// LIVE
HOLEConditional Impls
RADARA new 'work from home' age? Governments across Asia order employees to stay home
OPSSupply-chain attack using invisible code hits GitHub and other repositories
RADARTitle: Meta’s massive undersea cable project has been put on hold by regional ho
RADAR'Are you freaking crazy?' Bot harasses woman, gets led away by cops
OPSCredential-stealing crew spoofs VPN clients from Cisco, Fortinet, and others
HOLEOpenClaw and the Dream of Free Labour
INTELMeta Platforms: Lobbying, Dark Money, and the App Store Accountability Act
OPSMajor SocksEscort proxy network powered by Linux malware taken down by FBI and o
HOLEThe Plumbing of Everyday Magic
INTELShow HN: Algorithms and Data Structures in TypeScript – Free Book (~400 Pages)
INTELThe Download: how AI is used for military targeting, and the Pentagon’s war on C
CVEnpm cli Local Privilege Escalation Vulnerability (CVE-2026-0775)
CVEZDI-26-044: Windows Desktop Window Manager Use-After-Free Privilege Escalation V
CVEJanuary 2026 Patch Tuesday - Critical Vulnerabilities Addressed
HOLEConditional Impls
RADARA new 'work from home' age? Governments across Asia order employees to stay home
OPSSupply-chain attack using invisible code hits GitHub and other repositories
RADARTitle: Meta’s massive undersea cable project has been put on hold by regional ho
RADAR'Are you freaking crazy?' Bot harasses woman, gets led away by cops
OPSCredential-stealing crew spoofs VPN clients from Cisco, Fortinet, and others
HOLEOpenClaw and the Dream of Free Labour
INTELMeta Platforms: Lobbying, Dark Money, and the App Store Accountability Act
OPSMajor SocksEscort proxy network powered by Linux malware taken down by FBI and o
HOLEThe Plumbing of Everyday Magic
INTELShow HN: Algorithms and Data Structures in TypeScript – Free Book (~400 Pages)
INTELThe Download: how AI is used for military targeting, and the Pentagon’s war on C
CVEnpm cli Local Privilege Escalation Vulnerability (CVE-2026-0775)
CVEZDI-26-044: Windows Desktop Window Manager Use-After-Free Privilege Escalation V
CVEJanuary 2026 Patch Tuesday - Critical Vulnerabilities Addressed
nsysops@ops-intel:~$ ls -lt --range live
OPS INTEL
209 items · ARIA-monitored · page 23 of 42
209
TOTAL
CRITICAL
HIGH
ACTIONABLE
WALLBOARD ↗
AUTO-APPROVED TODAY
LLM STATUS
CRITICAL (page) 1
HIGH (page) 3
MEDIUM (page) 1
LOW (page) 0
MEDIUM 85% confidence advisory

Ladybird Web Browser Shifts from Swift to Rust

['Independent Ladybird web browser project transitions away from Swift towards Rust programming language, leveraging AI for code translation and evaluation.']

["To enhance security and performance with Rust's memory safety features while reducing maintenance overhead with automated coding assistance."]

Web Browser DevelopersAI in Software Development
action items (2)
  • Evaluate Rust's benefits for existing projects.
  • Assess the feasibility of using AI for automated coding tasks.

The Register · 2026-02-23T19:26

HIGH 85% confidence outage

Wormable XMRig Campaign Uses BYOVD Exploit

Cybersecurity researchers reveal a new cryptojacking campaign using pirated software to deploy a customized XMRig miner, causing instability on victim systems.

['Maximize hash rate through destabilizing network performance', 'Utilizes sophisticated multi-stage infection tactics']

Linux serversWindows workstations
action items (2)
  • Deploy endpoint detection and response tools
  • Review and update incident response plan

The Hacker News · 2026-02-23T18:56

CRITICAL 95% confidence cve

ZDI-26-074: GFI Archiver MARC.Core Deserialization Vulnerability

Critical RCE flaw in GFI Archiver's MARC.Core component allows bypassing auth to execute arbitrary code. CVSS rating of 8.8. Includes severity, confidence, and

['Critical CVSS rating of 8.8 highlights severe risk', 'Authentication mechanisms can be circumvented']

GFI Archiver usersEnterprise network administrators
action items (2)
  • Update GFI Archiver to the latest version
  • Configure strict authentication policies

Zero Day Initiative · 2026-02-23T17:30

HIGH 95% confidence cve

ZDI-26-073 Nagios Host Vulnerability

Learn about the critical command injection RCE vulnerability in Nagios Host requiring authentication. CVSS rating of 7.2. Includes severity, confidence, and act

['RCE impacts server security', 'CVSS rating of 7.2 indicates high risk', 'Requires immediate mitigation']

Nagios Host usersSystem Administrators
action items (2)
  • Update affected components immediately
  • Review access controls

Zero Day Initiative · 2026-02-23T17:01

HIGH 90% confidence cve

ZDI-26-072: Nagios Host esensors_websensor_configwizard_func Command Injection Vulnerability

Remote attackers can execute arbitrary code on Nagios Host due to a command injection vulnerability. Requires authentication, CVSS rating of 7.2. Includes sever

['Vulnerability exists due to insufficient input validation for the affected function.', 'Allows unauthorized execution of system commands with privileges granted by valid credentials.']

LinuxWindows
action items (2)
  • Check for and apply available security updates for Nagios Host.
  • Review system configurations and tighten authentication requirements for critical functions.

Zero Day Initiative · 2026-02-23T16:31

ONLINE | ARIA: aria-32b | COMMIT: 55adc43 | UPTIME: 24d 15:15 | LAST SCAN: 14H AGO
CORE API: ONLINE TWITCH: OFFLINE --:--:--