracts. This situation has prompted discussions across platforms …

Are Trusted Platforms Like Microsoft, Zoom, and Amazon Being Used to Scam Your Business? When Trusted Platforms Become Attack Vectors: The Rise of SaaS-Based Telephone Fraud Cybercriminals no longer need to build fake websites or spoof email domains. A large-scale campaign documented by Check Point Research in early February 2026 shows that attackers are now …

Is “AppSuite PDF Editor” safe, or is it TamperedChef malware from Google Ads? TamperedChef: what it is and how it works TamperedChef is described by researchers as a malvertising campaign that uses legitimate‑looking installers that pose as common apps (including PDF editors) to trick users into installing a backdoor/infostealer. The operators rely on ads and …

Are Smart Home Devices Secure? Understanding the DJI Romo Data Breach Discovery A technology enthusiast’s weekend project exposed a critical vulnerability affecting thousands of connected robotic vacuum cleaners, highlighting significant concerns about smart home device security and data privacy. The Accidental Discovery Sammy Azdoufal, an AI executive at French property management firm Emerald Stay, attempted …

Is Your Password Manager Actually Safe After the Latest ETH Zurich Security Findings? Based on the comprehensive security study conducted by ETH Zurich in February 2026, serious vulnerabilities affecting the “Zero Knowledge” architecture of Bitwarden, LastPass, and Dashlane have been identified. Password Manager Security: A Critical Look at the ETH Zurich Findings Millions rely on …

What Should IT Teams Know About the Actively Exploited BeyondTrust Security Flaw? Core Advisory The U.S. Cybersecurity and Infrastructure Security Agency (CISA) issued an urgent warning regarding CVE-2026-1731, a critical pre-authentication remote code execution vulnerability affecting BeyondTrust’s Remote Support and Privileged Remote Access products. Federal agencies received a three-day deadline to patch their systems, reflecting …

Is your secure email actually private when the government comes knocking? Government Requests and Rejection Rates You should understand how Mailbox handles your data privacy when authorities intervene. In 2025, the company received 74 information requests from various government agencies. They rejected one-quarter of these inquiries. This rejection rate demonstrates that the provider does not …

What does Nokia’s HEVC (H.265) patent injunction mean for ASUS and Acer PC sales in Germany? What happened (plain facts) ASUS temporarily suspended its official website and online store in Germany after a Munich I Regional Court ruling tied to a patent dispute with Nokia.​ The court also issued injunctions against Acer and ASUS in …

Why are German universities paying €45 per user for openDesk when Microsoft 365 is free for students? The core issue Germany says it wants digital independence. ZenDiS is building openDesk to reduce reliance on Microsoft 365 in public administration. Yet universities face a very different reality: Microsoft 365 is often available to students at no …

What are the mandatory vulnerability reporting requirements for EU devices? Manufacturers operating within the EU market must urgently prepare for the Cyber Resilience Act (CRA), as mandatory reporting for active vulnerabilities begins on September 11, 2026. The following guide outlines your obligations, critical deadlines, and necessary compliance steps to navigate this new legal framework effectively. …

Is your browser history safe from these popular Chrome extensions? Recent cybersecurity research confirms that 287 Google Chrome extensions are actively recording browsing history from approximately 37.4 million users. These extensions, including popular productivity and customization tools, transmit sensitive user data to third-party servers controlled by data brokers and undisclosed entities. The Scale of the …

Why Did a Trusted Microsoft Store App Just Steal 4,000 Passwords? The recent Outlook add-in security incident offers a prime example of why third-party software vetting is crucial for digital safety. The following guide provides a comprehensive breakdown of the “AgreeTo” add-in breach, explaining how it happened and what steps you can take to protect …

Why are EU data regulators stopping the latest Commission AI and GDPR changes? The Digital Omnibus Dispute The European Commission introduced the “Digital Omnibus” on November 19, 2025, framing it as a necessary step to streamline the General Data Protection Regulation (GDPR) and reduce bureaucracy. However, the European Data Protection Board (EDPB) and the European …

What Steps Must I Take to Protect My Bank Details Following the February 2026 Cyberattacks? February 18, 2026 Recent cybersecurity incidents have compromised sensitive user data at two major platforms: the home improvement marketplace ManoMano and the investment platform FunderNation. Investigations confirm that unauthorized actors accessed personal customer information in both cases. If you use …

Is your network vulnerable to the critical Ivanti EPMM remote code execution zero-day? Recent attacks on high-profile European government entities underscore the severity of new security flaws in Ivanti Endpoint Manager Mobile (EPMM). Security teams must address these critical vulnerabilities immediately to prevent unauthorized network access and data theft. Critical Vulnerability Details Ivanti disclosed CVE-2026-1281 …

Why were e-prescriptions and patient records down on February 10, 2026? If you experienced difficulties accessing medical services or online banking earlier this month, you were not alone. On February 10, 2026, the German healthcare sector faced a significant disruption to its telematics infrastructure (TI). This outage effectively blocked access to critical digital health services, …

Are EU GDPR changes making kids less safe online? A practical guide to Safer Internet Day 2026 and child data protection You want children and young people to use the internet safely. Awareness campaigns help, but they cannot carry the whole load. A safer internet also depends on lawmakers setting clear, enforceable limits on how …

the German electronic patient record a financial disaster for statutory health insurance providers? The State of Germany’s Electronic Patient Record (ePA) in early 2026 As we assess the healthcare landscape in February 2026, we must ask a difficult question: Is the electronic patient record (ePA) succeeding? The data suggests a clear “no.” Despite the ambitious …

