🐛 COMMON VULNERABILITIES AND EXPOSURES 34[−]
23 MarAL26-005 – Critical vulnerability impacting Microsoft SharePoint Server – CVE-2026-20963CYBER.GC.CA
23 Mar KEVOracle Releases Emergency Patch for Critical Identity Manager VulnerabilityCVE-2026-21992 can be used without authentication for remote code execution and it may have been exploited in the wild. The post Oracle Releases Emergency Patch for Critical Identity Manager Vulnerability appeared first on SecurityWeek .SECURITYWEEK.COM
23 MarHackers Exploit CVE-2025-32975 (CVSS 10.0) to Hijack Unpatched Quest KACE SMA SystemsThreat actors are suspected to be exploiting a maximum-severity security flaw impacting Quest KACE Systems Management Appliance (SMA), according to Arctic Wolf. The cybersecurity company said it observed malicious activity starting the week of March 9, 2026, in customer environme…THEHACKERNEWS.COM
23 MarChromium: CVE-2026-4464 Integer overflow in ANGLEThis CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/2026) for more information.MSRC.MICROSOFT.COM
23 MarChromium: CVE-2026-4463 Heap buffer overflow in WebRTCThis CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/2026) for more information.MSRC.MICROSOFT.COM
23 MarChromium: CVE-2026-4462 Out of bounds read in BlinkThis CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/2026) for more information.MSRC.MICROSOFT.COM
23 MarChromium: CVE-2026-4461 Inappropriate implementation in V8This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/2026) for more information.MSRC.MICROSOFT.COM
23 MarChromium: CVE-2026-4456 Use after free in Digital Credentials APIThis CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/2026) for more information.MSRC.MICROSOFT.COM
23 MarChromium: CVE-2026-4460 Out of bounds read in SkiaThis CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/2026) for more information.MSRC.MICROSOFT.COM
23 MarChromium: CVE-2026-4457 Type Confusion in V8This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/2026) for more information.MSRC.MICROSOFT.COM
23 MarChromium: CVE-2026-4446 Use after free in WebRTCThis CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/2026) for more information.MSRC.MICROSOFT.COM
23 MarChromium: CVE-2026-4449 Use after free in BlinkThis CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/2026) for more information.MSRC.MICROSOFT.COM
23 MarChromium: CVE-2026-4445 Use after free in WebRTCThis CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/2026) for more information.MSRC.MICROSOFT.COM
23 MarChromium: CVE-2026-4451 Insufficient validation of untrusted input in NavigationThis CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/2026) for more information.MSRC.MICROSOFT.COM
23 MarChromium: CVE-2026-4447 Inappropriate implementation in V8This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/2026) for more information.MSRC.MICROSOFT.COM
23 MarChromium: CVE-2026-4444 Stack buffer overflow in WebRTCThis CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/2026) for more information.MSRC.MICROSOFT.COM
23 MarChromium: CVE-2026-4455 Heap buffer overflow in PDFiumThis CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/2026) for more information.MSRC.MICROSOFT.COM
23 MarChromium: CVE-2026-4452 Integer overflow in ANGLEThis CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/2026) for more information.MSRC.MICROSOFT.COM
23 MarChromium: CVE-2026-4443 Heap buffer overflow in WebAudioThis CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/2026) for more information.MSRC.MICROSOFT.COM
23 MarChromium: CVE-2026-4448 Heap buffer overflow in ANGLEThis CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/2026) for more information.MSRC.MICROSOFT.COM
23 MarChromium: CVE-2026-4441 Use after free in BaseThis CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/2026) for more information.MSRC.MICROSOFT.COM
23 MarCVE-2026-4438 gethostbyaddr and gethostbyaddr_r return invalid DNS hostnamesInformation published.MSRC.MICROSOFT.COM
23 MarChromium: CVE-2026-4454 Use after free in NetworkThis CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/2026) for more information.MSRC.MICROSOFT.COM
23 MarChromium: CVE-2026-4450 Out of bounds write in V8This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/2026) for more information.MSRC.MICROSOFT.COM
