106Articles
7Categories
2026-03-24Date
🐛 COMMON VULNERABILITIES AND EXPOSURES 3[−]
24 MarCritical NetScaler ADC and Gateway Flaws Expose Systems to Remote AttacksCloud Software Group has published a critical security bulletin addressing two significant vulnerabilities in customer-managed NetScaler ADC and NetScaler Gateway deployments. These flaws, tracked as CVE-2026-3055 and CVE-2026-4368, could allow attackers to extract sensitive data…GBHACKERS.COM
24 MarCitrix Urges Patching Critical NetScaler Flaw Allowing Unauthenticated Data LeaksCitrix has released security updates to address two vulnerabilities in NetScaler ADC and NetScaler Gateway, including a critical flaw that could be exploited to leak sensitive data from the application. The vulnerabilities are listed below - CVE-2026-3055 (CVSS score: 9.3) - Insu…THEHACKERNEWS.COM
24 MarVU#330121: IDrive for Windows contains local privilege escalation vulnerabilityOverview The IDrive Cloud Backup Client for Windows, versions 7.0.0.63 and earlier, contains a privilege escalation vulnerability that allows any authenticated user to run arbitrary executables with NT AUTHORITY\SYSTEM permissions. Description IDrive is a cloud backup service tha…KB.CERT.ORG
⚠️ VULNERABILITY DISCLOSURE 27[−]
24 MarPalo Alto updates security platform to discover AI agentsAs CISOs worry about AI agent sprawl, Palo Alto Networks has announced an update to its Prisma AIRS security platform and enterprise browser to include the ability to discover AI agents, models, and connections across the entire IT environment, to scan agents for vulnerabilities,…CSOONLINE.COM
24 MarChrome Security Update Fixes 8 Vulnerabilities That Could Enable Remote Code ExecutionGoogle has released a crucial security update for its Chrome browser, addressing eight high-severity vulnerabilities. Users are strongly advised to update their browsers immediately to protect their systems from potential remote code execution attacks. The stable channel update r…GBHACKERS.COM
24 MarRoundcube Releases Urgent Security Update to Fix Critical BugsRoundcube Webmail, a widely deployed open-source webmail interface, has released an urgent security update to address multiple critical vulnerabilities. The new stable release, version 1.6.14, patches eight distinct security flaws reported by independent security researchers. Bec…GBHACKERS.COM
24 MarNIST Releases Quick-Start Guide Linking Cybersecurity, Enterprise Risk, and Workforce ManagementThe National Institute of Standards and Technology (NIST) has officially released Special Publication 1308, a new quick-start guide designed to align cybersecurity, enterprise risk, and workforce management. Published in March 2026, this documentation addresses the growing need f…GBHACKERS.COM
24 MarWhy CISOs should embrace AI honeypotsThe nightmare begins with our protagonist trying to find a way inside to get to the firm’s files, but every door is bolted shut. Then they spot a back entrance and they’re in, first walking, then running down one corridor, then another, and another, feeling that they’re getting e…CSOONLINE.COM
24 MarFounder of CoinDCX Arrested Amid Serious Fraud and Cheating ChargesThe Indian cryptocurrency sector is currently facing a significant legal and cybersecurity controversy following the recent arrest of prominent CoinDCX executives. Local law enforcement from Mumbra police in Thane apprehended co-founders Sumit Gupta and Neeraj Khandelwal in Benga…GBHACKERS.COM
24 MarStreamline physical security to enable data center growth in the era of AIAI is the new space race for data centers, and consistency at speed is the rocket fuel that colocation and hyperscale providers need to reach orbit. Everything you already know about physical security still applies but it won’t matter unless you have the right plan and partnershi…CSOONLINE.COM
24 MarWhy Proactive Security Is Far Better Than Patching - Erik Nost - ASW #375So much of appsec’s efforts can be consumed by vuln management and a race to patch security flaws. But that’s more a symptom of the ease of scanning and the volume of CVEs. Erik Nost walks through the principles behind proactive security, why the concept sounds familiar to secure…YOUTUBE.COM
24 MarAutonomous AI adoption is on the rise, but it’s riskyTwo AI releases early this year are prompting users to give up control and let autonomous agentic tools complete tasks on their behalf. IT leaders should be ready to deal with the consequences. Anthropic rolled out its agentic platform Claude Cowork in January for macOs and Febru…CSOONLINE.COM
24 MarThreat Actors Target MS-SQL Servers to Deploy ICE Cloud Scanner MalwareThreat actors are continuing to aggressively target Microsoft SQL (MS-SQL) servers in 2026, with new evidence showing the deployment of a scanner malware known as ICE Cloud Client. Larva-26002 has maintained a consistent focus on poorly secured MS-SQL servers exposed to the inter…GBHACKERS.COM
24 MarMultiple Vulnerabilities in TP-Link Devices Enable Arbitrary Command ExecutionTP-Link recently published a critical security advisory addressing four high-severity vulnerabilities in its Archer series routers. The flaws impact the Archer NX200, NX210, NX500, and NX600 models. If successfully exploited, these vulnerabilities enable threat actors to bypass a…GBHACKERS.COM
24 MarCritical Citrix NetScaler Vulnerability Poised for Exploitation, Security Firms WarnAn out-of-bounds read vulnerability can be exploited remotely without authentication to read sensitive information from memory. The post Critical Citrix NetScaler Vulnerability Poised for Exploitation, Security Firms Warn appeared first on SecurityWeek .SECURITYWEEK.COM
