Daily Digest

CISA Warns of Destructive Grid Attacks, Google Patches Chrome Zero-Days, and US Shifts to Offensive Cyber Strategy

CISA Warns of Destructive Grid Attacks, Google Patches Chrome Zero-Days, and US Shifts to Offensive Cyber Strategy

February 13, 2026
10 articles (8 new, 2 updated)
30 min read

Summary

This cybersecurity brief for February 13, 2026, covers a series of critical developments. CISA has issued an urgent warning to the energy sector following a destructive cyberattack on Poland's grid, highlighting the growing threat to industrial control systems. Concurrently, Google released emergency patches for two actively exploited zero-day vulnerabilities in its Chrome browser. The US government signaled a major policy shift with a new national cyber strategy focused on offensive operations. Other key stories include a massive tax-themed phishing campaign, escalating ransomware attacks on healthcare, the rise of AI-powered social engineering, and the enforcement of the EU's new NIS2 directive, collectively indicating a period of heightened threat activity and significant policy responses.

Filter by Category

New Articles (8)

Google Scrambles to Patch Two Actively Exploited Chrome Zero-Days Under Active Attack

CRITICAL

Google Releases Emergency Update for Two Actively Exploited Chrome Zero-Days (CVE-2026-3909, CVE-2026-3910)

Google has released an emergency security update for its Chrome web browser to address two high-severity zero-day vulnerabilities, CVE-2026-3909 and CVE-2026-3910, that are confirmed to be actively exploited in the wild. The first flaw is an out-of-bounds write in the Skia 2D graphics library, while the second is an inappropriate implementation in the V8 JavaScript engine, both of which could allow a remote attacker to execute arbitrary code. With a CVSS score of 8.8 each, these vulnerabilities pose a significant risk to users. Google urges immediate updates to Chrome version 146.0.7680.75/76 for Windows/macOS and 146.0.7680.75 for Linux. Users of other Chromium-based browsers are also advised to apply patches as they become available.

February 13, 2026
4 min read
Zero-DayGoogle ChromeVulnerabilityPatchingV8 +2 more
Google Scrambles to Patch Two Actively Exploited Chrome Zero-Days Under Active Attack

CISA Orders Federal Agencies to Patch Actively Exploited Cisco and Ivanti Flaws

CRITICAL

CISA Adds Actively Exploited Cisco (CVE-2026-20131) and Ivanti (CVE-2026-1603) Vulnerabilities to KEV Catalog

On February 12, 2026, the U.S. Cybersecurity and Infrastructure Security Agency (CISA) added two new vulnerabilities to its Known Exploited Vulnerabilities (KEV) catalog due to evidence of active exploitation. The flaws affect Cisco Secure Firewall Management Center (FMC) software (CVE-2026-20131) and Ivanti Endpoint Manager (EPM) (CVE-2026-1603). CVE-2026-20131 is a critical deserialization flaw allowing remote code execution with root privileges on Cisco FMC. In response, CISA has issued a directive under BOD 22-01 requiring all Federal Civilian Executive Branch (FCEB) agencies to remediate these vulnerabilities by a specified deadline to mitigate significant risk to their networks.

February 13, 2026
4 min read
CISAKEVVulnerabilityCiscoIvanti +2 more
CISA Orders Federal Agencies to Patch Actively Exploited Cisco and Ivanti Flaws

Nation-States Pre-positioning in Critical Infrastructure for Future Cyber Warfare

HIGH

Experts Warn of Escalating Nation-State Cyber Warfare Targeting Critical Infrastructure for Strategic Disruption

Geopolitical tensions are fueling a new and dangerous phase of nation-state cyber activity, with a strategic shift towards pre-positioning within critical infrastructure for future disruptive operations. According to recent intelligence reports, Advanced Persistent Threat (APT) groups, such as the Iran-linked APT33 and APT34, are moving beyond espionage and financially motivated attacks. Instead, they are embedding themselves silently within global energy, healthcare, and telecommunications systems. Experts warn this long-term stealth access is designed to enable future attacks that could cause communications outages and supply chain shocks, making nation-state cyber warfare an existential business risk for organizations worldwide.

