cybersec

#TitleDate
1$285 Million Drift Hack Traced to Six-Month DPRK Social Engineering OperationApr 5, 8:10 pm
2Traffic violation scams switch to QR codes in new phishing textsApr 5, 8:10 pm
3New FortiClient EMS flaw exploited in attacks, emergency patch releasedApr 5, 7:10 pm
4Hackers exploit React2Shell in automated credential theft campaignApr 5, 3:10 pm
5Fortinet Patches Actively Exploited CVE-2026-35616 in FortiClient EMSApr 5, 6:10 am
636 Malicious npm Packages Exploited Redis, PostgreSQL to Deploy Persistent ImplantsApr 5, 6:10 am
7Axios npm hack used fake Teams error fix to hijack maintainer accountApr 4, 9:10 pm
8LinkedIn secretly scans for 6,000+ Chrome extensions, collects dataApr 4, 3:10 pm
9Device code phishing attacks surge 37x as new kits spread onlineApr 4, 3:10 pm
10LinkedIn secretely scans for 6,000+ Chrome extensions, collects dataApr 3, 9:10 pm
11Microsoft Details Cookie-Controlled PHP Web Shells Persisting via Cron on Linux ServersApr 3, 6:10 pm
12China-Linked TA416 Targets European Governments with PlugX and OAuth-Based PhishingApr 3, 6:10 pm
13Hims & Hers warns of data breach after Zendesk support ticket breachApr 3, 6:10 pm
14Die Linke German political party confirms data stolen by Qilin ransomwareApr 3, 5:10 pm
15Evolution of Ransomware: Multi-Extortion Ransomware AttacksApr 3, 3:10 pm
16TeamPCP Supply Chain Campaign: Update 006 - CERT-EU Confirms European Commission Cloud Breach, Sportradar Details Emerge, and Mandiant Quantifies Campaign at 1,000+ SaaS Environments, (Fri, Apr 3rd)Apr 3, 2:10 pm
17Why Third-Party Risk Is the Biggest Gap in Your Clients' Security PostureApr 3, 1:10 pm
18UNC1069 Social Engineering of Axios Maintainer Led to npm Supply Chain AttackApr 3, 1:10 pm
19Microsoft still working to fix Exchange Online mailbox access issuesApr 3, 12:10 pm
20Drift Loses $285 Million in Durable Nonce Social Engineering Attack Linked to DPRKApr 3, 10:10 am
21New SparkCat Variant in iOS, Android Apps Steals Crypto Wallet Recovery Phrase ImagesApr 3, 10:10 am
22Man admits to locking thousands of Windows devices in extortion plotApr 3, 9:10 am
23Microsoft now force upgrades unmanaged Windows 11 24H2 PCsApr 3, 8:10 am
24CERT-EU: European Commission hack exposes data of 30 EU entitiesApr 3, 7:10 am
25Drift loses $280 million North Korean hackers seize Security Council powersApr 3, 6:10 am
26ISC Stormcast For Friday, April 3rd, 2026 https://isc.sans.edu/podcastdetail/9878, (Fri, Apr 3rd)Apr 3, 2:10 am
27Hackers Exploit CVE-2025-55182 to Breach 766 Next.js Hosts, Steal CredentialsApr 2, 9:10 pm
28Claude Code leak used to push infostealer malware on GitHubApr 2, 9:10 pm
29Drift loses $280 million as hackers seize Security Council powersApr 2, 7:10 pm
30Cisco Patches 9.8 CVSS IMC and SSM Flaws Allowing Remote System CompromiseApr 2, 5:10 pm
31Residential proxies evaded IP reputation checks in 78% of 4B sessionsApr 2, 4:10 pm
32Attempts to Exploit Exposed "Vite" Installs (CVE-2025-30208), (Thu, Apr 2nd)Apr 2, 3:10 pm
33ThreatsDay Bulletin: Pre-Auth Chains, Android Rootkits, CloudTrail Evasion & 10 More StoriesApr 2, 2:10 pm
34Medtech giant Stryker fully operational after data-wiping attackApr 2, 2:10 pm
35New Progress ShareFile flaws can be chained in pre-auth RCE attacksApr 2, 2:10 pm
36Adversaries Exploit Vacant Homes to Intercept Mail in Hybrid CybercrimeApr 2, 2:10 pm
37The State of Trusted Open Source ReportApr 2, 12:10 pm
38Researchers Uncover Mining Operation Using ISO Lures to Spread RATs and Crypto MinersApr 2, 12:10 pm
39WhatsApp Alerts 200 Users After Fake iOS App Installed Spyware; Italian Firm Faces ActionApr 2, 11:10 am
40Critical Cisco IMC auth bypass gives attackers Admin accessApr 2, 11:10 am
41Microsoft links Classic Outlook issue to email delivery problemsApr 2, 10:10 am
42Over 14,000 F5 BIG-IP APM instances still exposed to RCE attacksApr 2, 9:10 am
43Apple Expands iOS 18.7.7 Update to More Devices to Block DarkSword ExploitApr 2, 8:10 am
44ISC Stormcast For Thursday, April 2nd, 2026 https://isc.sans.edu/podcastdetail/9876, (Thu, Apr 2nd)Apr 2, 2:10 am
45New CrystalRAT malware adds RAT, stealer and prankware featuresApr 2, 12:10 am
46Hackers exploit TrueConf zero-day to push malicious software updatesApr 1, 10:10 pm
47Apple expands iOS 18 updates to more iPhones to block DarkSword attacksApr 1, 10:10 pm
48New EvilTokens service fuels Microsoft device code phishing attacksApr 1, 8:10 pm
49CERT-UA Impersonation Campaign Spread AGEWHEEZE Malware to 1 Million EmailsApr 1, 6:10 pm
50'NoVoice' Android malware on Google Play infected 2.3 million devicesApr 1, 6:10 pm
51Routine Access Is Powering Modern Intrusions, a New Threat Report FindsApr 1, 3:10 pm
52New Chrome Zero-Day CVE-2026-5281 Under Active Exploitation — Patch ReleasedApr 1, 2:10 pm
53Microsoft Warns of WhatsApp-Delivered VBS Malware Hijacking Windows via UAC BypassApr 1, 2:10 pm
54Casbaneiro Phishing Targets Latin America and Europe Using Dynamic PDF LuresApr 1, 2:10 pm
55Block the Prompt, Not the Work: The End of "Doctor No"Apr 1, 2:10 pm
56TeamPCP Supply Chain Campaign: Update 005 - First Confirmed Victim Disclosure, Post-Compromise Cloud Enumeration Documented, and Axios Attribution Narrows, (Wed, Apr 1st)Apr 1, 2:10 pm
573 Reasons Attackers Are Using Your Trusted Tools Against You (And Why You Don’t See It Coming)Apr 1, 12:10 pm
58FBI warns against using Chinese mobile apps due to privacy risksApr 1, 12:10 pm
59Google fixes fourth Chrome zero-day exploited in attacks in 2026Apr 1, 11:10 am
60Malicious Script That Gets Rid of ADS, (Wed, Apr 1st)Apr 1, 11:10 am
61Google Attributes Axios npm Supply Chain Attack to North Korean Group UNC1069Apr 1, 8:10 am
62Claude Code Source Leaked via npm Packaging Error, Anthropic ConfirmsApr 1, 7:10 am
