MATLOCK.CA
140Articles
7Categories
2026-02-27Date
πŸ›
Cisco SD-WAN Bug Actively Exploited
KEVCYBERSECURITYTODAY.LIBSYN.COM — 27 Feb 2026
πŸ›
AL26-004 - Critical vulnerability affecting Cisco Catalyst SD-WAN - CVE-2026-20127
CYBER.GC.CA — 2026-02-27
πŸ›
AL26-003 - Vulnerability affecting BeyondTrust - CVE-2026-1731
CYBER.GC.CA — 2026-02-27
πŸ›
Juniper Networks PTX Routers Affected by Critical Vulnerability
SECURITYWEEK.COM — 27 Feb 2026
πŸ›
CVE-2026-27571 nats-server websockets are vulnerable to pre-auth memory DoS
MSRC.MICROSOFT.COM — 27 Feb 2026
πŸ›
CVE-2026-21620 TFTP Path Traversal
MSRC.MICROSOFT.COM — 27 Feb 2026
πŸ›
CVE-2026-27965 Vitess users with backup storage access can gain unauthorized access to production deployment environments
MSRC.MICROSOFT.COM — 27 Feb 2026
πŸ›
CVE-2026-27969 Vitess users with backup storage access can write to arbitrary file paths on restore
MSRC.MICROSOFT.COM — 27 Feb 2026
πŸ›
CVE-2025-69873 ajv (Another JSON Schema Validator) before 8.18.0 is vulnerable to Regular Expression Denial of Service (ReDoS) when the $data option is enabled. The pattern keyword accepts runtime data via JSON Pointer syntax ($data reference), which is passed directly to the JavaScript RegExp() constructor without validation. An attacker can inject a malicious regex pattern (e.g., "^(a|a)*$") combined with crafted input to cause catastrophic backtracking. A 31-character payload causes approximately 44 seconds of CPU blocking, with each additional character doubling execution time. This enables complete denial of service with a single HTTP request against any API using ajv with $data: true for dynamic schema validation.
MSRC.MICROSOFT.COM — 27 Feb 2026
πŸ›
Stored XSS Vulnerability in RustFS Console Puts S3 Admin Credentials at Risk
GBHACKERS.COM — 27 Feb 2026
πŸ›
FreeBSD Vulnerabilities Enable Attackers to Crash Entire System
GBHACKERS.COM — 27 Feb 2026
πŸ›
Your personal OpenClaw agent may also be taking orders from malicious websites
CSOONLINE.COM — 27 Feb 2026
πŸ›
CISA warns that RESURGE malware can be dormant on Ivanti devices
BLEEPINGCOMPUTER.COM — 27 Feb 2026
πŸ›
Security hole could let hackers take over Juniper Networks PTX core routers
CSOONLINE.COM — 27 Feb 2026
⚠️
900 Sangoma FreePBX Instances Infected With Web Shells
SECURITYWEEK.COM — 27 Feb 2026
⚠️
Researchers Unveil Aeternum C2 Infrastructure with Advanced Evasion and Persistence Tactics
GBHACKERS.COM — 27 Feb 2026
⚠️
Critical Trend Micro Apex One Vulnerabilities Allow Remote Malicious Code Execution
GBHACKERS.COM — 27 Feb 2026
⚠️
Malicious Go Crypto Module Steals Passwords, Deploys Rekoobe Backdoor in Developer Environments
GBHACKERS.COM — 27 Feb 2026
⚠️
