MATLOCK.CA
105Articles
9Categories
2026-03-13Date
🚨
CISA Adds Two Known Exploited Vulnerabilities to CatalogCISA has added two new vulnerabilities to its Known Exploited Vulnerabilities (KEV) Catalog , based on evidence of active exploitation. CVE-2026-3909 Google Skia Out-of-Bounds Write Vulnerability CVE-2026-3910 Google Chromium V8 Unspecified Vulnerability These types of vulnerabil…
KEVCISA.GOV — Fri, 13 Mar 26 1
πŸ›
OpenSSH GSSAPI Flaw Can Be Exploited to Crash SSH Child Processes
GBHACKERS.COM — 13 Mar 2026
πŸ›
Veeam Patches 7 Critical Backup & Replication Flaws Allowing Remote Code Execution
THEHACKERNEWS.COM — 13 Mar 2026
πŸ›
Google Fixes Two Chrome Zero-Days Exploited in the Wild Affecting Skia and V8
KEVTHEHACKERNEWS.COM — 13 Mar 2026
πŸ›
CVE-2026-3904
MSRC.MICROSOFT.COM — 13 Mar 2026
πŸ›
CVE-2026-3805 use after free in SMB connection reuse
MSRC.MICROSOFT.COM — 13 Mar 2026
πŸ›
Two Newly Discovered Chrome Zero-Days Exploited in the Wild to Run Malicious Code
KEVGBHACKERS.COM — 13 Mar 2026
πŸ›
Veeam warns admins to patch now as critical RCE flaws hit Backup & Replication
KEVCSOONLINE.COM — 13 Mar 2026
πŸ›
New Critical AdGuard Home Flaw Lets Attackers Bypass Authentication
GBHACKERS.COM — 13 Mar 2026
πŸ›
Google warns of two actively exploited Chrome zero days
KEVCSOONLINE.COM — 13 Mar 2026
πŸ›
Chromium: CVE-2026-3942 Incorrect security UI in PictureInPicture
MSRC.MICROSOFT.COM — 13 Mar 2026
πŸ›
Chromium: CVE-2026-3931 Heap buffer overflow in Skia
MSRC.MICROSOFT.COM — 13 Mar 2026
πŸ›
Chromium: CVE-2026-3941 Insufficient policy enforcement in DevTools
MSRC.MICROSOFT.COM — 13 Mar 2026
πŸ›
Chromium: CVE-2026-3940 Insufficient policy enforcement in DevTools
MSRC.MICROSOFT.COM — 13 Mar 2026
πŸ›
Chromium: CVE-2026-3939 Use after free in WebView
MSRC.MICROSOFT.COM — 13 Mar 2026
πŸ›
Chromium: CVE-2026-3938 Insufficient policy enforcement in Clipboard
MSRC.MICROSOFT.COM — 13 Mar 2026
πŸ›
Chromium: CVE-2026-3937 Incorrect security UI in Downloads
MSRC.MICROSOFT.COM — 13 Mar 2026
πŸ›
Chromium: CVE-2026-3935 Incorrect security UI in WebAppInstalls
MSRC.MICROSOFT.COM — 13 Mar 2026
πŸ›
Chromium: CVE-2026-3934 Insufficient policy enforcement in ChromeDriver
MSRC.MICROSOFT.COM — 13 Mar 2026
πŸ›
Chromium: CVE-2026-3932 Insufficient policy enforcement in PDF
MSRC.MICROSOFT.COM — 13 Mar 2026
πŸ›
Chromium: CVE-2026-3925 Incorrect security UI in LookalikeChecks
MSRC.MICROSOFT.COM — 13 Mar 2026
πŸ›
Chromium: CVE-2026-3915 Heap buffer overflow in WebML
MSRC.MICROSOFT.COM — 13 Mar 2026
πŸ›
Chromium: CVE-2026-3936 Use after free in WebView
MSRC.MICROSOFT.COM — 13 Mar 2026
πŸ›
Chromium: CVE-2026-3929 Side-channel information leakage in ResourceTiming
MSRC.MICROSOFT.COM — 13 Mar 2026
πŸ›
Chromium: CVE-2026-3928 Insufficient policy enforcement in Extensions
MSRC.MICROSOFT.COM — 13 Mar 2026
πŸ›
Chromium: CVE-2026-3927 Incorrect security UI in PictureInPicture
MSRC.MICROSOFT.COM — 13 Mar 2026
πŸ›
Chromium: CVE-2026-3926 Out of bounds read in V8
