🚨 CISA KEV 1[−]
5 Mar KEVCISA Adds Five Known Exploited Vulnerabilities to CatalogCISA has added five new vulnerabilities to its Known Exploited Vulnerabilities (KEV) Catalog , based on evidence of active exploitation. CVE-2017-7921 Hikvision Multiple Products Improper Authentication Vulnerability CVE-2021-22681 Rockwell Multiple Products Insufficient Protecte…CISA.GOV
🐛 COMMON VULNERABILITIES AND EXPOSURES 29[−]
5 Mar14 old software bugs that took way too long to squashIn 2021, a vulnerability was revealed in a system that lay at the foundation of modern computing. An attacker could force the system to execute arbitrary code. Shockingly, the vulnerable code was almost 54 years old — and there was no patch available, and no expectation that one …CSOONLINE.COM
5 MarCisco Secure Firewall Management Flaw Allows Remote Code ExecutionCisco recently disclosed a critical security vulnerability affecting its Secure Firewall Management Centre (FMC) software. This severe flaw carries a maximum severity score of 10.0 and allows unauthenticated, remote attackers to execute arbitrary code with root privileges. CVE ID…GBHACKERS.COM
5 MarCVE-2026-23234 f2fs: fix to avoid UAF in f2fs_write_end_io()Information published.MSRC.MICROSOFT.COM
5 MarCVE-2026-23235 f2fs: fix out-of-bounds access in sysfs attribute read/writeInformation published.MSRC.MICROSOFT.COM
5 MarCVE-2026-23237 platform/x86: classmate-laptop: Add missing NULL pointer checksInformation published.MSRC.MICROSOFT.COM
5 MarCVE-2026-23238 romfs: check sb_set_blocksize() return valueInformation published.MSRC.MICROSOFT.COM
5 MarCVE-2026-3336 PKCS7_verify Certificate Chain Validation Bypass in AWS-LCInformation published.MSRC.MICROSOFT.COM
5 MarCVE-2026-0038 In multiple functions of mem_protect.c, there is a possible way to execute arbitrary code due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Information published.MSRC.MICROSOFT.COM
5 MarCVE-2026-23865 An integer overflow in the tt_var_load_item_variation_store function of the Freetype library in versions 2.13.2 and 2.13.3 may allow for an out of bounds read operation when parsing HVAR/VVAR/MVAR tables in OpenType variable fonts. This issue is fixed in version 2.14.2.Information published.MSRC.MICROSOFT.COM
5 MarCVE-2026-23236 fbdev: smscufx: properly copy ioctl memory to kernelspaceInformation published.MSRC.MICROSOFT.COM
5 MarCVE-2025-71238 scsi: qla2xxx: Fix bsg_done() causing double freeInformation published.MSRC.MICROSOFT.COM
5 MarCVE-2026-23231 netfilter: nf_tables: fix use-after-free in nf_tables_addchain()Information published.MSRC.MICROSOFT.COM
5 MarCVE-2026-3338 PKCS7_verify Signature Validation Bypass in AWS-LCInformation published.MSRC.MICROSOFT.COM
5 MarCritical pac4j-jwt Authentication Bypass Vulnerability Allows Attackers to Impersonate Any UserA critical security flaw in the popular Java authentication library pac4j-jwt allows attackers to completely bypass authentication and impersonate any user, including administrators. Tracked as CVE-2026-29000, this vulnerability carries a maximum CVSS score of 10.0 and requires n…GBHACKERS.COM
5 MarCVE-2025-8732 libxml2 xmlcatalog xmlParseSGMLCatalog recursionInformation published.MSRC.MICROSOFT.COM
5 Mar KEVCisco Warns of More Catalyst SD-WAN Flaws Exploited in the WildThe networking giant has added the recently patched CVE-2026-20128 and CVE-2026-20122 to the list of exploited vulnerabilities. The post Cisco Warns of More Catalyst SD-WAN Flaws Exploited in the Wild appeared first on SecurityWeek .SECURITYWEEK.COM
5 MarCVE-2026-24821 A heap-based buffer over-read that might affect a system that compiles untrusted Lua code in turanszkij/WickedEngine.Information published.MSRC.MICROSOFT.COM
5 MarCVE-2026-27141 Sending certain HTTP/2 frames can cause a server to panic in golang.org/x/netInformation published.MSRC.MICROSOFT.COM
5 MarCVE-2025-68121 Unexpected session resumption in crypto/tlsInformation published.MSRC.MICROSOFT.COM
