The newsletter compiles a wide range of high-profile security incidents, research findings, and threat intelligence spanning cybercrime, malware, hacking, and information warfare.

Hacking: It covers active exploits such as SolarWinds Web Help Desk and BeyondTrust Remote Support pre-auth RCE (CVE-2026-1731), profiles of notable actors, Apple’s fixes for exploited zero-days across iOS and macOS, and reconnaissance on BeyondTrust RCE activity.

Cybersecurity developments include the European Commission’s response to a central mobile infrastructure attack, a February 2026 security update review, the Conduent breach affecting Volvo Group, removal of a hacker tied to Epstein from a Black Hat event, the Figure data breach, and discussions on weaponizing AI as an attack surface, with Russia blocking messaging apps.

Malware focus highlights cloud-native ransomware TeamPCP, Black Basta’s payload defense evasion, the first malicious Outlook add-in linked to 4,000 stolen credentials, and recurring fake recruiter campaigns targeting crypto developers.

Cybercrime items include the Conpet cyberattack disclosure in Romania, Flickr security incident tied to a third-party email system, Senegal’s File Automation Directorate data breach claim, Odido data breach notification, and a global SEO poisoning campaign identified as Badiis to the Bone.

Intelligence and information warfare topics cover UNC3886 multi-agency cyber operation in Singapore, Ivanti zero-day data exposure, Stan Ghouls targeting Uzbek-Russian systems, Russia’s hybrid attacks in Europe, UNC1069 cryptocurrency-focused tooling and AI-driven social engineering, North Korean IT workers in Norwegian firms, and evolving AI threat-tracking developments.

Intro: The Security Affairs weekly newsletter (International Edition) curates top security articles and is delivered by email.