===================== = End-of-Day report = =====================

Timeframe: Dienstag 17-02-2026 18:00 − Mittwoch 18-02-2026 18:00 Handler: Guenes Holler Co-Handler: Michael Schlagenhaufer

===================== = News = =====================

∗∗∗ Data breach at fintech firm Figure affects nearly 1 million accounts ∗∗∗ --------------------------------------------- Hackers have stolen the personal and contact information of nearly 1 million accounts after breaching the systems of Figure Technology Solutions, a self-described blockchain-native financial technology company. --------------------------------------------- https://www.bleepingcomputer.com/news/security/data-breach-at-fintech-firm-f...

∗∗∗ Microsoft: Anti-phishing rules mistakenly blocked emails, Teams messages ∗∗∗ --------------------------------------------- Microsoft says an Exchange Online issue that mistakenly quarantined legitimate emails last week was triggered by faulty heuristic detection rules designed to block credential phishing campaigns. --------------------------------------------- https://www.bleepingcomputer.com/news/microsoft/microsoft-anti-phishing-rule...

∗∗∗ "Keine alltägliche Dimension": AWS kann DDoS-Attacke auf die Bahn nicht abfangen ∗∗∗ --------------------------------------------- Einen Tag lang ist es Hackern gelungen, den DB Navigator und bahn.de lahmzulegen. Die geschäftskritischen Systeme liegen bei Amazon Web Services. --------------------------------------------- https://www.golem.de/news/die-groessere-kante-aws-kann-ddos-attacke-auf-die-...

∗∗∗ Researchers Show Copilot and Grok Can Be Abused as Malware C2 Proxies ∗∗∗ --------------------------------------------- Cybersecurity researchers have disclosed that artificial intelligence (AI) assistants that support web browsing or URL fetching capabilities can be turned into stealthy command-and-control (C2) relays, a technique that could allow attackers to blend into legitimate enterprise communications and evade detection. --------------------------------------------- https://thehackernews.com/2026/02/researchers-show-copilot-and-grok-can.html

∗∗∗ Your AI-generated password isnt random, it just looks that way ∗∗∗ --------------------------------------------- Seemingly complex strings are actually highly predictable, crackable within hours Generative AI tools are surprisingly poor at suggesting strong passwords, experts say. --------------------------------------------- https://www.theregister.com/2026/02/18/generating_passwords_with_llms/

∗∗∗ Red Vulns Rising: Examining Chinese National Vulnerability Databases ∗∗∗ --------------------------------------------- Learn how the Chinese vulnerability databases (CNVD and CNNVD) compare to CVE, including early disclosures, policy shifts, and data quality differences. --------------------------------------------- https://www.bitsight.com/blog/chinese-vulnerability-database-analysis-cnvd-c...

===================== = Vulnerabilities = =====================

∗∗∗ Flaws in popular VSCode extensions expose developers to attacks ∗∗∗ --------------------------------------------- Vulnerabilities with high to critical severity ratings affecting popular Visual Studio Code (VSCode) extensions collectively downloaded more than 128 million times could be exploited to steal local files and execute code remotely. --------------------------------------------- https://www.bleepingcomputer.com/news/security/flaws-in-popular-vscode-exten...

∗∗∗ Notepad++ Fixes Hijacked Update Mechanism Used to Deliver Targeted Malware ∗∗∗ --------------------------------------------- Notepad++ has released a security fix to plug gaps that were exploited by an advanced threat actor from China to hijack the software update mechanism to selectively deliver malware to targets of interest. --------------------------------------------- https://thehackernews.com/2026/02/notepad-fixes-hijacked-update-mechanism.ht...

∗∗∗ Microsoft warnt vor kritischer Rechteausweitungslücke in Windows Admin Center ∗∗∗ --------------------------------------------- Im Windows Admin Center können Angreifer ihre Rechte ausweiten. Microsoft stuft das als kritisch ein und rät Admins zum Aktualisieren. --------------------------------------------- https://www.heise.de/news/Microsoft-warnt-vor-kritischer-Rechteausweitungslu...

∗∗∗ From BRICKSTORM to GRIMBOLT: UNC6201 Exploiting a Dell RecoverPoint for Virtual Machines Zero-Day ∗∗∗ --------------------------------------------- Mandiant and Google Threat Intelligence Group (GTIG) have identified the zero-day exploitation of a high-risk vulnerability in Dell RecoverPoint for Virtual Machines, tracked as CVE-2026-22769, with a CVSSv3.0 score of 10.0. --------------------------------------------- https://cloud.google.com/blog/topics/threat-intelligence/unc6201-exploiting-...

∗∗∗ Multiple Security-Updates for Splunk DB Connect - February 2026 ∗∗∗ --------------------------------------------- https://advisory.splunk.com

∗∗∗ [R2] Stand-alone Security Patches Available for Tenable Security Center versions 6.5.1, 6.6.0 and 6.7.2: SC-202602.1 + SC-202602.2 ∗∗∗ --------------------------------------------- https://www.tenable.com/security/tns-2026-06

∗∗∗ LWN Security updates for Wednesday ∗∗∗ --------------------------------------------- https://lwn.net/Articles/1059333/