Highlights from February
ScreenConnect remained at number 1 on this month’s top 10 most prevalent threat list. ScreenConnect is a ConnectWise product that administrators and adversaries alike use to remotely access and manage devices. Similar to prior months, the malicious ScreenConnect we saw was delivered via phishing with a variety of lure styles, including party invitations and social security...
In February 2026, several cyber threats were reported, with ScreenConnect being one of the most notable. The use of this remote access tool in targeted attacks against government agencies, businesses, and educational institutions underscores the importance of robust security measures. The incident involving Citrix's ADC and Gateway products highlights the need for regular software updates to protect against exploitation of known vulnerabilities.
Other threats, such as ClearFake, Scarlet Goldfinc...