23 MarCVE-2026-4437 gethostbyaddr and gethostbyaddr_r may incorrectly handle DNS responseInformation published.MSRC.MICROSOFT.COM
23 MarChromium: CVE-2026-4458 Use after free in ExtensionsThis CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/2026) for more information.MSRC.MICROSOFT.COM
23 MarChromium: CVE-2026-4440 Out of bounds read and write in WebGLThis CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/2026) for more information.MSRC.MICROSOFT.COM
23 MarHackers Exploit Quest KACE SMA Flaw to Harvest CredentialsSecurity Researchers have detected active exploitation targeting unpatched Quest KACE Systems Management Appliance (SMA) instances. Starting the week of March 9, 2026, threat actors began leveraging a critical authentication bypass vulnerability, identified as CVE-2025-32975, to …GBHACKERS.COM
23 Mar KEVCISA Warns of Craft CMS Code Injection Flaw Exploited in Active AttacksThe Cybersecurity and Infrastructure Security Agency (CISA) has officially added a critical vulnerability affecting Craft CMS to its Known Exploited Vulnerabilities (KEV) catalog. Tracked as CVE-2025-32432, this code injection flaw is currently being exploited in active attacks a…GBHACKERS.COM
23 MarCritical Langflow Flaw CVE-2026-33017 Triggers Attacks within 20 Hours of Disclosuresubmitted by kid to cybersecurity 5 points | 0 comments https://thehackernews.com/2026/03/critical-langflow-flaw-cve-2026-33017.htmlSH.ITJUST.WORKS
23 MarZDI-26-225: (Pwn2Own) Samsung Galaxy S25 Samsung Account Open Redirect Security Bypass VulnerabilityThis vulnerability allows remote attackers to bypass security on affected installations of Samsung Galaxy S25. Authentication is not required to exploit this vulnerability. The ZDI has assigned a CVSS rating of 5.6. The following CVEs are assigned: CVE-2025-58487.ZERODAYINITIATIVE.COM
23 MarZDI-26-224: (Pwn2Own) Samsung Galaxy S25 Samsung Account Cross-Site Scripting Remote Code Execution VulnerabilityThis vulnerability allows remote attackers to execute arbitrary script on affected installations of Samsung Galaxy S25. Authentication is not required to exploit this vulnerability. The ZDI has assigned a CVSS rating of 6.3. The following CVEs are assigned: CVE-2025-58486.ZERODAYINITIATIVE.COM
23 MarZDI-26-223: (Pwn2Own) Samsung Galaxy S25 Smart Touch Call Application Protection Mechanism Failure Information Disclosure VulnerabilityThis vulnerability allows remote attackers to disclose sensitive information on affected installations of Samsung Galaxy S25. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The ZDI has assigned a…ZERODAYINITIATIVE.COM
23 MarZDI-26-222: (Pwn2Own) Canon imageCLASS MF654Cdw BJNP Memory Corruption Remote Code Execution VulnerabilityThis vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of Canon imageCLASS MF654Cdw printers. Authentication is not required to exploit this vulnerability. The ZDI has assigned a CVSS rating of 8.8. The following CVEs are assigned…ZERODAYINITIATIVE.COM
⚠️ VULNERABILITY DISCLOSURE 27[−]
23 MarMicrosoft Xbox One HackedIt’s an impressive feat , over a decade after the box was released: Since reset glitching wasn’t possible, Gaasedelen thought some voltage glitching could do the trick. So, instead of tinkering with the system rest pin(s) the hacker targeted the momentary collapse of …SCHNEIER.COM
23 MarStartup Accused Of Helping Fake Privacy and Security AuditsCompliance Startup Audit-Faking Claims, Trivy Supply-Chain Backdoor, Russia Targets Signal/WhatsApp, and Iran-Linked Stryker Disruption Cybersecurity Today would like to thank Meter for their support in bringing you this podcast. Meter delivers a complete networking stack, wired,…CYBERSECURITYTODAY.LIBSYN.COM
23 MarCISA orders feds to patch DarkSword iOS flaws exploited attacksCISA ordered U.S. government agencies to patch three iOS vulnerabilities targeted in cryptocurrency theft and cyberespionage attacks using the DarkSword exploit kit. [...]BLEEPINGCOMPUTER.COM
23 MarAqua’s Trivy Vulnerability Scanner Hit by Supply Chain AttackHackers published a malicious scanner release and replaced tags to point to information-stealer malware. The post Aqua’s Trivy Vulnerability Scanner Hit by Supply Chain Attack appeared first on SecurityWeek .SECURITYWEEK.COM