5 Mar KEVPoC Exploit for Cisco SD-WAN 0-Day Vulnerability Now Released, Actively Exploited in the WildA critical zero-day vulnerability in Cisco Catalyst SD-WAN infrastructure, tracked as CVE-2026-20127, is currently under active exploitation by highly sophisticated threat actors. The situation has grown considerably more severe following the public release of a working Proof-of-…GBHACKERS.COM
5 MarNew MongoDB Vulnerability Allows Attackers to Crash Servers, Exposing Critical DataCato CTRL’s senior security researcher, Vitaly Simonovich, has uncovered a high-severity dos vulnerability in MongoDB, tracked as CVE-2026-25611, that lets unauthenticated attackers crash any exposed MongoDB server. CVE-2026-25611 is rooted in MongoDB’s OP_COMPR…GBHACKERS.COM
5 MarCisco Confirms Active Exploitation of Two Catalyst SD-WAN Manager VulnerabilitiesCisco has disclosed that two more vulnerabilities affecting Catalyst SD-WAN Manager (formerly SD-WAN vManage) have come under active exploitation in the wild. The vulnerabilities in question are listed below - CVE-2026-20122 (CVSS score: 7.1) - An arbitrary file overwrite vulnera…THEHACKERNEWS.COM
5 MarCisco issues emergency patches for critical firewall vulnerabilitiesCisco has handed security teams one of the largest ever patching workloads affecting its firewall products, including fixes for two ‘perfect 10’ vulnerabilities in the company’s Secure Firewall Management Center (FMC) Software. Overall, the March 4 release , the first of its semi…CSOONLINE.COM
5 MarCVE-2026-23651 Microsoft ACI Confidential Containers Elevation of Privilege VulnerabilityPermissive regular expression in Azure Compute Gallery allows an authorized attacker to elevate privileges locally.MSRC.MICROSOFT.COM
5 MarCVE-2026-21536 Microsoft Devices Pricing Program Remote Code Execution VulnerabilityInformation published.MSRC.MICROSOFT.COM
5 MarCVE-2026-26124 Microsoft ACI Confidential Containers Elevation of Privilege VulnerabilityInformation published.MSRC.MICROSOFT.COM
5 MarCVE-2026-26125 Payment Orchestrator Service Elevation of Privilege VulnerabilityInformation published.MSRC.MICROSOFT.COM
5 MarCVE-2026-26122 Microsoft ACI Confidential Containers Information Disclosure VulnerabilityInformation published.MSRC.MICROSOFT.COM
5 Mar KEVLook What You Made Us Patch: 2025 Zero-Days in ReviewWritten by: Casey Charrier, James Sadowski, Zander Work, Clement Lecigne, Benoît Sevens, Fred Plan Executive Summary Google Threat Intelligence Group (GTIG) tracked 90 zero-day vulnerabilities exploited in-the-wild in 2025. Although that volume of zero-days is lower than the reco…CLOUD.GOOGLE.COM
⚠️ VULNERABILITY DISCLOSURE 29[−]
5 MarSmashing Security podcast #457: How a cybersecurity boss framed his own employeeWhen a top cybersecurity firm discovered it had a leak, you would expect the FBI to be called. Instead, the person put in charge of the investigation was the actual leaker... who promptly sent an innocent colleague into a career-ending ambush. In this episode, we unravel the jaw-…GRAHAMCLULEY.COM
5 MarMicrosoft leads takedown of Tycoon2FA phishing service infrastructureThe infrastructure hosting the Tycoon2FA service, which Europol said was among the largest phishing operations worldwide, has been taken down by a coalition of IT companies and law enforcement agencies. At least temporarily, this removes access to one more tool for evading multif…CSOONLINE.COM
5 MarNation-State iOS Exploit Kit ‘Coruna’ Found Powering Global AttacksGoogle and iVerify analysis reveals a powerful exploit kit originally used by Russian state actors that is now appearing in broader criminal campaigns. The post Nation-State iOS Exploit Kit ‘Coruna’ Found Powering Global Attacks appeared first on SecurityWeek .SECURITYWEEK.COM
5 MarOperation Leak: Authorities Dismantle LeakBase Forum, Secure User Data and IP LogsThe FBI, working alongside international law enforcement agencies, has successfully dismantled the notorious cybercriminal forum LeakBase. Dubbed “Operation Leak,” this coordinated global effort resulted in the seizure of the platform’s domains and its underlyin…GBHACKERS.COM
