MATLOCK.CA
115Articles
8Categories
2026-03-23Date
πŸ›
AL26-005 – Critical vulnerability impacting Microsoft SharePoint Server – CVE-2026-20963
CYBER.GC.CA — 2026-03-23
πŸ›
Oracle Releases Emergency Patch for Critical Identity Manager Vulnerability
KEVSECURITYWEEK.COM — 23 Mar 2026
πŸ›
Hackers Exploit CVE-2025-32975 (CVSS 10.0) to Hijack Unpatched Quest KACE SMA Systems
THEHACKERNEWS.COM — 23 Mar 2026
πŸ›
Chromium: CVE-2026-4464 Integer overflow in ANGLE
MSRC.MICROSOFT.COM — 23 Mar 2026
πŸ›
Chromium: CVE-2026-4463 Heap buffer overflow in WebRTC
MSRC.MICROSOFT.COM — 23 Mar 2026
πŸ›
Chromium: CVE-2026-4462 Out of bounds read in Blink
MSRC.MICROSOFT.COM — 23 Mar 2026
πŸ›
Chromium: CVE-2026-4461 Inappropriate implementation in V8
MSRC.MICROSOFT.COM — 23 Mar 2026
πŸ›
Chromium: CVE-2026-4456 Use after free in Digital Credentials API
MSRC.MICROSOFT.COM — 23 Mar 2026
πŸ›
Chromium: CVE-2026-4460 Out of bounds read in Skia
MSRC.MICROSOFT.COM — 23 Mar 2026
πŸ›
Chromium: CVE-2026-4457 Type Confusion in V8
MSRC.MICROSOFT.COM — 23 Mar 2026
πŸ›
Chromium: CVE-2026-4446 Use after free in WebRTC
MSRC.MICROSOFT.COM — 23 Mar 2026
πŸ›
Chromium: CVE-2026-4449 Use after free in Blink
MSRC.MICROSOFT.COM — 23 Mar 2026
πŸ›
Chromium: CVE-2026-4445 Use after free in WebRTC
MSRC.MICROSOFT.COM — 23 Mar 2026
πŸ›
Chromium: CVE-2026-4451 Insufficient validation of untrusted input in Navigation
MSRC.MICROSOFT.COM — 23 Mar 2026
πŸ›
Chromium: CVE-2026-4447 Inappropriate implementation in V8
MSRC.MICROSOFT.COM — 23 Mar 2026
πŸ›
Chromium: CVE-2026-4444 Stack buffer overflow in WebRTC
MSRC.MICROSOFT.COM — 23 Mar 2026
πŸ›
Chromium: CVE-2026-4455 Heap buffer overflow in PDFium
MSRC.MICROSOFT.COM — 23 Mar 2026
πŸ›
Chromium: CVE-2026-4452 Integer overflow in ANGLE
MSRC.MICROSOFT.COM — 23 Mar 2026
πŸ›
Chromium: CVE-2026-4443 Heap buffer overflow in WebAudio
MSRC.MICROSOFT.COM — 23 Mar 2026
πŸ›
Chromium: CVE-2026-4448 Heap buffer overflow in ANGLE
MSRC.MICROSOFT.COM — 23 Mar 2026
πŸ›
Chromium: CVE-2026-4441 Use after free in Base
MSRC.MICROSOFT.COM — 23 Mar 2026
πŸ›
CVE-2026-4438 gethostbyaddr and gethostbyaddr_r return invalid DNS hostnames
MSRC.MICROSOFT.COM — 23 Mar 2026
πŸ›
Chromium: CVE-2026-4454 Use after free in Network
MSRC.MICROSOFT.COM — 23 Mar 2026
πŸ›
Chromium: CVE-2026-4450 Out of bounds write in V8
MSRC.MICROSOFT.COM — 23 Mar 2026
πŸ›
CVE-2026-4437 gethostbyaddr and gethostbyaddr_r may incorrectly handle DNS response
MSRC.MICROSOFT.COM — 23 Mar 2026
πŸ›
Chromium: CVE-2026-4458 Use after free in Extensions
MSRC.MICROSOFT.COM — 23 Mar 2026
πŸ›
Chromium: CVE-2026-4440 Out of bounds read and write in WebGL
MSRC.MICROSOFT.COM — 23 Mar 2026
πŸ›
Hackers Exploit Quest KACE SMA Flaw to Harvest Credentials
GBHACKERS.COM — 23 Mar 2026
πŸ›
CISA Warns of Craft CMS Code Injection Flaw Exploited in Active Attacks
KEVGBHACKERS.COM — 23 Mar 2026
πŸ›
