---
title: "Amazon AI Cyberattack, Odido Data Breach, German Rail Targeted, Cybersecurity News [February 16, 2026] | DuoCircle"
description: "Amazon AI Cyberattack, Odido Data Breach, German Rail Targeted, Cybersecurity News [February 16."
image: "https://www.duocircle.com/images/og-default.png"
canonical: "https://www.duocircle.com/blog/announcements/cyber-security-news-update-week-8-of-2026/"
---

Quick Answer

Week 8, 2026 cyber news: an Amazon AI investigation finds a campaign across 55+ nations that hit 600 FortiGate devices from January 11 to February 18 by abusing single-factor auth (not exploits) to steal SSL-VPN credentials and stage pre-ransomware activity; Dutch telco Odido confirms a breach exposing data on 6.2 million customers (names, DOB, addresses, passport, drivers license; billing and call logs intact); Deutsche Bahn weathers a wave-based DDoS that disrupted booking and travel-info systems; Indian users targeted by viral-MMS clickbait that pushes age-verification credential theft and spyware installs.

Amazon AI Cyberattack, Odido Data Breach, German Rail Targeted, Cybersecurity News \[February 16, 2026\]

Your browser does not support the audio element.

[ Download episode](https://media.mailhop.org/duocircle/images/2026/02/Amazon-AI-Cyberattack-Odido-Data-Breach-German-Rail-Targeted---Cybersecurity-News-February-16-2026.mp3) 

Share 

[ ](https://www.linkedin.com/sharing/share-offsite/?url=undefined%2Fblog%2Fannouncements%2Fcyber-security-news-update-week-8-of-2026%2F "Share on LinkedIn") [ ](https://twitter.com/intent/tweet?text=Amazon%20AI%20Cyberattack%2C%20Odido%20Data%20Breach%2C%20German%20Rail%20Targeted%2C%20Cybersecurity%20News%20%5BFebruary%2016%2C%202026%5D&url=undefined%2Fblog%2Fannouncements%2Fcyber-security-news-update-week-8-of-2026%2F "Share on X/Twitter") [ ](https://www.facebook.com/sharer/sharer.php?u=undefined%2Fblog%2Fannouncements%2Fcyber-security-news-update-week-8-of-2026%2F "Share on Facebook") [ ](https://reddit.com/submit?url=undefined%2Fblog%2Fannouncements%2Fcyber-security-news-update-week-8-of-2026%2F&title=Amazon%20AI%20Cyberattack%2C%20Odido%20Data%20Breach%2C%20German%20Rail%20Targeted%2C%20Cybersecurity%20News%20%5BFebruary%2016%2C%202026%5D "Share on Reddit") [ ](mailto:?subject=Amazon%20AI%20Cyberattack%2C%20Odido%20Data%20Breach%2C%20German%20Rail%20Targeted%2C%20Cybersecurity%20News%20%5BFebruary%2016%2C%202026%5D&body=Check out this article: undefined%2Fblog%2Fannouncements%2Fcyber-security-news-update-week-8-of-2026%2F "Share via Email") 

![cybersecurity news](https://media.mailhop.org/duocircle/images/2026/02/spf-record-576.jpg) 

Last week witnessed some of the biggest cyberattacks of recent times. From the **German railway** to the Odido cyberattack, the threat actors managed to penetrate into the systems of some of the biggest global names. An investigation is already underway to determine the intensity of the recent Amazon AI attack. 

Meanwhile, a group of cybercrooks is seen leveraging a viral [MMS controversy](https://www.bbc.com/news/articles/c5yd10yp2m1o) to extract sensitive data from **Indian social media users**.

## Amazon AI cyberattack affected more than 55 nations!

An investigation is underway for the recent Amazon AI cyberattack. The threat attack managed to gain access to over 600 devices and affected almost [55](https://www.analyticsinsight.net/news/amazon-ai-cyberattack-hits-600-fortigate-devices) nations. Experts believe the campaign was active from January 11 to February 18\. Instead of exploiting the vulnerabilities, the cybercrooks abused poor **single-factor authentication** settings.

