Security Archives – TechRepublic News, Tips, and Advice for Technology Professionals
- ShinyHunters Leak 12.4 Million CarGurus Records in Massive Data Dump
by Ken Underhill on February 25, 2026 at 8:05 pmShinyHunters allegedly leaked 12.4 million CarGurus records, exposing personal and financing data and raising risks of phishing and data extortion attacks. The post ShinyHunters Leak 12.4 Million CarGurus Records in Massive Data Dump appeared first on TechRepublic.
- Google Alerts Users to Serious Chrome Bugs With Takeover Riskby Ken Underhill on February 24, 2026 at 7:18 pm
Google released a Chrome security update patching three high-severity vulnerabilities, including memory flaws that could enable remote attacks. The post Google Alerts Users to Serious Chrome Bugs With Takeover Risk appeared first on TechRepublic.
- iPhone Privacy Alert: Predator Spyware Can Hide Camera, Mic Indicatorsby Kezia Jungco on February 24, 2026 at 7:00 pm
Predator spyware can suppress iOS camera and mic indicators after full device compromise, researchers say. The post iPhone Privacy Alert: Predator Spyware Can Hide Camera, Mic Indicators appeared first on TechRepublic.
- Microsoft Copilot Ignored Sensitivity Labels, Processed Confidential Emailsby Tim Freestone on February 23, 2026 at 8:48 pm
A code bug blew past every security label in the book… and exposed the fatal flaw in how we govern AI. The post Microsoft Copilot Ignored Sensitivity Labels, Processed Confidential Emails appeared first on TechRepublic.
- Conduent Breach Surges to Over 25M, Could Be Largest in US Historyby Aminu Abdullahi on February 23, 2026 at 7:43 pm
New state filings suggest the Conduent breach may affect more than 25 million Americans, with Texas alone reporting 15.4 million impacted residents. The post Conduent Breach Surges to Over 25M, Could Be Largest in US History appeared first on TechRepublic.
- Over 200K Australian Driver’s Licences Exposed in youX Cyber Breachby Aminu Abdullahi on February 23, 2026 at 4:05 pm
A youX breach exposed sensitive borrower data in Australia, including over 200,000 driver’s licence numbers, raising fraud and phishing risks. The post Over 200K Australian Driver’s Licences Exposed in youX Cyber Breach appeared first on TechRepublic.
- PayPal Flaw Exposed Email Addresses, Social Security Numbers for 6 Monthsby Ken Underhill on February 21, 2026 at 2:29 am
PayPal disclosed a software error in its Working Capital platform that exposed sensitive customer data, including Social Security numbers, for months in 2025. The post PayPal Flaw Exposed Email Addresses, Social Security Numbers for 6 Months appeared first on TechRepublic.
- Google Blocked 1.75M Harmful Apps From Play Store in 2025by TechRepublic Staff on February 20, 2026 at 6:29 pm
Google used AI-driven review systems to block 1.75 million policy-violating apps and ban 80,000 developer accounts in 2025, expanding Play Store and Android security enforcement. The post Google Blocked 1.75M Harmful Apps From Play Store in 2025 appeared first on TechRepublic.
- Microsoft: Critical Security Issue Found in Windows Notepadby TechRepublic Staff on February 20, 2026 at 5:07 pm
Microsoft patches CVE-2026-20841, a high-severity Windows Notepad flaw that could allow code execution via malicious Markdown files. The post Microsoft: Critical Security Issue Found in Windows Notepad appeared first on TechRepublic.
- Scammers Use Fake Gemini AI Chatbot for Crypto Scamby Kezia Jungco on February 20, 2026 at 3:32 pm
Scammers used a fake Gemini AI chatbot to promote a bogus Google Coin presale, signaling a rise in AI-driven crypto impersonation fraud. The post Scammers Use Fake Gemini AI Chatbot for Crypto Scam appeared first on TechRepublic.
- AI Agents Are Quietly Redefining Enterprise Security Riskby Tim Freestone on February 19, 2026 at 8:00 pm
AI agents now operate across enterprise systems, creating new risk via prompt injection, plugins, and persistent memory. Here’s how to adapt security. The post AI Agents Are Quietly Redefining Enterprise Security Risk appeared first on TechRepublic.
- Figure Data Breach Exposes Nearly 1 Million Customers Onlineby Liz Ticong on February 19, 2026 at 3:45 pm
Fintech lender Figure suffered a social-engineering breach that led to a data dump online. Have I Been Pwned found 967,200 exposed email records. The post Figure Data Breach Exposes Nearly 1 Million Customers Online appeared first on TechRepublic.
- Microsoft: Critical Windows Admin Center Flaw Allows Privilege Escalationby Ken Underhill on February 19, 2026 at 12:16 am
A high-severity Windows Admin Center vulnerability (CVE-2026-26119) could allow privilege escalation in enterprise environments. Here’s what to know and how to mitigate risk. The post Microsoft: Critical Windows Admin Center Flaw Allows Privilege Escalation appeared first on TechRepublic.
- Substack Breach May Have Leaked Nearly 700,000 User Details Onlineby Aminu Abdullahi on February 18, 2026 at 4:22 pm
Substack says hackers accessed user emails, phone numbers, and internal metadata in October 2025, with a database of 697,313 records later posted online. The post Substack Breach May Have Leaked Nearly 700,000 User Details Online appeared first on TechRepublic.
- Fake CAPTCHA Scam Tricks Windows Users Into Installing Malwareby Ken Underhill on February 16, 2026 at 7:02 pm
A fake CAPTCHA scam is tricking Windows users into running PowerShell commands that install StealC malware and steal passwords, crypto wallets, and more. The post Fake CAPTCHA Scam Tricks Windows Users Into Installing Malware appeared first on TechRepublic.
- Fake ‘Antivirus’ App Spreads Android Malware, Steals Banking Credentialsby TechRepublic Staff on February 16, 2026 at 4:54 pm
A fake Android antivirus app called TrustBastion is spreading malware and stealing banking credentials. Here’s how it works and how to stay protected. The post Fake ‘Antivirus’ App Spreads Android Malware, Steals Banking Credentials appeared first on TechRepublic.
- Viral AI Caricatures Highlight Shadow AI Dangersby Ken Underhill on February 13, 2026 at 11:43 pm
A viral AI caricature trend may be exposing sensitive enterprise data, fueling shadow AI risks, social engineering attacks, and LLM account compromise. The post Viral AI Caricatures Highlight Shadow AI Dangers appeared first on TechRepublic.
- Ransomware Groups Claimed 2,000 Attacks in Just Three Monthsby Drew Robb on February 13, 2026 at 4:18 pm
Ransomware attacks surged 52% in 2025, with supply chain breaches nearly doubling as groups like Qilin drive record monthly incidents worldwide. The post Ransomware Groups Claimed 2,000 Attacks in Just Three Months appeared first on TechRepublic.
- Critical Apple Flaw Exploited in ‘Sophisticated’ Attacks, Company Urges Rapid Patchingby Ken Underhill on February 12, 2026 at 9:42 pm
Apple urges users to update after patching CVE-2026-20700, a zero-day flaw exploited in sophisticated targeted attacks across multiple devices. The post Critical Apple Flaw Exploited in ‘Sophisticated’ Attacks, Company Urges Rapid Patching appeared first on TechRepublic.
