MATLOCK.CA
98Articles
9Categories
2026-03-18Date
๐Ÿšจ
CISA Adds One Known Exploited Vulnerability to CatalogCISA has added one new vulnerability to its Known Exploited Vulnerabilities (KEV) Catalog , based on evidence of active exploitation. CVE-2025-66376 Synacor Zimbra Collaboration Suite (ZCS) Cross-Site Scripting Vulnerability This type of vulnerability is a frequent attack vector โ€ฆ
KEVCISA.GOV — Wed, 18 Mar 26 1
๐Ÿšจ
CISA Adds One Known Exploited Vulnerability to CatalogCISA has added one new vulnerability to its Known Exploited Vulnerabilities (KEV) Catalog , based on evidence of active exploitation. CVE-2026-20963 Microsoft SharePoint Deserialization of Untrusted Data Vulnerability This type of vulnerability is a frequent attack vector for malโ€ฆ
KEVCISA.GOV — Wed, 18 Mar 26 1
๐Ÿ›
Critical Unpatched Telnetd Flaw (CVE-2026-32746) Enables Unauthenticated Root RCE via Port 23
THEHACKERNEWS.COM — 18 Mar 2026
๐Ÿ›
FortiClient Hit by Severe SQL Injection Vulnerability Enabling Database Intrusion
GBHACKERS.COM — 18 Mar 2026
๐Ÿ›
Researchers Disclose โ€˜RegPwn,โ€™ a Windows Registry Weakness Allowing SYSTEM Access
GBHACKERS.COM — 18 Mar 2026
๐Ÿ›
New Kubernetes NFS CSI Vulnerability Enables Unauthorized Directory Deletion and Changes
GBHACKERS.COM — 18 Mar 2026
๐Ÿ›
Apple Fixes WebKit Vulnerability Enabling Same-Origin Policy Bypass on iOS and macOS
THEHACKERNEWS.COM — 18 Mar 2026
๐Ÿ›
CVE-2026-23241 audit: add missing syscalls to read class
MSRC.MICROSOFT.COM — 18 Mar 2026
๐Ÿ›
CVE-2025-71239 audit: add fchmodat2() to change attributes class
MSRC.MICROSOFT.COM — 18 Mar 2026
๐Ÿ›
Ubuntu CVE-2026-3888 Bug Lets Attackers Gain Root via systemd Cleanup Timing Exploit
THEHACKERNEWS.COM — 18 Mar 2026
๐Ÿ›
Ubuntu Desktop Vulnerability Lets Attackers Escalate Privileges to Full Root Access
GBHACKERS.COM — 18 Mar 2026
๐Ÿ›
Critical Telnetd Vulnerability Enables Remote Code Execution Attacks
GBHACKERS.COM — 18 Mar 2026
๐Ÿ›
Interlock Ransomware Exploits Cisco FMC Zero-Day CVE-2026-20131 for Root Access
THEHACKERNEWS.COM — 18 Mar 2026
๐Ÿ›
The Proliferation of DarkSword: iOS Exploit Chain Adopted by Multiple Threat Actors
CLOUD.GOOGLE.COM — 18 Mar 2026
๐Ÿ›
Amazon threat intelligence teams identify Interlock ransomware campaign targeting enterprise firewalls
AWS.AMAZON.COM — 18 Mar 2026
โš ๏ธ
Another Medicat Device Firm Hit
CYBERSECURITYTODAY.LIBSYN.COM — 18 Mar 2026
โš ๏ธ
AWS Bedrock AgentCore Sandbox Bypass Enables Stealthy C2 and Data Exfiltration
GBHACKERS.COM — 18 Mar 2026
โš ๏ธ
Fake Telegram Download Site Delivers Stealthy In-Memory Malware Loader
GBHACKERS.COM — 18 Mar 2026
โš ๏ธ
CISOs rethink their data protection strategies
CSOONLINE.COM — 18 Mar 2026
โš ๏ธ
Aura - 903,080 breached accounts
HAVEIBEENPWNED.COM — 18 Mar 2026
โš ๏ธ
From Misconfigured Spring Boot Actuator to SharePoint Exfiltration: How Stolen Credentials Bypass MFA
TRENDMICRO.COM — 18 Mar 2026
โš ๏ธ
Cybersecurity and privacy priorities for 2026: The legal risk map
CSOONLINE.COM — 18 Mar 2026
โš ๏ธ
ClickFix treibt neue Infostealer-Kampagnen an
CSOONLINE.COM — 18 Mar 2026
โš ๏ธ
Can you prove the person on the other side is real?