[![single-factor authentication](https://media.mailhop.org/duocircle/images/2026/02/dkim-selector-4113.jpg)](https://media.mailhop.org/duocircle/images/2026/02/dkim-selector-4113.jpg)

_The Amazon CISO, Moses, shared that the cyberattackers were not able to exploit the FortiGate software_. Once the firewalls were breached, the cybercrooks managed to extract the configurations of the complete device, ranging from administrative passwords to **SSL-VPN credentials**. It is these stolen credentials that helped the threat actors to penetrate deeper into the internal systems, such as the backup infrastructure.

The researchers at Amazon believe that the cyber incident resembles pre-ransomware staging activities. Such attacks are designed to do the preparations for upcoming [cyber campaigns](https://www.anthropic.com/news/disrupting-AI-espionage) rather than carrying out immediate cyber disruptions.

This attack ushers in a much-needed reminder that with the help of AI, threat actors can easily exploit existing [cybersecurity](/) and [email security](/content/email-security-services) hygiene gaps. Experts believe that organizations must get proactive and start working on their **security mechanisms** as swiftly as AI is penetrating into every business operation. 

[![cyber threat intelligence](https://media.mailhop.org/duocircle/images/2026/02/spf-record-tester-6778.jpg)](https://media.mailhop.org/duocircle/images/2026/02/spf-record-tester-6778.jpg)

## A whopping 6.2 million people’s data got compromised in the Odido cyber mishap!

Odido, the renowned telecom services provider, was targeted by a group of threat actors. They managed to gain access to the personal data of a staggering [6.2 million](https://nltimes.nl/2026/02/12/odido-cyber-attack-hackers-gained-access-62-million-peoples-data) people. The compromised data includes details like dates of birth, customer numbers, addresses, names, phone numbers, driver’s license data, and passport information. However, details like billing information, passwords, and **call logs are safe**.

A spokesperson for Odido has claimed that the cyber mishap will not affect **Odido’s services**. Customers are still able to use the internet, watch television, and make necessary calls.

As per the law, Odido has reported the data breach incident to the [Dutch Data Protection Authority (AP)](https://en.wikipedia.org/wiki/Dutch%5FData%5FProtection%5FAuthority). The telecom provider is also planning to notify all the affected customers by sharing official emails.

[![Data Breach](https://media.mailhop.org/duocircle/images/2026/02/email-smtp-service-5322.jpg)](https://media.mailhop.org/duocircle/images/2026/02/email-smtp-service-5322.jpg)

## Germany’s national rail operator targeted by threat actors!

Deutsche Bahn, Germany’s national rail operator, fell prey to a [cyber mishap](https://www.dw.com/en/deutsche-bahn-says-cyberattack-hit-ticket-and-info-systems/a-76024130) recently. On Wednesday, they shared the unfortunate news with everyone. The cyberattack managed to impact the digital **services of Deutsche Bahn**. 

The alleged [DDoS attack](https://www.infosecurity-magazine.com/news/ddos-escalation-frequency-power/) messed up the IT system of the German rail operator on Tuesday. Because of the attack, booking tools and travel information were affected.

This is not the first time that **Deutsche Bahn** has been targeted by cyber crooks. But the recent attack was more intense and took place in waves. 

The cyber incident took place on Tuesday afternoon. However, [Deutsche Bahn](https://www.straitstimes.com/world/europe/german-rail-operator-deutsche-bahn-hit-by-cyberattack) managed to contain the situation before it escalated. Most of the systems were up and running by Tuesday evening. However, some disruptions took place again the next morning. 

_Deutsche Bahn had proper systems in place, and they proactively responded to limit the extent of the damage_. 

[![55 Nations Impacted](https://media.mailhop.org/duocircle/images/2026/02/buy-smtp-1107.jpg)](https://media.mailhop.org/duocircle/images/2026/02/buy-smtp-1107.jpg)

_Experts have already warned the German transport infrastructure against potential cyberattacks_. Deutsche Bahn experienced a string of “nearly daily attacks” in 2025 summer. The attacks were designed to affect major lines between Berlin and Hamburg, and between Düsseldorf and Cologne.

## Cybercrooks are using sensationalization tactics to steal sensitive data in India

A group of [threat actors](https://www.scworld.com/brief/dataminr-report-cyber-risk-shifted-in-2025-with-increased-threat-actor-activity-and-mega-loss-events) in India is misusing a “viral MMS” controversy to break into the systems of Indian social media users. The threat actors are using misleading and sensational posts to grab the **attention of users**. Experts have urged people to avoid clicking on any suspicious link that is connected to any sensationalized news.