Infostealers Drive Massive Brute-Force Attacks on Corporate SSO Gateways with Stolen Credentials
GBHACKERS.COM — 27 Feb 2026
⚠️
US authorities punish sellers of malware and spyware
CSOONLINE.COM — 27 Feb 2026
⚠️
Why application security must start at the load balancer
CSOONLINE.COM — 27 Feb 2026
⚠️
How to make LLMs a defensive advantage without creating a new attack surface
CSOONLINE.COM — 27 Feb 2026
⚠️
Ransomware groups switch to stealthy attacks and long-term access
CSOONLINE.COM — 27 Feb 2026
⚠️
Hacker kompromittieren immer schneller
CSOONLINE.COM — 27 Feb 2026
⚠️
Trend Micro warns of critical Apex One code execution flaws
SH.ITJUST.WORKS — 27 Feb 2026
⚠️
Third-Party Patching and the Business Footprint We All Share
BLEEPINGCOMPUTER.COM — 27 Feb 2026
⚠️
Malicious Go Crypto Module Steals Passwords, Deploys Rekoobe Backdoor
THEHACKERNEWS.COM — 27 Feb 2026
⚠️
Cultivating a robust and efficient quantum-safe HTTPS
SECURITY.GOOGLEBLOG.COM — 2026-02-27
⚠️
900+ Sangoma FreePBX Instances Compromised in Ongoing Web Shell Attacks
THEHACKERNEWS.COM — 27 Feb 2026
⚠️
β€˜Silent’ Google API key change exposed Gemini AI data
CSOONLINE.COM — 27 Feb 2026
⚠️
Friday Squid Blogging: Squid Fishing in Peru
SCHNEIER.COM — 2026-02-27
⚠️
Open Source Risk Is Exploding
YOUTUBE.COM — 2026-02-27
πŸ“’
Why Tehran’s Two-Tiered Internet Is So Dangerous
SCHNEIER.COM — 2026-02-27
πŸ“’
n8n security advisory (AV26-176)
CYBER.GC.CA — 2026-02-27
πŸ“’
Drupal security advisory (AV26-175)
CYBER.GC.CA — 2026-02-27
πŸ“’
ServiceNow security advisory (AV26-174)
CYBER.GC.CA — 2026-02-27
πŸ“’
VMware security advisory (AV26-173)
CYBER.GC.CA — 2026-02-27
πŸ“’
Juniper Networks security advisory (AV26-172)
CYBER.GC.CA — 2026-02-27
πŸ“’
Cisco security advisory (AV26-166) – Update 1
CYBER.GC.CA — 2026-02-27
πŸ“’
JetBrains security advisory (AV26-171)
CYBER.GC.CA — 2026-02-27
πŸ“’
GitLab security advisory (AV26-170)
CYBER.GC.CA — 2026-02-27
πŸ“’
AMD security advisory (AV26-169)
CYBER.GC.CA — 2026-02-27
πŸ“’
Trend Micro security advisory (AV26-168)
CYBER.GC.CA — 2026-02-27
πŸ“’
Zyxel security advisory (AV26-167)
CYBER.GC.CA — 2026-02-27
πŸ“’
SolarWinds security advisory (AV26-165)
CYBER.GC.CA — 2026-02-27
πŸ“’
HPE security advisory (AV26-164)
CYBER.GC.CA — 2026-02-27
πŸ“’
[Control systems] ABB security advisory (AV26-163)
CYBER.GC.CA — 2026-02-27
πŸ“’
VMware security advisory (AV26-162)
CYBER.GC.CA — 2026-02-27
πŸ“’
SonicWall security advisory (AV26-161)
CYBER.GC.CA — 2026-02-27
πŸ“’
Mozilla security advisory (AV26-160)
CYBER.GC.CA — 2026-02-27
πŸ“’
Google Chrome security advisory (AV26-159)
CYBER.GC.CA — 2026-02-27
πŸ“’
Docker security advisory (AV26–158)
CYBER.GC.CA — 2026-02-27
πŸ“’
HPE security advisory (AV26-157)
CYBER.GC.CA — 2026-02-27
πŸ“’
