Post

Infosec Reading List - February 2026

Posted
Preview Image
By Dominik Birk
2 min read

On a monthly basis I will publish my reading recommendations which mainly focus on Information Security (InfoSec) and Outdoor Sports. All InfoSec Reading Lists can be found here. Text in italic represent quotes from the original article.

InfoSec

  • Moltbook was peak AI theater - For some, Moltbook showed us what’s coming next: an internet where millions of autonomous agents interact online with little or no human oversight. - But as the hype dies down, Moltbook looks less like a window onto the future and more like a mirror held up to our own obsessions with AI today. It also shows us just how far we still are from anything that resembles general-purpose and fully autonomous AI. - “Moltbook proved that connectivity alone is not intelligence.” - [link]
  • Cloudflare Zero-day: Accessing Any Host Globally - [link]
  • New AirSnitch attack bypasses Wi-Fi encryption in homes, offices, and enterprises - The attacker can be on the same SSID, a separate one, or even a separate network segment tied to the same AP. It works against small Wi-Fi networks in both homes and offices and large networks in enterprises. - If the network is properly secured—meaning it’s protected by a strong password that’s known only to authorized users—AirSnitch may not be of much value to an attacker. - [link]
  • The Notecard System: The Key For Remembering, Organizing And Using Everything You Read - I use a similar approach and I agree that it‘s worth the effort - [link]
  • Iranian Hacktivists Strike Medical Device Maker Stryker in “Severe” Attack that Wiped Systems - [link]
  • Wiz investor unpacks Google’s $32B acquisition - “Wiz is at the center of three tailwinds: AI, cloud, and security spend.” - [link]
  • A Possible US Government iPhone-Hacking Toolkit Is Now in the Hands of Foreign Spies and Criminals - Google also notes that Coruna checks if an iOS devices has Apple’s most stringent security setting, known as Lockdown Mode, enabled, and doesn’t attempt to hack it if so. - [link]
  • How we hacked McKinsey’s AI Platform - AI prompts are the new Crown Jewel assets. - this wont be the last one we see - [link]
  • What Being a CISO Taught Me About Security Leadership - [link]
  • I spoke to AI agent Claude - [link]
  • Global Incident Response Report 2026 - TLDR: AI to become multiplier for threat actors, identity is key for attacker success, SaaS remains key risk, nation states are adopting - [link]
infosec readinglist
This post is licensed under CC BY 4.0 by the author.