Tag: tool

Hackers turn bossware against the bosses

Feb 13, 2026 5:58 AM

Tags: access, advisory, attack, awareness, computer, control, corporate, cybersecurity, data, email, endpoint, hacker, identity, infosec, infrastructure, malicious, mfa, monitoring, network, phishing, ransomware, risk, sans, software, tool, training, unauthorized, vulnerability

Ensure these risks are catalogued: Johannes Ullrich, dean of research at the SANS Institute, said this report is an example of how corporate IT teams build infrastructure that attackers then abuse. It’s known that employee monitoring software and security software have been misused like this in the past, he said. He pointed out that software…
Those ‘Summarize With AI’ Buttons May Be Lying to You

Feb 12, 2026 11:58 PM

Tags: ai, microsoft, tool

Microsoft uncovered AI recommendation poisoning in 31 companies across 14 industries, and turnkey tools make it trivially easy to pull off. First seen on darkreading.com Jump to article: www.darkreading.com/cyber-risk/summarize-ai-buttons-may-be-lying
Google finds state-sponsored hackers use AI at ‘all stages’ of attack cycle

Feb 12, 2026 10:58 PM

Tags: ai, attack, cyber, google, hacker, tool

The research underscores how AI tools have matured in their cyber offensive capabilities, even as it doesn’t reveal novel or paradigm shifting uses of the technology. First seen on cyberscoop.com Jump to article: cyberscoop.com/state-hackers-using-gemini-google-ai/
Google finds state-sponsored hackers use AI at ‘all stages’ of attack cycle

Feb 12, 2026 10:58 PM

Tags: ai, attack, cyber, google, hacker, tool

The research underscores how AI tools have matured in their cyber offensive capabilities, even as it doesn’t reveal novel or paradigm shifting uses of the technology. First seen on cyberscoop.com Jump to article: cyberscoop.com/state-hackers-using-gemini-google-ai/
Those ‘Summarize With AI’ Buttons May Lying to You

Feb 12, 2026 10:58 PM

Tags: ai, microsoft, tool

Microsoft uncovered AI recommendation poisoning in 31 companies across 14 industries, and turnkey tools make it trivially easy to pull off. First seen on darkreading.com Jump to article: www.darkreading.com/cyber-risk/summarize-ai-buttons-may-be-lying
4 Tools That Help Students Focus

Feb 12, 2026 9:58 PM

Tags: risk, technology, tool

Educators recognize the dual reality of educational technology (EdTech): its potential to sharpen student focus and detract from it. Schools must proactively leverage technology’s advantages while mitigating its risks to student productivity. Read on as we unpack the evolving importance and challenge of supporting student focus. We also detail four categories of classroom focus tools,…
Who’s the bossware? Ransomware slingers like employee monitoring tools, too

Feb 12, 2026 9:58 PM

Tags: monitoring, ransomware, tool

As if snooping on your workers wasn’t bad enough First seen on theregister.com Jump to article: www.theregister.com/2026/02/12/ransomware_slingers_bossware/
Hand over the keys for Shannon’s shenanigans

Feb 12, 2026 8:58 PM

Tags: ai, penetration-testing, risk, tool

In this week’s newsletter, Amy examines the rise of Shannon, an autonomous AI penetration testing tool, and what it means for security teams and risk management. First seen on blog.talosintelligence.com Jump to article: blog.talosintelligence.com/hand-over-the-keys-for-shannons-shenanigans/
Hand over the keys for Shannon’s shenanigans

Feb 12, 2026 8:58 PM

Tags: ai, penetration-testing, risk, tool

In this week’s newsletter, Amy examines the rise of Shannon, an autonomous AI penetration testing tool, and what it means for security teams and risk management. First seen on blog.talosintelligence.com Jump to article: blog.talosintelligence.com/hand-over-the-keys-for-shannons-shenanigans/
Next Gen Spotlights: Creating Quiet in Moments of Noise QA with Richard Allmendinger, CEO and Co-Founder of Veribee

Feb 12, 2026 7:58 PM

Tags: ceo, software, tool

Veribee is on a mission to reduce noise for software teams, by striving to minimise alert-heavy tools that create noise, as opposed to confidence in what’s actually secure. As one survey found, over two-thirds of security teams receive over 2,000 alerts a day (roughly one alert every 42 seconds), with 92% reporting missed or uninvestigated…
Google Reports State-Backed Hackers Using Gemini AI for Recon and Attack Support

Feb 12, 2026 7:58 PM

Tags: ai, attack, cyber, google, group, hacker, hacking, intelligence, korea, north-korea, threat, tool

Google on Thursday said it observed the North Korea-linked threat actor known as UNC2970 using its generative artificial intelligence (AI) model Gemini to conduct reconnaissance on its targets, as various hacking groups continue to weaponize the tool for accelerating various phases of the cyber attack life cycle, enabling information operations, and even conducting model extraction…
FTC push for age verification a ‘major landmark’ for spread of the tool

