Angriff per Signal: BfV und BSI warnen Politiker, Militärs und Diplomaten (2026-02-06 13:27 UTC)
Kurz: Ein vergangene Woche bekannt gewordener Angriff auf Nutzer des Messengers Signal zielt auf Bundestagsabgeordnete und andere wichtige Personen ab.
Debian: Projektleiter warnt vor stillem Rückzug von Entwicklern (2026-02-06 10:22 UTC)
Kurz: Debian-Projektleiter Andreas Tille prangert ein strukturelles Problem an: Entwickler verschwinden ohne Rückmeldung – mit Folgen für Sicherheit und Wartung.
Germany warns of Signal account hijacking targeting senior figures (2026-02-06 20:00 UTC)
Kurz: Germany’s domestic intelligence agency is warning of suspected state-sponsored threat actors targeting high-ranking individuals in phishing attacks via messaging apps like Signal. […]
DKnife Linux toolkit hijacks router traffic to spy, deliver malware (2026-02-06 18:35 UTC)
Kurz: A newly discovered toolkit called DKnife has been used since 2019 to hijack traffic at the edge-device level and deliver malware in espionage campaigns. […]
CISA warns of SmarterMail RCE flaw used in ransomware attacks (2026-02-06 17:16 UTC)
Kurz: The Cybersecurity & Infrastructure Security Agency (CISA) in the U.S. has issued a warning about CVE-2026-24423, an unauthenticated remote code execution (RCE) flaw in SmarterMail that is used in ransomware attacks. […]
Kurz: Cybersecurity researchers have taken the wraps off a gateway-monitoring and adversary-in-the-middle (AitM) framework dubbed DKnife that’s operated by China-nexus threat actors since at least 2019. The framework comprises seven Linux-based i…
CISA Orders Removal of Unsupported Edge Devices to Reduce Federal Network Risk (2026-02-06 13:43 UTC)
Kurz: The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has ordered Federal Civilian Executive Branch (FCEB) agencies to strengthen asset lifecycle management for edge network devices and remove those that no longer receive securit…
Asian State-Backed Group TGR-STA-1030 Breaches 70 Government, Infrastructure Entities (2026-02-06 12:07 UTC)
Kurz: A previously undocumented cyber espionage group operating from Asia broke into the networks of at least 70 government and critical infrastructure organizations across 37 countries over the past year, according to new findings from Palo Alto…
Kurz: An improper neutralization of special elements used in an sql command (‘sql injection’) vulnerability in Fortinet FortiClientEMS 7.4.4 may allow an unauthenticated attacker to execute unauthorized code or commands via sp…
Kurz: Mattermost Confluence plugin version <1.7.0 fails to properly escape user-controlled display names in HTML template rendering which allows authenticated Confluence users with malicious display names to execute arbitrary …