5 MarCisco Catalyst SD-WAN Flaws Expose Devices to Root Access, Threatening Network SecurityCisco has issued critical software updates to address multiple vulnerabilities in the Catalyst SD-WAN Manager (formerly SD-WAN vManage) that could allow attackers to bypass authentication, elevate privileges to root, and execute arbitrary commands. The advisory (cisco-sa-sdwan-au…GBHACKERS.COM
5 MarState-affiliated hackers set up for critical OT attacks that operators may not detectSeveral state-linked threat groups known for breaking into operational technology (OT) networks have shifted their focus over the past year from gaining and maintaining access to actively mapping out ways to disrupt physical industrial processes. The shift poses a significant thr…CSOONLINE.COM
5 MarCisco Secure Firewall Vulnerability Exposes Networks to Authentication Bypass AttacksCisco recently disclosed a critical vulnerability in its Secure Firewall Management Centre (FMC) Software that allows unauthenticated remote attackers to gain complete root access to affected devices. Holding a maximum severity CVSS score of 10.0, this flaw demands immediate atte…GBHACKERS.COM
5 MarEuropol-Led Operation Takes Down Tycoon 2FA Phishing-as-a-Service Linked to 64,000 AttacksTycoon 2FA, one of the prominent phishing-as-a-service (PhaaS) toolkits that allowed cybercriminals to stage adversary-in-the-middle (AitM) credential harvesting attacks at scale, was dismantled by a coalition of law enforcement agencies and security companies. The subscription-b…THEHACKERNEWS.COM
5 MarFBI and Europol Seize LeakBase Forum Used to Trade Stolen CredentialsA joint law enforcement operation has dismantled LeakBase, one of the world's largest online forums for cybercriminals to buy and sell stolen data and cybercrime tools. The LeakBase forum, per the U.S. Department of Justice (DoJ), had over 142,000 members and more than 215,000 me…THEHACKERNEWS.COM
5 MarRedAlert Mobile Espionage Campaign Exploits Trojanized Rocket Alert App to Spy on CiviliansA newly discovered mobile espionage operation dubbed “RedAlert” has surfaced amid the ongoing Israel–Iran conflict, exploiting wartime fear and dependency on early-warning systems. The campaign targets civilians by distributing a trojanized version of the Israeli Home Front Comma…GBHACKERS.COM
5 MarReclaim Security Raises $26M to Eliminate the 27-Day Remediation GapNew York, USA, March 4th, 2026, CyberNewswire The industry must pivot to Preemptive Defense: As agentic tools like Claude Code enable attackers to scan and exploit vulnerabilities at machine speed, a “prioritized list” is no longer a defense; it’s a liability. Reclaim…GBHACKERS.COM
5 MarGoogle Rolls Out Emergency Chrome Update to Patch 10 Critical Security VulnerabilitiesGoogle released an urgent security update for its Chrome browser to address 10 vulnerabilities. Deployed on March 3, 2026, this stable channel update fixes three critical flaws and seven high-severity issues. The emergency patch protects users from potential exploits that could a…GBHACKERS.COM
5 MarClickFix Campaign Exploits Fake LinkedIn VCs to Spread Malware Among Crypto and Web3 ExpertsA highly coordinated malware campaign that targets cryptocurrency and Web3 professionals through fake venture capital (VC) identities on LinkedIn. The operation combines advanced social engineering with cross-platform payloads and a ClickFix-style fake CAPTCHA flow that tricks us…GBHACKERS.COM
5 MarTop 10 Best Cybersecurity Marketing Agencies to Watch in 2026As the digital threat landscape continues to evolve rapidly, the marketplace for security solutions has become fiercely congested. For B2B vendors, whether you are selling enterprise Zero Trust architecture, dark web monitoring tools, or consumer-grade privacy software, standing …GBHACKERS.COM
5 Mar KEVCisco flags more SD-WAN flaws as actively exploited in attacksCisco has flagged two more Catalyst SD-WAN Manager security flaws as actively exploited in the wild, urging administrators to upgrade vulnerable devices. [...]BLEEPINGCOMPUTER.COM