Feb 12, 2026 6:58 PM

Tags: finance, technology, tool

The FTC’s COPPA rule should not be an “impediment to the most child protective technology to emerge in decades,” a senior agency official said recently. First seen on therecord.media Jump to article: therecord.media/ftc-push-for-age-verification-a-major-landmark-for-implementation
Check Point setzt beim Schutz von KI-Transformationen auf neuen Vier-Säulen-Ansatz

Feb 12, 2026 4:58 PM

Tags: ai, cyber, tool

Künstliche Intelligenz verändert nicht nur rapide die Unternehmensabläufe, von Tools zur Steigerung der Mitarbeiterproduktivität bis hin zu autonomen Systemen, sondern auch die Landschaft der Cyber-Bedrohungen. First seen on infopoint-security.de Jump to article: www.infopoint-security.de/check-point-setzt-beim-schutz-von-ki-transformationen-auf-neuen-vier-saeulen-ansatz/a43712/
Gartner® Names Tenable as the Current Company to Beat for AI-Powered Exposure Assessment in a 2025 Report

Feb 12, 2026 4:58 PM

Tags: access, ai, api, attack, automation, business, cloud, container, cyber, cybersecurity, data, exploit, finance, flaw, gartner, governance, identity, intelligence, iot, leak, network, risk, service, technology, threat, tool, update, vulnerability

“Tenable’s asset and attack surface coverage, its application of AI and its reputation for vulnerability assessment makes it the front-runner in AI-powered exposure assessment,” Gartner writes in “AI Vendor Race: Tenable Is the Company to Beat for AI-Powered Exposure Assessment.” Key Takeaways from Tenable: This is the latest among a recent string of recognitions Tenable…
Vier Säulen, eine Vision Check Point stellt neue KI-Sicherheitsstrategie vor und stärkt Plattform durch drei strategische Akquisitionen

Feb 12, 2026 4:58 PM

Tags: ai, software, strategy, tool

Check Point Software Technologies hat seine Vier-Säulen-Strategie vorgestellt, die Unternehmen dabei helfen soll, sicher durch die KI-Transformation zu navigieren. Dabei helfen werden auch drei strategische Akquisitionen, die Check Points Plattform stärken und die Umsetzung dieser Vision demonstrieren. Künstliche Intelligenz verändert nicht nur rapide die Unternehmensabläufe, von Tools zur Steigerung der Mitarbeiterproduktivität bis hin zu autonomen…
Keeper Commander Introduces SuperShell

Feb 12, 2026 4:58 PM

Tags: open-source, programming, software, tool

From today, Keeper Security’s SuperShell, a full-screen Terminal User Interface (TUI) for browsing and managing the Keeper Vault within Keeper Commander, is available to all customers and can be seamlessly integrated into Keeper Commander workflows. Keeper Commander is an open-source Command Line Interface (CLI), scripting tool and Software Development Kit (SDK) for interacting with Keeper.…
Check Point setzt beim Schutz von KI-Transformationen auf neuen Vier-Säulen-Ansatz

Feb 12, 2026 4:58 PM

Tags: ai, cyber, tool

Künstliche Intelligenz verändert nicht nur rapide die Unternehmensabläufe, von Tools zur Steigerung der Mitarbeiterproduktivität bis hin zu autonomen Systemen, sondern auch die Landschaft der Cyber-Bedrohungen. First seen on infopoint-security.de Jump to article: www.infopoint-security.de/check-point-setzt-beim-schutz-von-ki-transformationen-auf-neuen-vier-saeulen-ansatz/a43712/
Nation-state hackers ramping up use of Gemini for target reconnaissance, malware coding, Google says

Feb 12, 2026 3:58 PM

Tags: ai, apt, google, group, hacker, malware, tool, vulnerability

Researchers found that APT groups were using the AI tool for coding and scripting tasks, gathering information about potential targets, researching publicly known vulnerabilities and enabling post-compromise activities. First seen on therecord.media Jump to article: therecord.media/nation-state-hackers-using-gemini-for-malicious-campaigns
Nation-state hackers ramping up use of Gemini for target reconnaissance, malware coding, Google says

Feb 12, 2026 3:58 PM

Tags: ai, apt, google, group, hacker, malware, tool, vulnerability

Researchers found that APT groups were using the AI tool for coding and scripting tasks, gathering information about potential targets, researching publicly known vulnerabilities and enabling post-compromise activities. First seen on therecord.media Jump to article: therecord.media/nation-state-hackers-using-gemini-for-malicious-campaigns
Nation-state hackers ramping up use of Gemini for target reconnaissance, malware coding, Google says

Feb 12, 2026 3:58 PM

Tags: ai, apt, google, group, hacker, malware, tool, vulnerability

Researchers found that APT groups were using the AI tool for coding and scripting tasks, gathering information about potential targets, researching publicly known vulnerabilities and enabling post-compromise activities. First seen on therecord.media Jump to article: therecord.media/nation-state-hackers-using-gemini-for-malicious-campaigns
Nation-state hackers ramping up use of Gemini for target reconnaissance, malware coding, Google says

