MATLOCK.CA
96Articles
8Categories
2026-03-06Date
🚨
Hikvision and Rockwell Automation CVSS 9.8 Flaws Added to CISA KEV CatalogThe U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Thursday added two security flaws impacting Hikvision and Rockwell Automation products to its Known Exploited Vulnerabilities (KEV) catalog, citing evidence of active exploitation. The critical-severity vulnerabi…
KEVTHEHACKERNEWS.COM — 06 Mar 2026
🚨
CISA Adds iOS Flaws From Coruna Exploit Kit to KEV ListThe nation-state-grade iOS exploit kit targets 23 vulnerabilities affecting iOS 13 to 17.2.1. The post CISA Adds iOS Flaws From Coruna Exploit Kit to KEV List appeared first on SecurityWeek .
KEVSECURITYWEEK.COM — 06 Mar 2026
🐛
WordPress Membership Plugin Flaw Lets Attackers Create Admin Accounts
GBHACKERS.COM — 06 Mar 2026
🐛
Zero-day exploits hit enterprises faster and harder
CSOONLINE.COM — 06 Mar 2026
🐛
Apache ActiveMQ Flaw Enables DoS Attacks via Malformed Network Packets
GBHACKERS.COM — 06 Mar 2026
🐛
AVideo Platform Vulnerability Allows Hackers to Hijack Streams via Zero-Click Command Injection
GBHACKERS.COM — 06 Mar 2026
🐛
ZDI-26-170: GStreamer H.266 Codec Parser Out-Of-Bounds Write Remote Code Execution Vulnerability
ZERODAYINITIATIVE.COM — 06 Mar 2026
🐛
ZDI-26-169: GStreamer H.266 Codec Parser Integer Underflow Remote Code Execution Vulnerability
ZERODAYINITIATIVE.COM — 06 Mar 2026
🐛
ZDI-26-168: GStreamer RIFF Palette Integer Overflow Remote Code Execution Vulnerability
ZERODAYINITIATIVE.COM — 06 Mar 2026
🐛
ZDI-26-167: GStreamer rtpqdm2depay Heap-based Buffer Overflow Remote Code Execution Vulnerability
ZERODAYINITIATIVE.COM — 06 Mar 2026
🐛
ZDI-26-166: GStreamer rtpqdm2depay Out-Of-Bounds Write Remote Code Execution Vulnerability
ZERODAYINITIATIVE.COM — 06 Mar 2026
🐛
ZDI-26-165: GStreamer RealMedia Demuxer Out-Of-Bounds Write Remote Code Execution Vulnerability
ZERODAYINITIATIVE.COM — 06 Mar 2026
🐛
ZDI-26-164: GStreamer ASF Demuxer Heap-based Buffer Overflow Remote Code Execution Vulnerability
ZERODAYINITIATIVE.COM — 06 Mar 2026
🐛
ZDI-26-163: GStreamer JPEG Parser Heap-based Buffer Overflow Remote Code Execution Vulnerability
ZERODAYINITIATIVE.COM — 06 Mar 2026
🐛
ZDI-26-162: GStreamer H.266 Codec Parser Stack-based Buffer Overflow Remote Code Execution Vulnerability
ZERODAYINITIATIVE.COM — 06 Mar 2026
🐛
ZDI-26-161: GStreamer DVB Subtitles Out-Of-Bounds Write Remote Code Execution Vulnerability
ZERODAYINITIATIVE.COM — 06 Mar 2026
🐛
ZDI-26-160: (Pwn2Own) Philips Hue Bridge hk_hap Ed25519 Signature Verification Authentication Bypass Vulnerability
ZERODAYINITIATIVE.COM — 06 Mar 2026
🐛
ZDI-26-159: (Pwn2Own) Philips Hue Bridge hk_hap characteristics Heap-based Buffer Overflow Remote Code Execution Vulnerability
ZERODAYINITIATIVE.COM — 06 Mar 2026
🐛
