👉 What’s going on in the cyber world today?

Welcome to Cyber Briefing, the newsletter that informs you about the latest cybersecurity advisories, alerts, incidents and news every weekday.

First time seeing this? Please Subscribe

Get BlueSleuth-Lite

🚨 Cyber Alerts

1. Dell RecoverPoint VM Zero-Day Exploited

A critical vulnerability in Dell RecoverPoint for Virtual Machines has been active as a zero-day since mid-2024 by a suspected Chinese threat group known as UNC6201. The flaw involves hard-coded credentials that allow unauthenticated attackers to gain root access and deploy persistent backdoors like BRICKSTORM and its stealthier successor, GRIMBOLT.

2. CISA Flags Four Flaws Actively Exploited

The U.S. Cybersecurity and Infrastructure Security Agency recently expanded its Known Exploited Vulnerabilities catalog by adding four specific flaws currently being utilized by attackers. These vulnerabilities impact various systems including Google Chrome, Microsoft Windows, and specialized security software, with a strict patching deadline set for federal agencies to mitigate the risks.

3. Keenadu Firmware Backdoor Hits Android

Kaspersky has identified a sophisticated Android backdoor named Keenadu that is embedded directly into device firmware to harvest data and enable remote control. This malware, which has affected thousands of users globally, is integrated during the firmware build phase and can even be delivered through official over-the-air updates.

For more alerts click here!

Subscribe Now

💥 Cyber Incidents

4. Adidas Probes Third-Party Data Breach

Adidas is currently investigating a data breach involving an independent partner that handles the company’s martial arts product distribution. While hackers claim to have stolen over 800,000 rows of sensitive technical and personal data, Adidas maintains that its own internal systems and customer platforms remain secure.

5. Cyberattack Leaks 115K Asahi Records

A cyberattack on Asahi Group Holdings resulted in the confirmed leak of over 115,000 sets of personal records belonging to both employees and corporate clients. Following significant operational disruptions at its domestic plants, the company has now implemented stricter security protocols and dedicated oversight to prevent future breaches.

6. Hacker Accessed 1.2M Bank Accounts

A hacker accessed a French national database containing information on 1.2 million bank accounts using stolen credentials from a public official. While personal details like names and account numbers were viewed, authorities confirmed that the breach did not allow for the viewing of balances or the execution of financial transactions.

For more incidents click here!

Get Help

📢 Cyber News

7. DEF CON Bans Named Epstein Files

The DEF CON hacker conference has officially banned Vincenzo Iozzo, Joichi Ito, and Pablos Holman following the release of Justice Department documents linking them to Jeffrey Epstein. These individuals were reportedly involved in facilitating Epstein’s interest in major cybersecurity gatherings, leading to their permanent removal from the event’s sanctioned attendee list.

8. Spanish Police Arrest Hotel Hacker

Spanish authorities have apprehended a 20-year-old man for allegedly hacking a hotel booking platform to secure luxury accommodations for just one cent. This unprecedented cybercrime involved manipulating payment validation systems to make high-end reservations appear fully paid despite the massive price discrepancy.

9. Irish Regulator Probes X Over Grok

Ireland’s Data Protection Commission has initiated a formal investigation into X following reports that its Grok AI tool generated significant amounts of non-consensual sexualized imagery. The inquiry specifically examines whether the platform violated European data protection laws by processing personal data to create harmful content, including images depicting children.

For more news click here!

Click Here

📈Cyber Stocks

Cybersecurity equities on Thursday, 19 February 2026 generally trended lower alongside broader tech weakness, with major names reacting to earnings guidance revisions, profit-taking and rotation within growth sectors.

• Check Point Software Technologies Ltd. was near 171.48 dollars and moved lower, with defensive security stocks lagging broader tech weakness.

• SentinelOne Inc was around 13.22 dollars and dipped, as smaller AI-centric endpoint protection names were sensitive to risk-off flows.

• Rapid7 Inc traded near 10.81 dollars and was lower, consistent with mixed sentiment in vulnerability management and SIEM exposures.

• CyberArk Software Ltd was near 391.77 dollars and moved down, reflecting broad security sector pressure.

• Tenable Holdings Inc closed around 21.23 dollars and declined, aligned with mid-cap cybersecurity softness.

💡 Cyber Tip

🚨 CISA Flags Four Flaws Actively Exploited

CISA has added four vulnerabilities to its Known Exploited Vulnerabilities catalog after confirming active abuse in the wild. The flaws affect platforms including Google Chrome, Microsoft Windows components, Zimbra Collaboration Suite, and TeamT5 ThreatSonar Anti-Ransomware. Federal agencies have been given a strict deadline to patch.

🛠️ What You Should Do

• Identify whether affected software exists in your environment

• Apply vendor patches for Chrome, Windows, Zimbra, and ThreatSonar immediately

• Prioritize internet-facing systems and collaboration platforms

• Monitor for unusual login activity or file uploads

• Remove or isolate legacy components that are no longer supported

⚠️ Why This Matters
Inclusion in CISA’s exploited list means attackers are already weaponizing these flaws. Delayed patching increases the likelihood of data theft, malware deployment, and system takeover, especially on exposed or outdated systems.

Visit BookClub

📚 Cyber Book

Race After Technology by Ruha Benjamin

Get Book

Copyright © 2026 CyberMaterial. All Rights Reserved.

Follow CyberMaterial on:

Substack, LinkedIn, Twitter, Reddit, Instagram, Facebook, YouTube, and Medium