CSOONLINE.COM — 18 Mar 2026
โš ๏ธ
Researcher Discovers 4th WhatsApp View Once Bypass; Meta Wonโ€™t Patch
SECURITYWEEK.COM — 18 Mar 2026
โš ๏ธ
ForceMemo Hijacks GitHub Accounts, Backdoors Python Repos
GBHACKERS.COM — 18 Mar 2026
โš ๏ธ
Reco targets AI agent blind spots with new security capability
CSOONLINE.COM — 18 Mar 2026
โš ๏ธ
Apple WebKit Security Flaw Exposes iOS and macOS Users to Content-Based Bypass Attacks
GBHACKERS.COM — 18 Mar 2026
โš ๏ธ
Crypto e-commerce platform Bitrefill accuses North Korea of stealing 18,500 purchase records | The Record from Recorded Future News
SH.ITJUST.WORKS — 18 Mar 2026
โš ๏ธ
The Refund Fraud Economy: Exploiting Major Retailers and Payment Platforms
BLEEPINGCOMPUTER.COM — 18 Mar 2026
โš ๏ธ
New โ€œDarkswordโ€ iOS exploit used in infostealer attack on iPhones
BLEEPINGCOMPUTER.COM — 18 Mar 2026
โš ๏ธ
โ€˜DarkSwordโ€™ iOS Exploit Kit Used by State-Sponsored Hackers, Spyware Vendors
SECURITYWEEK.COM — 18 Mar 2026
โš ๏ธ
Ransomware gang exploits Cisco flaw in zero-day attacks since January
BLEEPINGCOMPUTER.COM — 18 Mar 2026
โš ๏ธ
AI Reinforces Your Bias
YOUTUBE.COM — 2026-03-18
โš ๏ธ
ConnectWise patches new flaw allowing ScreenConnect hijacking
BLEEPINGCOMPUTER.COM — 18 Mar 2026
โš ๏ธ
Shipping-Themed Phishing Scams Target the Middle East and Africa
KNOWBE4.COM — 18 Mar 2026
โš ๏ธ
The Collapse of Predictive Security in the Age of Machine-Speed Attacks
SECURITYWEEK.COM — 18 Mar 2026
โš ๏ธ
CISA orders feds to patch Zimbra XSS flaw exploited in attacks
KEVBLEEPINGCOMPUTER.COM — 18 Mar 2026
โš ๏ธ
CISA Urges Endpoint Management System Hardening After Cyberattack Against US Organization
CISA.GOV — Wed, 18 Mar 26 1
๐Ÿ“‹
Apple Debuts Background Security Improvements With Fresh WebKit Patches
SECURITYWEEK.COM — 18 Mar 2026
๐Ÿ“ข
[Control Systems] Phoenix Contact Security Advisory (AV26-247)
CYBER.GC.CA — 2026-03-18
๐Ÿ“ข
Apple security advisory (AV26-248)
CYBER.GC.CA — 2026-03-18
๐Ÿ“ข
GNU security advisory (AV26-249)
CYBER.GC.CA — 2026-03-18
๐Ÿ“ข
Mitel security advisory (AV26-250)
CYBER.GC.CA — 2026-03-18
๐Ÿ“ข
VMware security advisory (AV26-252)
CYBER.GC.CA — 2026-03-18
๐Ÿ“ข
Atlassian security advisory (AV26-251)
CYBER.GC.CA — 2026-03-18
๐Ÿ“ข
Citrix security advisory (AV26-253)
CYBER.GC.CA — 2026-03-18
๐Ÿ“ข
Roundcube security advisory (AV26-254)
CYBER.GC.CA — 2026-03-18
๐Ÿ“ข
Jenkins security advisory (AV26-255)
CYBER.GC.CA — 2026-03-18
๐Ÿ“ข
Google Chrome security advisory (AV26-256)
CYBER.GC.CA — 2026-03-18
๐Ÿ“ข
ConnectWise security advisory (AV26-257)