Critical Langflow Flaw CVE-2026-33017 Triggers Attacks within 20 Hours of Disclosure
SH.ITJUST.WORKS — 23 Mar 2026
πŸ›
ZDI-26-225: (Pwn2Own) Samsung Galaxy S25 Samsung Account Open Redirect Security Bypass Vulnerability
ZERODAYINITIATIVE.COM — 23 Mar 2026
πŸ›
ZDI-26-224: (Pwn2Own) Samsung Galaxy S25 Samsung Account Cross-Site Scripting Remote Code Execution Vulnerability
ZERODAYINITIATIVE.COM — 23 Mar 2026
πŸ›
ZDI-26-223: (Pwn2Own) Samsung Galaxy S25 Smart Touch Call Application Protection Mechanism Failure Information Disclosure Vulnerability
ZERODAYINITIATIVE.COM — 23 Mar 2026
πŸ›
ZDI-26-222: (Pwn2Own) Canon imageCLASS MF654Cdw BJNP Memory Corruption Remote Code Execution Vulnerability
ZERODAYINITIATIVE.COM — 23 Mar 2026
⚠️
Microsoft Xbox One Hacked
SCHNEIER.COM — 2026-03-23
⚠️
Startup Accused Of Helping Fake Privacy and Security Audits
CYBERSECURITYTODAY.LIBSYN.COM — 23 Mar 2026
⚠️
CISA orders feds to patch DarkSword iOS flaws exploited attacks
BLEEPINGCOMPUTER.COM — 23 Mar 2026
⚠️
Aqua’s Trivy Vulnerability Scanner Hit by Supply Chain Attack
SECURITYWEEK.COM — 23 Mar 2026
⚠️
QNAP Patches Four Vulnerabilities Exploited at Pwn2Own
SECURITYWEEK.COM — 23 Mar 2026
⚠️
Tycoon 2FA Fully Operational Despite Law Enforcement Takedown
SECURITYWEEK.COM — 23 Mar 2026
⚠️
⚑ Weekly Recap: CI/CD Backdoor, FBI Buys Location Data, WhatsApp Ditches Numbers & More
THEHACKERNEWS.COM — 23 Mar 2026
⚠️
We Found Eight Attack Vectors Inside AWS Bedrock. Here's What Attackers Can Do with Them
THEHACKERNEWS.COM — 23 Mar 2026
⚠️
The β€˜Urgency Trap’: Why Time Pressure is Your Biggest Email Red Flag
KNOWBE4.COM — 23 Mar 2026
⚠️
Critical QNAP QVR Pro Flaw Could Let Remote Attackers Access Systems
GBHACKERS.COM — 23 Mar 2026
⚠️
Faster attacks and β€˜recovery denial’ ransomware reshape threat landscape
CSOONLINE.COM — 23 Mar 2026
⚠️
Chrome ABE bypass discovered: New VoidStealer malware steals passwords and cookies
CSOONLINE.COM — 23 Mar 2026
⚠️
Behavioral XDR and threat intel nab North Korean fake IT worker within 10 days of hire
CSOONLINE.COM — 23 Mar 2026
⚠️
Why US companies must be ready for quantum by 2030: A practical roadmap
CSOONLINE.COM — 23 Mar 2026
⚠️
The insider threat rises again
CSOONLINE.COM — 23 Mar 2026
⚠️
cpe-guesser 2.0 released
INFOSEC.PUB — 23 Mar 2026
⚠️
Patch Now: Oracle's Fusion Middleware Has Critical RCE Flaw
SH.ITJUST.WORKS — 23 Mar 2026
⚠️
Trivy vulnerability scanner backdoored with credential stealer in supply chain attack | CSO Online
SH.ITJUST.WORKS — 23 Mar 2026
⚠️
Why One-Time Pen Testing Isn’t Enough
YOUTUBE.COM — 2026-03-23
⚠️
Someone has publicly leaked an exploit kit that can hack millions of iPhones
TECHCRUNCH.COM — 23 Mar 2026
⚠️
A Vulnerability in Oracle Products Could Allow for Remote Code Execution
CISECURITY.ORG — 23 Mar 2026
⚠️
I Built 7 MCP Servers for Security Tools. The Protocol Was the Easy Part.
