Daily Security Briefing #165
- DjediTech
- Security , Newsletter
- February 14, 2026
Table of Contents
February 14, 2026 | Read Online
Phishing, AI-Powered Malware Analysis, macOS Malware and more…
Executive Summary
Today’s cybersecurity news includes a malicious campaign targeting macOS users through Google Ads and legitimate platforms, leveraging Claude AI’s public artifact feature to deliver the MacSync information stealer. Threat actors are also exploiting vulnerabilities in Ivanti Endpoint Manager Mobile (EPMM) with an 83% success rate attributed to a single threat actor. Additionally, researchers have identified over 300 malicious Chrome extensions leaking or stealing user data from millions of downloads.
Top Articles
Upcoming Speaking Engagements
Schneier is set to speak at several events across North America in the coming weeks. The list of upcoming speaking engagements includes Ontario Tech University in Oshawa, Ontario, Canada; the Personal AI Summit in Los Angeles, California, USA; and Tech Live: Cybersecurity in New York City, USA.
REMnux v8 Released: Enhanced Automation, AI Features, and Modernized Utilities
The REMnux project has officially released version 8 of its Linux toolkit, marking a significant evolution in the platform used by malware analysts and reverse engineers worldwide. This major release introduces dedicated support for artificial intelligence agents.
REMnux v8 Linux Toolkit Released With AI-Powered Malware Analysis Capabilities
The REMnux project has officially released version 8 of its Linux toolkit, which has been updated to address modern threats and integrate emerging technologies. This major release is the introduction of AI-powered capabilities.
Malicious Campaign Uses Claude Artifacts and Google Ads to Deliver macOS Malware
A sophisticated malware distribution campaign targeting macOS users through sponsored Google search results and legitimate platforms has been identified. The attack leverages Claude AI’s public artifact feature and Medium articles to deliver the MacSync information stealer.
Over 300 Malicious Chrome Extensions Caught Leaking or Stealing User Data
With more than 37 million combined downloads, over 300 malicious Chrome extensions have been identified as leaking or stealing user data.
Snail mail letters target Trezor and Ledger users in crypto-theft attacks
Threat actors are sending physical letters pretending to be from Trezor and Ledger, makers of cryptocurrency hardware wallets, to trick users into submitting recovery phrases.
One threat actor responsible for 83% of recent Ivanti RCE attacks
Threat intelligence observations show that a single threat actor is responsible for most of the active exploitation of two critical vulnerabilities in Ivanti Endpoint Manager Mobile (EPMM), tracked as CVE-2026-21962 and CVE-2026-24061.
AI Transparency: This newsletter uses AI to curate, rank, and summarize cybersecurity content from leading industry blogs. All articles link directly to original authors. Executive summaries are AI-generated based on article content. I curate the sources and deliver the digest—the original authors deserve the credit for their excellent work.