5 MarAPT28-Linked Campaign Deploys BadPaw Loader and MeowMeow Backdoor in UkraineCybersecurity researchers have disclosed details of a new Russian cyber campaign that has targeted Ukrainian entities with two previously undocumented malware families named BadPaw and MeowMeow. "The attack chain initiates with a phishing email containing a link to a ZIP archive.…THEHACKERNEWS.COM
5 MarWhere Multi-Factor Authentication Stops and Credential Abuse StartsOrganizations typically roll out multi-factor authentication (MFA) and assume stolen passwords are no longer enough to access systems. In Windows environments, that assumption is often wrong. Attackers still compromise networks every day using valid credentials. The issue is not …THEHACKERNEWS.COM
5 MarDPRK Hackers Target Crypto Firms, Steal Keys and Cloud Assets in Coordinated AttacksSuspected DPRK-linked threat actors have been observed compromising cryptocurrency firms through a coordinated campaign that blends web-app exploitation, cloud abuse, and secrets theft to position for large‑scale digital asset theft. The intrusions show a full kill chain from ini…GBHACKERS.COM
5 MarPolice dismantles online gambling ring exploiting Ukrainian womenSpanish and Ukrainian law enforcement authorities dismantled a criminal ring that exploited war-displaced Ukrainian women to run an online gambling scheme that laundered nearly €4.75 million in illicit proceeds. [...]BLEEPINGCOMPUTER.COM
5 MarThreat Actors Exploit Fake Claude Code Downloads to Deploy Infostealer MalwareThreat actors are abusing interest in Anthropic’s Claude Code tools by setting up fake download pages that ultimately drop a lightweight infostealer via mshta.exe. The campaign shows how a single living‑off‑the‑land binary (LOLBIN) can power an effective data‑theft chain without …GBHACKERS.COM
5 MarCoruna iOS exploit kit moved from spy tool to mass criminal campaign in under a yearGoogle’s threat intelligence researchers have identified a sophisticated exploit kit targeting iPhones that was first used by a commercial surveillance vendor’s customer before being repurposed by a suspected Russian espionage group and then by Chinese cybercriminals, highlightin…CSOONLINE.COM
5 MarGoogle: Half of 2025’s 90 Exploited Zero-Days Aimed at EnterprisesLess than half of the total zero-days have been attributed to a threat actor, but spyware vendors and China are in the lead. The post Google: Half of 2025’s 90 Exploited Zero-Days Aimed at Enterprises appeared first on SecurityWeek .SECURITYWEEK.COM
5 Mar KEVGoogle says 90 zero-days were exploited in attacks last yearGoogle Threat Intelligence Group (GTIG) tracked 90 zero-day vulnerabilities actively exploited throughout 2025, almost half of them in enterprise software and appliances. [...]BLEEPINGCOMPUTER.COM
5 MarGoogle says half of all zero-days it tracked in 2025 targeted buggy enterprise techEnterprise software was a major focus of zero-day activity during 2025, with security and networking devices, like firewalls, VPNs, and virtualization platforms, among the top targeted by malicious hackers.TECHCRUNCH.COM
5 MarWordPress membership plugin bug exploited to create admin accountsHackers are exploiting a critical vulnerability in the User Registration & Membership plugin, which is installed on more than 60,000 WordPress sites. [...]BLEEPINGCOMPUTER.COM
5 MarEmail Security: What It Is, How It Works, and Best Protection MethodsEmail-based threats are evolving faster than traditional solutions can keep up. According to Verizon’s 2025 Data Breach Investigations Report , the use of synthetically generated text in malicious emails has doubled over the past two years.KNOWBE4.COM
5 MarA Vulnerability in pac4j-jwt (JwtAuthenticator) Could Allow for Authentication BypassA vulnerability has been discovered in pac4j-jwt (JwtAuthenticator) which could allow for authentication bypass. pac4j-jwt is a Java module within the pac4j security framework designed for generating, validating, and managing JSON Web Tokens (JWT) to secure web applications and s…CISECURITY.ORG
