Welcome to today's edition of Secret CISO, where we unravel the tangled web of cybersecurity incidents that have shaken the digital world. In a day marked by breaches and vulnerabilities, the narrative unfolds with a series of alarming revelations.

We begin with Lloyds Banking Group, where a mobile app data exposure has put sensitive financial information at risk across multiple UK banks. As the investigation deepens, the financial sector braces for the fallout.

Meanwhile, Hypertherm, Inc. grapples with a network breach, prompting legal scrutiny and a call for vigilance against identity theft. In a parallel narrative, Telus and CarGurus find themselves in the crosshairs of the notorious ShinyHunters group, exposing millions of records and raising the stakes in the battle against cybercrime.

Educational institutions are not spared, as the Rainbow School Board faces a costly ransomware attack, underscoring the vulnerability of schools to cyber threats. The tech world is also on high alert, with a critical flaw in MediaTek processors threatening 875 million Android phones, and a new malware, 'KadNap', turning thousands of devices into a formidable cyber weapon.

As AI deployments surge, a HackerOne report warns of a widening security gap, urging leaders to fortify defenses against potential exploits. Finally, TraceX Labs uncovers a critical RCE vulnerability in an IBM product, a stark reminder of the ever-present need for vigilance in the face of evolving threats.

Join us as we delve into these stories, exploring the implications and the urgent need for robust cybersecurity measures in an increasingly interconnected world.

Data Breaches

1. Lloyds Banking Group Investigates Mobile App Data Exposure Affecting Multiple UK Banks: Lloyds Banking Group is currently investigating a data exposure incident involving its mobile app, which has affected several UK banks. The breach has led to the visibility of sensitive financial information, such as merchant names and transaction values, raising significant data protection concerns. The investigation aims to determine the extent of the exposure and implement measures to prevent future incidents. Source: Security Boulevard
2. Hypertherm, Inc. Data Breach Investigation: On February 12, 2026, Hypertherm, Inc. discovered a data breach affecting its computer network. The breach has prompted Edelson Lechtzin LLP to investigate claims on behalf of affected individuals. Those impacted are advised to take precautions against identity theft and fraud as the investigation unfolds. Source: My Daily Record
3. Outsourcer Telus Admits to Attack, Possibly by ShinyHunters: Telus has confirmed a security breach, potentially linked to the ShinyHunters hacking group. The incident has raised concerns about the security of client data and prompted an investigation with the assistance of law enforcement. The breach highlights the ongoing threat posed by cybercriminal groups targeting large organizations. Source: The Register
4. CarGurus Breach Linked to ShinyHunters Exposes 12.4M Records: A data breach at CarGurus, allegedly orchestrated by the ShinyHunters hacking group, has exposed 12.4 million user records. The compromised data includes names, phone numbers, and email addresses, making it a significant privacy concern for affected users. The breach underscores the need for robust security measures to protect user information. Source: Fox News
5. Ransomware Attack Costs Rainbow School Board $680K: A ransomware attack on the Rainbow School Board has resulted in a financial loss of $680,000. The incident highlights the vulnerability of educational institutions to cyberattacks and the significant financial impact such breaches can have. The school board is working to enhance its cybersecurity measures to prevent future attacks. Source: Sudbury

Security Research

1. 875 Million Android Phones Put At Risk From 60 Second Hack: Security researchers from Ledger's Donjon Hacker Lab have uncovered a critical vulnerability affecting Android phones with MediaTek processors. This flaw allows attackers to execute a hack in just 60 seconds, potentially compromising the security of 875 million devices. Source: Forbes.
2. Week in review: AiTM phishing kit used to hijack AWS accounts, year-long malware campaign targets HR: Security researchers have identified a phishing kit that clones Anthropic's installation page to hijack AWS accounts. This method is part of a broader malware campaign targeting HR departments over the past year. Source: Help Net Security.
3. HackerOne report points to widening AI security gap as deployments grow: As AI deployments increase, a HackerOne report highlights a growing security gap. The report urges security leaders to address vulnerabilities in AI systems to prevent potential exploits. Source: Cybersecurity Insiders.
4. Criminals hijack thousands of devices to create never-before-seen cyber weapon: Security researchers have discovered a new malware, 'KadNap', which has infected thousands of devices, primarily Asus routers. This malware represents a sophisticated new cyber weapon with significant potential impact. Source: AOL.
5. TraceX Labs Research Leads to Discovery of RCE Vulnerability in IBM Product: Santhosh Kumar from TraceX Labs has discovered a critical remote code execution (RCE) vulnerability in an IBM product. This vulnerability has been acknowledged by IBM's Product Security Incident Response Team (PSIRT). Source: Vartha Bharati.

Final Words

As we wrap up today's edition of Secret CISO, it's clear that the digital landscape is as dynamic as ever, with new challenges and threats emerging at every corner. From the investigation into Lloyds Banking Group's mobile app data exposure to the alarming breach at CarGurus, the importance of robust cybersecurity measures cannot be overstated. Each story serves as a reminder of the vigilance required to protect sensitive information in our increasingly connected world.

Whether it's the swift 60-second hack threatening millions of Android devices or the sophisticated malware campaigns targeting HR departments, staying informed is our first line of defense. As AI continues to integrate into our systems, the widening security gap highlighted by HackerOne underscores the need for proactive measures to safeguard these technologies.

We hope you found today's insights valuable and encourage you to share this newsletter with friends and colleagues. By spreading awareness, we can collectively strengthen our defenses against the ever-evolving cyber threats. Stay safe, stay informed, and see you in the next edition of Secret CISO!