> TritonInfoSec News
Home / Feb 18, 2026 / Story
0
#8 BleepingComputer general February 17, 2026 at 23:15 UTC

Chinese hackers exploiting Dell zero-day flaw since mid-2024

By Sergiu Gatlan

AI Summary

Chinese state-backed group UNC6201 has been exploiting CVE-2026-22769, a critical Dell RecoverPoint for VMs zero-day with hard-coded credentials, since mid-2024 in attacks that remained undetected for over 18 months. The maximum severity vulnerability (CVSS 10.0) affects Dell's virtual machine recovery platform used in enterprise backup infrastructure. This demonstrates the extended dwell time advanced persistent threats can achieve when exploiting zero-day vulnerabilities in critical infrastructure.

Read full article → https://www.bleepingcomputer.com/news/security/chi…

Relevance score: 89.0/100

# More from February 18

  1. 1
    AI Found Twelve New Vulnerabilities in OpenSSL Schneier on Security
  2. 2
    Dell RecoverPoint for VMs Zero-Day CVE-2026-22769 Exploited Since Mid-2024 The Hacker News
  3. 3
    CISA Flags Four Security Flaws Under Active Exploitation in Latest KEV Update The Hacker News
  4. 4
    Notepad++ Fixes Hijacked Update Mechanism Used to Deliver Targeted Malware The Hacker News
  5. 5
    Microsoft says bug causes Copilot to summarize confidential emails BleepingComputer
  6. 6
    Keenadu Firmware Backdoor Infects Android Tablets via Signed OTA Updates The Hacker News
  7. 7
    Researchers Show Copilot and Grok Can Be Abused as Malware C2 Proxies The Hacker News
  8. 9
    Poland Energy Survives Attack on Wind, Solar Infrastructure Dark Reading
  9. 10
    Polish police detain alleged cybercriminal with Phobos ransomware ties