5 MarMultiple Vulnerabilities in Cisco Products Could Allow for Remote Code ExecutionMultiple vulnerabilities have been discovered in Cisco products, the most severe of which could allow for remote code execution. Cisco Secure Firewall Management Center (FMC) is a centralized management platform for Cisco firewalls. Cisco Secure Firewall Adaptive Security Applian…CISECURITY.ORG
5 MarOn the Effectiveness of Mutational Grammar FuzzingMutational grammar fuzzing is a fuzzing technique in which the fuzzer uses a predefined grammar that describes the structure of the samples. When a sample gets mutated, the mutations happen in such a way that any resulting samples still adhere to the grammar rules, thus the struc…PROJECTZERO.GOOGLE
📢 SECURITY ADVISORIES 4[−]
5 MarDifferentiating Between a Targeted Intrusion and an Automated Opportunistic Scanning [Guest Diary], (Wed, Mar 4th)[This is a Guest Diary by Joseph Gruen, an ISC intern as part of the SANS.edu BACS program]
ISC.SANS.EDU
5 MarPhobos ransomware admin pleads guilty to wire fraud conspiracyA Russian national pleaded guilty to a wire fraud conspiracy charge related to his role in administering the Phobos ransomware operation, which breached hundreds of victims worldwide. [...]BLEEPINGCOMPUTER.COM
5 MarDust Specter Targets Iraqi Officials with New SPLITDROP and GHOSTFORM MalwareA suspected Iran-nexus threat actor has been attributed to a campaign targeting government officials in Iraq by impersonating the country's Ministry of Foreign Affairs to deliver a set of never-before-seen malware. Zscaler ThreatLabz, which observed the activity in January 2026, …THEHACKERNEWS.COM
🔥 INCIDENT REPORTING 6[−]
5 MarCyberattack Alert: Hackers Impersonate LastPass Support to Steal Vault PasswordsA new phishing campaign impersonating LastPass support emails is targeting users to steal their vault passwords and account credentials. The phishing campaign uses fake email chains that appear to be forwarded internal messages about suspicious account activity. Attackers craft m…GBHACKERS.COM
5 MarHacked App Part of US/Israeli Propaganda Campaign Against IranWired has the story : Shortly after the first set of explosions, Iranians received bursts of notifications on their phones. They came not from the government advising caution, but from an apparently hacked prayer-timing app called BadeSaba Calendar that has been downloaded more t…SCHNEIER.COM
5 MarRussian Ransomware Operator Pleads Guilty in USEvgenii Ptitsyn was extradited to the United States from South Korea in November 2024. The post Russian Ransomware Operator Pleads Guilty in US appeared first on SecurityWeek .SECURITYWEEK.COM
5 MarIsrael Hacked Traffic Cameras in IranMultiple news outlets are reporting on Israel’s hacking of Iranian traffic cameras and how they assisted with the killing of that country’s leadership. The New York Times has an <a href="https://www.nytimes.com/2026/03/01/us/politics/cia-israel-ayatollah-compound.…SCHNEIER.COM
5 MarWikipedia hit by self-propagating JavaScript worm that vandalized pagesThe Wikimedia Foundation suffered a security incident today after a self-propagating JavaScript worm began vandalizing pages and modifying user scripts across multiple wikis. [...]BLEEPINGCOMPUTER.COM
5 MarItalian prosecutors confirm journalist was hacked with Paragon spywareItalian authorities are making progress in their investigation into a wide-ranging spyware scandal in Italy involving Paragon spyware. But the mystery of who hacked two Italian journalists with Paragon spyware continues.TECHCRUNCH.COM
🕵️ THREAT INTELLIGENCE 25[−]
5 MarOnline ads surpassed email as the primary malware channel in 2025, accounting for 60%+ of all observed malware and phishing campaignssubmitted by Innerworld to security 1 points | 0 comments https://www.businessinsider.com/programmatic-ads-overtake-email-top-malware-vector-the-media-trust-2026-3PROGRAMMING.DEV
5 MarOnline ads surpassed email as the primary malware channel in 2025, accounting for 60%+ of all observed malware and phishing campaignssubmitted by Innerworld to cybersecurity 1 points | 0 comments https://www.businessinsider.com/programmatic-ads-overtake-email-top-malware-vector-the-media-trust-2026-3SH.ITJUST.WORKS