February 13, 2026
4 min read
Nation-StateAPTCritical InfrastructureCyber WarfarePre-positioning +2 more
Nation-States Pre-positioning in Critical Infrastructure for Future Cyber Warfare

Software Supply Chain Attacks on the Rise, Exploiting Trusted Vendor Relationships

HIGH

Sophistication and Frequency of Software Supply Chain Attacks Increase, Posing Major Threat to Downstream Organizations

Software supply chain attacks have emerged as a dominant and highly effective threat vector, with cybercriminals increasingly targeting third-party vendors, open-source libraries, and software update mechanisms to compromise thousands of organizations at once. By injecting malicious code into legitimate software, attackers bypass traditional perimeter defenses and exploit the inherent trust between an organization and its suppliers. The infamous SolarWinds attack, which distributed a backdoored update to government agencies and major corporations, exemplifies the massive scale and impact of this threat. As modern software development increasingly relies on third-party components, the attack surface has expanded dramatically, making supply chain security a critical priority for businesses globally.

February 13, 2026
4 min read
Supply Chain AttackSolarWindsThird-Party RiskSBOMDevSecOps +1 more
Software Supply Chain Attacks on the Rise, Exploiting Trusted Vendor Relationships

White House Unveils New "Cyber Strategy for America" with Offensive Focus

INFORMATIONAL

New U.S. National Cyber Strategy Prioritizes Offensive Operations and Streamlined Regulation

The White House announced its new "Cyber Strategy for America" on February 12, 2026, signaling a significant evolution from its 2023 predecessor. The new strategy marks a decisive shift towards a more proactive and offensive posture, aiming to disrupt foreign adversaries and cybercriminal networks before they can launch attacks against U.S. interests. Key pillars of the strategy include leveraging the full suite of government cyber capabilities, working with the private sector to dismantle threat actor infrastructure, and a push to streamline cybersecurity regulations to reduce compliance burdens on businesses. The policy also emphasizes modernizing federal networks with zero-trust architecture and AI-powered defenses.

February 13, 2026
4 min read
Cyber StrategyWhite HouseUS GovernmentOffensive CyberRegulation +1 more
White House Unveils New "Cyber Strategy for America" with Offensive Focus

FBI: Ransomware Attacks on Healthcare and Critical Infrastructure are Surging

HIGH

Ransomware Remains Top Threat to Critical Sectors, with Healthcare and Manufacturing Hardest Hit, FBI Reports

Ransomware attacks continue to plague U.S. critical infrastructure, with a recent FBI report indicating a significant surge in incidents. At least 14 of the 16 critical infrastructure sectors have reported attacks, with healthcare and manufacturing being the most frequent targets. The FBI warns that these attacks are not just financial crimes but pose a direct threat to public safety and national security. In the healthcare sector, ransomware-induced downtime can delay treatments and divert emergency services, with life-threatening consequences. The 2021 attack on Colonial Pipeline serves as a stark reminder of the cascading societal impact, highlighting why ransomware remains a top-tier national security threat.

February 13, 2026
4 min read
RansomwareFBIHealthcareCritical InfrastructureColonial Pipeline +1 more
FBI: Ransomware Attacks on Healthcare and Critical Infrastructure are Surging

CISA Issues Flurry of ICS Advisories for Energy and Water System Vulnerabilities

MEDIUM

CISA Publishes Ten New ICS Advisories for Vulnerabilities in Hitachi, Schneider Electric, and Mitsubishi Products

On February 12, 2026, the U.S. Cybersecurity and Infrastructure Security Agency (CISA) published a significant batch of ten new Industrial Control Systems (ICS) advisories, detailing vulnerabilities in products used across multiple critical infrastructure sectors, particularly energy and water systems. The advisories cover a range of products from prominent vendors including Hitachi Energy, Schneider Electric, Mitsubishi Electric, and TP-Link. These alerts provide technical details on the flaws and recommended mitigations, urging asset owners to apply updates promptly to protect their ICS and SCADA environments from potential exploitation.