ZDI-26-158: (Pwn2Own) Philips Hue Bridge HomeKit hk_hap_pair_storage_put Heap-based Buffer Overflow Remote Code Execution Vulnerability
ZERODAYINITIATIVE.COM — 06 Mar 2026
🐛
ZDI-26-157: (Pwn2Own) Philips Hue Bridge HomeKit Accessory Protocol Static Nonce Authentication Bypass Vulnerability
ZERODAYINITIATIVE.COM — 06 Mar 2026
🐛
ZDI-26-156: (Pwn2Own) Philips Hue Bridge HomeKit Accessory Protocol Transient Pairing Mode Authentication Bypass Vulnerability
ZERODAYINITIATIVE.COM — 06 Mar 2026
🐛
ZDI-26-155: (Pwn2Own) Philips Hue Bridge hap_pair_verify_handler Sub-TLV Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability
ZERODAYINITIATIVE.COM — 06 Mar 2026
🐛
ZDI-26-154: (Pwn2Own) Philips Hue Bridge HomeKit Pair-Setup Heap-based Buffer Overflow Remote Code Execution Vulnerability
ZERODAYINITIATIVE.COM — 06 Mar 2026
🐛
ZDI-26-153: (Pwn2Own) Philips Hue Bridge Zigbee Stack Custom Command Handler Heap-based Buffer Overflow Remote Code Execution Vulnerability
ZERODAYINITIATIVE.COM — 06 Mar 2026
🐛
ZDI-26-152: Docker Desktop Docker Plugins Uncontrolled Search Path Element Local Privilege Escalation Vulnerability
ZERODAYINITIATIVE.COM — 06 Mar 2026
🐛
ZDI-26-151: Delta Electronics CNCSoft-G2 DPAX File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability
ZERODAYINITIATIVE.COM — 06 Mar 2026
⚠️
LeakBase marketplace unplugged by cops in 14 countries
CSOONLINE.COM — 06 Mar 2026
⚠️
Europa im Visier von Cyber-Identitätsdieben
CSOONLINE.COM — 06 Mar 2026
⚠️
Google Uncovers 90 Zero-Day Vulnerabilities Under Active Exploitation in 2025
KEVGBHACKERS.COM — 06 Mar 2026
⚠️
FBI Detains U.S. Government Contractor in Massive $46 Million Fraud Scheme
GBHACKERS.COM — 06 Mar 2026
⚠️
Microsoft Reveals ClickFix Campaign Using Windows Terminal to Deploy Lumma Stealer
THEHACKERNEWS.COM — 06 Mar 2026
⚠️
Challenges and projects for the CISO in 2026
CSOONLINE.COM — 06 Mar 2026
⚠️
AWS-LC Flaw Exposes Amazon Users to Attacks by Bypassing Certificate Chain Validation
GBHACKERS.COM — 06 Mar 2026
⚠️
Teenage hacker myth primed for a middle-age criminal makeover
CSOONLINE.COM — 06 Mar 2026
⚠️
Claude Used to Hack Mexican Government
SCHNEIER.COM — 2026-03-06
⚠️
Rockwell Vulnerability Allowing Remote ICS Hacking Exploited in Attacks
SECURITYWEEK.COM — 06 Mar 2026
⚠️
Google: Half of 2025's 90 Exploited Zero-Days Aimed at Enterprises - SecurityWeek
SH.ITJUST.WORKS — 6 Mar 2026
⚠️
RMM Tools Crucial for IT Operations, But Growing Threat as Attackers Weaponize Them
GBHACKERS.COM — 06 Mar 2026
⚠️
Targeted advertising is also targeting malware
CSOONLINE.COM — 06 Mar 2026
⚠️
Cisco Confirms Active Exploitation of Two Catalyst SD-WAN Manager Vulnerabilities
SH.ITJUST.WORKS — 6 Mar 2026
⚠️
WordPress membership plugin bug exploited to create admin accounts
SH.ITJUST.WORKS — 6 Mar 2026
⚠️
Your KnowBe4 Fresh Content Updates from February 2026
KNOWBE4.COM — 06 Mar 2026
⚠️
What Tools Do Hackers Use to Weaponize Emails?