63Google Drive ransomware detection now on by default for paying usersApr 1, 7:10 am
64New Windows 11 emergency update fixes preview update install issuesApr 1, 6:10 am
65ISC Stormcast For Wednesday, April 1st, 2026 https://isc.sans.edu/podcastdetail/9874, (Wed, Apr 1st)Apr 1, 2:10 am
66Claude Code source code accidentally leaked in NPM packageApr 1, 1:10 am
67Google now allows you to change your @gmail.com addressApr 1, 12:10 am
68GIGABYTE Control Center vulnerable to arbitrary file write flawMar 31, 11:10 pm
69Proton launches new "Meet" privacy-focused conferencing platformMar 31, 11:10 pm
70Claude AI finds Vim, Emacs RCE bugs that trigger on file openMar 31, 10:10 pm
71Android Developer Verification Rollout Begins Ahead of September EnforcementMar 31, 8:10 pm
72Cisco source code stolen in Trivy-linked dev environment breachMar 31, 6:10 pm
73TrueConf Zero-Day Exploited in Attacks on Southeast Asian Government NetworksMar 31, 5:10 pm
74Vertex AI Vulnerability Exposes Google Cloud Data and Private ArtifactsMar 31, 2:10 pm
75Hackers compromise Axios npm package to drop cross-platform malwareMar 31, 2:10 pm
76How to Categorize AI Agents and Prioritize RiskMar 31, 2:10 pm
77The AI Arms Race – Why Unified Exposure Management Is Becoming a Boardroom PriorityMar 31, 1:10 pm
78Silver Fox Expands Asia Cyber Campaign with AtlasCross RAT and Fake DomainsMar 31, 1:10 pm
79Microsoft fixes Outlook Classic crashes caused by Teams Meeting add-inMar 31, 12:10 pm
80Hacker charged with stealing $53 million from Uranium crypto exchangeMar 31, 10:10 am
81Application Control Bypass for Data Exfiltration, (Tue, Mar 31st)Mar 31, 8:10 am
82Dutch Finance Ministry takes treasury banking portal offline after breachMar 31, 8:10 am
83Axios Supply Chain Attack Pushes Cross-Platform RAT via Compromised npm AccountMar 31, 7:10 am
84CISA orders feds to patch actively exploited Citrix flaw by ThursdayMar 31, 7:10 am
85ISC Stormcast For Tuesday, March 31st, 2026 https://isc.sans.edu/podcastdetail/9872, (Tue, Mar 31st)Mar 31, 2:10 am
86Healthcare tech firm CareCloud says hackers stole patient dataMar 30, 10:10 pm
87New RoadK1ll WebSocket implant used to pivot on breached networksMar 30, 9:10 pm
88OpenAI Patches ChatGPT Data Exfiltration Flaw and Codex GitHub Token VulnerabilityMar 30, 8:10 pm
89Critical Citrix NetScaler memory flaw actively exploited in attacksMar 30, 7:10 pm
90DeepLoad Malware Uses ClickFix and WMI Persistence to Steal Browser CredentialsMar 30, 5:10 pm
913 SOC Process Fixes That Unlock Tier 1 ProductivityMar 30, 3:10 pm
92⚡ Weekly Recap: Telecom Sleeper Cells, LLM Jailbreaks, Apple Forces U.K. Age Checks and MoreMar 30, 3:10 pm
93How to Evaluate AI SOC Agents: 7 Questions Gartner Says You Should Be AskingMar 30, 3:10 pm
94Apple adds macOS Terminal warning to block ClickFix attacksMar 30, 3:10 pm
95TeamPCP Supply Chain Campaign: Update 004 - Databricks Investigating Alleged Compromise, TeamPCP Runs Dual Ransomware Operations, and AstraZeneca Data Released, (Mon, Mar 30th)Mar 30, 3:10 pm
96The State of Secrets Sprawl 2026: 9 Takeaways for CISOsMar 30, 12:10 pm
97Hackers now exploit critical F5 BIG-IP flaw in attacks, patch nowMar 30, 11:10 am
98Microsoft pulls KB5079391 Windows update over install issuesMar 30, 10:10 am
99Russian CTRL Toolkit Delivered via Malicious LNK Files Hijacks RDP via FRP TunnelsMar 30, 10:10 am
100Three China-Linked Clusters Target Southeast Asian Government in 2025 Cyber CampaignMar 30, 8:10 am
101Critical Fortinet Forticlient EMS flaw now exploited in attacksMar 30, 8:10 am
102European Commission confirms data breach after Europa.eu hackMar 30, 7:10 am
103ISC Stormcast For Monday, March 30th, 2026 https://isc.sans.edu/podcastdetail/9870, (Mon, Mar 30th)Mar 30, 2:10 am
104DShield (Cowrie) Honeypot Stats and When Sessions Disconnect, (Mon, Mar 30th)Mar 30, 12:10 am
105FBI confirms hack of Director Patel's personal email inboxMar 29, 9:10 pm
106File read flaw in Smart Slider plugin impacts 500K WordPress sitesMar 29, 3:10 pm
107Iran-Linked Hackers Breach FBI Director’s Personal Email, Hit Stryker With Wiper AttackMar 28, 5:10 pm
108TeamPCP Supply Chain Campaign: Update 003 - Operational Tempo Shift as Campaign Enters Monetization Phase With No New Compromises in 48 Hours, (Sat, Mar 28th)Mar 28, 4:10 pm
109New Infinity Stealer malware grabs macOS data via ClickFix luresMar 28, 3:10 pm
110Citrix NetScaler Under Active Recon for CVE-2026-3055 (CVSS 9.3) Memory Overread BugMar 28, 10:10 am
111TA446 Deploys DarkSword iOS Exploit Kit in Targeted Spear-Phishing CampaignMar 28, 9:10 am
112CISA Adds CVE-2025-53521 to KEV After Active F5 BIG-IP APM ExploitationMar 28, 8:10 am
113TA446 Deploys Leaked DarkSword iOS Exploit Kit in Targeted Spear-Phishing CampaignMar 28, 8:10 am
114Backdoored Telnyx PyPI package pushes malware hidden in WAV audioMar 27, 10:10 pm
115Apple Sends Lock Screen Alerts to Outdated iPhones Over Active Web-Based ExploitsMar 27, 7:10 pm
116TeamPCP Pushes Malicious Telnyx Versions to PyPI, Hides Stealer in WAV FilesMar 27, 6:10 pm
117European Commission investigating breach after Amazon cloud account hackMar 27, 5:10 pm
118Fake VS Code alerts on GitHub spread malware to developersMar 27, 5:10 pm
119Open VSX Bug Let Malicious VS Code Extensions Bypass Pre-Publish Security ChecksMar 27, 3:10 pm
120TeamPCP Supply Chain Campaign: Update 002 - Telnyx PyPI Compromise, Vect Ransomware Mass Affiliate Program, and First Named Victim Claim, (Fri, Mar 27th)Mar 27, 3:10 pm
121Agentic GRC: Teams Get the Tech. The Mindset Shift Is What's Missing.Mar 27, 2:10 pm
122Bearlyfy Hits Russian Firms with Custom GenieLocker RansomwareMar 27, 1:10 pm
123AitM Phishing Targets TikTok Business Accounts Using Cloudflare Turnstile EvasionMar 27, 1:10 pm
