Daily Security Feed - 2026-02-02

Security Feed Digest (2026-02-02)

Hacker News: Best

• xAI joins SpaceX — Mon, 02 Feb 2026 21:51:22 +0000
• The Codex App — Mon, 02 Feb 2026 18:02:48 +0000
• Todd C. Miller – Sudo maintainer for over 30 years — Mon, 02 Feb 2026 17:25:26 +0000
• Hacking Moltbook — Mon, 02 Feb 2026 16:08:36 +0000
• Ask HN: Who is hiring? (February 2026) — Mon, 02 Feb 2026 16:01:30 +0000
• Waymo seeking about $16B near $110B valuation — Mon, 02 Feb 2026 15:08:52 +0000
• Nano-vLLM: How a vLLM-style inference engine works — Mon, 02 Feb 2026 12:52:35 +0000
• Claude Code is suddenly everywhere inside Microsoft — Mon, 02 Feb 2026 11:58:58 +0000
• Microsoft is walking back Windows 11’s AI overload — Mon, 02 Feb 2026 11:52:29 +0000
• Termux — Mon, 02 Feb 2026 11:03:44 +0000
• Leaked chats expose the daily life of a scam compound’s enslaved workforce — Mon, 02 Feb 2026 05:10:59 +0000
• Apple’s MacBook Pro DFU port documentation is wrong — Mon, 02 Feb 2026 03:29:55 +0000
• Notepad++ hijacked by state-sponsored actors — Mon, 02 Feb 2026 01:59:56 +0000
• Show HN: Wikipedia as a doomscrollable social media feed — Mon, 02 Feb 2026 00:12:19 +0000
• Two kinds of AI users are emerging — Sun, 01 Feb 2026 23:45:18 +0000
• Show HN: NanoClaw – “Clawdbot” in 500 lines of TS with Apple container isolation — Sun, 01 Feb 2026 22:49:22 +0000
• Defeating a 40-year-old copy protection dongle — Sun, 01 Feb 2026 21:30:51 +0000
• My iPhone 16 Pro Max produces garbage output when running MLX LLMs — Sun, 01 Feb 2026 20:51:56 +0000
• 1-Click RCE to steal your Moltbot data and keys — Sun, 01 Feb 2026 19:47:47 +0000
• TIL: Apple Broke Time Machine Again on Tahoe — Sun, 01 Feb 2026 19:38:45 +0000
• Teaching my neighbor to keep the volume down — Sun, 01 Feb 2026 19:00:46 +0000
• Ian’s Shoelace Site — Sun, 01 Feb 2026 18:38:04 +0000

Krebs on Security

• Please Don’t Feed the Scattered Lapsus ShinyHunters — Mon, 02 Feb 2026 16:15:16 +0000

BleepingComputer

• New GlassWorm attack targets macOS via compromised OpenVSX extensions — Mon, 02 Feb 2026 17:04:19 -0500
• Russian hackers exploit recently patched Microsoft Office bug in attacks — Mon, 02 Feb 2026 16:00:07 -0500
• Malicious MoltBot skills used to push password-stealing malware — Mon, 02 Feb 2026 14:11:12 -0500
• Mozilla announces switch to disable all Firefox AI features — Mon, 02 Feb 2026 13:09:13 -0500
• Microsoft: January update shutdown bug affects more Windows PCs — Mon, 02 Feb 2026 12:17:30 -0500
• CTM360 Report Warns of Global Surge in Fake High-Yield Investment Scams — Mon, 02 Feb 2026 10:34:44 -0500
• Notepad++ update feature hijacked by Chinese state hackers for months — Mon, 02 Feb 2026 09:53:52 -0500
• Panera Bread breach impacts 5.1 million accounts, not 14 million customers — Mon, 02 Feb 2026 08:46:39 -0500
• Microsoft fixes bug causing password sign-in option to disappear — Mon, 02 Feb 2026 06:34:34 -0500
• NationStates confirms data breach, shuts down game site — Mon, 02 Feb 2026 05:05:57 -0500

Darkreading

• Attackers Harvest Dropbox Logins Via Fake PDF Lures — Mon, 02 Feb 2026 22:21:33 GMT
• County Pays $600K to Wrongfully Jailed Pen Testers — Mon, 02 Feb 2026 21:57:51 GMT
• Chinese Hackers Hijack Notepad++ Updates for 6 Months — Mon, 02 Feb 2026 19:57:02 GMT
• ShinyHunters Expands Scope of SaaS Extortion Attacks — Mon, 02 Feb 2026 16:07:57 GMT
• Out-of-the-Box Expectations for 2026 Reveal a Grab Bag of Risk — Fri, 30 Jan 2026 21:14:32 GMT