23 MarQNAP Patches Four Vulnerabilities Exploited at Pwn2OwnThe flaws could allow attackers to access sensitive information, execute code, or cause unexpected behavior. The post QNAP Patches Four Vulnerabilities Exploited at Pwn2Own appeared first on SecurityWeek .SECURITYWEEK.COM
23 MarTycoon 2FA Fully Operational Despite Law Enforcement TakedownAttack volumes are back to pre-disruption levels, and the adversary tactics have remained unchanged. The post Tycoon 2FA Fully Operational Despite Law Enforcement Takedown appeared first on SecurityWeek .SECURITYWEEK.COM
23 Mar⚡ Weekly Recap: CI/CD Backdoor, FBI Buys Location Data, WhatsApp Ditches Numbers & MoreAnother week, another reminder that the internet is still a mess. Systems people thought were secure are being broken in simple ways, showing many still ignore basic advisories. This edition covers a mix of issues: supply chain attacks hitting CI/CD setups, long-abused IoT device…THEHACKERNEWS.COM
23 MarWe Found Eight Attack Vectors Inside AWS Bedrock. Here's What Attackers Can Do with ThemAWS Bedrock is Amazon's platform for building AI-powered applications. It gives developers access to foundation models and the tools to connect those models directly to enterprise data and systems. That connectivity is what makes it powerful – but it’s also what makes Bedrock a t…THEHACKERNEWS.COM
23 MarThe ‘Urgency Trap’: Why Time Pressure is Your Biggest Email Red FlagThe old rules for spotting a phishing email are changing. Remember looking for bad grammar and clumsy spelling? Thanks to AI, hackers' emails are increasingly polished and hard to spot. But a new poll from KnowBe4 reveals the modern worker's most reliable alarm bell for a cyberat…KNOWBE4.COM
23 MarCritical QNAP QVR Pro Flaw Could Let Remote Attackers Access SystemsQNAP has released an urgent security advisory regarding a critical vulnerability affecting its QVR Pro application, a widely deployed network video surveillance solution. Disclosed on March 21, 2026, under the security advisory identifier QSA-26-07, this severe security flaw coul…GBHACKERS.COM
23 MarFaster attacks and ‘recovery denial’ ransomware reshape threat landscapeMandiant’s M-Trends 2026 report, released today at the RSA Conference, shows that attackers are moving faster, operating more collaboratively, and increasingly focusing on the systems organizations rely on to recover from breaches. The report , based on more than 500,000 hours of…CSOONLINE.COM
23 MarChrome ABE bypass discovered: New VoidStealer malware steals passwords and cookiesA new infostealer is bypassing Chrome’s Application-Bound Encryption ( ABE ), using a debugger-based technique researchers say hasn’t been seen in the wild before. Called “VoidStealer,” the stealer seems to have found a way around ABE, introduced in Chrome 127 in 2024, a security…CSOONLINE.COM
23 MarBehavioral XDR and threat intel nab North Korean fake IT worker within 10 days of hireThe North Korea fake IT worker scheme has become a pernicious threat across several industries. While best practices emphasize precautions throughout the hiring phase, once onboarded such operatives can be challenging to detect. Combinations of behavioral analytics, threat intell…CSOONLINE.COM
23 MarWhy US companies must be ready for quantum by 2030: A practical roadmapLast year, I asked a room of infrastructure, identity and application leaders a simple question: “Where in our environment do we rely on RSA or elliptic curve cryptography?” The first answers were the usual suspects: TLS on the edge, our VPN and the certificates on laptops. Then …CSOONLINE.COM
23 MarThe insider threat rises againInsider threats are coming back in a consequential way. According to the State of Human Risk Report from Mimecast, 42% of organizations have experienced an increase in malicious insider incidents over the past year, with 42% also reporting a rise in negligent incidents for the fi…CSOONLINE.COM
23 Marcpe-guesser 2.0 releasedsubmitted by cm0002 to cybersecurity 2 points | 0 comments https://www.vulnerability-lookup.org/2026/03/22/cpe-guesser-2.0-released/INFOSEC.PUB