124European Commission investigating breach after Amazon cloud hackMar 27, 1:10 pm
125We Are At WarMar 27, 12:10 pm
126Anti-piracy coalition takes down AnimePlay app with 5 million usersMar 27, 11:10 am
127Windows 11 KB5079391 update rolls out Smart App Control improvementsMar 27, 10:10 am
128Bearlyfy Hits 70+ Russian Firms with Custom GenieLocker RansomwareMar 27, 10:10 am
129LangChain, LangGraph Flaws Expose Files, Secrets, Databases in Widely Used AI FrameworksMar 27, 9:10 am
130Dutch Police discloses security breach after phishing attackMar 27, 9:10 am
131ISC Stormcast For Friday, March 27th, 2026 https://isc.sans.edu/podcastdetail/9868, (Fri, Mar 27th)Mar 27, 2:10 am
132Ajax football club hack exposed fan data, enabled ticket hijackMar 26, 9:10 pm
133CISA: New Langflow flaw actively exploited to hijack AI workflowsMar 26, 8:10 pm
134China-Linked Red Menshen Uses Stealthy BPFDoor Implants to Spy via Telecom NetworksMar 26, 6:10 pm
135TeamPCP Supply Chain Campaign: Update 001 - Checkmarx Scope Wider Than Reported, CISA KEV Entry, and Detection Tools Available, (Thu, Mar 26th)Mar 26, 6:10 pm
136UK sanctions Xinbi marketplace linked to Asian scam centersMar 26, 4:10 pm
137ThreatsDay Bulletin: PQC Push, AI Vuln Hunting, Pirated Traps, Phishing Kits & 20 More StoriesMar 26, 2:10 pm
138Masters of Imitation: How Hackers and Art Forgers Perfect the Art of DeceptionMar 26, 2:10 pm
139Coruna iOS exploit framework linked to Triangulation attacksMar 26, 2:10 pm
140Claude Extension Flaw Enabled Zero-Click XSS Prompt Injection via Any WebsiteMar 26, 2:10 pm
141Inside a Modern Fraud Attack: From Bot Signups to Account TakeoversMar 26, 2:10 pm
142WhatsApp rolls out more AI features, iOS multi-account supportMar 26, 2:10 pm
143TikTok for Business accounts targeted in new phishing campaignMar 26, 2:10 pm
144Russia arrests suspected owner of LeakBase cybercrime forumMar 26, 1:10 pm
145[Webinar] Stop Guessing. Learn to Validate Your Defenses Against Real AttacksMar 26, 12:10 pm
146Coruna iOS Kit Reuses 2023 Triangulation Exploit Code in New Mass AttacksMar 26, 12:10 pm
147Suspected RedLine infostealer malware admin extradited to USMar 26, 12:10 pm
148WebRTC Skimmer Bypasses CSP to Steal Payment Data from E-Commerce SitesMar 26, 9:10 am
149ISC Stormcast For Thursday, March 26th, 2026 https://isc.sans.edu/podcastdetail/9866, (Thu, Mar 26th)Mar 26, 2:10 am
150GitHub adds AI-powered bug detection to expand security coverageMar 26, 12:10 am
151Apple Patches (almost) everything again. March 2026 edition., (Wed, Mar 25th)Mar 25, 10:10 pm
152PolyShell attacks target 56% of all vulnerable Magento storesMar 25, 10:10 pm
153Bubble AI app builder abused to steal Microsoft account credentialsMar 25, 8:10 pm
154New Torg Grabber infostealer malware targets 728 crypto walletsMar 25, 7:10 pm
155LeakBase Admin Arrested in Russia Over Massive Stolen Credential MarketplaceMar 25, 6:10 pm
156Citrix urges admins to patch NetScaler flaws as soon as possibleMar 25, 4:10 pm
157GlassWorm Malware Uses Solana Dead Drops to Deliver RAT and Steal Browser, Crypto DataMar 25, 3:10 pm
158Paid AI Accounts Are Now a Hot Underground CommodityMar 25, 2:10 pm
159Device Code Phishing Hits 340+ Microsoft 365 Orgs Across Five Countries via OAuth AbuseMar 25, 1:10 pm
160Russian Hacker Sentenced to 2 Years for TA551 Botnet-Driven Ransomware AttacksMar 25, 1:10 pm
161The Kill Chain Is Obsolete When Your AI Agent Is the ThreatMar 25, 1:10 pm
162Kali Linux 2026.1 released with 8 new tools, new BackTrack modeMar 25, 1:10 pm
163TP-Link warns users to patch critical router auth bypass flawMar 25, 12:10 pm
164Manager of botnet used in ransomware attacks gets 2 years in prisonMar 25, 9:10 am
165FCC Bans New Foreign-Made Routers Over Supply Chain and Cyber Risk ConcernsMar 25, 8:10 am
166TeamPCP Backdoors LiteLLM Versions 1.82.7–1.82.8 via Trivy CI/CD CompromiseMar 25, 7:10 am
167ISC Stormcast For Wednesday, March 25th, 2026 https://isc.sans.edu/podcastdetail/9864, (Wed, Mar 25th)Mar 25, 2:10 am
168SmartApeSG campaign pushes Remcos RAT, NetSupport RAT, StealC, and Sectop RAT (ArechClient2), (Wed, Mar 25th)Mar 25, 1:10 am
169Popular LiteLLM PyPI package backdoored to steal credentials, auth tokensMar 25, 12:10 am
170Popular LiteLLM PyPI package compromised in TeamPCP supply chain attackMar 24, 11:10 pm
171PTC warns of imminent threat from critical Windchill, FlexPLM RCE bugMar 24, 11:10 pm
172FCC bans new routers made outside the USA over security risksMar 24, 9:10 pm
173TeamPCP Backdoors LiteLLM Versions 1.82.7–1.82.8 Likely via Trivy CI/CD CompromiseMar 24, 8:10 pm
174Tax Search Ads Deliver ScreenConnect Malware Using Huawei Driver to Disable EDRMar 24, 6:10 pm
175Firefox now has a free built-in VPN with 50GB monthly data limitMar 24, 6:10 pm
176Hackers Use Fake Resumes to Steal Enterprise Credentials and Deploy Crypto MinerMar 24, 5:10 pm
177Microsoft fixes bug causing Classic Outlook sync issues with GmailMar 24, 4:10 pm
178Yanluowang ransomware access broker gets 81 months in prisonMar 24, 2:10 pm
179Infinite Campus warns of breach after ShinyHunters claims data theftMar 24, 2:10 pm
180Detecting IP KVMs, (Tue, Mar 24th)Mar 24, 2:10 pm
181HackerOne discloses employee data breach after Navia hackMar 24, 2:10 pm
182Zero Trust: Bridging the Gap Between Authentication and TrustMar 24, 2:10 pm
1835 Learnings from the First-Ever Gartner Market Guide for Guardian AgentsMar 24, 12:10 pm
184Ghost Campaign Uses 7 npm Packages to Steal Crypto Wallets and CredentialsMar 24, 12:10 pm
185Dutch Ministry of Finance discloses breach affecting employeesMar 24, 12:10 pm
186TeamPCP Hacks Checkmarx GitHub Actions Using Stolen CI CredentialsMar 24, 11:10 am
187The Hidden Cost of Cybersecurity Specialization: Losing Foundational SkillsMar 24, 11:10 am