5 MarAuthorities from 14 countries shut down LeakBase, seize its domains, and arrest multiple people allegedly tied to the cybercrime forum, which had 142K+ memberssubmitted by Innerworld to security 2 points | 0 comments https://cyberscoop.com/leakbase-cybercrime-forum-seized/ cross-posted from: lemmy.world/post/43868450 DOJ Press ReleasePROGRAMMING.DEV
5 MarAuthorities from 14 countries shut down LeakBase, seize its domains, and arrest multiple people allegedly tied to the cybercrime forum, which had 142K+ memberssubmitted by Innerworld to cybersecurity 1 points | 0 comments https://cyberscoop.com/leakbase-cybercrime-forum-seized/ DOJ Press ReleaseSH.ITJUST.WORKS
5 MarTycoon 2FA Phishing Operation Dismantled in Joint Raid by Microsoft and EuropolMicrosoft, Europol, and industry partners have successfully dismantled the Tycoon 2FA Phishing-as-a-Service (PhaaS) platform. Operating since August 2023, this immense adversary-in-the-middle (AiTM) operation allowed cybercriminals to bypass multi-factor authentication (MFA) and …GBHACKERS.COM
5 MarThreat Actors Intensify Targeting of IP Cameras Across the Middle East Amid Ongoing ConflictCyber operations have once again become an integral component of the ongoing conflict across the Middle East, with researchers identifying a wave of attacks against Internet-connected IP cameras beginning on February 28, 2026. According to CPR, the observed campaigns appear to pu…GBHACKERS.COM
5 MarCisco Patches Critical Vulnerabilities in Enterprise Networking ProductsCisco has rolled out patches for 48 vulnerabilities in Firewall ASA, Secure FMC, and Secure FTD products. The post Cisco Patches Critical Vulnerabilities in Enterprise Networking Products appeared first on SecurityWeek .SECURITYWEEK.COM
5 MarLeakBase Cybercrime Forum Shut Down, Suspects ArrestedThe stolen credential marketplace had been active since 2021 and in late 2025 it counted 142,000 users. The post LeakBase Cybercrime Forum Shut Down, Suspects Arrested appeared first on SecurityWeek .SECURITYWEEK.COM
5 MarReclaim Security Raises $20 Million to Accelerate RemediationThe company will expand its engineering team, deepen integrations, and accelerate go-to-market initiatives. The post Reclaim Security Raises $20 Million to Accelerate Remediation appeared first on SecurityWeek .SECURITYWEEK.COM
5 MarISC Stormcast For Thursday, March 5th, 2026 https://isc.sans.edu/podcastdetail/9836, (Thu, Mar 5th)(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.ISC.SANS.EDU
5 MarRingH23 Threat Actors Target MacCMS and CDN Infrastructure with New ArsenalThreat actors are abusing a new Linux-based toolkit dubbed RingH23 to silently compromise MacCMS-based video sites and hijack CDN infrastructure at scale, redirecting millions of users to gambling, pornography, and fraud platforms. Evidence shows Funnull has re-emerged with a fu…GBHACKERS.COM
5 MarEuropol schließt riesigen Markt für gestohlene Datenloading="lazy" width="400px"> LeakBase wird von den Strafverfolgungsbehörden untersucht. Die Polizei von Amsterdam hat im Zuge einer internationalen Aktion laut Europol einen der weltweit größten Handelsplätze für gestohlene Daten geschlossen. Leakbase hatte weltweit 142.000 regi…CSOONLINE.COM
5 MarEuropol: Großer Markt für gestohlene Daten geschlossenEuropol koordinierte den Schlag gegen Leakbase. PixelBiss – shutterstock.com Die Polizei von Amsterdam hat im Zuge einer internationalen Aktion laut Europol einen der weltweit größten Handelsplätze für gestohlene Daten geschlossen. Leakbase hatte weltweit 142.000 registrierte Nut…CSOONLINE.COM
5 MarSpear Phishing Attacks: Top 7 Signs to Watch ForSpear phishing is on the rise in the US and is quickly becoming the biggest cybersecurity threat for businesses. With more sophisticated, human-like emails and a greater reliance on email communication in general, it can be difficult to spot a standard phishing attack, let alone …KNOWBE4.COM