23 MarPatch Now: Oracle's Fusion Middleware Has Critical RCE Flawsubmitted by kid to cybersecurity 4 points | 0 comments https://www.darkreading.com/vulnerabilities-threats/patch-oracle-fusion-middleware-rce-flawSH.ITJUST.WORKS
23 MarTrivy vulnerability scanner backdoored with credential stealer in supply chain attack | CSO Onlinesubmitted by kid to cybersecurity 12 points | 1 comments https://www.csoonline.com/article/4148317/trivy-vulnerability-scanner-backdoored-with-credential-stealer-in-supply-chain-attack.htmlSH.ITJUST.WORKS
23 MarWhy One-Time Pen Testing Isn’t EnoughAnnual pen tests no longer suffice in today’s fast-changing technology environment. The landscape demands continuous, adversarial testing for real-time risk assessment. Without modernizing security validation, organizations risk being overwhelmed by vulnerabilities that go unnoti…YOUTUBE.COM
23 MarSomeone has publicly leaked an exploit kit that can hack millions of iPhonesLeaked "DarkSword" exploits published to GitHub allow hackers and cybercriminals to target iPhone users running old versions of iOS with spyware, according to cybersecurity researchers.TECHCRUNCH.COM
23 MarA Vulnerability in Oracle Products Could Allow for Remote Code ExecutionA vulnerability has been discovered in Oracle Products that could allow for remote code execution. Oracle Identity Manager is an identity management product that automates user provisioning, identity administration, and password management, integrated in a comprehensive workflow …CISECURITY.ORG
23 MarI Built 7 MCP Servers for Security Tools. The Protocol Was the Easy Part.submitted by solomonneas to cybersecurity 2 points | 1 comments I built 7 MCP servers connecting AI agents to security tools. Here’s what I learned. The servers cover Wazuh (SIEM alerts, agent management, vulnerability scans), Zeek (network connection logs, DNS, SSL), Suricata (I…SH.ITJUST.WORKS
23 MarSomeone has publicly leaked an exploit kit that can hack millions of iPhonessubmitted by cm0002 to cybersecurity 5 points | 0 comments https://techcrunch.com/2026/03/23/someone-has-publicly-leaked-an-exploit-kit-that-can-hack-millions-of-iphones/INFOSEC.PUB
23 MarSecuring the AI Enterprise — Introducing Prisma AIRS 3.0Prisma AIRS 3.0 provides enterprise-grade visibility, assurance and control to secure your autonomous workforce. The post Securing the AI Enterprise — Introducing Prisma AIRS 3.0 appeared first on Palo Alto Networks Blog .PALOALTONETWORKS.COM
23 MarThe Cryptographic Reset Has BegunThe 200-day TLS certificates signals a structural change in cryptographic trust. Continuous enforcement is key. Discover Next-Generation Trust Security. The post The Cryptographic Reset Has Begun appeared first on Palo Alto Networks Blog .PALOALTONETWORKS.COM
23 MarM-Trends 2026: Data, Insights, and Strategies From the FrontlinesEvery year, the cyber threat landscape forces defenders to adapt to evolving adversary tactics, techniques, and procedures (TTPs). In 2025, Mandiant observed a clear divergence in adversary pacing that closely aligns with the trends we have been documenting for defenders over the…CLOUD.GOOGLE.COM
23 MarIAM policy types: How and when to use themJune 3, 2022: Original publication date of this post. This post has been updated to add the additional IAM policy types: Resource control policies. You manage access in AWS by creating policies and attaching them to AWS Identity and Access Management (IAM) principals (roles, user…AWS.AMAZON.COM
📋 SECURITY BULLETINS 1[−]
23 Mar511,000+ End-of-Life IIS Instances Found Online, Raising Security RisksSecurity researchers at The Shadowserver Foundation have identified a massive internet-facing attack surface, discovering more than 511,000 End-of-Life Microsoft Internet Information Services (IIS) instances currently active online. This widespread deployment of outdated web serv…GBHACKERS.COM
📢 SECURITY ADVISORIES 15[−]
23 MarFBI warns of Handala hackers using Telegram in malware attacksThe U.S. Federal Bureau of Investigation (FBI) warned network defenders that Iranian hackers linked to the country's Ministry of Intelligence and Security (MOIS) are using Telegram in malware attacks. [...]BLEEPINGCOMPUTER.COM