MSRC.MICROSOFT.COM — 13 Mar 2026
πŸ›
Chromium: CVE-2026-3924 Use after free in WindowDialog
MSRC.MICROSOFT.COM — 13 Mar 2026
πŸ›
Chromium: CVE-2026-3923 Use after free in WebMIDI
MSRC.MICROSOFT.COM — 13 Mar 2026
πŸ›
Chromium: CVE-2026-3922 Use after free in MediaStream
MSRC.MICROSOFT.COM — 13 Mar 2026
πŸ›
Chromium: CVE-2026-3921 Use after free in TextEncoding
MSRC.MICROSOFT.COM — 13 Mar 2026
πŸ›
Chromium: CVE-2026-3920 Out of bounds memory access in WebML
MSRC.MICROSOFT.COM — 13 Mar 2026
πŸ›
Chromium: CVE-2026-3919 Use after free in Extensions
MSRC.MICROSOFT.COM — 13 Mar 2026
πŸ›
Chromium: CVE-2026-3918 Use after free in WebMCP
MSRC.MICROSOFT.COM — 13 Mar 2026
πŸ›
Chromium: CVE-2026-3917 Use after free in Agents
MSRC.MICROSOFT.COM — 13 Mar 2026
πŸ›
Chromium: CVE-2026-3916 Out of bounds read in Web Speech
MSRC.MICROSOFT.COM — 13 Mar 2026
πŸ›
Chromium: CVE-2026-3914 Integer overflow in WebML
MSRC.MICROSOFT.COM — 13 Mar 2026
πŸ›
Chromium: CVE-2026-3913 Heap buffer overflow in WebML
MSRC.MICROSOFT.COM — 13 Mar 2026
πŸ›
CVE-2026-0385 Microsoft Edge (Chromium-based) for Android Spoofing Vulnerability
MSRC.MICROSOFT.COM — 13 Mar 2026
πŸ›
Chromium: CVE-2026-3930 Unsafe navigation in Navigation
MSRC.MICROSOFT.COM — 13 Mar 2026
πŸ›
Chromium: CVE-2026-3910 Inappropriate implementation in V8
MSRC.MICROSOFT.COM — 13 Mar 2026
⚠️
Telus Digital hit with massive data breach
CSOONLINE.COM — 13 Mar 2026
⚠️
Starbucks discloses data breach affecting hundreds of employees
BLEEPINGCOMPUTER.COM — 13 Mar 2026
⚠️
Google fixes two new Chrome zero-days exploited in attacks
BLEEPINGCOMPUTER.COM — 13 Mar 2026
⚠️
Authorities Disrupt SocksEscort Proxy Service Powered by AVrecon Botnet
SECURITYWEEK.COM — 13 Mar 2026
⚠️
Chrome 146 Update Patches Two Exploited Zero-Days
SECURITYWEEK.COM — 13 Mar 2026
⚠️
Nine CrackArmor Flaws in Linux AppArmor Enable Root Escalation, Bypass Container Isolation
THEHACKERNEWS.COM — 13 Mar 2026
⚠️
Authorities Disrupt SocksEscort Proxy Botnet Exploiting 369,000 IPs Across 163 Countries
THEHACKERNEWS.COM — 13 Mar 2026
⚠️
Authorities Shut Down Proxy Service Linked to Malware Campaign Targeting Thousands of Users
GBHACKERS.COM — 13 Mar 2026
⚠️
Starbucks Data Breach Exposes Personal Data of Hundreds of Users
GBHACKERS.COM — 13 Mar 2026
⚠️
Storm-2561 Uses SEO Poisoning, Fake Signed VPN Apps to Steal Enterprise Credentials
GBHACKERS.COM — 13 Mar 2026
⚠️
Iran War Bait Fuels TA453, TA473 Phishing Campaigns
GBHACKERS.COM — 13 Mar 2026
⚠️
Apple Releases Emergency iOS 15.8.7 Update to Block β€˜Coruna’ Exploit Kit
GBHACKERS.COM — 13 Mar 2026
⚠️
Critical CrackArmor Vulnerabilities Expose 12.6 Million Linux Servers to Full Root Takeover
GBHACKERS.COM — 13 Mar 2026
⚠️
Hybrid resilience: Designing incident response across on-prem, cloud and SaaS without losing your mind
CSOONLINE.COM — 13 Mar 2026
⚠️
Storm-2561 targets enterprise VPN users with SEO poisoning, fake clients
CSOONLINE.COM — 13 Mar 2026
⚠️
The cyber perimeter was never dead. We just abandoned it.