Is my ePA data recoverable after the recent AOK system glitch? The AOK Bayern ePA Data Loss Incident: An Analysis As of February 2026, a significant technical failure has affected AOK Bayern members utilizing the electronic patient record (ePA). This incident highlights critical vulnerabilities in digital health infrastructure. The following assessment details the technical breakdown, …

Why is the tax office asking for my bank details for a 2025 return I haven’t filed yet? The “Early Bird” Refund Scam (Brazil Server Variant) Cybercriminals have launched their 2026 phishing campaigns with aggressive timing. A prevalent email currently circulating claims your 2025 tax calculation is complete and a refund is pending. The message …

Why are wind and solar farms becoming primary targets for cyberwarfare? The cyberattack on the Polish power grid in late December 2025 marks a critical evolution in infrastructure threats. Security firm Dragos identified the incident as the first major coordinated assault specifically targeting decentralized energy systems. While previous attacks focused on central transmission networks, this …

Did Tandberg Data survive the Overland-Tandberg insolvency filing? Tandberg Data Operations Update: Post-Insolvency Status For IT professionals and systems administrators managing data continuity, the status of Tandberg Data has moved from critical condition to stabilized. While the parent entity faced liquidation in 2025, the core technology and manufacturing capabilities have surfaced under new management. The …

Is your VMware ESXi server safe from the latest ransomware attacks? Critical Security Advisory: Exposed VMware ESXi Servers Face Ransomware CERT-Bund issued a severe warning in late January 2026 regarding network security. A recent scan identified 2,500 VMware ESXi servers in Germany accessible directly via the public internet. This configuration violates standard security protocols. Concurrently, …

Is your organization vulnerable to the new APT28 Office zero-day attacks? Security teams must address an active threat targeting Microsoft Office and Outlook. Russian threat group APT28 (Fancy Bear) is exploiting CVE-2026-21509. This zero-day vulnerability allows attackers to bypass security checks within Office applications. Both Microsoft and security firms like ZScaler and CERT-UA have confirmed …

Did Trisa AG just suffer a massive data breach from LYNX ransomware? Situation Report: Emerging Cyber Threats affecting Swiss Industry and Cloud Infrastructure As your security advisor, I must draw your attention to two critical developments in the cybersecurity landscape. We are tracking a specific ransomware allegation against a major Swiss manufacturer and a broader, …

Is RustDesk safe for remote access after the February 2026 botnet outage? Critical Security Advisory: RustDesk Service Disruptions (Feb 2026) If you rely on RustDesk for remote administration, you must be aware of significant ongoing service interruptions. The platform’s public infrastructure is currently mitigating a massive, coordinated botnet attack. This activity has forced servers offline …

Why Are Encrypted Apps Like WhatsApp and Instagram Leaking Private Data in 2026? The digital security landscape remains volatile this month. We see a clear pattern: even established platforms struggle with basic vulnerability management. Below is an advisory summary of the critical incidents reported through February 6, 2026. Substack Confirms Data Leak of 700,000 Accounts …

Is my Gmail or Netflix login part of the new 2026 database breach? The Incident: 149 Million Credentials Left Open On January 23, 2026, security researcher Jeremiah Fowler identified a massive data exposure on a publicly accessible server. This unsecured database contained nearly 150 million unique records, totaling 96 GB of raw data. The leak …

Is your Instant On firmware older than 3.3.1.0 putting your network at risk—and what should you update first? HPE has published a security advisory for Instant On access points and Instant On 1930 switches. If these devices run firmware versions up to 3.3.1.0, they are affected by multiple vulnerabilities with reported CVSS 7.5 severity. The …

January 2026 Microsoft updates: How do you fix Windows 11 sleep, Citrix Director shadowing, and remote login failures? January 2026 Patch Day review: what broke, what’s fixed, what to do Microsoft released its January 13, 2026 security updates for Windows, Office, and related products. The release addressed 113 CVEs, including 8 critical items, two reported …

What should admins do now about HPE OneView CVE-2025-37164 botnet attacks on unpatched servers? HPE OneView CVE-2025-37164: active exploitation of a critical RCE flaw HPE OneView is an infrastructure management platform that centralizes control of compute, storage, and networking. Many enterprises run it in data centers because it reduces manual effort and speeds up provisioning. …

What happens if your e-commerce host goes insolvent—and how do you keep your shop online and your data safe? Modern Solution GmbH & Co. KG, an IT service provider for online retailers, is reported to be insolvent. For merchants, this matters because a provider failure can take more than a website offline. It can also …

Can ransomware shut down a 20-person agency overnight? A clear look at the CONCEPTNET GmbH incident (Jan 2026). Cyberattacks do not only target big corporations. Smaller firms can be attractive because they often run lean IT teams, rely on always-on tools, and cannot afford long downtime. On January 15, 2026, CONCEPTNET GmbH in Regensburg reported …

Is Your Virtual Machine Secure Without the Latest VMware Tools Update? VMware by Broadcom released VMware Tools version 13.0.10.0 on January 21, 2026. This maintenance release addresses critical vulnerabilities and stability issues found in previous iterations. Administrators managing virtualized Windows environments must prioritize this update to ensure system integrity and compatibility. Key Technical Improvements This …