MUST READ

VS Code extensions with 125M+ installs expose users to cyberattacks

 | 

China-linked APT weaponized Dell RecoverPoint zero-day since 2024

 | 

U.S. CISA adds Google Chromium CSS, Microsoft Windows, TeamT5 ThreatSonar Anti-Ransomware, and Zimbra flaws to its Known Exploited Vulnerabilities catalog

 | 

Keenadu backdoor found preinstalled on Android devices, powers Ad fraud campaign

 | 

SmartLoader hackers clone Oura MCP project to spread StealC malware

 | 

Polish cybercrime Police arrest man linked to Phobos ransomware operation

 | 

Poorly crafted phishing campaign leverages bogus security incident report

 | 

South Korea slaps $25M fine on Dior, Louis Vuitton, Tiffany over Salesforce breach

 | 

Encrypted RCS messaging support lands in Apple’s iOS 26.4 developer build

 | 

Hackers steal OpenClaw configuration in emerging AI agent threat

 | 

Hackers sell stolen Eurail traveler information on dark web

 | 

A security flaw at DavaIndia Pharmacy allowed attackers to access customers' data and more

 | 

Microsoft alerts on DNS-based ClickFix variant delivering malware via nslookup

 | 

Google fixes first actively exploited Chrome zero-day of 2026

 | 

Malicious npm and PyPI packages linked to Lazarus APT fake recruiter campaign

 | 

SECURITY AFFAIRS MALWARE NEWSLETTER ROUND 84

 | 

Security Affairs newsletter Round 563 by Pierluigi Paganini – INTERNATIONAL EDITION

 | 

Fintech firm Figure disclosed data breach after employee phishing attack

 | 

U.S. CISA adds a flaw in BeyondTrust RS and PRA to its Known Exploited Vulnerabilities catalog

 | 

Suspected Russian hackers deploy CANFAIL malware against Ukraine

 | 

Dell RecoverPoint

Pierluigi Paganini February 18, 2026
China-linked APT weaponized Dell RecoverPoint zero-day since 2024

A suspected Chinese state-linked group exploited a critical Dell RecoverPoint flaw (CVE-2026-22769) in zero-day attacks starting mid-2024. Mandiant and Google’s Threat Intelligence Group (GTIG) reported that a suspected China-linked APT group quietly exploited a critical zero-day flaw in Dell RecoverPoint for Virtual Machines starting in mid-2024. “Mandiant and Google Threat Intelligence Group (GTIG) have identified […]

newsletter

Subscribe to my email list and stay
up-to-date!

recent articles

VS Code extensions with 125M+ installs expose users to cyberattacks

Security / February 18, 2026

China-linked APT weaponized Dell RecoverPoint zero-day since 2024

APT / February 18, 2026

U.S. CISA adds Google Chromium CSS, Microsoft Windows, TeamT5 ThreatSonar Anti-Ransomware, and Zimbra flaws to its Known Exploited Vulnerabilities catalog

Uncategorized / February 18, 2026

Keenadu backdoor found preinstalled on Android devices, powers Ad fraud campaign

Malware / February 18, 2026

SmartLoader hackers clone Oura MCP project to spread StealC malware

Artificial Intelligence / February 17, 2026