5 MarI Wrote a Book About AI Sycophancy. I Didn’t Use AI to Write It.submitted by cm0002 to cybersecurity 2 points | 0 comments https://dnsk.work/blog/i-wrote-a-book-about-ai-sycophancy-i-didnt-use-ai-to-write-it/INFOSEC.PUB
5 MarEmbrace Every Choice You MakeEvery decision you face is filled with promise and potential. Whether it's choosing a career path or a new opportunity, each choice is a step towards growth. How can viewing decisions as opportunities transform your life journey? Subscribe to our podcasts: https://securityweekly.…YOUTUBE.COM
5 MarNavigating the U.S. Public Sector’s Unrelenting Cyber CrisisThe U.S. public sector faces unique challenges as it is tasked with safeguarding the most sensitive data of citizens, all while maintaining the critical infrastructure that keeps society functioning.KNOWBE4.COM
5 MarGoogle Safe Browsing missed 84% of phishing sites we found in Februarysubmitted by cm0002 to cybersecurity 4 points | 0 comments https://www.norn-labs.com/blog/huginn-report-feb-2026INFOSEC.PUB
5 MarMalicious AI Assistant Extensions Harvest LLM Chat HistoriesMalicious AI browser extensions collected LLM chat histories and browsing data from platforms such as ChatGPT and DeepSeek. With nearly 900,000 installs and activity across more than 20,000 enterprise tenants, the campaign highlights the growing risk of data exposure through brow…MICROSOFT.COM
5 MarWomen’s History Month: Encouraging women in cybersecurity at every career stageThis Women’s History Month, we explore ways to support the next generation of female defenders at every career stage. The post Women’s History Month: Encouraging women in cybersecurity at every career stage appeared first on Microsoft Security Blog .MICROSOFT.COM
5 Marriverside bios embedded edge zero footprint enterprise securityThis BYOS embedded edge device runs on just 1.3–2 watts of power and requires no software installation. It works across Windows, Linux, macOS, Android, iOS, and iPadOS right out of the box. And when you remove it? There’s no footprint left behind — no sign it was ever connected. …YOUTUBE.COM
5 MarThreat Actors Abuse Messaging Platforms to Launch Phishing AttacksMessaging platforms are now a major vector for phishing and other social engineering attacks, according to a new report from NCC Group’s Fox-IT.KNOWBE4.COM
5 MarAirsnitch, Claude, Hacking Firewalls - PSW #916In the security news this week: - Remembering "FX" - Finding and analyzing Windows drivers - Network monitoring with Gibson - the backdoor in your PAM - The edge is fraying - and attackers have the advantage - Age verification for Linux? - Banning AI - TPMS tracking - BLE trackin…YOUTUBE.COM
5 MarThe Weak Spot in Encrypted WiFiEncrypted Wi-Fi networks rely on keys to protect traffic between devices and access points. One of those keys is the Group Temporal Key (GTK), which is shared among all devices on the network to decrypt broadcast traffic. In this clip, Larry explains how that shared broadcast key…YOUTUBE.COM
5 MarChinese state hackers target telcos with new malware toolkitA China-linked advanced persistent threat actor tracked as UAT-9244 has been targeting telecommunication service providers in South America since 2024, compromising Windows, Linux, and network-edge devices. [...]BLEEPINGCOMPUTER.COM
🌐 CYBER THREAT LANDSCAPE 4[−]
5 MarThreatsDay Bulletin: DDR5 Bot Scalping, Samsung TV Tracking, Reddit Privacy Fine & MoreSome weeks in cybersecurity feel routine. This one doesn’t. Several new developments surfaced over the past few days, showing how quickly the threat landscape keeps shifting. Researchers uncovered fresh activity, security teams shared new findings, and a few unexpected move…THEHACKERNEWS.COM
5 MarNew BoryptGrab Stealer Targets Windows Users via Deceptive GitHub PagesThe BoryptGrab campaign uses fake SEO‑optimized GitHub repositories and deceptive download pages to distribute a data‑stealing malware family that delivers multiple payloads, including a reverse SSH backdoor, to Windows users.TRENDMICRO.COM
5 MarJoint guidance on supply chain risks and mitigations for artificial intelligence and machine learningCYBER.GC.CA