KNOWBE4.COM — 06 Mar 2026
⚠️
EC-Council Expands AI Certification Portfolio to Strengthen U.S. AI Workforce Readiness and Security
BLEEPINGCOMPUTER.COM — 06 Mar 2026
⚠️
Multi-Stage VOID#GEIST Malware Delivering XWorm, AsyncRAT, and Xeno RAT
THEHACKERNEWS.COM — 06 Mar 2026
⚠️
CISA warns of Apple flaws exploited in spyware, crypto-theft attacks
BLEEPINGCOMPUTER.COM — 06 Mar 2026
⚠️
OAuth vulnerability in n8n automation platform could lead to system compromise
CSOONLINE.COM — 06 Mar 2026
⚠️
How hackers bypassed MFA with a $120 phishing kit – until a global takedown shut it down
BITDEFENDER.COM — 06 Mar 2026
⚠️
Only 30 minutes per quarter on cyber risk: Why CISO-board conversations are falling short
CSOONLINE.COM — 06 Mar 2026
⚠️
ClickFix attackers using new tactic to evade detection, says Microsoft
CSOONLINE.COM — 06 Mar 2026
⚠️
Iran vs Everyone: 2FA-Bypass Phish, APT41 Drive, iOS 0days, Josh Marpet, and More - SWN #561
YOUTUBE.COM — 2026-03-06
⚠️
Trump’s cyber strategy emphasizes offensive operations, deregulation, AI
CSOONLINE.COM — 06 Mar 2026
⚠️
Proactive Preparation and Hardening Against Destructive Attacks: 2026 Edition
CLOUD.GOOGLE.COM — 06 Mar 2026
⚠️
How to scan for vulnerabilities with GitHub Security Lab’s open source AI-powered framework
GITHUB.BLOG — 06 Mar 2026
📢
France's health ministry has confirmed a data breach involving the exposure of administrative information for 15.8 million patients and sensitive doctors' notes for approximately 165,000 individuals
PROGRAMMING.DEV — 6 Mar 2026
📢
France's health ministry has confirmed a data breach involving the exposure of administrative information for 15.8 million patients and sensitive doctors' notes for approximately 165,000 individuals
SH.ITJUST.WORKS — 6 Mar 2026
📢
Wikipedia Hit By JavaScript Worm, ICE Contractor Data Base Leaked and more...
CYBERSECURITYTODAY.LIBSYN.COM — 06 Mar 2026
📢
Microsoft 365 Backup to add file-level restore for faster recovery
BLEEPINGCOMPUTER.COM — 06 Mar 2026
📢
FBI wiretap system tapped by hackers
CSOONLINE.COM — 06 Mar 2026
📢
Friday Squid Blogging: Squid in Byzantine Monk Cooking
SCHNEIER.COM — 2026-03-06
🔥
A ransomware attack on August 31, 2025, compromised the data of 1.2 million at the University of Hawaiʻi Cancer Center, targeting research servers but sparing clinical operations
PROGRAMMING.DEV — 6 Mar 2026
🔥
A ransomware attack on August 31, 2025, compromised the data of 1.2 million at the University of Hawaiʻi Cancer Center, targeting research servers but sparing clinical operations
SH.ITJUST.WORKS — 6 Mar 2026
🔥
FBI investigates breach of surveillance and wiretap systems
BLEEPINGCOMPUTER.COM — 06 Mar 2026
🔥
Iranian APT Hacked US Airport, Bank, Software Company
SECURITYWEEK.COM — 06 Mar 2026
🔥
FBI investigating ‘suspicious’ cyber activities on critical surveillance network | CNN Politics
INFOSEC.PUB — 6 Mar 2026
🔥
TriZetto confirms 3.4M people’s health and personal data was stolen during breach
TECHCRUNCH.COM — 06 Mar 2026
🔥
Ransomware Before Windows Even Starts
YOUTUBE.COM — 2026-03-06
🔥
