Hacked Prayer App Sends ‘Surrender’ Messages to Iranians Amid Israeli and US Strikes

Hacked Prayer App Sends ‘Surrender’ Messages to Iranians Amid Israeli and US Strikes

by Ruchi Kumar via Wired

"As Israeli airstrikes hit Tehran this morning, Iranians received mysterious push notifications saying that “help is on the way,” promising amnesty if they surrender."

Hacked Prayer App Sends ‘Surrender’ Messages to Iranians Amid Israeli Strikes

As Israeli airstrikes hit Tehran this morning, Iranians received mysterious push notifications saying that “help is on the way,” promising amnesty if they surrender.

WIRED (www.wired.com)

If you're keeping an eye on the current activities today check out Monitor-the-Situation and the guide I wrote about it:

Sherpa Intelligence Search Party Blog Post:
Monitor-the-Situation[.]com
https://sherpaintelligence.substack.com/p/search-party-monitor-the-situationcom

From Aembit: "What Are Service Accounts and Why Are They a Security Risk?" by Ashur Kanoon https://go.aembit.io/s/what-are-service-accounts-and-why-are-they-a-security-risk-25225

Every tech choice has a cost. You pay for infrastructure to avoid downtime, #RMM to scale, and security to keep clients. But if your email security creates more work than it saves—or fails to stop breaches—it’s no longer an investment. It’s a tax on your business!

"The Relationship Tax: What Staying With Your SEG Is Really Costing Your #MSP"
https://cybersec.ironscales.com/s/the-relationship-tax-what-staying-with-your-seg-is-really-costing-your-msp-25417

Free Picus Security webinar, "2026 Malware Trends: Hunting the Digital Parasite"

Wednesday, February 25, 2:00 PM EST.

Register here: https://cybersec.picussecurity.com/s/2026-malware-trends-hunting-the-digital-parasite-25467

"Banks operating in #Qatar face distinct obligations when securing customer data, managing cross-border transfers, and maintaining regulatory compliance under evolving data sovereignty frameworks." cc: #FSISAC #RegulatoryCompliance

5 Critical Data Sovereignty Challenges for Banks in Qatar
https://cybersec.kiteworks.com/s/5-critical-data-sovereignty-challenges-for-banks-in-qatar-25531

@Javvad Is that your headshot for the movie studios to audition to be the next James Bond Double-O Jav

The countdown to the weekend begins with 5-4-Friday!

Read five #InfoSec & #DataPrivacy news items from this past week of Feb 16-20th. Sherpa Intelligence: Your Guide Up a Mountain of Information!

Five for Friday: February 20, 2026
https://sherpaintelligence.substack.com/p/five-for-friday-february-20-2026

"Cyberattacks against #Greenland – Russian hacker group claims responsibility" via Sveriges Television AB https://www.svt.se/nyheter/utrikes/cyberattacker-mot-gronland-rysk-hackergupp-tar-pa-sig-ansvaret

This is a great post for those new to #InfoSec! Gives an overview and breakdown of how each team functions, areas of responsibility, and main tasks. It can be confusing when you are new to these terms.

"Red Team vs Blue Team vs Purple Team" by Sıla Özeren Hacıoğlu, Picus Security
https://cybersec.picussecurity.com/s/red-team-vs-blue-team-vs-purple-team-25468

Industry insights from Dan Kaplan, Aembit January 2026. "API Keys vs OAuth: Which API Authentication Method Is More Secure?"
https://go.aembit.io/s/api-keys-vs-oauth-which-api-authentication-method-is-more-secure-25345

New! From Josh Maleeff and Sherpa Intelligence: Your Guide Up a Mountain of Information!

Insights from a Learning & Development professional giving you hacks to improve #InfoSec training ----- Signal vs. Noise: DDoS'ing the Learner

https://open.substack.com/pub/sherpaintelligence/p/signal-vs-noise-ddosing-the-learner

"This Picus Security research mapped over 15.5 million adversarial actions to the MITRE ATT&CK framework. Sourced from commercial threat intel, sandboxes, and underground forums, this data identifies the 2026 tactical landscape to help teams shift from hunting files to hunting behavior." https://cybersec.picussecurity.com/s/red-report-2026-25323

"A tale of two vulnerabilities, two patches, and one very determined Christmas Eve!"

New research by Pillar Security #AI Security Researcher, Eilon Cohen.

"n8n Sandbox Escape: Critical Vulnerabilities in n8n Exposes Hundreds of Thousands of Enterprise AI Systems to Complete Takeover"
https://cybersec.pillar.security/s/n8n-sandbox-escape-critical-vulnerabilities-in-n8n-exposes-hundreds-of-thousands-of-enterprise-ai-systems-to-complete-takeover-25155

Blog Post: "The 2025 #Phishing Surge Proved One Thing: Chasing Doesn't Work" by James Savard from Ironscales - January 23, 2026. https://cybersec.ironscales.com/s/the-2025-phishing-surge-proved-one-thing-chasing-doesn-t-work-25154