CYBER.GC.CA — 2026-03-18
๐Ÿ”ฅ
Microsoft Teams-Based Vishing Attack Tricks Victims Into Quick Assist Takeover
GBHACKERS.COM — 18 Mar 2026
๐Ÿ”ฅ
LeakNet boosts ransomware with ClickFix lures, stealthy Deno loader
GBHACKERS.COM — 18 Mar 2026
๐Ÿ”ฅ
Less Lucrative Ransomware Market Makes Attackers Alter Methods
SH.ITJUST.WORKS — 18 Mar 2026
๐Ÿ”ฅ
9 Critical IP KVM Flaws Enable Unauthenticated Root Access Across Four Vendors
THEHACKERNEWS.COM — 18 Mar 2026
๐Ÿ”ฅ
Iranian Hackers Likely Used Malware-Stolen Credentials in Stryker Breach
SECURITYWEEK.COM — 18 Mar 2026
๐Ÿ”ฅ
Robotic Surgery Giant Intuitive Discloses Cyberattack - SecurityWeek
SH.ITJUST.WORKS — 18 Mar 2026
๐Ÿ”ฅ
Shadow AI Risk: How SaaS Apps Are Quietly Enabling Massive Breaches
SECURITYWEEK.COM — 18 Mar 2026
๐Ÿ”ฅ
Marquis says over 672,000 people had personal and financial data stolen in ransomware attack
TECHCRUNCH.COM — 18 Mar 2026
๐Ÿ”ฅ
Marquis: Ransomware gang stole data of 672K people in cyberattack
BLEEPINGCOMPUTER.COM — 18 Mar 2026
๐Ÿ”ฅ
Aura confirms data breach exposing 900,000 marketing contacts
BLEEPINGCOMPUTER.COM — 18 Mar 2026
๐Ÿ•ต๏ธ
News alert: GitGuardian study shows AI coding tools double leak rates as 29M credentials hit GitHub
LASTWATCHDOG.COM — 18 Mar 2026
๐Ÿ•ต๏ธ
News alert: Orchid Security brings Zero-Trust to AI Agent identities, earns Gartner recognition
LASTWATCHDOG.COM — 18 Mar 2026
๐Ÿ•ต๏ธ
Judicial Targets Hit by COVERT RAT via Court Docs and GitHub Payloads
GBHACKERS.COM — 18 Mar 2026
๐Ÿ•ต๏ธ
Boggy Serpens Hits Diplomats, Critical Infrastructure in Espionage Waves
GBHACKERS.COM — 18 Mar 2026
๐Ÿ•ต๏ธ
Vidar Stealer 2.0 Spreads via Fake Game Cheats Shared on GitHub and Reddit
GBHACKERS.COM — 18 Mar 2026
๐Ÿ•ต๏ธ
Language of the Board as CISO-Board Time Falls Short and CISOs Struggle with Risk - BSW #439
YOUTUBE.COM — 2026-03-18
๐Ÿ•ต๏ธ
Iran Cyber Ops Merge With PsyOps and EW Amid Escalating Conflict
GBHACKERS.COM — 18 Mar 2026
๐Ÿ•ต๏ธ
OpenAI Introduces GPT-5.4 Mini and Nano for Faster, Lightweight AI Performance
GBHACKERS.COM — 18 Mar 2026
๐Ÿ•ต๏ธ
BSI moniert Software-Sicherheit im Gesundheitswesen
CSOONLINE.COM — 18 Mar 2026
๐Ÿ•ต๏ธ
Metaโ€™s AI Glasses and Privacy
SCHNEIER.COM — 2026-03-18
๐Ÿ•ต๏ธ
ISC Stormcast For Wednesday, March 18th, 2026 https://isc.sans.edu/podcastdetail/9854, (Wed, Mar 18th)
ISC.SANS.EDU — 18 Mar 2026
๐Ÿ•ต๏ธ
Android OS-Level Attack Bypasses Mobile Payment Security - Infosecurity Magazine
SH.ITJUST.WORKS — 18 Mar 2026
๐Ÿ•ต๏ธ