23 Mar‘CanisterWorm’ Springs Wiper Attack Targeting IranA financially motivated data theft and extortion group is attempting to inject itself into the Iran war, unleashing a worm that spreads through poorly secured cloud services and wipes data on infected systems that use Iran's time zone or have Farsi set as the default language.KREBSONSECURITY.COM
23 MarReflections from the Second NIST Cyber AI Profile WorkshopThank you to everyone who participated in the Cybersecurity Framework Profile for Artificial Intelligence (Cyber AI Profile) Workshop in January! The input we received on the Preliminary Draft during this workshop has been invaluable and is informing the development of the next d…NIST.GOV
23 MarFederal immigration agents filmed making airport arrests as Trump calls in ICE to ease security line delaysThe Trump administration has deployed ICE agents to over a dozen U.S. airports amid an ongoing federal shutdown that's causing long wait times. Eyewitnesses have already recorded at least one arrest in San Francisco's airport.TECHCRUNCH.COM
23 MarCISA orders feds to patch max-severity Cisco flaw by Sundaysubmitted by kid to cybersecurity 17 points | 1 comments https://www.bleepingcomputer.com/news/security/cisa-orders-feds-to-patch-max-severity-cisco-flaw-by-sunday/SH.ITJUST.WORKS
🔥 INCIDENT REPORTING 10[−]
23 MarM-Trends 2026: Initial Access Handoff Shrinks From Hours to 22 SecondsThe latest M-Trends report is based on insights from over 500,000 hours of Mandiant incident response investigations in 2025. The post M-Trends 2026: Initial Access Handoff Shrinks From Hours to 22 Seconds appeared first on SecurityWeek .SECURITYWEEK.COM
23 MarChip Services Firm Trio-Tech Says Subsidiary Hit by RansomwareThe semiconductor company says hackers deployed file-encrypting ransomware on the network of a subsidiary in Singapore. The post Chip Services Firm Trio-Tech Says Subsidiary Hit by Ransomware appeared first on SecurityWeek .SECURITYWEEK.COM
23 MarCase study: How predictive shielding in Defender stopped GPO-based ransomware before it startedMicrosoft Defender stopped a human-operated ransomware attack that abused Group Policy Objects (GPOs) to disable defenses and push encryption at scale. This case study breaks down the attacker’s playbook and shows how predictive shielding hardened 700 devices in time, resulting i…MICROSOFT.COM
23 MarLibyan Refinery Targeted in Prolonged Spy Campaign With AsyncRATA targeted cyber espionage campaign against Libyan organizations has compromised an oil refinery, a telecommunications provider, and a state institution between November 2025 and February 2026. The campaign stands out due to its focus on critical infrastructure, particularly Liby…GBHACKERS.COM
23 MarCan AI help critical infrastructure, the state of the cyber market, and weekly news - ESW #451Interview with Kara Sprague - The AI Fix for Infrastructure’s Oldest Security Risks. Critical infrastructure, often built on decades-old systems and legacy code, remains vulnerable to cyberattacks. From pipelines and energy grids to transportation networks, we break down where cr…YOUTUBE.COM
23 MarTrivy Compromised by "TeamPCP" | Wiz Blogsubmitted by cm0002 to cybersecurity 3 points | 0 comments https://www.wiz.io/blog/trivy-compromised-teampcp-supply-chain-attackINFOSEC.PUB
23 MarNavia Data Breach Impacts 2.7 Million - SecurityWeeksubmitted by kid to cybersecurity 4 points | 1 comments https://www.securityweek.com/navia-data-breach-impacts-2-7-million/SH.ITJUST.WORKS
23 MarCrunchyroll probes breach after hacker claims to steal 6.8M users' dataPopular anime streaming platform Crunchyroll is investigating a breach after hackers claimed to have stolen personal information for approximately 6.8 million people. [...]BLEEPINGCOMPUTER.COM
23 MarMazda discloses security breach exposing employee and partner dataMazda Motor Corporation (Mazda) announced that information belonging to its employees and business partners had been exposed in a security incident detected last December. [...]BLEEPINGCOMPUTER.COM
23 MarRuneScape Boards - 222,762 breached accountsIn around 2011, the RuneScape Boards forum (also known as RSBoards) suffered a data breach that was later redistributed as part of a larger corpus of data . The vBulletin-based service exposed 223k unique email addresses along with usernames, IP addresses and salted MD5 password …HAVEIBEENPWNED.COM
🕵️ THREAT INTELLIGENCE 16[−]
