🐛 COMMON VULNERABILITIES AND EXPOSURES 15[−]
12 Mar KEVCISA Flags Actively Exploited n8n RCE Bug as 24,700 Instances Remain ExposedThe U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Wednesday added a critical security flaw impacting n8n to its Known Exploited Vulnerabilities (KEV) catalog, based on evidence of active exploitation. The vulnerability, tracked as CVE-2025-68613 (CVSS score: 9.9…THEHACKERNEWS.COM
12 Mar“Zombie ZIP”: Neue Angriffstechnik täuscht VirenscannerMithilfe sogenannter Zombie-ZIPs lassen sich fast alle Virenscanner austricksen. Pressmaster | shutterstock.com Eine neue Technik mit dem Namen „Zombie ZIP“ ist in der Lage, Payloads in komprimierten Dateien zu verbergen. Sicherheitslösungen wie Antiviren- und EDR-Produkte (Endpo…CSOONLINE.COM
12 MarCVE-2026-25679 Incorrect parsing of IPv6 host literals in net/urlInformation published.MSRC.MICROSOFT.COM
12 MarCVE-2026-23239 espintcp: Fix race condition in espintcp_close()Information published.MSRC.MICROSOFT.COM
12 MarCVE-2026-23240 tls: Fix race condition in tls_sw_cancel_work_tx()Information published.MSRC.MICROSOFT.COM
12 MarCVE-2026-3784 wrong proxy connection reuse with credentialsInformation published.MSRC.MICROSOFT.COM
12 MarSplunk RCE Vulnerability Exposes Systems to Arbitrary Shell Command Execution by AttackersA high-severity Remote Command Execution (RCE) vulnerability has been discovered in Splunk Enterprise and Splunk Cloud Platform, exposing systems to severe security risks. Tracked officially as CVE-2026-20163 with a CVSS score of 8.0, this critical flaw allows malicious actors to…GBHACKERS.COM
12 MarApple Issues Security Updates for Older iOS Devices Targeted by Coruna WebKit ExploitApple on Wednesday backported fixes for a security flaw in iOS, iPadOS, and macOS Sonoma to older versions after it was found to be used as part of the Coruna exploit kit. The vulnerability, tracked as CVE-2023-43010, relates to an unspecified vulnerability in WebKit that could r…THEHACKERNEWS.COM
12 MarPalo Alto Cortex XDR Broker Vulnerability Exposes Systems to Sensitive Information Theft and ModificationPalo Alto Networks has issued a security advisory regarding a newly discovered vulnerability in its Cortex XDR Broker Virtual Machine (VM). Tracked as CVE-2026-0231, this medium-severity flaw could allow a threat actor to access and modify sensitive system information. Because th…GBHACKERS.COM
12 MarCVE-2026-26133 M365 Copilot Information Disclosure VulnerabilityAi command injection in M365 Copilot allows an unauthorized attacker to disclose information over a network.MSRC.MICROSOFT.COM
12 MarLooking at the SmarterMail API Vulnerability CVE-2026-24423Sensor Intel Series: February 2026 CVE TrendsF5.COM
12 MarVU#665416: SGLang (sglang) is vulnerable to code execution attacks via unsafe pickle deserializationOverview Two unsafe pickle deserialization vulnerabilities have been discovered in the SGLang open-source project, one within the tool's multimodal generation module and another within the Encoder Parallel Disaggregation system. SGLang is a serving framework for large language mo…KB.CERT.ORG
⚠️ VULNERABILITY DISCLOSURE 23[−]
12 MarChrome Update Addresses 29 Vulnerabilities, Mitigating Remote Code Execution ThreatsGoogle has officially rolled out a crucial update for its Chrome browser, promoting version 146 to the stable channel for Windows, Mac, and Linux users. Many of these flaws involve deep-seated memory corruption issues that, if left unpatched, could allow remote attackers to execu…GBHACKERS.COM
12 MarCisco IOS XR Vulnerability Exposes Systems to Root Command Execution by AttackersCisco has issued high-severity software updates to address two high-severity privilege escalation vulnerabilities in its IOS XR Software. Network administrators must take immediate action, as these security flaws could allow an authenticated, local attacker to execute arbitrary c…GBHACKERS.COM
12 MarAI use is changing how much companies pay for cyber insuranceIn July 2025, McDonald’s had an unexpected problem on the menu, one involving McHire, its AI-powered platform used to recruit and screen job applicants. The system, developed by Paradox.ai, featured a rookie-level security flaw: the backend for restaurant operators accepted “1234…CSOONLINE.COM