CSOONLINE.COM — 13 Mar 2026
⚠️
Police sinkholes 45,000 IP addresses in cybercrime crackdown
BLEEPINGCOMPUTER.COM — 13 Mar 2026
⚠️
AI May Speed Zero-Day Discovery
YOUTUBE.COM — 2026-03-13
⚠️
In Other News: N8n Flaw Exploited, Slopoly Malware, Interpol Cybercrime Crackdown
SECURITYWEEK.COM — 13 Mar 2026
⚠️
Storm-2561 Spreads Trojan VPN Clients via SEO Poisoning to Steal Credentials
THEHACKERNEWS.COM — 13 Mar 2026
⚠️
INTERPOL Dismantles 45,000 Malicious IPs, Arrests 94 in Global Cybercrime
THEHACKERNEWS.COM — 13 Mar 2026
⚠️
Cyber criminals too are working from home… your home
CSOONLINE.COM — 13 Mar 2026
⚠️
Multiple Vulnerabilities in Google Chrome Could Allow for Arbitrary Code Execution
CISECURITY.ORG — 13 Mar 2026
πŸ“‹
Microsoft: Windows 11 users can't access C: drive on some Samsung PCs
BLEEPINGCOMPUTER.COM — 13 Mar 2026
πŸ“’
Google Chrome security advisory (AV26-235)
CYBER.GC.CA — 2026-03-13
πŸ“’
[Control systems] ABB security advisory (AV26-236)
CYBER.GC.CA — 2026-03-13
πŸ”₯
AI Agent Hacks McKinsey Chatbot in 2 Hours
CYBERSECURITYTODAY.LIBSYN.COM — 13 Mar 2026
πŸ”₯
Fileless Remcos RAT Attack Uses JavaScript and PowerShell to Slip Past Detection
GBHACKERS.COM — 13 Mar 2026
πŸ”₯
A React-based phishing page with credential exfiltration via EmailJS, (Fri, Mar 13th)
ISC.SANS.EDU — 13 Mar 2026
πŸ”₯
PsExec and Renamed Backup Tools Enabled Data Theft Before INC Ransomware Attack
GBHACKERS.COM — 13 Mar 2026
πŸ”₯
Six Packagist Packages Linked to Trojanized jQuery Campaign
GBHACKERS.COM — 13 Mar 2026
πŸ”₯
Iran-Linked Hackers Take Aim at US and Other Targets, Raising Risk of Cyberattacks During War
SECURITYWEEK.COM — 13 Mar 2026
πŸ”₯
Starbucks Data Breach Impacts Employees
SECURITYWEEK.COM — 13 Mar 2026
πŸ”₯
Poland's nuclear research centre targeted by cyberattack
BLEEPINGCOMPUTER.COM — 13 Mar 2026
πŸ”₯
Exposed: Bank Leak, Copilot Zero-Click, AI Agent Hijacks, Stryker Wipe & Josh Marpet - SWN #563
YOUTUBE.COM — 2026-03-13
πŸ•΅οΈ
ISC Stormcast For Friday, March 13th, 2026 https://isc.sans.edu/podcastdetail/9848, (Fri, Mar 13th)
ISC.SANS.EDU — 13 Mar 2026
πŸ•΅οΈ
Off-Topic Friday
INFOSEC.PUB — 13 Mar 2026
πŸ•΅οΈ
Microsoft Copilot Email and Teams Summarization Flaw Opens Door to Phishing Attacks
GBHACKERS.COM — 13 Mar 2026
πŸ•΅οΈ
Academia and the β€œAI Brain Drain”
SCHNEIER.COM — 2026-03-13
πŸ•΅οΈ
Bold Security Emerges From Stealth With $40 Million in Funding
