Daily Security Briefing #164
- DjediTech
- Security , Newsletter
- February 13, 2026
Table of Contents
September 1, 2025 | Read Online
Critical vulnerabilities, Phishing campaigns, and AI abuse dominate today’s news…
Executive Summary
Today’s cybersecurity landscape is marked by several critical vulnerabilities and emerging threats. A newly disclosed flaw in Unstructured.io’s ETL library could allow attackers to perform arbitrary file writes and potentially achieve remote code execution on systems that process untrusted documents. Meanwhile, phishing campaigns continue to target users with fake meeting invites and update alerts via popular video conferencing platforms. Additionally, Google has linked state-sponsored actors from China, Iran, Russia, and North Korea to coordinated defense sector cyber operations.
Top Articles
Metasploit Wrap-Up 02/13/2026
The Metasploit project’s latest release includes an exploit module for the SolarWinds Web Help Desk vulnerabilities CVE-2025-40536 and CVE-2025-40551. On successful exploitation, the session will be running as NT AUTHORITY\SYSTEM.
Rapid7
Unzipping the Threat: How to Block Malware Hidden in Password-Protected ZIP Files
New Threat Emulation capabilities enable inspecting and blocking malicious ZIP files without requiring their password. This emerging evasion technique involves embedding malware inside password-protected ZIP files, making it difficult for traditional security tools to inspect their content.
Checkpoint
CVE-2025-64712 in Unstructured.io Puts Amazon, Google, and Tech Giants at Risk of Remote Code Execution
A critical flaw, CVE-2025-64712 (CVSS 9.8), in Unstructured.io’s “unstructured” ETL library could let attackers perform arbitrary file writes and potentially achieve remote code execution on systems that process untrusted documents.
Ghacks
Phishing Campaigns Target Users with Fake Meeting Invites and Update Alerts via Zoom, Teams, and Google Meet
Ongoing phishing campaigns exploit fake meeting invites from popular video conferencing platforms to lure corporate users into downloading malicious “software updates.”
Ghacks
Google Ties Suspected Russian Actor to CANFAIL Malware Attacks on Ukrainian Orgs
A previously undocumented threat actor has been attributed to attacks targeting Ukrainian organizations with malware known as CANFAIL. Google Threat Intelligence Group (GTIG) described the hack group as possibly affiliated with Russian intelligence services.
The Hacker News
Louis Vuitton, Dior, and Tiffany fined $25 million over data breaches
South Korea has fined luxury fashion brands Louis Vuitton, Christian Dior Couture, and Tiffany $25 million for failing to implement adequate security measures, which facilitated unauthorized access and the exposure of data belonging to more than 5.5 million customers.
BleepingComputer
Critical CVE-2025-64712 Vulnerability in Unstructured.io Exposes Amazon and Google to Remote Code Execution
A critical vulnerability (CVE-2025-64712) in Unstructured.io, an ETL library powering AI data processing for 87% of Fortune 1000 companies, including Amazon, Google, and Bank of America.
CyberPress
Google Links China, Iran, Russia, North Korea to Coordinated Defense Sector Cyber Operations
Several state-sponsored actors, hacktivist entities, and criminal groups from China, Iran, North Korea, and Russia have trained their sights on the defense industrial base (DIB) sector.
The Hacker News
CISA Warns of Actively Exploited SQL Injection Flaw in Microsoft Configuration Manager
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added a critical SQL injection vulnerability in Microsoft Configuration Manager to its Known Exploited Vulnerabilities (KEV) catalog.
CyberPress
Turning IBM QRadar Alerts into Action with Criminal IP
Criminal IP now integrates with IBM QRadar SIEM and SOAR to bring external IP-based threat intelligence directly into detection and response workflows.
BleepingComputer
In Other News: Google Looks at AI Abuse, Trump Pauses China Bans, Disney’s $2.7M Fine
Other noteworthy stories that might have slipped under the radar include vulnerabilities at 277 water systems, DoD employee acting as money mule, and 200 airports exposed by flaw.
SecurityWeek
AI Transparency: This newsletter uses AI to curate, rank, and summarize cybersecurity content from leading industry blogs. All articles link directly to original authors. Executive summaries are AI-generated based on article content. I curate the sources and deliver the digest—the original authors deserve the credit for their excellent work.