Dell security advisory (AV26-156)
CYBER.GC.CA — 2026-02-27
πŸ“’
Microsoft Edge security advisory (AV26-155)
CYBER.GC.CA — 2026-02-27
πŸ“’
Ubuntu security advisory (AV26-154)
CYBER.GC.CA — 2026-02-27
πŸ“’
Red Hat security advisory (AV26-153)
CYBER.GC.CA — 2026-02-27
πŸ“’
IBM security advisory (AV26-152)
CYBER.GC.CA — 2026-02-27
πŸ“’
[Control systems] CISA ICS security advisories (AV26–151)
CYBER.GC.CA — 2026-02-27
πŸ“’
HPE security advisory (AV26-150)
CYBER.GC.CA — 2026-02-27
πŸ“’
Tenable security advisory (AV26-149)
CYBER.GC.CA — 2026-02-27
πŸ“’
IceWarp security advisory (AV26-148)
CYBER.GC.CA — 2026-02-27
πŸ“’
Splunk security advisory (AV26-147)
CYBER.GC.CA — 2026-02-27
πŸ“’
GitHub security advisory (AV26-146)
CYBER.GC.CA — 2026-02-27
πŸ“’
Google Chrome security advisory (AV26-145)
CYBER.GC.CA — 2026-02-27
πŸ“’
F5 security advisory (AV26-144)
CYBER.GC.CA — 2026-02-27
πŸ“’
Dell security advisory (AV26-138) – Update 1
CYBER.GC.CA — 2026-02-27
πŸ“’
Microsoft Edge security advisory (AV26-143)
CYBER.GC.CA — 2026-02-27
πŸ“’
Jenkins security advisory (AV26-142)
CYBER.GC.CA — 2026-02-27
πŸ“’
Atlassian security advisory (AV26-141)
CYBER.GC.CA — 2026-02-27
πŸ“’
[Control systems] ABB security advisory (AV26-140)
CYBER.GC.CA — 2026-02-27
πŸ“’
HPE security advisory (AV26-139)
CYBER.GC.CA — 2026-02-27
πŸ“’
Google Chrome security advisory (AV26-130) - Update 1
CYBER.GC.CA — 2026-02-27
πŸ“’
Tenable security advisory (AV26-137)
CYBER.GC.CA — 2026-02-27
πŸ“’
Mozilla security advisory (AV26-136)
CYBER.GC.CA — 2026-02-27
πŸ“’
Red Hat security advisory (AV26-135)
CYBER.GC.CA — 2026-02-27
πŸ“’
[Control systems] CISA ICS security advisories (AV26-134)
CYBER.GC.CA — 2026-02-27
πŸ“’
Ubuntu security advisory (AV26-133)
CYBER.GC.CA — 2026-02-27
πŸ“’
Dell security advisory (AV26-132)
CYBER.GC.CA — 2026-02-27
πŸ“’
IBM security advisory (AV26-131)
CYBER.GC.CA — 2026-02-27
πŸ“’
Critical Flaws Exposed Gardyn Smart Gardens to Remote Hacking
SECURITYWEEK.COM — 27 Feb 2026
πŸ“’
Vshell Gains Popularity Among Cybercriminals as Cobalt Strike Alternative
GBHACKERS.COM — 27 Feb 2026
πŸ“’
One of the β€˜most influential cybersecurity’ roles will pay under $175,000
CSOONLINE.COM — 27 Feb 2026
πŸ“’
In Other News: ATT&CK Advisory Council, Russian Cyberattacks Aid Missile Strikes, Predator Bypasses iOS Indicators
SECURITYWEEK.COM — 27 Feb 2026
πŸ“’
CISA replaces acting director after a bumbling year on the job
TECHCRUNCH.COM — 27 Feb 2026
πŸ“’
VMware security advisory (AV26-178)
CYBER.GC.CA — 2026-02-27
πŸ“’
Microsoft Edge security advisory (AV26-177)
CYBER.GC.CA — 2026-02-27
πŸ“’
FreeBSD security advisory (AV26-179)
CYBER.GC.CA — 2026-02-27
πŸ”₯
Cyber incident reporting guidelines: Key information sharing requirements – ITSM.00.140