12 MarSplunk, Zoom Patch Severe VulnerabilitiesCritical- and high-severity flaws could be exploited to execute arbitrary shell commands or elevate privileges. The post Splunk, Zoom Patch Severe Vulnerabilities appeared first on SecurityWeek .SECURITYWEEK.COM
12 Mar4,000+ Routers Compromised by KadNap Malware Exploiting VulnerabilitiesA newly uncovered malware campaign dubbed KadNap has silently conscripted more than 14,000 internet‑exposed routers and edge devices into a stealth proxy botnet, with Asus routers the primary victims. More than 60% of known victims are located in the United States, with additiona…GBHACKERS.COM
12 MarNew ClickFix Attacks Target macOS Users with MacSync InfostealerA new wave of ClickFix campaigns targeting macOS users and delivering the MacSync infostealer, signaling a growing shift in threat actor tactics against Apple devices. The attacks rely heavily on social engineering rather than software exploits, tricking users into manually execu…GBHACKERS.COM
12 MarHackers Exploit Remote Management Tools to Gain Initial Access to Corporate NetworksThreat actors are increasingly exploiting legitimate Remote Monitoring and Management (RMM) tools to breach corporate networks and establish persistent access. This tactic allows attackers to bypass traditional security defenses by blending malicious activities with routine admin…GBHACKERS.COM
12 MarHackers Exploit CloudFlare Anti-Security to Steal Microsoft 365 Login CredentialsA recent Microsoft 365 credential harvesting campaign shows how attackers are exploiting CloudFlare’s protective features to shield malicious phishing sites from security scanners and threat researchers. CloudFlare is widely used by organizations to improve website performance an…GBHACKERS.COM
12 MarNorth Korean fake IT worker tradecraft exposedResearch from GitLab has exposed the latest tradecraft behind North Korean fake IT worker scams . GitLab banned 131 North Korean-attributed accounts last year, most of which involved JavaScript repositories that acted as resources in the so-called Contagious Interview campaign. I…CSOONLINE.COM
12 MarCISA orders feds to patch n8n RCE flaw exploited in attackssubmitted by kid to cybersecurity 6 points | 0 comments https://www.bleepingcomputer.com/news/security/cisa-orders-feds-to-patch-n8n-rce-flaw-exploited-in-attacks/SH.ITJUST.WORKS
12 MarApple patches older iPhones and iPads against Coruna exploitsApple has released security updates to patch older iPhones and iPads against a set of vulnerabilities targeted in cyberespionage and crypto-theft attacks using the Coruna exploit kit. [...]BLEEPINGCOMPUTER.COM
12 MarHow Do I Send a Secure Email in Outlook?Sending an unsecured email can be likened to writing sensitive information on a sticky note and leaving it on someone else's desk: anybody can intercept and share that information. Fortunately, there are ways to ensure your emails are safe from the prying eyes of hackers through …KNOWBE4.COM
12 MarApple Updates Legacy iOS Versions to Patch Coruna ExploitsThe company has released iOS and iPadOS versions 16.7.15 and 15.8.7 to patch the vulnerabilities. The post Apple Updates Legacy iOS Versions to Patch Coruna Exploits appeared first on SecurityWeek .SECURITYWEEK.COM
12 MarGoogle paid $17.1 million for vulnerability reports in 2025Google paid over $17 million to 747 security researchers who reported security bugs through its Vulnerability Reward Program (VRP) in 2025. [...]BLEEPINGCOMPUTER.COM
12 MarA Nerd's Life: Weeks of Firmware Teardown to Prove We Were RightIn a blog post published last December, we demonstrated how we managed to extract the firmware from a smartwatch by exploiting an out-of-bounds read vulnerability and spying on its screen interface. Follow us on our long and unexpected journey to figure out how this smartwatch ca…QUARKSLAB.COM
12 MarUS disrupts SocksEscort proxy network powered by Linux malwareLaw enforcement agencies in the U.S. and Europe along with private partners have disrupted the SocksEscort cybercrime proxy network that used only edge devices compromised via the AVRecon malware for Linux. [...]BLEEPINGCOMPUTER.COM
12 MarLaw enforcement shuts down botnet made of tens of thousands of hacked routersAn international law enforcement operation shut down a service called SocksEscort, which allegedly helped cybercriminals all over the world launch ransomware and DDoS attacks, as well as distribute child sexual abuse material.TECHCRUNCH.COM