The Hacker News

• Researchers Find 341 Malicious ClawHub Skills Stealing Data from OpenClaw Users — Mon, 02 Feb 2026 23:19:00 +0530
• OpenClaw Bug Enables One-Click Remote Code Execution via Malicious Link — Mon, 02 Feb 2026 21:58:00 +0530
• Microsoft Begins NTLM Phase-Out With Three-Stage Plan to Move Windows to Kerberos — Mon, 02 Feb 2026 21:29:00 +0530
• ⚡ Weekly Recap: Proxy Botnet, Office Zero-Day, MongoDB Ransoms, AI Hijacks & New Threats — Mon, 02 Feb 2026 17:29:00 +0530
• Securing the Mid-Market Across the Complete Threat Lifecycle — Mon, 02 Feb 2026 17:15:00 +0530
• Notepad++ Official Update Mechanism Hijacked to Deliver Malware to Select Users — Mon, 02 Feb 2026 14:25:00 +0530
• eScan Antivirus Update Servers Compromised to Deliver Multi-Stage Malware — Mon, 02 Feb 2026 11:17:00 +0530
• Open VSX Supply Chain Attack Used Compromised Dev Account to Spread GlassWorm — Mon, 02 Feb 2026 10:34:00 +0530

데일리시큐 - 최근인기기사

• 금융보안원, 금융권 ‘SW 공급망 보안 플랫폼’ 2월 가동…SBOM·취약점·버그바운티 원스톱 — 2026-02-02 11:07:12
• 국정원, ‘AI 대전환’ 추진…AI 15개 분야 경력직 상시 채용 — 2026-02-02 10:51:18
• 청소 오더 매칭 플랫폼 클린오더, 공식 출시 — 2026-02-02 09:19:54
• 안랩클라우드메이트, 디지털서비스 이용지원시스템에 생성형 AI 데이터 보안 솔루션 ‘시큐어브리지(SecureBridge)’ 등록 — 2026-02-02 11:00:20
• 지니언스 2026년 조직개편 및 인사 이동 — 2026-02-02 10:08:52
• 페이게이트, 민간인증서 기반 외화송금 서비스 상용화 — 2026-02-02 11:47:34
• 스텔라사이버-오픈소프트랩, 국내 SecOps 시장 공략 위한 MOU 체결 — 2026-02-02 10:57:43
• 버카다, 우송대학교에 AI 기반 통합 물리보안 플랫폼 구축 — 2026-02-02 12:40:49
• 삼청당, 저당·저칼로리 냉동김밥 2종 출시 — 2026-02-02 10:00:49
• 서울 청소년이 만드는 도심 속 야외 오케스트라 무대…제2회 서울 청소년 오케스트라 페스티벌 개최 — 2026-02-02 10:02:19

보안뉴스 > SECURITY

• [쿠팡 해킹] “쿠팡 셀프 조사, 형사 책임 물을 수도” — Mon, 2 Feb 2026 17:42:00 +0900
• 입법조사처가 꼽은 쿠팡 국조 5대 포인트… “내부 통제부터 보상까지 총체적 난국” — Mon, 2 Feb 2026 16:46:00 +0900
• [Global Security TOP 100] 구동언 로그프레소 본부장 “SIEM 넘어 글로벌 XDR 리더로 도약” — Mon, 2 Feb 2026 15:30:00 +0900
• [Global Security TOP 100] 옥정훈 네이즈 대표, “VMS·지능형 솔루션으로 승부” — Mon, 2 Feb 2026 15:24:00 +0900
• 에이전트·피지컬AI 확산 대응… ‘2026 AI 프라이버시 민·관 정책협의회’ 출범 — Mon, 2 Feb 2026 14:40:00 +0900
• 버카다, 우송대학교에 AI 기반 통합 물리보안 플랫폼 구축 — Mon, 2 Feb 2026 14:31:00 +0900
• 한국정보통신자격협회, 2026년 제1회 국가공인 자격시험 원서접수 진행 — Mon, 2 Feb 2026 14:22:00 +0900
• 카스퍼스키 “가족 97%는 디지털로 소통… 계정 공유 보안 위협 주의해야” — Mon, 2 Feb 2026 14:17:00 +0900
• 스텔라사이버-오픈소프트랩, 차세대 보안 운영 시장 공략 맞손 — Mon, 2 Feb 2026 14:14:00 +0900
• 솔리티, 신임 대표이사에 김유석 前슈프리마 글로벌사업담당 선임 — Mon, 2 Feb 2026 14:09:00 +0900