CYBER.GC.CA — 2026-02-27
πŸ”₯
Cyber Centre releases Ransomware Threat Outlook 2025 to 2027
CANADA.CA — 2026-02-27
πŸ”₯
Ransomware playbook (ITSM.00.099)
CYBER.GC.CA — 2026-02-27
πŸ”₯
Ransomware Threat Outlook 2025-2027
CYBER.GC.CA — 2026-02-27
πŸ”₯
What to do when your organization has been compromised by a cyber attack (ITSAP.00.009)
CYBER.GC.CA — 2026-02-27
πŸ”₯
Developing your incident response plan (ITSAP.40.003)
CYBER.GC.CA — 2026-02-27
πŸ”₯
Developing your business continuity plan (ITSAP.10.005)
CYBER.GC.CA — 2026-02-27
πŸ”₯
38 Million Allegedly Impacted by ManoMano Data Breach
SECURITYWEEK.COM — 27 Feb 2026
πŸ”₯
ScarCruft Uses Zoho WorkDrive and USB Malware to Breach Air-Gapped Networks
THEHACKERNEWS.COM — 27 Feb 2026
πŸ”₯
1 Million Records from Dutch Telco Odido Leaked Online in Massive Data Breach
GBHACKERS.COM — 27 Feb 2026
πŸ”₯
UFP Technologies discloses data breach after cybersecurity incident | brief | SC Media
SH.ITJUST.WORKS — 27 Feb 2026
πŸ”₯
European DYI chain ManoMano data breach impacts 38 million customers
SH.ITJUST.WORKS — 27 Feb 2026
πŸ”₯
Ransomware payment rate drops to record low as attacks surge
SH.ITJUST.WORKS — 27 Feb 2026
πŸ”₯
APT37 hackers use new malware to breach air-gapped networks
BLEEPINGCOMPUTER.COM — 27 Feb 2026
πŸ•΅οΈ
Phishing Attacks Against People Seeking Programming Jobs
SCHNEIER.COM — 2026-02-27
πŸ•΅οΈ
Chilean Carding Shop Operator Extradited to US
SECURITYWEEK.COM — 27 Feb 2026
πŸ•΅οΈ
Anthropic Refuses to Bend to Pentagon on AI Safeguards as Dispute Nears Deadline
SECURITYWEEK.COM — 27 Feb 2026
πŸ•΅οΈ
Aeternum Botnet Loader Employs Polygon Blockchain C&C to Boost Resilience
SECURITYWEEK.COM — 27 Feb 2026
πŸ•΅οΈ
Trojanized Gaming Tools Spread Java-Based RAT via Browser and Chat Platforms
THEHACKERNEWS.COM — 27 Feb 2026
πŸ•΅οΈ
ISC Stormcast For Friday, February 27th, 2026 https://isc.sans.edu/podcastdetail/9828, (Fri, Feb 27th)
ISC.SANS.EDU — 27 Feb 2026
πŸ•΅οΈ
Study Finds 87% of Organizations Exposed to Attacks Due to Known Vulnerabilities
GBHACKERS.COM — 27 Feb 2026
πŸ•΅οΈ
Dohdoor Malware Targets U.S. Schools and Healthcare with Multi-Stage Attack
GBHACKERS.COM — 27 Feb 2026
πŸ•΅οΈ
Vshell: A Chinese-Language Alternative to Cobalt StrikeΒ  - Censys
SH.ITJUST.WORKS — 27 Feb 2026
πŸ•΅οΈ
Malicious StripeApi NuGet Package Mimicked Official Library and Stole API Tokens
SH.ITJUST.WORKS — 27 Feb 2026
πŸ•΅οΈ
Hacking group begins leaking customer data in Dutch telecom Odido hack
SH.ITJUST.WORKS — 27 Feb 2026
πŸ•΅οΈ
Critical Juniper Networks PTX flaw allows full router takeover
SH.ITJUST.WORKS — 27 Feb 2026
πŸ•΅οΈ
Google API Keys Weren't Secrets. But then Gemini Changed the Rules. β—† Truffle Security Co.