12 MarVeeam warns of critical flaws exposing backup servers to RCE attacksData protection company Veeam Software has patched multiple flaws in its Backup & Replication solution, including four critical remote code execution (RCE) vulnerabilities. [...]BLEEPINGCOMPUTER.COM
12 MarRust-Based VENON Malware Targets 33 Brazilian Banks with Credential-Stealing OverlaysCybersecurity researchers have disclosed details of a new banking malware targeting Brazilian users that's written in Rust, marking a significant departure from other known Delphi-based malware families associated with the Latin American cybercrime ecosystem. The malware, which i…THEHACKERNEWS.COM
12 MarHive0163 Uses AI-Assisted Slopoly Malware for Persistent Access in Ransomware AttacksCybersecurity researchers have disclosed details of a suspected artificial intelligence (AI)-generated malware codenamed Slopoly put to use by a financially motivated threat actor named Hive0163. "Although still relatively unspectacular, AI-generated malware such as Slopoly shows…THEHACKERNEWS.COM
12 MarVulnerability Mis-Management - PSW #917In the security news this week: - The XZ backdoor documentary - Zero days - the clock isn't ticking - Vulnerability Mis-Management - Reversing traffic light controllers - Reversing with Claude - Don't curl to bash! - Reading CVEs makes my head hurt - Dumping browser secrets - I o…YOUTUBE.COM
12 MarFraudsters are using public planning records to target permit applicantsIf you're in the middle of applying for a planning or zoning permit, there is some unwelcome news: cyber-criminals have found a way to exploit the bureaucratic tedium of the process against you. Read more in my article on the Fortra blog.FORTRA.COM
12 MarVU#907705: Graphql-upload-minimal has a prototype pollution vulnerability.Overview Version 1.6.1 of the Flash Payments package graphql-upload-minimal is vulnerable to prototype pollution. This vulnerability, located in the processRequest() function, allows an attacker to inject special property names into the operations.variables object and pollute glo…KB.CERT.ORG
📢 SECURITY ADVISORIES 14[−]
12 MarSix Android Malware Families Target Pix Payments, Banking Apps, and Crypto WalletsCybersecurity researchers have discovered half-a-dozen new Android malware families that come with capabilities to steal data from compromised devices and conduct financial fraud. The Android malware range from traditional banking trojans like PixRevolution, TaxiSpy RAT, BeatBank…THEHACKERNEWS.COM
12 MarMedical giant Stryker crippled after Iranian hackers remotely wipe computersA major cyberattack on US medical supplies giant Stryker has resulted in thousands of devices being remotely wiped, after a pro-Iranian hacking group may have compromised the company’s Microsoft Intune management system. Details remain sketchy, but what appears to have happened o…CSOONLINE.COM
12 MariPhones and iPads Approved for NATO Classified DataApple announcement : …iPhone and iPad are the first and only consumer devices in compliance with the information assurance requirements of NATO nations. This enables iPhone and iPad to be used with classified information up to the NATO restricted level without requiring spe…SCHNEIER.COM
12 MarFBI: Phishing Attacks Are Impersonating City and County OfficialsThe US Federal Bureau of Investigation (FBI) has issued an advisory warning of a phishing campaign that’s impersonating city and county officials to send phony requests for permit fees.KNOWBE4.COM
12 MarAruba Switch Auth Bypass RiskResearchers identified vulnerabilities in HP Aruba networking switches that allow an attacker to reset the administrator password with only network access. No user interaction required. Authentication bypass vulnerabilities are particularly dangerous in infrastructure devices lik…YOUTUBE.COM
12 MarHow to manage the lifecycle of Amazon Machine Images using AMI Lineage for AWSAs organizations scale their cloud infrastructure, maintaining proper lifecycle management of Amazon Machine Images (AMIs) is a critical component of their security and risk management goals. AMIs provide the essential information required to launch Amazon Elastic Compute Cloud (…AWS.AMAZON.COM
🔥 INCIDENT REPORTING 15[−]
12 MarStryker Faces Cyber Attack as Hackers Report System Breach and Device DestructionOn March 11, 2026, the global medical technology giant Stryker suffered a devastating cyberattack that brought its worldwide IT operations to a sudden halt. Iranian-linked threat actors breached the company’s network. They deployed highly destructive wiper malware designed …GBHACKERS.COM