SH.ITJUST.WORKS — 23 Mar 2026
⚠️
Someone has publicly leaked an exploit kit that can hack millions of iPhones
INFOSEC.PUB — 23 Mar 2026
⚠️
Securing the AI Enterprise β€” Introducing Prisma AIRS 3.0
PALOALTONETWORKS.COM — 23 Mar 2026
⚠️
The Cryptographic Reset Has Begun
PALOALTONETWORKS.COM — 23 Mar 2026
⚠️
M-Trends 2026: Data, Insights, and Strategies From the Frontlines
CLOUD.GOOGLE.COM — 23 Mar 2026
⚠️
IAM policy types: How and when to use them
AWS.AMAZON.COM — 23 Mar 2026
πŸ“‹
511,000+ End-of-Life IIS Instances Found Online, Raising Security Risks
GBHACKERS.COM — 23 Mar 2026
πŸ“’
VMware security advisory (AV26-269)
CYBER.GC.CA — 2026-03-23
πŸ“’
Microsoft Edge security advisory (AV26-268)
CYBER.GC.CA — 2026-03-23
πŸ“’
Citrix security advisory (AV26-267)
CYBER.GC.CA — 2026-03-23
πŸ“’
Red Hat security advisory (AV26-266)
CYBER.GC.CA — 2026-03-23
πŸ“’
[Control systems] CISA ICS security advisories (AV26–265)
CYBER.GC.CA — 2026-03-23
πŸ“’
Ubuntu security advisory (AV26-264)
CYBER.GC.CA — 2026-03-23
πŸ“’
Dell security advisory (AV26-263)
CYBER.GC.CA — 2026-03-23
πŸ“’
IBM security advisory (AV26-262)
CYBER.GC.CA — 2026-03-23
πŸ“’
Oracle security advisory (AV26-261)
CYBER.GC.CA — 2026-03-23
πŸ“’
Kubernetes security advisory (AV26-260)
CYBER.GC.CA — 2026-03-23
πŸ“’
FBI warns of Handala hackers using Telegram in malware attacks
BLEEPINGCOMPUTER.COM — 23 Mar 2026
πŸ“’
β€˜CanisterWorm’ Springs Wiper Attack Targeting Iran
KREBSONSECURITY.COM — 23 Mar 2026
πŸ“’
Reflections from the Second NIST Cyber AI Profile Workshop
NIST.GOV — 23 Mar 2026
πŸ“’
Federal immigration agents filmed making airport arrests as Trump calls in ICE to ease security line delays
TECHCRUNCH.COM — 23 Mar 2026
πŸ“’
CISA orders feds to patch max-severity Cisco flaw by Sunday
SH.ITJUST.WORKS — 23 Mar 2026
πŸ”₯
M-Trends 2026: Initial Access Handoff Shrinks From Hours to 22 Seconds
SECURITYWEEK.COM — 23 Mar 2026
πŸ”₯
Chip Services Firm Trio-Tech Says Subsidiary Hit by Ransomware
SECURITYWEEK.COM — 23 Mar 2026
πŸ”₯
Case study: How predictive shielding in Defender stopped GPO-based ransomware before it started
MICROSOFT.COM — 23 Mar 2026
πŸ”₯
Libyan Refinery Targeted in Prolonged Spy Campaign With AsyncRAT
GBHACKERS.COM — 23 Mar 2026
πŸ”₯
Can AI help critical infrastructure, the state of the cyber market, and weekly news - ESW #451
YOUTUBE.COM — 2026-03-23
πŸ”₯
Trivy Compromised by "TeamPCP" | Wiz Blog
INFOSEC.PUB — 23 Mar 2026
πŸ”₯
Navia Data Breach Impacts 2.7 Million - SecurityWeek
SH.ITJUST.WORKS — 23 Mar 2026
πŸ”₯
Crunchyroll probes breach after hacker claims to steal 6.8M users' data
BLEEPINGCOMPUTER.COM — 23 Mar 2026
πŸ”₯
Mazda discloses security breach exposing employee and partner data
BLEEPINGCOMPUTER.COM — 23 Mar 2026
πŸ”₯
RuneScape Boards - 222,762 breached accounts