23 MarRSAC 2026 Conference Announcements Summary (Pre-Event)A summary of the announcements made by vendors in the days leading up to the RSAC 2026 Conference. The post RSAC 2026 Conference Announcements Summary (Pre-Event) appeared first on SecurityWeek .SECURITYWEEK.COM
23 MarISC Stormcast For Monday, March 23rd, 2026 https://isc.sans.edu/podcastdetail/9860, (Mon, Mar 23rd)(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.ISC.SANS.EDU
23 MarTax Scam Google Ads Push BYOVD EDR Killer, Huntress FindsTax-themed Google Ads are being weaponized to deliver a BYOVD-based EDR killer, with Huntress linking a large-scale malvertising campaign to rogue ScreenConnect deployments and a vulnerable Huawei audio driver used to blind endpoint defenses before hands-on-keyboard activity. Spo…GBHACKERS.COM
23 MarSEO Poisoning Campaign Uses Fake Popular Apps to Deliver AsyncRATSEO Poisoning Campaign Impersonates 25+ Popular Apps to Deliver AsyncRAT Since October 2025.An ongoing SEO poisoning campaign abuses search results to trick users into downloading trojanized installers for more than 25 popular applications, ultimately deploying the AsyncRAT remot…GBHACKERS.COM
23 MarMioLab MacOS Stealer Expands With ClickFix, Wallet Theft, Team APIsAs Apple’s macOS footprint grows in both consumer and enterprise environments, dedicated infostealers like MioLab (aka Nova) show that Macs are no longer a niche target but a priority for cybercrime ecosystems. Marketed as a premium Malware‑as‑a‑Service (MaaS) on Russian‑language…GBHACKERS.COM
23 MarOblivion RAT Masquerades as Play Store Update to Spy on Android UsersA newly discovered Android remote access trojan (RAT) called Oblivion RAT is raising concerns across the mobile threat landscape. Marketed as a malware-as-a-service (MaaS) platform, it is sold on cybercrime forums with subscription plans starting at $300 per month. Unlike typical…GBHACKERS.COM
23 Mar$30 IP-KVM Flaws Could Enable BIOS-Level Enterprise Network AttacksRecent threat research reveals a severe security crisis affecting low-cost IP-KVM devices. Security experts discovered nine vulnerabilities across four popular vendors, transforming these cheap management tools into powerful attack platforms. Compromising a single KVM device gran…GBHACKERS.COM
23 MarFBI says Iranian hackers are using Telegram to steal data in malware attacksHackers working for Iran’s government are using Telegram in hacking operations that use malware to target dissidents, opposition groups, and journalists who oppose its regime, according to the FBI.TECHCRUNCH.COM
23 MarAI-First Security Is Mostly HypeThe AI-for-security space is largely traditional security products with some AI components, marketed as “AI-first” companies. Investors and buyers may overestimate the size of the market or the impact of AI, risking wasted money and misguided strategies. How can we separate real …YOUTUBE.COM
23 MarBurp Anonymizersubmitted by sv1sjp to cybersecurity 14 points | 2 comments Just released #BurpAnonymizer, a Burp Suite extension that redacts PII, credentials, tokens and other sensitive data from HTTP requests/responses. With one click, safely share requests and responses in reports, presentat…INFOSEC.PUB
23 MarThousands of Magento Sites Hit in Ongoing Defacement Campaign - SecurityWeeksubmitted by kid to cybersecurity 12 points | 0 comments https://www.securityweek.com/thousands-of-magento-sites-hit-in-ongoing-defacement-campaign/SH.ITJUST.WORKS
23 MarBurpAnonymizersubmitted by sv1sjp to cybersecurity 8 points | 0 comments Just released #BurpAnonymizer, a Burp Suite extension that redacts PII, credentials, tokens and other sensitive data from HTTP requests/responses. With one click, safely share requests and responses in reports, presentati…SH.ITJUST.WORKS
23 MarNorth Korean Hackers Abuse VS Code Auto-Run Tasks to Deploy StoatWaffle MalwareThe North Korean threat actors behind the Contagious Interview campaign, also tracked as WaterPlum, have been attributed to a malware family tracked as StoatWaffle that's distributed via malicious Microsoft Visual Studio Code (VS Code) projects. The use of VS Code "tasks.json" to…THEHACKERNEWS.COM