SH.ITJUST.WORKS — 27 Feb 2026
πŸ•΅οΈ
The Rise of Kratos: How the New Phishing-as-a-Service Kit Industrializes Cybercrime
KNOWBE4.COM — 27 Feb 2026
πŸ•΅οΈ
Don’t Let AI Make Passwords
YOUTUBE.COM — 2026-02-27
πŸ•΅οΈ
Common Facebook Scam Method
KNOWBE4.COM — 27 Feb 2026
πŸ•΅οΈ
Trump Orders All Federal Agencies to Phase Out Use of Anthropic Technology
SECURITYWEEK.COM — 27 Feb 2026
πŸ•΅οΈ
Brainstorm, SonicWall, Junos, Glienicke BrΓΌcke, Burger King, Claude, Josh Marpet - SWN #559
YOUTUBE.COM — 2026-02-27
🌐
Joint guidance on malicious cyber threats to SD-WAN networks
CYBER.GC.CA — 2026-02-27
🌐
CSE calls on Canadian organizations and critical infrastructure providers to strengthen defences on fourth anniversary of Russia’s invasion of Ukraine
CYBER.GC.CA — 2026-02-27
🌐
The cyber threat to marine transportation
CYBER.GC.CA — 2026-02-27
🌐
Fake Fedex Email Delivers Donuts!, (Fri, Feb 27th)
ISC.SANS.EDU — 27 Feb 2026
πŸ“‘
Security considerations for SIMs (ITSAP.10.021)
CYBER.GC.CA — 2026-02-27
πŸ“‘
GeekWeek 11
CYBER.GC.CA — 2026-02-27
πŸ“‘
Spotting malicious email messages (ITSAP.00.100)
CYBER.GC.CA — 2026-02-27
πŸ“‘
Cyber security considerations for drone use (ITSAP.00.143)
CYBER.GC.CA — 2026-02-27
πŸ“‘
Developing your IT recovery plan (ITSAP.40.004)
CYBER.GC.CA — 2026-02-27
πŸ“‘
Improving cyber security resilience through emergency preparedness planning (ITSM.10.014)
CYBER.GC.CA — 2026-02-27
πŸ“‘
Joint guidance on secure connectivity principles for operational technology
CYBER.GC.CA — 2026-02-27
πŸ“‘
Ukrainian man pleads guilty to running AI-powered fake ID site
BLEEPINGCOMPUTER.COM — 27 Feb 2026
πŸ“‘
Meta Files Lawsuits Against Brazil, China, Vietnam Advertisers Over Celeb-Bait Scams
THEHACKERNEWS.COM — 27 Feb 2026
πŸ“‘
Enterprise Spotlight: Data Center Modernization
US.RESOURCES.CSOONLINE.COM — 27 Feb 2026
πŸ“‘
Local KTAE and the IDA Pro plugin | Kaspersky official blog
KASPERSKY.COM — 27 Feb 2026
πŸ“‘
Europol-led crackdown on The Com hackers leads to 30 arrests
BLEEPINGCOMPUTER.COM — 27 Feb 2026
πŸ“‘
DoJ Seizes $61 Million in Tether Linked to Pig Butchering Crypto Scams
THEHACKERNEWS.COM — 27 Feb 2026
πŸ“‘
Microsoft testing Windows 11 batch file security improvements
BLEEPINGCOMPUTER.COM — 27 Feb 2026
πŸ“‘
Mobile app permissions (still) matter more than you may think
WELIVESECURITY.COM — 27 Feb 2026
πŸ“‘
Bringing more transparency to post-quantum usage, encrypted messaging, and routing security
CLOUDFLARE.COM — 27 Feb 2026