HAVEIBEENPWNED.COM — 23 Mar 2026
πŸ•΅οΈ
RSAC 2026 Conference Announcements Summary (Pre-Event)
SECURITYWEEK.COM — 23 Mar 2026
πŸ•΅οΈ
ISC Stormcast For Monday, March 23rd, 2026 https://isc.sans.edu/podcastdetail/9860, (Mon, Mar 23rd)
ISC.SANS.EDU — 23 Mar 2026
πŸ•΅οΈ
Tax Scam Google Ads Push BYOVD EDR Killer, Huntress Finds
GBHACKERS.COM — 23 Mar 2026
πŸ•΅οΈ
SEO Poisoning Campaign Uses Fake Popular Apps to Deliver AsyncRAT
GBHACKERS.COM — 23 Mar 2026
πŸ•΅οΈ
MioLab MacOS Stealer Expands With ClickFix, Wallet Theft, Team APIs
GBHACKERS.COM — 23 Mar 2026
πŸ•΅οΈ
Oblivion RAT Masquerades as Play Store Update to Spy on Android Users
GBHACKERS.COM — 23 Mar 2026
πŸ•΅οΈ
$30 IP-KVM Flaws Could Enable BIOS-Level Enterprise Network Attacks
GBHACKERS.COM — 23 Mar 2026
πŸ•΅οΈ
FBI says Iranian hackers are using Telegram to steal data in malware attacks
TECHCRUNCH.COM — 23 Mar 2026
πŸ•΅οΈ
AI-First Security Is Mostly Hype
YOUTUBE.COM — 2026-03-23
πŸ•΅οΈ
Burp Anonymizer
INFOSEC.PUB — 23 Mar 2026
πŸ•΅οΈ
Thousands of Magento Sites Hit in Ongoing Defacement Campaign - SecurityWeek
SH.ITJUST.WORKS — 23 Mar 2026
πŸ•΅οΈ
BurpAnonymizer
SH.ITJUST.WORKS — 23 Mar 2026
πŸ•΅οΈ
North Korean Hackers Abuse VS Code Auto-Run Tasks to Deploy StoatWaffle Malware
THEHACKERNEWS.COM — 23 Mar 2026
πŸ•΅οΈ
Securing the Era of Agentic AI with Prisma SASE
PALOALTONETWORKS.COM — 23 Mar 2026
πŸ•΅οΈ
Prisma Browser for Business β€” A Secure Workspace for Small Business
PALOALTONETWORKS.COM — 23 Mar 2026
πŸ•΅οΈ
GitHub expands application security coverage with AI‑powered detections
GITHUB.BLOG — 23 Mar 2026
🌐
Microsoft Warns IRS Phishing Hits 29,000 Users, Deploys RMM Malware
THEHACKERNEWS.COM — 23 Mar 2026
🌐
Trivy Hack Spreads Infostealer via Docker, Triggers Worm and Kubernetes Wiper
THEHACKERNEWS.COM — 23 Mar 2026
πŸ“‘
Trivy supply-chain attack spreads to Docker, GitHub repos
BLEEPINGCOMPUTER.COM — 23 Mar 2026
πŸ“‘
Varonis Atlas: Securing AI and the Data That Powers It
BLEEPINGCOMPUTER.COM — 23 Mar 2026
πŸ“‘
Microsoft Exchange Online service change causes email access issues
BLEEPINGCOMPUTER.COM — 23 Mar 2026
πŸ“‘
New KB5085516 emergency update fixes Microsoft account sign-in
BLEEPINGCOMPUTER.COM — 23 Mar 2026
πŸ“‘
Russian authorities block paywall removal site Archive.today
TECHCRUNCH.COM — 23 Mar 2026
πŸ“‘
TeamPCP deploys Iran-targeted wiper in Kubernetes attacks
BLEEPINGCOMPUTER.COM — 23 Mar 2026
πŸ“‘
Tool updates: lots of security and logic fixes, (Mon, Mar 23rd)
ISC.SANS.EDU — 23 Mar 2026
πŸ“‘
Tycoon2FA phishing platform returns after recent police disruption
BLEEPINGCOMPUTER.COM — 23 Mar 2026
πŸ“‘
OpenAI rolls out ChatGPT Library to store your personal files
BLEEPINGCOMPUTER.COM — 23 Mar 2026
πŸ“‘
Proofpoint Redefines Email and Data Security for the Agentic Workspace
PROOFPOINT.COM — 23 Mar 2026