Feb 12, 2026 3:58 PM

Tags: ai, apt, google, group, hacker, malware, tool, vulnerability

Researchers found that APT groups were using the AI tool for coding and scripting tasks, gathering information about potential targets, researching publicly known vulnerabilities and enabling post-compromise activities. First seen on therecord.media Jump to article: therecord.media/nation-state-hackers-using-gemini-for-malicious-campaigns
Phishing campaign chains old Office flaw with fileless XWorm RAT to evade detection

Feb 12, 2026 2:58 PM

Tags: access, control, credentials, data, ddos, detection, flaw, fortinet, Intruder, malicious, malware, microsoft, office, phishing, rat, risk, theft, tool

Fileless .NET stage and a modular XWorm core: Beyond initial access, Fortinet observed a fileless .NET stage loaded directly into memory, followed by process hollowing into msbuild.exe, a legitimate Microsoft build tool capable of executing .NET code. The choice of msbuild.exe aligns with the malware’s runtime requirements while helping it blend into normal system activity.”A…
Phishing campaign chains old Office flaw with fileless XWorm RAT to evade detection

Feb 12, 2026 2:58 PM

Tags: access, control, credentials, data, ddos, detection, flaw, fortinet, Intruder, malicious, malware, microsoft, office, phishing, rat, risk, theft, tool

Fileless .NET stage and a modular XWorm core: Beyond initial access, Fortinet observed a fileless .NET stage loaded directly into memory, followed by process hollowing into msbuild.exe, a legitimate Microsoft build tool capable of executing .NET code. The choice of msbuild.exe aligns with the malware’s runtime requirements while helping it blend into normal system activity.”A…
Phishing campaign chains old Office flaw with fileless XWorm RAT to evade detection

Feb 12, 2026 2:58 PM

Tags: access, control, credentials, data, ddos, detection, flaw, fortinet, Intruder, malicious, malware, microsoft, office, phishing, rat, risk, theft, tool

Fileless .NET stage and a modular XWorm core: Beyond initial access, Fortinet observed a fileless .NET stage loaded directly into memory, followed by process hollowing into msbuild.exe, a legitimate Microsoft build tool capable of executing .NET code. The choice of msbuild.exe aligns with the malware’s runtime requirements while helping it blend into normal system activity.”A…
$44 Evilmouse Malware Grants Attackers Full Control of Systems Upon Connection

Feb 12, 2026 1:58 PM

Tags: attack, computer, control, cyber, Hardware, malicious, malware, penetration-testing, threat, tool

A new hardware-based threat has emerged that disguises malicious code execution capabilities inside an ordinary computer mouse. Dubbed >>EvilMouse,<< this covert keystroke injector demonstrates how everyday peripherals can become powerful attack tools for just $44 in parts. EvilMouse operates similarly to the well-known USB Rubber Ducky penetration testing tool. However, with a crucial difference: it…
ThreatsDay Bulletin: AI Prompt RCE, Claude 0-Click, RenEngine Loader, Auto 0-Days & 25+ Stories

Feb 12, 2026 1:58 PM

Tags: access, ai, exploit, rce, remote-code-execution, threat, tool, zero-day

Threat activity this week shows one consistent signal, attackers are leaning harder on what already works. Instead of flashy new exploits, many operations are built around quiet misuse of trusted tools, familiar workflows, and overlooked exposures that sit in plain sight.Another shift is how access is gained versus how it’s used. Initial entry points are…
OpenClaw Open Source AI Agent Application Attack Surface and Security Risk System Analysis

Feb 12, 2026 12:59 PM

Tags: ai, attack, cyber, network, open-source, risk, tool

Background In early 2026, OpenClaw (formerly known as Clawdbot and Moltbot), an open-source autonomous AI agent project, quickly attracted global attention. As an automated intelligent application running in the form of a chatbot, it allows users to input natural language commands through Web pages and IM tools (such as Telegram, Slack, Discord, etc.) to achieve…The…
OpenClaw Open Source AI Agent Application Attack Surface and Security Risk System Analysis

Feb 12, 2026 12:59 PM

Tags: ai, attack, cyber, network, open-source, risk, tool

Background In early 2026, OpenClaw (formerly known as Clawdbot and Moltbot), an open-source autonomous AI agent project, quickly attracted global attention. As an automated intelligent application running in the form of a chatbot, it allows users to input natural language commands through Web pages and IM tools (such as Telegram, Slack, Discord, etc.) to achieve…The…
AI Skills Represent Dangerous New Attack Surface, Says TrendAI

Feb 12, 2026 12:59 PM

Tags: ai, attack, skills, tool

New TrendAI report warns that most security tools can’t protect against attacks on AI skills artifacts First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/ai-skills-dangerous-new-attack/
OpenClaw Open Source AI Agent Application Attack Surface and Security Risk System Analysis

Feb 12, 2026 12:59 PM

Tags: ai, attack, cyber, network, open-source, risk, tool

Background In early 2026, OpenClaw (formerly known as Clawdbot and Moltbot), an open-source autonomous AI agent project, quickly attracted global attention. As an automated intelligent application running in the form of a chatbot, it allows users to input natural language commands through Web pages and IM tools (such as Telegram, Slack, Discord, etc.) to achieve…The…