Hackers Target Cybersecurity Firm Outpost24 in 7-Stage Phish
SH.ITJUST.WORKS — 18 Mar 2026
๐Ÿ•ต๏ธ
CursorJackโ€™ Attack Path Exposes Code Execution Risk in AI Development - Infosecurity Magazine
SH.ITJUST.WORKS — 18 Mar 2026
๐Ÿ•ต๏ธ
UIDAI Introduces Bug Bounty Program to Strengthen Aadhaar Defenses
GBHACKERS.COM — 18 Mar 2026
๐Ÿ•ต๏ธ
Scans for "adminer", (Wed, Mar 18th)
ISC.SANS.EDU — 18 Mar 2026
๐Ÿ•ต๏ธ
FancyBear Server Leak Exposes Stolen Credentials, 2FA Secrets, NATO Targets
GBHACKERS.COM — 18 Mar 2026
๐Ÿ•ต๏ธ
Manifold Raises $8 Million for AI Detection and Response
SECURITYWEEK.COM — 18 Mar 2026
๐Ÿ•ต๏ธ
The Lost Art of BIA
YOUTUBE.COM — 2026-03-18
๐Ÿ•ต๏ธ
Russians caught stealing personal data from Ukrainians with new advanced iPhone hacking tools
TECHCRUNCH.COM — 18 Mar 2026
๐Ÿ•ต๏ธ
Virtual Summit Today: Supply Chain & Third-Party Risk Summit
SECURITYWEEK.COM — 18 Mar 2026
๐Ÿ•ต๏ธ
EU Sanctions Chinese, Iranian Firms Supporting Hacking Operations
SECURITYWEEK.COM — 18 Mar 2026
๐Ÿ•ต๏ธ
Cloud Security Startup Native Exits Stealth With $42 Million in Funding
SECURITYWEEK.COM — 18 Mar 2026
๐Ÿ•ต๏ธ
Observability for AI Systems: Strengthening visibility for proactive risk detection
MICROSOFT.COM — 18 Mar 2026
๐Ÿ•ต๏ธ
OFAC Sanctions DPRK IT Worker Network Funding WMD Programs Through Fake Remote Jobs
THEHACKERNEWS.COM — 18 Mar 2026
๐Ÿ•ต๏ธ
Autonomous Offensive Security Firm XBOW Raises $120M at $1B+ Valuation
SECURITYWEEK.COM — 18 Mar 2026
๐Ÿ•ต๏ธ
Who Really Owns AI Decisions
YOUTUBE.COM — 2026-03-18
๐Ÿ•ต๏ธ
How NextWaveโ€™s Evolution Drives Shared Success
PALOALTONETWORKS.COM — 18 Mar 2026
๐ŸŽ™๏ธ
Risky Business #829 -- Sneaky lobsters: Why AI is the new insider threat
RISKY.BIZ — 18 Mar 2026
๐Ÿ“ก
Weekly Threat Bulletin โ€“ March 18th, 2026
F5.COM — 18 Mar 2026
๐Ÿ“ก
Why East-West Visibility Matters for Grid Security
TRENDMICRO.COM — 18 Mar 2026
๐Ÿ“ก
Product Walkthrough: How Mesh CSMA Reveals and Breaks Attack Paths to Crown Jewels
THEHACKERNEWS.COM — 18 Mar 2026
๐Ÿ“ก
Claude Code Security and Magecart: Getting the Threat Model Right
THEHACKERNEWS.COM — 18 Mar 2026
๐Ÿ“ก
Nordstrom's email system abused to send crypto scams to customers
BLEEPINGCOMPUTER.COM — 18 Mar 2026
๐Ÿ“ก
FBI is buying location data to track US citizens, director confirms
TECHCRUNCH.COM — 18 Mar 2026
๐Ÿ“ก
Proofpoint Pursues FedRAMP High Authorization Process for Collaboration Security
PROOFPOINT.COM — 18 Mar 2026
๐Ÿ“ก
The SOC Files: Time to โ€œSapecarโ€. Unpacking a new Horabot campaign in Mexico
SECURELIST.COM — 18 Mar 2026