On this roundup, Tony seems to be at how opportunistic danger actors are making the most of vulnerable authentication, unmanaged publicity, and fashionable AI gear
28 Feb 2026
With the second one month of 2026 (nearly) in the back of us, it is time for ESET Leader Safety Evangelist Tony Anscombe to take a look at cybersecurity tales that moved the needle and introduced important courses during the last 4 weeks. Here is Tony’s rundown of a few of what stood out in February 2026:
- Risk actors misused industrial generative AI gear to compromise greater than 600 FortiGate gadgets situated in 55 nations. Fairly than particular vulnerabilities, the assaults exploited uncovered control ports and vulnerable credentials with out two-factor authentication, in line with Amazon Risk Intelligence.
- Extra proof of dangerous actors making the most of GenAI services and products was once supplied via ESET researchers this week once they exposed PromptSpy, the primary recognized case of Android malware abusing generative AI for context-aware consumer interface manipulation.
- The FBI has warned ATM operators about an build up in malware-fueled jackpotting assaults in U.S. the place criminals trick money machines into spitting out massive quantities of money,
- The protection trade has additionally been busy digesting a file that Poland’s CERT printed on the very finish of January and that took a deep dive into contemporary cyberattacks at greater than 30 organizations running in essential infrastructure sectors. ESET researchers analyzed a wiper and shared different technical information about an incident aimed toward an power corporate as a part of the assaults.
What are one of the most courses companies must remove from those incidents? Watch the video to be told extra and make certain to try the January 2026 version of Tony’s per month safety information roundup for extra insights.