The threat actors are clever enough to use localisation tactics to gain the **attention of the public**. They also use clickbait hooks to increase the click-through rate of these malicious posts.

The cyber scam unfolds at multiple levels. First of all, the users receive a blurred or over-hyped thumbnail featuring a popular influencer from the neighboring country, Pakistan. The thumbnail comes with a malicious link that redirects the user to a suspicious domain. Next, the victims are asked to “verify age.” This can be done only when a victim enters their **social media credentials**. Or, in some cases, the scammers also install spyware or adware in the background. The login details are abused for carrying out [financial fraud](https://www.bankrate.com/credit-cards/news/financial-fraud-survey/) or hijacking accounts with weak security setups.

Experts have shared multiple guidelines to prevent such cyber scams. If you receive a link that asks you to share the same link with a fixed number of people in order to access the content, then it is highly likely to be a [malicious link](https://www.yahoo.com/news/articles/malicious-urls-phishing-scams-remain-142800812.html?guccounter=1&guce%5Freferrer=aHR0cHM6Ly93d3cuZ29vZ2xlLmNvbS8&guce%5Freferrer%5Fsig=AQAAAM2%5FHlSsWzxwKBl6RKdi09Ve9H3IDi7XGs5QQILO60dsKU8DikUXLlTald%5FbaQhJnarzqNa4rHWuqyopQpmOVJ1573ynCOFS7jDBPyP73YWlsO8ZRYGyAOxezQNQbTU6pDxrNIBn75hhHzYTNOy564x3kNHw0Qhmvqkhtj143s4G).

[![Social Engineering](https://media.mailhop.org/duocircle/images/2026/02/dkim-validation-4560.jpg)](https://media.mailhop.org/duocircle/images/2026/02/dkim-validation-4560.jpg)

Besides, one must not click on any link that looks shortened or does not come from a **verified domain**. 

Lastly, if the news you are seeing seems out of place or there is a context mismatch, then it is better to avoid such [social media posts](https://www.cbsnews.com/philadelphia/news/fake-ai-generated-ads-social-media/).

If someone clicks on such malicious links, they must immediately delete the message. Next, they should clear the **browser cache and cookies**, but only after closing the suspicious tab. 

You can also revoke unnecessary access granted to unknown applications on your phone. _Enabling multi-factor authentication can significantly prevent cybercriminals from accessing your banking apps, social media profiles, or email IDs_.

**Digital awareness serves** as the very first line of defence against such cyber scams that use [social engineering](/phishing-protection/social-engineering-is-a-growing-threat/) tactics to catch victims off guard.

## Topics

cyber securityemail securityNewsSecurityUpdates 

![Brad Slavin](https://media.mailhop.org/dmarcreport/images/team/brad-slavin.jpg) 

Brad Slavin 

General Manager

General Manager at DuoCircle. Product strategy and commercial lead across the email security portfolio.

## Secure your email infrastructure

Protect, authenticate, and deliver. Contact our team to find the right solution.

[Contact Sales](/contact/) [Explore Products](/products/) 