23 MarSecuring the Era of Agentic AI with Prisma SASEPrisma SASE is the comprehensive platform for the agentic AI era. Govern new AI identities, protect data from AI sprawl, and enable autonomous operations. The post Securing the Era of Agentic AI with Prisma SASE appeared first on Palo Alto Networks Blog .PALOALTONETWORKS.COM
23 MarPrisma Browser for Business — A Secure Workspace for Small BusinessSecure your small business with Prisma Browser for Business. Get enterprise-grade, AI-powered protection built into a simple, easy-to-use browser workspace. The post Prisma Browser for Business — A Secure Workspace for Small Business appeared first on Palo Alto Networks Blog .PALOALTONETWORKS.COM
23 MarGitHub expands application security coverage with AI‑powered detectionsCodeQL and AI‑powered detections work together in GitHub Code Security to identify vulnerabilities across more languages and frameworks. The post GitHub expands application security coverage with AI‑powered detections appeared first on The GitHub Blog .GITHUB.BLOG
🌐 CYBER THREAT LANDSCAPE 2[−]
23 MarMicrosoft Warns IRS Phishing Hits 29,000 Users, Deploys RMM MalwareMicrosoft has warned of fresh campaigns that are capitalizing on the upcoming tax season in the U.S. to harvest credentials and deliver malware. The email campaigns take advantage of the urgency and time-sensitive nature of emails to send phishing messages masquerading as refund …THEHACKERNEWS.COM
23 MarTrivy Hack Spreads Infostealer via Docker, Triggers Worm and Kubernetes WiperCybersecurity researchers have uncovered malicious artifacts distributed via Docker Hub following the Trivy supply chain attack, highlighting the widening blast radius across developer environments. The last known clean release of Trivy on Docker Hub is 0.69.3. The malicious vers…THEHACKERNEWS.COM
📡 INFOSEC NEWS 10[−]
23 MarTrivy supply-chain attack spreads to Docker, GitHub reposThe TeamPCP hackers behind the Trivy supply-chain attack continued to target Aqua Security, pushing malicious Docker images and hijacking the company's GitHub organization to tamper with dozens of repositories. [...]BLEEPINGCOMPUTER.COM
23 MarVaronis Atlas: Securing AI and the Data That Powers ItAI agents can access data directly, making data security the foundation of AI security. Learn more about how Varonis Atlas helps orgs see, secure, and control AI systems and the data they can reach. [...]BLEEPINGCOMPUTER.COM
23 MarMicrosoft Exchange Online service change causes email access issuesMicrosoft is working to address an ongoing service issue that has intermittently prevented some users from accessing their cloud-based Exchange Online mailboxes via Outlook mobile and Mac desktop clients since Thursday. [...]BLEEPINGCOMPUTER.COM
23 MarNew KB5085516 emergency update fixes Microsoft account sign-inMicrosoft has released an emergency update to address a major issue that breaks sign-ins with Microsoft accounts across multiple Microsoft apps, including Teams and OneDrive. [...]BLEEPINGCOMPUTER.COM
23 MarRussian authorities block paywall removal site Archive.todayA notice on the popular paywall-bypass website Archive.today said that access is blocked "by decision of [Russian] public authorities."TECHCRUNCH.COM
23 MarTeamPCP deploys Iran-targeted wiper in Kubernetes attacksThe TeamPCP hacking group is targeting Kubernetes clusters with a malicious script that wipes all machines when it detects systems configured for Iran. [...]BLEEPINGCOMPUTER.COM
23 MarTool updates: lots of security and logic fixes, (Mon, Mar 23rd)So, I&#;x26;#;39;ve been slow to get on the Claude Code/OpenCode/Codex/OpenClaw bandwagon, but I had some time last week so I asked Claude to review ( /security-review ) some of my python scripts. He found more than I&#;x26;#;39&…ISC.SANS.EDU
23 MarTycoon2FA phishing platform returns after recent police disruptionThe Tycoon2FA phishing-as-a-service (PhaaS) platform that Europol and partners disrupted on March 4 has already returned to previously observed activity levels. [...]BLEEPINGCOMPUTER.COM
23 MarOpenAI rolls out ChatGPT Library to store your personal filesOpenAI is rolling out a new feature called 'Library' for ChatGPT, which allows you to store your personal files or images on OpenAI's cloud storage, so you can reference those items in a future chat. [...]BLEEPINGCOMPUTER.COM