Cybersecurity Headlines Hacking protestors, UK "locks the door," Kenyan politician phone cracked
20 snips
Feb 18, 2026 Stories about malware targeting anti‑government protest supporters and a preinstalled Android backdoor used for ad fraud. A UK campaign pushes small businesses to adopt basic cybersecurity protections. Reporting links forensic phone‑access tools to a high‑profile Kenyan politician's device. Pentagon supply‑chain concerns and identity abuse driving most intrusions are also covered.
AI Snips
Chapters
Transcript
Episode notes
Protest Media Used As Malware Lure
- Acronis found protesters targeted with malware packaged as protest footage since January 2026.
- The campaign used a new RAT/stealer called Crescent Harvest likely tied to Iranian-aligned actors.
Adopt Cyber Essentials Now
- Do adopt basic cyber essentials like patching and strict access controls to reduce incidents.
- Use the UK's free readiness checks and a 30-minute NCSC chat to validate defenses.
Forensic Signs Of Phone Cracking
- Citizen Lab found signs Celebrite's phone-cracking tool was used against Kenyan activist Boniface Mwangi.
- Researchers observed the phone unlocking without a password and evidence of data exfiltration including political plans.