## Related Articles

[  News 4m  Cambodia Targets Cybercriminals, Traditional Security Insufficient, AI Against Phishing, Cybersecurity News \[March 09, 2026\]  Mar 16, 2026 ](/blog/announcements/cyber-security-news-update-week-11-of-2026/)[  News 6m  Lazarus Infects NPM, MassJacker Steals Crypto, CISA Alerts Ivanti, Cybersecurity News \[March 10, 2025\]  Mar 17, 2025 ](/blog/announcements/cyber-security-news-update-week-12-of-2025/)[  News 6m  RedCurl Ransomware Targets, CS2 Steam Phishing, Fake Converter Cyberattacks , Cybersecurity News \[March 24, 2025\]  Apr 1, 2025 ](/blog/announcements/cyber-security-news-update-week-14-of-2025/)[  News 5m  Essential Check Secures, Prevention Beats Recovery, Treasury Cyber Breach- Cybersecurity News \[December 30, 2024\]  Jan 6, 2025 ](/blog/announcements/cyber-security-news-update-week-2-of-2025/)

```json
{"@context":"https://schema.org","@type":"Organization","name":"DuoCircle LLC","url":"https://www.duocircle.com","logo":{"@type":"ImageObject","url":"https://www.duocircle.com/images/duocircle-logo.png"},"description":"DuoCircle is a portfolio of specialized email products covering protection, authentication, delivery, and routing. We deliver about 90% of category-leader capability at roughly half the price, backed by experts who own the outcome. Trusted by 50,000+ organizations since 2014.","subOrganization":[{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138898167","name":"DMARC Report","url":"https://dmarcreport.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897474","name":"AutoSPF","url":"https://autospf.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897912","name":"Phish Protection","url":"https://www.phishprotection.com"}],"sameAs":["https://www.linkedin.com/company/duocircle","https://x.com/duocirclellc","https://www.facebook.com/duocirclellc","https://www.g2.com/products/phish-protection-by-duocircle/reviews","https://github.com/duocircle","https://www.crunchbase.com/organization/duocircle-llc"],"contactPoint":{"@type":"ContactPoint","contactType":"customer support","url":"https://support.duocircle.com"},"knowsAbout":["Email Security","Email Authentication","SPF","DKIM","DMARC","Phishing Protection","Spam Filtering","SMTP Relay","Email Deliverability","Email Forwarding"]}
```

```json
{"@context":"https://schema.org","@type":"WebSite","name":"DuoCircle LLC","url":"https://www.duocircle.com","description":"DuoCircle is a portfolio of specialized email products covering protection, authentication, delivery, and routing. We deliver about 90% of category-leader capability at roughly half the price, backed by experts who own the outcome. Trusted by 50,000+ organizations since 2014.","publisher":{"@type":"Organization","name":"DuoCircle LLC","url":"https://www.duocircle.com","logo":{"@type":"ImageObject","url":"https://www.duocircle.com/images/duocircle-logo.png"},"description":"DuoCircle is a portfolio of specialized email products covering protection, authentication, delivery, and routing. We deliver about 90% of category-leader capability at roughly half the price, backed by experts who own the outcome. Trusted by 50,000+ organizations since 2014.","subOrganization":[{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138898167","name":"DMARC Report","url":"https://dmarcreport.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897474","name":"AutoSPF","url":"https://autospf.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897912","name":"Phish Protection","url":"https://www.phishprotection.com"}]}}
```

```json
[{"@context":"https://schema.org","@type":"BlogPosting","headline":"Amazon AI Cyberattack, Odido Data Breach, German Rail Targeted, Cybersecurity News [February 16, 2026]","description":"Amazon AI Cyberattack, Odido Data Breach, German Rail Targeted, Cybersecurity News [February 16.","url":"https://www.duocircle.com/blog/announcements/cyber-security-news-update-week-8-of-2026/","datePublished":"2026-02-23T18:29:51.000Z","dateModified":"2026-03-02T15:29:32.000Z","dateCreated":"2026-02-23T18:29:51.000Z","author":{"@type":"Person","@id":"https://www.duocircle.com/authors/brad-slavin/#person","name":"Brad Slavin","url":"https://www.duocircle.com/authors/brad-slavin/","jobTitle":"General Manager","description":"Brad Slavin runs DuoCircle, the company behind DMARC Report, AutoSPF, Phish Protection, and Mailhop. His focus is product strategy, customer relationships, and the commercial and compliance side of email authentication (DPAs, SLAs, enterprise procurement).","image":"https://media.mailhop.org/dmarcreport/images/team/brad-slavin.jpg","knowsAbout":["Email Security Strategy","SaaS Product Management","Enterprise Compliance","Customer Success","Email Deliverability Business"],"worksFor":{"@type":"Organization","name":"DuoCircle LLC","url":"https://www.duocircle.com"},"sameAs":["https://www.linkedin.com/in/bradslavin"]},"publisher":{"@type":"Organization","name":"DuoCircle LLC","url":"https://www.duocircle.com","logo":{"@type":"ImageObject","url":"https://www.duocircle.com/images/duocircle-logo.png"},"description":"DuoCircle is a portfolio of specialized email products covering protection, authentication, delivery, and routing. We deliver about 90% of category-leader capability at roughly half the price, backed by experts who own the outcome. Trusted by 50,000+ organizations since 2014.","subOrganization":[{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138898167","name":"DMARC Report","url":"https://dmarcreport.