5 MarBing AI promoted fake OpenClaw GitHub repo pushing info-stealing malwareFake OpenClaw installers hosted in GitHub repositories and promoted by Microsoft Bing's AI-enhanced search feature instructed users to run commands that deployed information stealers and proxy malware. [...]BLEEPINGCOMPUTER.COM
📡 INFOSEC NEWS 13[−]
5 MarHow to disable unwanted AI assistants and features on your PC and smartphone | Kaspersky official blogDetailed instructions for disabling intrusive AI features in popular services and operating systems.KASPERSKY.COM
5 MarPreparing for the Quantum Era: Post-Quantum Cryptography Webinar for Security LeadersMost organizations assume encrypted data is safe. But many attackers are already preparing for a future where today’s encryption can be broken. Instead of trying to decrypt information now, they are collecting encrypted data and storing it so it can be decrypted later using quant…THEHACKERNEWS.COM
5 Mar2026 Browser Data Reveals Major Enterprise Security Blind SpotsThe browser is becoming the operating system for modern work, yet many enterprises still treat it as an extension of network or endpoint security. Keep Aware's 2026 State of Browser Security Report shows 41% of employees used AI web tools while browser-based phishing, extensions,…BLEEPINGCOMPUTER.COM
5 MarBypassing debug password protection on the RH850 family using fault injectionThis blogpost explains how we bypassed the 16-byte password protection of the debug on several variants of the RH850 family using voltage fault injection.QUARKSLAB.COM
5 MarTop 10 artificial intelligence security actions: A primer - ITSAP.10.049Our top AI security actions are designed to help organizations of all sizes and sectors strengthen their cyber resilience.CYBER.GC.CA
5 MarCASI Leaderboard Shifts: Sugar-Coated Poison, and the Expanding AI Attack SurfaceAI Security Insights – March 2026F5.COM
5 MarFBI arrests suspect linked to $46M crypto theft from US MarshalsA U.S. government contractor's son, accused of stealing more than $46 million in cryptocurrency from the U.S. Marshals Service, was arrested Wednesday on the island of Saint Martin. [...]BLEEPINGCOMPUTER.COM
5 MarFYI: Impersonators are (still) targeting companies with fake TechCrunch outreachFraudsters are impersonating TechCrunch reporters and event leads, and reaching out to companies. Here's what we're doing about it, and what you can look out for.TECHCRUNCH.COM
5 MarFBI investigating hack on its wiretap and surveillance systems: reportHackers allegedly broke into the FBI’s networks, according to a report by CNN.TECHCRUNCH.COM
5 MarHow SMBs use threat research and MDR to build a defensive edgeWe speak to Director of ESET Threat Research Jean-Ian Boutin about where solutions that blend advanced technology with human expertise provide the most practical value for businessesWELIVESECURITY.COM
5 MarVU#772695: A flawed TLS handshake implementation affects Viber Proxy in multiple platformsOverview The Rakuten Viber messaging app for Android V25.7.2.0g and Windows V25.6.0.0-V25.8.1.0, has a flaw in its TLS handshake implementation when using the Cloak proxy configuration. This flaw allows for easy identification of proxy usage, potentially compromising user anonymi…KB.CERT.ORG
5 MarAWS completes the 2026 annual Dubai Electronic Security Centre (DESC) certification auditWe’re excited to announce that Amazon Web Services (AWS) has completed the annual Dubai Electronic Security Centre (DESC) certification audit to operate as a Tier 1 Cloud Service Provider (CSP) for the AWS Middle East (UAE) Region. This alignment with DESC requirements demonstrat…AWS.AMAZON.COM
5 Mar2025 ISO and CSA STAR certificates are now available with one additional service and one new regionAmazon Web Services (AWS) successfully completed the annual recertification audit with no findings for ISO 9001:2015, 27001:2022, 27017:2015, 27018:2019, 27701:2019, 20000-1:2018, 22301:2019, and Cloud Security Alliance (CSA) STAR Cloud Controls Matrix (CCM) v4.0. The objective o…AWS.AMAZON.COM