SECURITYWEEK.COM — 13 Mar 2026
πŸ•΅οΈ
Google Paid Out $17 Million in Bug Bounty Rewards in 2025
SECURITYWEEK.COM — 13 Mar 2026
πŸ•΅οΈ
Iran-Linked Hacker Attack on Stryker Disrupted Manufacturing and Shipping
SECURITYWEEK.COM — 13 Mar 2026
πŸ•΅οΈ
Onyx Security Launches With $40 Million in Funding
SECURITYWEEK.COM — 13 Mar 2026
πŸ•΅οΈ
Email DLP: Everything You Need to Know
KNOWBE4.COM — 13 Mar 2026
πŸ•΅οΈ
AI-HealthTech Innovator Humata Health Partners with AccuKnox for Zero Trust CNAPP
GBHACKERS.COM — 13 Mar 2026
πŸ•΅οΈ
Fake enterprise VPN downloads used to steal company credentials
BLEEPINGCOMPUTER.COM — 13 Mar 2026
πŸ•΅οΈ
45,000 malicious IP addresses taken down in international cyber operation
INFOSEC.PUB — 13 Mar 2026
πŸ•΅οΈ
Chinese Hackers Target Southeast Asian Militaries with AppleChris and MemFun Malware
THEHACKERNEWS.COM — 13 Mar 2026
πŸ•΅οΈ
Supply-chain attack using invisible code hits GitHub and other repositories
INFOSEC.PUB — 13 Mar 2026
πŸ•΅οΈ
Friday Squid Blogging: Increased Squid Population in the Falklands
SCHNEIER.COM — 2026-03-13
πŸ•΅οΈ
Anthropic Refused Pentagon AI Request
YOUTUBE.COM — 2026-03-13
πŸ•΅οΈ
CyberRisk TV Live Coverage from RSAC 2026 - Day 4
YOUTUBE.COM — 2026-03-13
πŸ•΅οΈ
CyberRisk TV Live Coverage from RSAC 2026 - Day 3
YOUTUBE.COM — 2026-03-13
πŸ•΅οΈ
CyberRisk TV Live Coverage from RSAC 2026 - Day 2
YOUTUBE.COM — 2026-03-13
πŸ•΅οΈ
CyberRisk TV Live Coverage from RSAC 2026 - Day 1
YOUTUBE.COM — 2026-03-13
πŸ•΅οΈ
Risky Biz Soap Box: It took a decade, but allowlisting is cool again
RISKY.BIZ — 13 Mar 2026
🌐
Investigating a New Click-Fix Variant
THEHACKERNEWS.COM — 13 Mar 2026
🌐
The FBI is investigating malware hidden inside games hosted on Steam
TECHCRUNCH.COM — 13 Mar 2026
🌐
FBI seeks victims of Steam games used to spread malware
BLEEPINGCOMPUTER.COM — 13 Mar 2026
πŸ“‘
From VMware to what’s next: Protecting data during hypervisor migration
BLEEPINGCOMPUTER.COM — 13 Mar 2026
πŸ“‘
Microsoft investigates classic Outlook sync and connection issues
BLEEPINGCOMPUTER.COM — 13 Mar 2026
πŸ“‘
Meta to Shut Down Instagram End-to-End Encrypted Chat Support Starting May 2026
THEHACKERNEWS.COM — 13 Mar 2026
πŸ“‘
Face value: What it takes to fool facial recognition
WELIVESECURITY.COM — 13 Mar 2026
πŸ“‘
Managing Elastic Security Detection Rules with Terraform
ELASTIC.CO — 13 Mar 2026