12 MarEricsson US Hit by Cyber Attack, Hackers Steal Personal Data of Employees and CustomersEricsson Inc., the United States subsidiary of the Swedish telecommunications giant, has confirmed a data breach affecting 15,661 of its employees and customers. The security incident did not breach Ericsson’s own networks but instead compromised a third-party service provi…GBHACKERS.COM
12 MarUS charges another ransomware negotiator linked to BlackCat attacksThe U.S. Department of Justice charged another former DigitalMint employee for his involvement in an insider scheme in which ransomware negotiators secretly partnered with the BlackCat (ALPHV) ransomware operation. [...]BLEEPINGCOMPUTER.COM
12 MarPolyfill Supply Chain Attack Impacting 100k Sites Linked to North KoreaThe 2024 incident was initially linked to China, but an infostealer infection has now revealed North Korean involvement. The post Polyfill Supply Chain Attack Impacting 100k Sites Linked to North Korea appeared first on SecurityWeek .SECURITYWEEK.COM
12 MarAttackers Don't Just Send Phishing Emails. They Weaponize Your SOC's WorkloadThe most dangerous phishing campaigns aren’t just designed to fool employees. Many are designed to exhaust the analysts investigating them. When a phishing investigation takes 12 hours instead of five minutes, the outcome can shift from a contained incident to a breach. For years…THEHACKERNEWS.COM
12 MarPhantomRaven returns to npm with 88 bad packagesLast year’s “PhantomRaven” supply-chain campaign is back, with security researchers uncovering 88 new malicious packages in what they describe as the second, third, and fourth waves of the operation. According to Endor Labs findings, the newly discovered packages were published b…CSOONLINE.COM
12 MarINC Ransomware Group Holds Healthcare Hostage in Oceaniasubmitted by kid to cybersecurity 4 points | 0 comments https://www.darkreading.com/threat-intelligence/inc-ransomware-healthcare-oceaniaSH.ITJUST.WORKS
12 MarFrance's Cybersecurity Agency Reports Ransomware Attack Drop in 2025 - Infosecurity Magazinesubmitted by kid to cybersecurity 1 points | 0 comments https://www.infosecurity-magazine.com/news/france-anssi-ransomware-attack/SH.ITJUST.WORKS
12 MarAI-Driven Phishing Attacks Bypass Email Filters, Land in InboxesAI-generated phishing is rapidly reshaping email risk, with more attacks slipping past filters and landing directly in users’ inboxes, even though AI-generated emails remain a minority of total phishing. The human element remains central: 68% of breaches involve people, and…GBHACKERS.COM
12 MarStates Can't Handle Nation-State Cyber AttacksMany organizations depend on federal threat intelligence to identify emerging cyber campaigns and nation-state activity. Without coordinated intelligence from national agencies, states and institutions may lack the visibility needed to prepare defenses against sophisticated attac…YOUTUBE.COM
12 MarTelus Digital confirms breach after hacker claims 1 petabyte data theftCanadian business process outsourcing giant Telus Digital has confirmed it suffered a security incident after threat actors claimed to have stolen nearly 1 petabyte of data from the company in a multi-month breach. [...]BLEEPINGCOMPUTER.COM
12 MarThreatsDay Bulletin: OAuth Trap, EDR Killer, Signal Phishing, Zombie ZIP, AI Platform Hack & MoreAnother Thursday, another pile of weird security stuff that somehow happened in just seven days. Some of it is clever. Some of it is lazy. A few bits fall into that uncomfortable category of “yeah… this is probably going to show up in real incidents sooner than we’d like.” The pa…THEHACKERNEWS.COM
12 MarAI-generated Slopoly malware used in Interlock ransomware attackA new malware strain dubbed Slopoly, likely created using generative AI tools, allowed a threat actor to remain on a compromised server for more than a week and steal data in an Interlock ransomware attack. [...]BLEEPINGCOMPUTER.COM
12 MarEngland Hockey investigating ransomware data breachEngland Hockey, the governing body for field hockey in England, is investigating a potential data breach after the AiLock ransomware gang listed it as a victim on its data leak site. [...]BLEEPINGCOMPUTER.COM