188Citrix Urges Patching Critical NetScaler Flaw Allowing Unauthenticated Data LeaksMar 24, 8:10 am
189U.S. Sentences Russian Hacker to 6.75 Years for Role in $9M Ransomware DamageMar 24, 8:10 am
190ISC Stormcast For Tuesday, March 24th, 2026 https://isc.sans.edu/podcastdetail/9862, (Tue, Mar 24th)Mar 24, 2:10 am
191OpenAI rolls out ChatGPT Library to store your personal filesMar 24, 12:10 am
192Mazda discloses security breach exposing employee and partner dataMar 23, 11:10 pm
193Tycoon2FA phishing platform returns after recent police disruptionMar 23, 10:10 pm
194Tool updates: lots of security and logic fixes, (Mon, Mar 23rd)Mar 23, 9:10 pm
195North Korean Hackers Abuse VS Code Auto-Run Tasks to Deploy StoatWaffle MalwareMar 23, 8:10 pm
196Crunchyroll probes breach after hacker claims to steal 6.8M users' dataMar 23, 8:10 pm
197TeamPCP deploys Iran-targeted wiper in Kubernetes attacksMar 23, 8:10 pm
198Trivy supply-chain attack spreads to Docker, GitHub reposMar 23, 6:10 pm
199‘CanisterWorm’ Springs Wiper Attack Targeting IranMar 23, 4:10 pm
200Varonis Atlas: Securing AI and the Data That Powers ItMar 23, 3:10 pm
201We Found Eight Attack Vectors Inside AWS Bedrock. Here's What Attackers Can Do with ThemMar 23, 2:10 pm
202⚡ Weekly Recap: CI/CD Backdoor, FBI Buys Location Data, WhatsApp Ditches Numbers & MoreMar 23, 2:10 pm
203Microsoft Exchange Online service change causes email access issuesMar 23, 1:10 pm
204Microsoft Warns IRS Phishing Hits 29,000 Users, Deploys RMM MalwareMar 23, 12:10 pm
205FBI warns of Handala hackers using Telegram in malware attacksMar 23, 10:10 am
206Trivy Hack Spreads Infostealer via Docker, Triggers Worm and Kubernetes WiperMar 23, 9:10 am
207CISA orders feds to patch DarkSword iOS flaws exploited attacksMar 23, 9:10 am
208New KB5085516 emergency update fixes Microsoft account sign-inMar 23, 8:10 am
209Hackers Exploit CVE-2025-32975 (CVSS 10.0) to Hijack Unpatched Quest KACE SMA SystemsMar 23, 7:10 am
210ISC Stormcast For Monday, March 23rd, 2026 https://isc.sans.edu/podcastdetail/9860, (Mon, Mar 23rd)Mar 23, 2:10 am
211VoidStealer malware steals Chrome master key via debugger trickMar 22, 3:10 pm
212Trivy vulnerability scanner breach pushed infostealer via GitHub ActionsMar 21, 6:10 pm
213Microsoft Azure Monitor alerts abused for callback phishing attacksMar 21, 5:10 pm
214Microsoft Azure Monitor alerts abused in callback phishing campaignsMar 21, 3:10 pm
215Google adds ‘Advanced Flow’ for safe APK sideloading on AndroidMar 21, 3:10 pm
216FBI Warns Russian Hackers Target Signal, WhatsApp in Mass Phishing AttacksMar 21, 2:10 pm
217Oracle Patches Critical CVE-2026-21992 Enabling Unauthenticated RCE in Identity ManagerMar 21, 11:10 am
218CISA Flags Apple, Craft CMS, Laravel Bugs in KEV, Orders Patching by April 3, 2026Mar 21, 9:10 am
219Trivy Supply Chain Attack Triggers Self-Spreading CanisterWorm Across 47 npm PackagesMar 21, 8:10 am
220FBI links Signal phishing attacks to Russian intelligence servicesMar 20, 9:10 pm
221Trivy Security Scanner GitHub Actions Breached, 75 Tags Hijacked to Steal CI/CD SecretsMar 20, 7:10 pm
222Oracle pushes emergency fix for critical Identity Manager RCE flawMar 20, 7:10 pm
223Police take down 373,000 fake CSAM sites in Operation AliceMar 20, 6:10 pm
224Critical Langflow Flaw CVE-2026-33017 Triggers Attacks within 20 Hours of DisclosureMar 20, 5:10 pm
225CISA orders feds to patch max-severity Cisco flaw by SundayMar 20, 3:10 pm
226How CISOs Can Survive the Era of Geopolitical CyberattacksMar 20, 2:10 pm
227Magento PolyShell Flaw Enables Unauthenticated Uploads, RCE and Account TakeoverMar 20, 1:10 pm
228Google Adds 24-Hour Wait for Unverified App Sideloading to Reduce Malware and ScamsMar 20, 12:10 pm
229The Importance of Behavioral Analytics in AI-Enabled Cyber AttacksMar 20, 11:10 am
230Musician admits to $10M streaming royalty fraud using AI botsMar 20, 10:10 am
231GSocket Backdoor Delivered Through Bash Script, (Fri, Mar 20th)Mar 20, 9:10 am
232Microsoft: March Windows updates break Teams, OneDrive sign-insMar 20, 8:10 am
233International joint action disrupts world’s largest DDoS botnetsMar 20, 8:10 am
234DoJ Disrupts 3 Million-Device IoT Botnets Behind Record 31.4 Tbps Global DDoS AttacksMar 20, 7:10 am
235Ex-data analyst stole company data in $2.5M extortion schemeMar 20, 7:10 am
23654 EDR Killers Use BYOVD to Exploit 35 Signed Vulnerable Drivers and Disable SecurityMar 20, 6:10 am
237Apple Warns Older iPhones Vulnerable to Coruna, DarkSword Exploit Kit AttacksMar 20, 6:10 am
238ISC Stormcast For Friday, March 20th, 2026 https://isc.sans.edu/podcastdetail/9858, (Fri, Mar 20th)Mar 20, 2:10 am
239Feds Disrupt IoT Botnets Behind Huge DDoS AttacksMar 20, 1:10 am
240Speagle Malware Hijacks Cobra DocGuard to Steal Data via Compromised ServersMar 19, 9:10 pm
241Navia discloses data breach impacting 2.7 million peopleMar 19, 9:10 pm
24254 EDR Killers Use BYOVD to Exploit 34 Signed Vulnerable Drivers and Disable SecurityMar 19, 8:10 pm
243New ‘PolyShell’ flaw allows unauthenticated RCE on Magento e-storesMar 19, 8:10 pm
244FBI seizes Handala data leak site after Stryker cyberattackMar 19, 5:10 pm
245Bitrefill blames North Korean Lazarus group for cyberattackMar 19, 5:10 pm
246ThreatsDay Bulletin: FortiGate RaaS, Citrix Exploits, MCP Abuse, LiveChat Phish & MoreMar 19, 3:10 pm
247Russian hackers exploit Zimbra flaw in Ukrainian govt attacksMar 19, 3:10 pm
248New Perseus Android Banking Malware Monitors Notes Apps to Extract Sensitive DataMar 19, 2:10 pm
2497 Ways to Prevent Privilege Escalation via Password ResetsMar 19, 2:10 pm
250Max severity Ubiquiti UniFi flaw may allow account takeoverMar 19, 1:10 pm