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897474","name":"AutoSPF","url":"https://autospf.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897912","name":"Phish Protection","url":"https://www.phishprotection.com"}]},"mainEntityOfPage":{"@type":"WebPage","@id":"https://www.duocircle.com/blog/announcements/cyber-security-news-update-week-8-of-2026/"},"articleSection":"announcements","keywords":"cyber security, email security, News, Security, Updates","wordCount":985,"image":{"@type":"ImageObject","url":"https://media.mailhop.org/duocircle/images/2026/02/spf-record-576.jpg","caption":"cybersecurity news","width":900,"height":600},"speakable":{"@type":"SpeakableSpecification","cssSelector":[".answer-block","h1"]}},{"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Blog","item":"https://www.duocircle.com/blog/"},{"@type":"ListItem","position":2,"name":"News"},{"@type":"ListItem","position":3,"name":"Amazon AI Cyberattack, Odido Data Breach, German Rail Targeted, Cybersecurity News [February 16, 2026]","item":"https://www.duocircle.com/blog/announcements/cyber-security-news-update-week-8-of-2026/"}]}]
```

```json
{"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https://www.duocircle.com/"},{"@type":"ListItem","position":2,"name":"Blog","item":"https://www.duocircle.com/blog/"},{"@type":"ListItem","position":3,"name":"News","item":"https://www.duocircle.comundefined"},{"@type":"ListItem","position":4,"name":"Amazon AI Cyberattack, Odido Data Breach, German Rail Targeted, Cybersecurity News [February 16, 2026]","item":"https://www.duocircle.com/blog/announcements/cyber-security-news-update-week-8-of-2026/"}]}
```

```json
{"@context":"https://schema.org","@type":"BlogPosting","headline":"Amazon AI Cyberattack, Odido Data Breach, German Rail Targeted, Cybersecurity News [February 16, 2026]","description":"Amazon AI Cyberattack, Odido Data Breach, German Rail Targeted, Cybersecurity News [February 16.","url":"https://www.duocircle.com/blog/announcements/cyber-security-news-update-week-8-of-2026/","datePublished":"2026-02-23T18:29:51.000Z","dateModified":"2026-03-02T15:29:32.000Z","dateCreated":"2026-02-23T18:29:51.000Z","author":{"@type":"Person","@id":"https://www.duocircle.com/authors/brad-slavin/#person","name":"Brad Slavin","url":"https://www.duocircle.com/authors/brad-slavin/","jobTitle":"General Manager","description":"Brad Slavin runs DuoCircle, the company behind DMARC Report, AutoSPF, Phish Protection, and Mailhop. His focus is product strategy, customer relationships, and the commercial and compliance side of email authentication (DPAs, SLAs, enterprise procurement).","image":"https://media.mailhop.org/dmarcreport/images/team/brad-slavin.jpg","knowsAbout":["Email Security Strategy","SaaS Product Management","Enterprise Compliance","Customer Success","Email Deliverability Business"],"worksFor":{"@type":"Organization","name":"DuoCircle LLC","url":"https://www.duocircle.com"},"sameAs":["https://www.linkedin.com/in/bradslavin"]},"publisher":{"@type":"Organization","name":"DuoCircle LLC","url":"https://www.duocircle.com","logo":{"@type":"ImageObject","url":"https://www.duocircle.com/images/duocircle-logo.png"},"description":"DuoCircle is a portfolio of specialized email products covering protection, authentication, delivery, and routing. We deliver about 90% of category-leader capability at roughly half the price, backed by experts who own the outcome. Trusted by 50,000+ organizations since 2014.","subOrganization":[{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138898167","name":"DMARC Report","url":"https://dmarcreport.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897474","name":"AutoSPF","url":"https://autospf.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897912","name":"Phish Protection","url":"https://www.phishprotection.com"}]},"mainEntityOfPage":{"@type":"WebPage","@id":"https://www.duocircle.com/blog/announcements/cyber-security-news-update-week-8-of-2026/"},"articleSection":"announcements","keywords":"cyber security, email security, News, Security, Updates","wordCount":985,"image":{"@type":"ImageObject","url":"https://media.mailhop.org/duocircle/images/2026/02/spf-record-576.jpg","caption":"cybersecurity news","width":900,"height":600},"speakable":{"@type":"SpeakableSpecification","cssSelector":[".answer-block","h1"]}}
```