12 MarCanadian retail giant Loblaw notifies customers of data breachStill, out of an abundance of caution, Loblaw says it has automatically logged out all customers from their accounts. Account holders who need to access the company's digital services will have to log in again. [...]BLEEPINGCOMPUTER.COM
🕵️ THREAT INTELLIGENCE 20[−]
12 MarWhen your IoT Device Logs in as Admin, It?s too Late! [Guest Diary], (Wed, Mar 11th)[This is a Guest Diary by Adam Thorman, an ISC intern as part of the SANS.edu BACS program]
ISC.SANS.EDU
12 MarISC Stormcast For Thursday, March 12th, 2026 https://isc.sans.edu/podcastdetail/9846, (Thu, Mar 12th)(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.ISC.SANS.EDU
12 MarGoogle Finalizes $32 Billion Deal to Acquire Wiz, Strengthening Cloud SecurityGoogle Cloud has officially completed its acquisition of cloud security leader Wiz, marking a significant consolidation in the cybersecurity landscape. Operating under its retained brand within Google Cloud, Wiz will integrate its code-to-cloud security platform with Google’s exi…GBHACKERS.COM
12 MarMeta Unveils New Anti-Scam Tools for WhatsApp, Facebook, and MessengerMeta has rolled out a new wave of anti‑scam protections across WhatsApp, Facebook, and Messenger, combining AI‑driven detection, stricter advertiser controls, and public awareness campaigns to tackle fast‑evolving online fraud at scale. The new tools are designed to warn users at…GBHACKERS.COM
12 MarIran‑Linked Hackers Tap Criminal Ecosystem to Bolster State Cyber OpsIran-linked cyber actors are increasingly working with the broader cybercrime ecosystem, using criminal tools, infrastructure, and business models to support state-backed operations and hide their involvement. For years, Iranian intelligence services have relied on criminal inter…GBHACKERS.COM
12 MarCastleRAT Attack Leverages Deno JavaScript Runtime to Bypass Enterprise DefensesA sophisticated malware campaign that abuses the Deno JavaScript runtime to deliver CastleRAT, a powerful remote access trojan designed for espionage and data theft. The campaign demonstrates how attackers are increasingly combining social engineering, trusted development tools, …GBHACKERS.COM
12 MarThe Human IOC: Why Security Professionals Struggle with Social VettingApplying SOC-level rigor to the rumors, politics, and 'human intel' can make or break a security team. The post The Human IOC: Why Security Professionals Struggle with Social Vetting appeared first on SecurityWeek .SECURITYWEEK.COM
12 MarCisco Patches High-Severity IOS XR VulnerabilitiesThe security defects could lead to denial-of-service (DoS) conditions, command execution, or device takeover. The post Cisco Patches High-Severity IOS XR Vulnerabilities appeared first on SecurityWeek .SECURITYWEEK.COM
12 MarCritical N8n Vulnerabilities Allowed Server TakeoverThe bugs allowed unauthenticated attackers to execute arbitrary code, steal credentials, and take over servers. The post Critical N8n Vulnerabilities Allowed Server Takeover appeared first on SecurityWeek .SECURITYWEEK.COM
12 MarCritical flaw in HPE Aruba CX switches lets attackers seize admin control without credentials | CSO Onlinesubmitted by kid to cybersecurity 1 points | 0 comments https://www.csoonline.com/article/4143607/critical-flaw-in-hpe-aruba-cx-switches-lets-attackers-seize-admin-control-without-credentials.htmlSH.ITJUST.WORKS
12 MarSQLi flaw in Elementor Ally plugin impacts 250k+ WordPress sitessubmitted by kid to cybersecurity 2 points | 0 comments https://www.bleepingcomputer.com/news/security/sqli-flaw-in-elementor-ally-plugin-impacts-250k-plus-wordpress-sites/SH.ITJUST.WORKS
12 MarOnly 24% Of organizations Test Identity Recovery Every Six Months - Infosecurity Magazinesubmitted by kid to cybersecurity 3 points | 0 comments https://www.infosecurity-magazine.com/news/organizations-test-identity-sec-6/SH.ITJUST.WORKS
12 MarAlly WordPress Plugin Flaw Exposes Over 200,000 Websites to AttacksThe issue allows attackers to inject SQL queries and extract sensitive information from the database. The post Ally WordPress Plugin Flaw Exposes Over 200,000 Websites to Attacks appeared first on SecurityWeek .SECURITYWEEK.COM
12 MarMedtech giant Stryker offline after Iran-linked wiper malware attacksubmitted by kid to cybersecurity 1 points | 0 comments https://www.bleepingcomputer.com/news/security/medtech-giant-stryker-offline-after-iran-linked-wiper-malware-attack/SH.ITJUST.WORKS