In Other News: FBI Hacked, US Security Pro Killed in Iran War, Hijacked Cameras Used in Khamenei Strike
SECURITYWEEK.COM — 06 Mar 2026
🔥
Cognizant TriZetto breach exposes health data of 3.4 million patients
BLEEPINGCOMPUTER.COM — 06 Mar 2026
🔥
Data Loss Prevention (DLP): What It Is, Types, and Solutions
KNOWBE4.COM — 06 Mar 2026
🔥
Ransomware attacks on schools and colleges | Kaspersky official blog
KASPERSKY.COM — 06 Mar 2026
🕵️
ISC Stormcast For Friday, March 6th, 2026 https://isc.sans.edu/podcastdetail/9838, (Fri, Mar 6th)
ISC.SANS.EDU — 06 Mar 2026
🕵️
Microsoft, working with Europol, authorities from 6 countries, and 11 security organizations, disrupted the Tycoon 2FA phishing-as-a-service platform on seizing 330 domains
PROGRAMMING.DEV — 6 Mar 2026
🕵️
Microsoft, working with Europol, authorities from 6 countries, and 11 security organizations, disrupted the Tycoon 2FA phishing-as-a-service platform on seizing 330 domains
SH.ITJUST.WORKS — 6 Mar 2026
🕵️
China-Nexus Hackers Target Telecommunication Providers with New Malware Attack
GBHACKERS.COM — 06 Mar 2026
🕵️
New Linux Rootkits Leverage Advanced eBPF and io_uring Techniques for Stealthy Attacks
GBHACKERS.COM — 06 Mar 2026
🕵️
Data Security Firm Evervault Raises $25 Million in Series B Funding
SECURITYWEEK.COM — 06 Mar 2026
🕵️
China-Linked Hackers Use TernDoor, PeerTime, BruteEntry in South American Telecom Attacks
THEHACKERNEWS.COM — 06 Mar 2026
🕵️
James ‘Aaron’ Bishop Tapped to Serve as New Pentagon CISO
SECURITYWEEK.COM — 06 Mar 2026
🕵️
Bing AI promoted fake OpenClaw GitHub repo pushing info-stealing malware
SH.ITJUST.WORKS — 6 Mar 2026
🕵️
PleaseFix Flaw Lets Hackers Access 1Password Vault via Comet AI Browser
SH.ITJUST.WORKS — 6 Mar 2026
🕵️
2024 TfL hack affected around 10 million people, BBC can reveal
SH.ITJUST.WORKS — 6 Mar 2026
🕵️
Off-Topic Friday
INFOSEC.PUB — 6 Mar 2026
🕵️
Fake Claude Code install guides push infostealers in InstallFix attacks
BLEEPINGCOMPUTER.COM — 06 Mar 2026
🕵️
Transparent Tribe Uses AI to Mass-Produce Malware Implants in Campaign Targeting India
THEHACKERNEWS.COM — 06 Mar 2026
🕵️
ArmorCode Raises $16 Million for Exposure Management Platform
SECURITYWEEK.COM — 06 Mar 2026
🕵️
Anthropic and the Pentagon
SCHNEIER.COM — 2026-03-06
🕵️
AI as tradecraft: How threat actors operationalize AI
MICROSOFT.COM — 06 Mar 2026
🕵️
Fake Calendar Invitations Move to Microsoft Outlook
KNOWBE4.COM — 06 Mar 2026
🕵️
How the National Cyber Strategy Secures Our Digital Way of Life
PALOALTONETWORKS.COM — 06 Mar 2026
🕵️
APT Attack Hiding In Plain Sight
YOUTUBE.COM — 2026-03-06
🌐
Iran-Linked MuddyWater Hackers Target U.S. Networks With New Dindoor Backdoor
THEHACKERNEWS.COM — 06 Mar 2026
📡
Ghanain man pleads guilty to role in $100 million fraud ring
BLEEPINGCOMPUTER.COM — 06 Mar 2026
📡
The MSP Guide to Using AI-Powered Risk Management to Scale Cybersecurity
THEHACKERNEWS.COM — 06 Mar 2026
📡
Anthropic’s Claude found 22 vulnerabilities in Firefox over two weeks
TECHCRUNCH.COM — 06 Mar 2026
📡
What cybersecurity actually does for your business
WELIVESECURITY.COM — 06 Mar 2026