251New ‘Perseus’ Android malware checks user notes for secretsMar 19, 11:10 am
252How Ceros Gives Security Teams Visibility and Control in Claude CodeMar 19, 11:10 am
253CISA urges US orgs to secure Microsoft Intune systems after Stryker breachMar 19, 11:10 am
254DarkSword iOS Exploit Kit Uses 6 Flaws, 3 Zero-Days for Full Device TakeoverMar 19, 10:10 am
255Critical Microsoft SharePoint flaw now exploited in attacksMar 19, 10:10 am
256CISA Warns of Zimbra, SharePoint Flaw Exploits; Cisco Zero-Day Hit in Ransomware AttacksMar 19, 7:10 am
257ISC Stormcast For Thursday, March 19th, 2026 https://isc.sans.edu/podcastdetail/9856, (Thu, Mar 19th)Mar 19, 2:10 am
258Interesting Message Stored in Cowrie Logs, (Wed, Mar 18th)Mar 19, 1:10 am
259Aura confirms data breach exposing 900,000 marketing contactsMar 18, 11:10 pm
260CISA orders feds to patch Zimbra XSS flaw exploited in attacksMar 18, 8:10 pm
261ConnectWise patches new flaw allowing ScreenConnect hijackingMar 18, 7:10 pm
262OFAC Sanctions DPRK IT Worker Network Funding WMD Programs Through Fake Remote JobsMar 18, 6:10 pm
263Interlock Ransomware Exploits Cisco FMC Zero-Day CVE-2026-20131 for Root AccessMar 18, 5:10 pm
264Ransomware gang exploits Cisco flaw in zero-day attacks since JanuaryMar 18, 5:10 pm
265Marquis: Ransomware gang stole data of 672K people in cyberattackMar 18, 4:10 pm
266Scans for "adminer", (Wed, Mar 18th)Mar 18, 2:10 pm
267Nordstrom's email system abused to send crypto scams to customersMar 18, 2:10 pm
268New “Darksword” iOS exploit used in infostealer attack on iPhonesMar 18, 2:10 pm
269The Refund Fraud Economy: Exploiting Major Retailers and Payment PlatformsMar 18, 2:10 pm
2709 Critical IP KVM Flaws Enable Unauthenticated Root Access Across Four VendorsMar 18, 1:10 pm
271Claude Code Security and Magecart: Getting the Threat Model RightMar 18, 1:10 pm
272Critical Unpatched Telnetd Flaw (CVE-2026-32746) Enables Unauthenticated Root RCEMar 18, 1:10 pm
273Product Walkthrough: How Mesh CSMA Reveals and Breaks Attack Paths to Crown JewelsMar 18, 12:10 pm
274ISC Stormcast For Wednesday, March 18th, 2026 https://isc.sans.edu/podcastdetail/9854, (Wed, Mar 18th)Mar 18, 11:10 am
275Ubuntu CVE-2026-3888 Bug Lets Attackers Gain Root via systemd Cleanup Timing ExploitMar 18, 9:10 am
276Apple Fixes WebKit Vulnerability Enabling Same-Origin Policy Bypass on iOS and macOSMar 18, 7:10 am
277Critical Unpatched Telnetd Flaw (CVE-2026-32746) Enables Unauthenticated Root RCE via Port 23Mar 18, 6:10 am
278Apple pushes first Background Security Improvements update to fix WebKit flawMar 18, 1:10 am
279GlassWorm malware hits 400+ code repos on GitHub, npm, VSCode, OpenVSXMar 17, 10:10 pm
280Europe sanctions Chinese and Iranian firms for cyberattacksMar 17, 7:10 pm
281AI Flaws in Amazon Bedrock, LangSmith, and SGLang Enable Data Exfiltration and RCEMar 17, 6:10 pm
282LeakNet Ransomware Uses ClickFix via Hacked Sites, Deploys Deno In-Memory LoaderMar 17, 3:10 pm
283Microsoft stops force-installing the Microsoft 365 Copilot appMar 17, 2:10 pm
284New font-rendering trick hides malicious commands from AI toolsMar 17, 2:10 pm
285Top 5 Things CISOs Need to Do Today to Secure AI AgentsMar 17, 2:10 pm
286LeakNet ransomware uses ClickFix, Deno runtime in stealthy attacksMar 17, 1:10 pm
287AI is Everywhere, But CISOs are Still Securing It with Yesterday's Skills and Tools, Study FindsMar 17, 12:10 pm
288IPv4 Mapped IPv6 Addresses, (Tue, Mar 17th)Mar 17, 12:10 pm
289Microsoft shares fix for Windows C: drive access issues on Samsung PCsMar 17, 12:10 pm
290LeakNet ransomware uses ClickFix and Deno runtime for stealthy attacksMar 17, 12:10 pm
291Konni Deploys EndRAT Through Phishing, Uses KakaoTalk to Propagate MalwareMar 17, 11:10 am
292Microsoft: Enabling Teams Meeting add-in breaks Outlook ClassicMar 17, 11:10 am
293New Windows 11 hotpatch fixes Bluetooth device visibility issueMar 17, 11:10 am
294CISA Flags Actively Exploited Wing FTP Vulnerability Leaking Server PathsMar 17, 6:10 am
295ISC Stormcast For Tuesday, March 17th, 2026 https://isc.sans.edu/podcastdetail/9852, (Tue, Mar 17th)Mar 17, 2:10 am
296Stryker attack wiped tens of thousands of devices, no malware neededMar 16, 8:10 pm
297GlassWorm Attack Uses Stolen GitHub Tokens to Force-Push Malware Into Python ReposMar 16, 8:10 pm
298CISA flags Wing FTP Server flaw as actively exploited in attacksMar 16, 6:10 pm
299UK’s Companies House confirms security flaw exposed business dataMar 16, 5:10 pm
300⚡ Weekly Recap: Chrome 0-Days, Router Botnets, AWS Breach, Rogue AI Agents & MoreMar 16, 4:10 pm
301Microsoft Exchange Online outage blocks access to mailboxesMar 16, 4:10 pm
302Microsoft pulls Samsung app blocking Windows C: drive from StoreMar 16, 2:10 pm
303/proxy/ URL scans with IP addresses, (Mon, Mar 16th)Mar 16, 2:10 pm
304Shadow AI is everywhere. Here’s how to find and secure it.Mar 16, 2:10 pm
305ClickFix Campaigns Spread MacSync macOS Infostealer via Fake AI Tool InstallersMar 16, 1:10 pm
306Why Security Validation Is Becoming AgenticMar 16, 1:10 pm
307DRILLAPP Backdoor Targets Ukraine, Abuses Microsoft Edge Debugging for Stealth EspionageMar 16, 10:10 am
308Android 17 Blocks Non-Accessibility Apps from Accessibility API to Prevent Malware AbuseMar 16, 6:10 am
309ISC Stormcast For Monday, March 16th, 2026 https://isc.sans.edu/podcastdetail/9850, (Mon, Mar 16th)Mar 16, 2:10 am
310OpenAI says ChatGPT ads are not rolling out globally for nowMar 16, 12:10 am
311Betterleaks, a new open-source secrets scanner to replace GitleaksMar 15, 3:10 pm
312Microsoft releases Windows 11 OOB hotpatch to fix RRAS RCE flawMar 14, 10:10 pm
313OpenClaw AI Agent Flaws Could Enable Prompt Injection and Data ExfiltrationMar 14, 6:10 pm
314AppsFlyer Web SDK hijacked to spread crypto-stealing JavaScript codeMar 14, 3:10 pm