February 13, 2026
3 min read
ICSSCADACISAVulnerabilityHitachi +2 more
CISA Issues Flurry of ICS Advisories for Energy and Water System Vulnerabilities

EU's Stricter NIS2 Cybersecurity Directive Now in Full Effect

INFORMATIONAL

EU's NIS2 Directive Deadline Passes, Enforcing Tougher Cybersecurity Rules for Critical Sectors

The deadline for European Union member states to transpose the Network and Information Security 2 (NIS2) Directive into their national laws passed on February 12, 2026, ushering in a new, stricter era of cybersecurity regulation across the bloc. NIS2 significantly expands the scope of the original NIS directive, applying to a wider range of 'essential' and 'important' entities. It imposes more rigorous cybersecurity risk management measures, incident reporting obligations with tighter deadlines, and higher penalties for non-compliance. The directive aims to harmonize and elevate the overall level of cyber resilience for critical infrastructure sectors like energy, transport, healthcare, and digital services.

February 13, 2026
3 min read
NIS2EURegulationComplianceCybersecurity Law +1 more
EU's Stricter NIS2 Cybersecurity Directive Now in Full Effect

Updated Articles (2)

Cloud Breaches Skyrocket, Now Costing Firms an Average of $5.1 Million

INFORMATIONAL

Cloud Attacks Surge 21% as Breaches Now Average $5.1 Million in Costs

Update:

A recent Thales security study, published on February 13, 2026, reinforces that human error and cloud misconfigurations are the primary drivers of cloud data breaches, responsible for 31% of all incidents. The study highlights common preventable mistakes like publicly exposed storage and weak IAM policies, citing the 2019 Capital One breach as a significant example. It also notes that with 47% of corporate data now sensitive and organizations using over 25 SaaS applications, the complexity exacerbates these foundational security gaps. The report introduces Cloud Infrastructure Entitlement Management (CIEM) as a key tool for detection and response.

January 19, 2026
Updated: February 13, 2026
5 min read
Cloud SecurityData BreachCredential CompromiseCloud MisconfigurationAPI Security +1 more
Cloud Breaches Skyrocket, Now Costing Firms an Average of $5.1 Million

'SilentVoice' Phishing Campaign Weaponizes AI Deepfake Audio to Bypass MFA

HIGH

Sophisticated 'SilentVoice' Phishing Campaign Uses AI-Generated Deepfake Audio to Trick Employees into Approving Malicious Logins

Update:

A recent report highlights an explosive growth in AI-driven phishing, with attacks showing AI indicators jumping from 4% to 56% in just one month (Nov-Dec 2025). This trend includes the widespread use of deepfake voice and video for social engineering, making attacks more convincing and harder to detect. Advanced cybercrime groups, including Scattered Spider and LAPSUS$, are now leveraging these AI capabilities for highly targeted spear-phishing campaigns, primarily aimed at compromising Microsoft 365 and Google Workspace credentials. This indicates a significant escalation in the threat posed by AI-weaponized social engineering, confirming that the tactics seen in campaigns like 'SilentVoice' are becoming mainstream among sophisticated actors.

January 26, 2026
Updated: February 13, 2026
6 min read
phishingvishingdeepfakeAIsocial engineering +2 more
'SilentVoice' Phishing Campaign Weaponizes AI Deepfake Audio to Bypass MFA

📢 Share This Publication

Help others stay informed about cybersecurity threats

📅 Daily Edition

Curated and deduplicated every day from dozens of trusted sources — giving you one clean, consolidated view of what matters in cybersecurity.

🔢 Deduplication Applied

Related stories are merged into a single evolving article rather than repeated as separate entries — cutting through noise so you only read what's new.

🔗 Full Articles Linked

Every entry links to its full enriched article — complete with MITRE ATT&CK mappings, extracted IOCs, and actionable detection and mitigation guidance.