12 MarMeta Launches New Protection Tools as It Helps Disrupt Scam CentersThe social media giant has disabled more than 150,000 accounts powering scam centers in Asia. The post Meta Launches New Protection Tools as It Helps Disrupt Scam Centers appeared first on SecurityWeek .SECURITYWEEK.COM
12 MarDetecting and analyzing prompt abuse in AI toolsHidden instructions in content can subtly bias AI, and our scenario shows how prompt injection works, highlighting the need for oversight and a structured response playbook. The post Detecting and analyzing prompt abuse in AI tools appeared first on Microsoft Security Blog .MICROSOFT.COM
12 MarExposing the Kroll Crypto Wallet ScamI’ve been contacted by the real Kroll (www.kroll.com) a few times over the last few years regarding various real class action lawsuits they are involved in, including as recently as a few months ago. So when I received the email below, although it seemed phishy from the start, it…KNOWBE4.COM
12 MarFrom transparency to action: What the latest Microsoft email security benchmark revealsThe latest Microsoft benchmarking data reveals how Microsoft Defender mitigates modern email threats compared to SEG and ICES vendors. The post From transparency to action: What the latest Microsoft email security benchmark reveals appeared first on Microsoft Security Blog .MICROSOFT.COM
12 MarStorm-2561 uses SEO poisoning to distribute fake VPN clients for credential theftStorm-2561 uses SEO poisoning to push fake VPN downloads that install signed trojans and steal VPN credentials. Active since 2025, Storm-2561 mimics trusted brands and abuses legitimate services. This post reviews TTPs, IOCs, and mitigation guidance. The post Storm-2561 uses SEO …MICROSOFT.COM
12 MarAMOS and Amatera disguised as AI agents | Kaspersky official blogThreat actors are advertising pages featuring malicious instructions for installing AI agents like Claude Code, Doubao, and OpenClaw.KASPERSKY.COM
🎙️ PODCASTS 1[−]
12 MarSmashing Security podcast #458: How not to steal $46 million from the US governmentA Wikipedia security engineer accidentally wakes a dormant JavaScript worm that hadn't stirred since 2024 - and within minutes, giant woodpecker images are plastered across the internet's favourite encyclopaedia. Meanwhile, a crypto contractor hired to help the US Marshals manage…GRAHAMCLULEY.COM
📡 INFOSEC NEWS 7[−]
12 MarCyber Security Today Special Report: Attack from IranThis inlcudes our reguar Wednesday/Thursday segment but with an update from this breaking story on the attack on a large US medical company.CYBERSECURITYTODAY.LIBSYN.COM
12 MarYour Signal account is safe – unless you fall for this trickSignal, the encrypted messaging app trusted by security-savvy users around the world, has confirmed that hackers have managed to takeover accounts - with government officials and journalists among those being targeted. Read more in my article on the Hot for Security blog.BITDEFENDER.COM
12 MarGoing the Extra Mile: Travel Rewards Turn into Underground Currency.Stolen airline miles are converted into flights and hotel stays, then resold as discounted travel. Flare shows how cybercriminals and underground markets treat loyalty accounts like tradable currency. [...]BLEEPINGCOMPUTER.COM
12 MarHow to Scale Phishing Detection in Your SOC: 3 Steps for CISOsPhishing has quietly turned into one of the hardest enterprise threats to expose early. Instead of crude lures and obvious payloads, modern campaigns rely on trusted infrastructure, legitimate-looking authentication flows, and encrypted traffic that conceals malicious behavior fr…THEHACKERNEWS.COM
12 MarCyber fallout from the Iran war: What to have on your radarThe cybersecurity implications of the war in the Middle East extend far beyond the region. Here’s where to focus your defenses.WELIVESECURITY.COM
12 MarFebruary 2026 CVE Landscape: 13 Critical Vulnerabilities Mark 43% Drop from JanuaryFebruary 2026 saw a 43% decrease in high-impact vulnerabilities, with Recorded Future's Insikt Group® identifying 13 vulnerabilities requiring immediate remediation, down from 23 in January 2026.RECORDEDFUTURE.COM
12 MarAnnouncing Cloudflare Account Abuse Protection: prevent fraudulent attacks from bots and humansBlocking bots isn’t enough anymore. Cloudflare’s new fraud prevention capabilities — now available in Early Access — help stop account abuse before it starts.CLOUDFLARE.COM