315GlassWorm Supply-Chain Attack Abuses 72 Open VSX Extensions to Target DevelopersMar 14, 2:10 pm
316SmartApeSG campaign uses ClickFix page to push Remcos RAT, (Sat, Mar 14th)Mar 14, 2:10 am
317Microsoft: Windows 11 users can't access C: drive on some Samsung PCsMar 13, 11:10 pm
318FBI seeks victims of Steam games used to spread malwareMar 13, 9:10 pm
319Fake enterprise VPN sites used to steal company credentialsMar 13, 6:10 pm
320Meta to Shut Down Instagram End-to-End Encrypted Chat Support Starting May 2026Mar 13, 6:10 pm
321Poland's nuclear research centre targeted by cyberattackMar 13, 6:10 pm
322Chinese Hackers Target Southeast Asian Militaries with AppleChris and MemFun MalwareMar 13, 6:10 pm
323Microsoft investigates classic Outlook sync and connection issuesMar 13, 5:10 pm
324INTERPOL Dismantles 45,000 Malicious IPs, Arrests 94 in Global CybercrimeMar 13, 4:10 pm
325Storm-2561 Spreads Trojan VPN Clients via SEO Poisoning to Steal CredentialsMar 13, 3:10 pm
326From VMware to what’s next: Protecting data during hypervisor migrationMar 13, 3:10 pm
327Fake enterprise VPN downloads used to steal company credentialsMar 13, 2:10 pm
328Investigating a New Click-Fix VariantMar 13, 2:10 pm
329Police sinkholes 45,000 IP addresses in cybercrime crackdownMar 13, 2:10 pm
330Nine CrackArmor Flaws in Linux AppArmor Enable Root Escalation, Bypass Container IsolationMar 13, 10:10 am
331Google Fixes Two Chrome Zero-Days Exploited in the Wild Affecting Skia and V8Mar 13, 10:10 am
332Starbucks discloses data breach affecting hundreds of employeesMar 13, 9:10 am
333A React-based phishing page with credential exfiltration via EmailJS, (Fri, Mar 13th)Mar 13, 8:10 am
334Authorities Disrupt SocksEscort Proxy Botnet Exploiting 369,000 IPs Across 163 CountriesMar 13, 7:10 am
335Google fixes two new Chrome zero-days exploited in attacksMar 13, 7:10 am
336Veeam Patches 7 Critical Backup & Replication Flaws Allowing Remote Code ExecutionMar 13, 6:10 am
337ISC Stormcast For Friday, March 13th, 2026 https://isc.sans.edu/podcastdetail/9848, (Fri, Mar 13th)Mar 13, 2:10 am
338Canadian retail giant Loblaw notifies customers of data breachMar 12, 10:10 pm
339England Hockey investigating ransomware data breachMar 12, 9:10 pm
340AI-generated Slopoly malware used in Interlock ransomware attackMar 12, 8:10 pm
341Hive0163 Uses AI-Assisted Slopoly Malware for Persistent Access in Ransomware AttacksMar 12, 6:10 pm
342Rust-Based VENON Malware Targets 33 Brazilian Banks with Credential-Stealing OverlaysMar 12, 6:10 pm
343US disrupts SocksEscort proxy network powered by Linux malwareMar 12, 5:10 pm
344Veeam warns of critical flaws exposing backup servers to RCE attacksMar 12, 5:10 pm
345Google paid $17.1 million for vulnerability reports in 2025Mar 12, 4:10 pm
346ThreatsDay Bulletin: OAuth Trap, EDR Killer, Signal Phishing, Zombie ZIP, AI Platform Hack & MoreMar 12, 3:10 pm
347How to Scale Phishing Detection in Your SOC: 3 Steps for CISOsMar 12, 3:10 pm
348Going the Extra Mile: Travel Rewards Turn into Underground Currency.Mar 12, 3:10 pm
349Telus Digital confirms breach after hacker claims 1 petabyte data theftMar 12, 3:10 pm
350Apple patches older iPhones and iPads against Coruna exploitsMar 12, 2:10 pm
351Attackers Don't Just Send Phishing Emails. They Weaponize Your SOC's WorkloadMar 12, 12:10 pm
352US charges another ransomware negotiator linked to BlackCat attacksMar 12, 12:10 pm
353Apple Issues Security Updates for Older iOS Devices Targeted by Coruna WebKit ExploitMar 12, 11:10 am
354Six Android Malware Families Target Pix Payments, Banking Apps, and Crypto WalletsMar 12, 9:10 am
355CISA Flags Actively Exploited n8n RCE Bug as 24,700 Instances Remain ExposedMar 12, 6:10 am
356When your IoT Device Logs in as Admin, It?s too Late! [Guest Diary], (Wed, Mar 11th)Mar 12, 2:10 am
357ISC Stormcast For Thursday, March 12th, 2026 https://isc.sans.edu/podcastdetail/9846, (Thu, Mar 12th)Mar 12, 2:10 am
358SQLi flaw in Elementor Ally plugin impacts 250k+ WordPress sitesMar 11, 8:10 pm
359WhatsApp introduces parent-managed accounts for pre-teensMar 11, 8:10 pm
360CISA orders feds to patch n8n RCE flaw exploited in attacksMar 11, 7:10 pm
361Researchers Trick Perplexity's Comet AI Browser Into Phishing Scam in Under Four MinutesMar 11, 6:10 pm
362Medtech giant Stryker offline after Iran-linked wiper malware attackMar 11, 6:10 pm
363Iran-Backed Hackers Claim Wiper Attack on Medtech Firm StrykerMar 11, 5:10 pm
364New PhantomRaven NPM attack wave steals dev data via 88 packagesMar 11, 5:10 pm
365Critical n8n Flaws Allow Remote Code Execution and Exposure of Stored CredentialsMar 11, 4:10 pm
366Meta Disables 150K Accounts Linked to Southeast Asia Scam Centers in Global CrackdownMar 11, 2:10 pm
367Meta adds new WhatsApp, Facebook, and Messenger anti-scam toolsMar 11, 2:10 pm
368What Boards Must Demand in the Age of AI-Automated ExploitationMar 11, 1:10 pm
369Dozens of Vendors Patch Security Flaws Across Enterprise Software and Network DevicesMar 11, 1:10 pm
370Microsoft Patches 84 Flaws in March Patch Tuesday, Including Two Public Zero-DaysMar 11, 10:10 am
371Analyzing "Zombie Zip" Files (CVE-2026-0866), (Wed, Mar 11th)Mar 11, 10:10 am
372UNC6426 Exploits nx npm Supply-Chain Attack to Gain AWS Admin Access in 72 HoursMar 11, 9:10 am
373Five Malicious Rust Crates and AI Bot Exploit CI/CD Pipelines to Steal Developer SecretsMar 11, 6:10 am
374Microsoft Patch Tuesday, March 2026 EditionMar 11, 2:10 am
375ISC Stormcast For Wednesday, March 11th, 2026 https://isc.sans.edu/podcastdetail/9844, (Wed, Mar 11th)Mar 11, 2:10 am
376New ‘BlackSanta’ EDR killer spotted targeting HR departmentsMar 10, 11:10 pm
377New BeatBanker Android malware poses as Starlink app to hijack devicesMar 10, 10:10 pm
378New 'Zombie ZIP' technique lets malware slip past security toolsMar 10, 8:10 pm
379Microsoft releases Windows 10 KB5078885 extended security updateMar 10, 7:10 pm
380FortiGate Devices Exploited to Breach Networks and Steal Service Account CredentialsMar 10, 6:10 pm
381HPE warns of critical AOS-CX flaw allowing admin password resetsMar 10, 6:10 pm
382Microsoft Patch Tuesday March 2026, (Tue, Mar 10th)Mar 10, 6:10 pm
383Windows 11 KB5079473 & KB5078883 cumulative updates releasedMar 10, 6:10 pm
384Microsoft March 2026 Patch Tuesday fixes 2 zero-days, 79 flawsMar 10, 6:10 pm
385KadNap Malware Infects 14,000+ Edge Devices to Power Stealth Proxy BotnetMar 10, 5:10 pm
386Microsoft brings phishing-resistant Windows sign-ins via Entra passkeysMar 10, 4:10 pm
387The New Turing Test: How Threats Use Geometry to Prove 'Humanness'Mar 10, 3:10 pm
388New KadNap botnet hijacks ASUS routers to fuel cybercrime proxy networkMar 10, 3:10 pm
389New "LeakyLooker" Flaws in Google Looker Studio Could Enable Cross-Tenant SQL QueriesMar 10, 2:10 pm
390APT28 Uses BEARDSHELL and COVENANT Malware to Spy on Ukrainian MilitaryMar 10, 12:10 pm
391The Zero-Day Scramble is Avoidable: A Guide to Attack Surface ReductionMar 10, 12:10 pm
392CISA: Recently patched Ivanti EPM flaw now actively exploitedMar 10, 12:10 pm
393How to Stop AI Data Leaks: A Webinar Guide to Auditing Modern Agentic WorkflowsMar 10, 12:10 pm
394Microsoft to enable Windows hotpatch security updates by defaultMar 10, 11:10 am
395APT28 hackers deploy customized variant of Covenant open-source toolMar 10, 10:10 am
396Threat Actors Mass-Scan Salesforce Experience Cloud via Modified AuraInspector ToolMar 10, 9:10 am
397CISA Flags SolarWinds, Ivanti, and Workspace One Vulnerabilities as Actively ExploitedMar 10, 8:10 am
398ISC Stormcast For Tuesday, March 10th, 2026 https://isc.sans.edu/podcastdetail/9842, (Tue, Mar 10th)Mar 10, 2:10 am
399Microsoft Teams phishing targets employees with A0Backdoor malwareMar 10, 12:10 am
400Microsoft Teams phishing targets employees with backdoorsMar 9, 11:10 pm
401Dutch govt warns of Signal, WhatsApp account hijacking attacksMar 9, 10:10 pm
402Google: Cloud attacks exploit flaws more than weak credentialsMar 9, 10:10 pm
403Malicious npm Package Posing as OpenClaw Installer Deploys RAT, Steals macOS CredentialsMar 9, 7:10 pm
404Ericsson US discloses data breach after service provider hackMar 9, 7:10 pm
405ShinyHunters claims ongoing Salesforce Aura data theft attacksMar 9, 6:10 pm
406Microsoft Teams will tag third-party bots trying to join meetingsMar 9, 6:10 pm
407UNC4899 Breached Crypto Firm After Developer AirDropped Trojanized File to Work DeviceMar 9, 4:10 pm
408FBI warns of phishing attacks impersonating US city, county officialsMar 9, 4:10 pm
409⚡ Weekly Recap: Qualcomm 0-Day, iOS Exploit Chains, AirSnitch Attack & Vibe-Coded MalwareMar 9, 3:10 pm
410Microsoft still working to fix Windows Explorer white flashesMar 9, 3:10 pm
411Why Password Audits Miss the Accounts Attackers Actually WantMar 9, 3:10 pm
412Encrypted Client Hello: Ready for Prime Time?, (Mon, Mar 9th)Mar 9, 3:10 pm
413Can the Security Platform Finally Deliver for the Mid-Market?Mar 9, 12:10 pm
414Chrome Extension Turns Malicious After Ownership Transfer, Enabling Code Injection and Data TheftMar 9, 11:10 am
415Web Server Exploits and Mimikatz Used in Attacks Targeting Asian Critical InfrastructureMar 9, 8:10 am
416ISC Stormcast For Monday, March 9th, 2026 https://isc.sans.edu/podcastdetail/9840, (Mon, Mar 9th)Mar 9, 2:10 am
417How AI Assistants are Moving the Security GoalpostsMar 9, 12:10 am
418EU court adviser says banks must immediately refund phishing victimsMar 8, 4:10 pm
419Hackers abuse .arpa DNS and ipv6 to evade phishing defensesMar 8, 3:10 pm
420OpenAI Codex Security Scanned 1.2 Million Commits and Found 10,561 High-Severity IssuesMar 7, 6:10 pm
421Termite ransomware breaches linked to ClickFix CastleRAT attacksMar 7, 5:10 pm
422Microsoft: Hackers abusing AI at every stage of cyberattacksMar 7, 4:10 pm
423Anthropic Finds 22 Firefox Vulnerabilities Using Claude Opus 4.6 AI ModelMar 7, 1:10 pm
424YARA-X 1.14.0 Release, (Sat, Mar 7th)Mar 7, 10:10 am
425Cognizant TriZetto breach exposes health data of 3.4 million patientsMar 6, 8:10 pm
426CISA warns feds to patch iOS flaws exploited in crypto-theft attacksMar 6, 5:10 pm
427Multi-Stage VOID#GEIST Malware Delivering XWorm, AsyncRAT, and Xeno RATMar 6, 4:10 pm
428Transparent Tribe Uses AI to Mass-Produce Malware Implants in Campaign Targeting IndiaMar 6, 4:10 pm
429CISA warns of Apple flaws exploited in spyware, crypto-theft attacksMar 6, 4:10 pm
430Microsoft 365 Backup to add file-level restore for faster recoveryMar 6, 3:10 pm
431Fake Claude Code install guides push infostealers in InstallFix attacksMar 6, 3:10 pm
432EC-Council Expands AI Certification Portfolio to Strengthen U.S. AI Workforce Readiness and SecurityMar 6, 3:10 pm
433Iran-Linked MuddyWater Hackers Target U.S. Networks With New Dindoor BackdoorMar 6, 11:10 am
434The MSP Guide to Using AI-Powered Risk Management to Scale CybersecurityMar 6, 11:10 am
435China-Linked Hackers Use TernDoor, PeerTime, BruteEntry in South American Telecom AttacksMar 6, 10:10 am
436Ghanain man pleads guilty to role in $100 million fraud ringMar 6, 10:10 am
437FBI investigates breach of surveillance and wiretap systemsMar 6, 9:10 am
438Hikvision and Rockwell Automation CVSS 9.8 Flaws Added to CISA KEV CatalogMar 6, 8:10 am
439Microsoft Reveals ClickFix Campaign Using Windows Terminal to Deploy Lumma StealerMar 6, 8:10 am
440ISC Stormcast For Friday, March 6th, 2026 https://isc.sans.edu/podcastdetail/9838, (Fri, Mar 6th)Mar 6, 2:10 am
441Chinese state hackers target telcos with new malware toolkitMar 6, 12:10 am
442Bing AI promoted fake OpenClaw GitHub repo pushing info-stealing malwareMar 5, 11:10 pm
443Wikipedia hit by self-propagating JavaScript worm that vandalized pagesMar 5, 9:10 pm
444FBI arrests suspect linked to $46M crypto theft from US MarshalsMar 5, 7:10 pm
445WordPress membership plugin bug exploited to create admin accountsMar 5, 7:10 pm
446Cisco Confirms Active Exploitation of Two Catalyst SD-WAN Manager VulnerabilitiesMar 5, 5:10 pm
4472026 Browser Data Reveals Major Enterprise Security Blind SpotsMar 5, 3:10 pm
448Google says 90 zero-days were exploited in attacks last yearMar 5, 3:10 pm
449Preparing for the Quantum Era: Post-Quantum Cryptography Webinar for Security LeadersMar 5, 2:10 pm
450ThreatsDay Bulletin: DDR5 Bot Scalping, Samsung TV Tracking, Reddit Privacy Fine & MoreMar 5, 2:10 pm
451Police dismantles online gambling ring exploiting Ukrainian womenMar 5, 1:10 pm
452Where Multi-Factor Authentication Stops and Credential Abuse StartsMar 5, 12:10 pm
453ISC Stormcast For Thursday, March 5th, 2026 https://isc.sans.edu/podcastdetail/9836, (Thu, Mar 5th)Mar 5, 12:10 pm
454Dust Specter Targets Iraqi Officials with New SPLITDROP and GHOSTFORM MalwareMar 5, 12:10 pm
455APT28-Linked Campaign Deploys BadPaw Loader and MeowMeow Backdoor in UkraineMar 5, 11:10 am
456Cisco flags more SD-WAN flaws as actively exploited in attacksMar 5, 11:10 am
457Phobos ransomware admin pleads guilty to wire fraud conspiracyMar 5, 9:10 am
458FBI and Europol Seize LeakBase Forum Used to Trade Stolen CredentialsMar 5, 8:10 am
459Europol-Led Operation Takes Down Tycoon 2FA Phishing-as-a-Service Linked to 64,000 AttacksMar 5, 8:10 am
460Differentiating Between a Targeted Intrusion and an Automated Opportunistic Scanning [Guest Diary], (Wed, Mar 4th)Mar 5, 3:10 am
461Bitwarden adds support for passkey login on Windows 11Mar 4, 11:10 pm
462Mail2Shell zero-click attack lets hackers hijack FreeScout mail serversMar 4, 10:10 pm
463Fake LastPass support email threads try to steal vault passwordsMar 4, 9:10 pm
464Windows 10 KB5075039 update fixes broken Recovery EnvironmentMar 4, 9:10 pm
465Cisco warns of max severity Secure FMC flaws giving root accessMar 4, 8:10 pm
466Hacker mass-mails HungerRush extortion emails to restaurant patronsMar 4, 7:10 pm
467Spyware-grade Coruna iOS exploit kit now used in crypto theft attacksMar 4, 7:10 pm
468149 Hacktivist DDoS Attacks Hit 110 Organizations in 16 Countries After Middle East ConflictMar 4, 6:10 pm
469FBI seizes LeakBase cybercrime forum, data of 142,000 membersMar 4, 6:10 pm
470Europol-coordinated action disrupts Tycoon2FA phishing platformMar 4, 5:10 pm
471Mississippi medical center reopens clinics hit by ransomware attackMar 4, 4:10 pm
472How a Brute Force Attack Unmasked a Ransomware Infrastructure NetworkMar 4, 3:10 pm
473Coruna iOS Exploit Kit Uses 23 Exploits Across Five Chains Targeting iOS 13–17.2.1Mar 4, 2:10 pm
474New RFP Template for AI Usage Control and AI Governance Mar 4, 1:10 pm
475Fake Laravel Packages on Packagist Deploy RAT on Windows, macOS, and LinuxMar 4, 10:10 am
476Want More XWorm?, (Wed, Mar 4th)Mar 4, 10:10 am
477APT41-Linked Silver Dragon Targets Governments Using Cobalt Strike and Google Drive C2Mar 4, 9:10 am
478CISA Adds Actively Exploited VMware Aria Operations Flaw CVE-2026-22719 to KEV CatalogMar 4, 6:10 am
479ISC Stormcast For Wednesday, March 4th, 2026 https://isc.sans.edu/podcastdetail/9834, (Wed, Mar 4th)Mar 4, 2:10 am
480CISA flags VMware Aria Operations RCE flaw as exploited in attacksMar 4, 12:10 am
481Facebook accounts unavailable in worldwide outageMar 3, 11:10 pm
482Paint maker giant AkzoNobel confirms cyberattack on U.S. siteMar 3, 11:10 pm
483Microsoft: Hackers abuse OAuth error flows to spread malwareMar 3, 9:10 pm
484Google Chrome shifts to two-week release cycle for increased stabilityMar 3, 6:10 pm
485Fake Tech Support Spam Deploys Customized Havoc C2 Across OrganizationsMar 3, 6:10 pm
486LexisNexis confirms data breach as hackers leak stolen filesMar 3, 4:10 pm
487Open-Source CyberStrikeAI Deployed in AI-Driven FortiGate Attacks Across 55 CountriesMar 3, 3:10 pm
488Building a High-Impact Tier 1: The 3 Steps CISOs Must FollowMar 3, 3:10 pm
489Compromised Site Management Panels are a Hot Item in Cybercrime MarketsMar 3, 3:10 pm
490Bruteforce Scans for CrushFTP , (Tue, Mar 3rd)Mar 3, 3:10 pm
491Starkiller Phishing Suite Uses AitM Reverse Proxy to Bypass Multi-Factor AuthenticationMar 3, 12:10 pm
492AI Agents: The Next Wave Identity Dark Matter - Powerful, Invisible, and UnmanagedMar 3, 12:10 pm
493Amazon: Drone strikes damaged AWS data centers in Middle EastMar 3, 12:10 pm
494Microsoft Warns OAuth Redirect Abuse Delivers Malware to Government TargetsMar 3, 11:10 am
495Star Citizen game dev discloses breach affecting user dataMar 3, 11:10 am
496UH Cancer Center data breach affects nearly 1.2 million peopleMar 3, 10:10 am
497SloppyLemming Targets Pakistan and Bangladesh Governments Using Dual Malware ChainsMar 3, 9:10 am
498Google Confirms CVE-2026-21385 in Qualcomm Android Component ExploitedMar 3, 9:10 am
499Android gets patches for Qualcomm zero-day exploited in attacksMar 3, 9:10 am
500⚡ Weekly Recap: SD-WAN 0-Day, Critical CVEs, Telegram Probe, Smart TV Proxy SDK and MoreMar 3, 6:42 am
AI Testing

Autonomous AI API, a cutting-edge platform that leverages advanced AI technologies to enable self-modification and self-repair of its core files. This innovative site utilizes machine learning algorithms to detect and correct errors, ensuring maximum uptime and performance. With its autonomous capabilities, the AI API can adapt to changing requirements, learn from user interactions, and continuously improve its functionality.