24 MarDell Wyse Management Flaws Could Lead to Full System CompromiseSecurity researcher Aleksandr Zhurnakov from PT Security has discovered a critical exploit chain in Dell Wyse Management Suite. By combining seemingly minor logic flaws, an attacker can achieve unauthenticated remote code execution. This attack targets the On-Premises version of …GBHACKERS.COM
24 MarNew ‘StoatWaffle’ malware auto‑executes attacks on developersA newly disclosed malware strain dubbed “StoatWaffle” is giving fresh teeth to the notorious, developer-targeting “Contagious Interview” threat campaign. According to NTT Security findings, the malware marks an evolution from the long-running campaign’s user-triggered execution t…CSOONLINE.COM
24 MarDarkSword Exploit Chain Leaked Online, Posing Risk to Millions of iPhonesSecurity researchers have confirmed that the sophisticated iOS exploit chain known as DarkSword is now accessible outside of its original threat actor groups. Recently, security researcher @matteyeux successfully achieved kernel read/write access on an iPad mini 6th generation ru…GBHACKERS.COM
24 MarTycoon2FA Operators Resume Cloud Account Phishing Following InfrastructureTycoon2FA operators have resumed large-scale cloud account phishing just days after law enforcement and industry partners disrupted the platform’s core infrastructure, underscoring the resilience of phishing-as-a-service (PhaaS) ecosystems and the limits of infrastructure-only ta…GBHACKERS.COM
24 MarHP launches TPM Guard to help defeat physical TPM attacksThe Trusted Platform Module (TPM), developed by the Trusted Computing Group (TCG), is a mandatory security component in any computer running Windows 11. It stores sensitive information such as encryption keys in a separate, secure chip, passing it to the CPU as required. However,…CSOONLINE.COM
24 MarNews alert: DDoS attacks surge 150%—Gcore analysis shows faster, cheaper more frequent attacksLUXEMBOURG, Luxembourg, March 24, 2026, CyberNewswire— Gcore , the global infrastructure and software provider for AI, cloud, network, and security solutions, today announced the findings of its Q3-Q4 2025 Gcore Radar report DDoS attack trends. The report reveals growing attack &…LASTWATCHDOG.COM
24 MarBest Practices for Implementing AI AgentsOn March 9th, Codewall.ai disclosed how it had hacked McKinsey & Company’s AI platform called Lilli, a purpose-built system for 43,000+ employees to analyze documents, chat, and access decades of proprietary research. The researchers unleashed an AI agent which quickly scanne…KNOWBE4.COM
24 MarYour Attack Surface Just ExpandedSecurity platforms are expanding the definition of assets beyond endpoints to include identities, applications, cloud workloads, and IoT devices. As the attack surface grows, traditional security controls may no longer be applied in the right places. Organizations must rethink wh…YOUTUBE.COM
24 Mar100,000+ New Vulnerabilities This Year and Most Will Be Zero-Days Exploited FasterThe number of publicly reported unique vulnerabilities has risen year after year . There was a brief decrease and stabilization in 2015 - 2016, but those are the only years in the over two decades (1999 - on) I have been following vulnerability metrics. Other than that, it has be…KNOWBE4.COM
24 MarPTC warns of imminent threat from critical Windchill, FlexPLM RCE bugPTC Inc. is warning of a critical vulnerability in Windchill and FlexPLM, widely used product lifecycle management (PLM) solutions, that could allow remote code execution. [...]BLEEPINGCOMPUTER.COM
24 MarCloud workload security: Mind the gapsAs IT infrastructure expands, visibility and control often lag behind – until an incident forces a reckoningWELIVESECURITY.COM
24 MarZDI-26-226: (0Day) Microsoft Azure MCP AzureCliService Command Injection Remote Code Execution VulnerabilityThis vulnerability allows remote attackers to execute arbitrary code on affected installations of Microsoft Azure. Authentication is not required to exploit this vulnerability. The ZDI has assigned a CVSS rating of 9.8.ZERODAYINITIATIVE.COM
24 MarMeet Tenable Hexa AI: Agentic AI for exposure managementMeet Tenable Hexa AI: the agentic engine of the Tenable One Exposure Management Platform. Learn how Tenable Hexa AI automates complex security workflows and transforms exposure intelligence into coordinated action to help your security team meaningfully reduce cyber risk. Key tak…TENABLE.COM
24 MarVU#577436: Hard coded credentials vulnerability in GoHarbor's HarborOverview GoHarbor's Harbor default admin password presents a security risk because it does not require change upon initial deployment. Description GoHarbor's Harbor is an open-source OCI-compliant container registry project that stores, signs, and manages container images. Harbor…KB.CERT.ORG
24 MarSpotting issues in DeFi with dimensional analysisUsing dimensional analysis, you can categorically rule out a whole category of logic and arithmetic bugs that plague DeFi formulas. No code changes required, just better reasoning! One of the first lessons in physics is learning to think in terms of dimensions . Physicists can of…TRAILOFBITS.COM
📢 SECURITY ADVISORIES 12[−]
24 MarDelve halts demos, Insight Partners scrubs investment post amid ‘fake compliance’ allegationsAfter a whistleblower alleged that the startup fabricated audit evidence, its prominent Series A investor removed an article detailing why it led the deal.TECHCRUNCH.COM
24 MarDelve - Fake Compliance as a Servicesubmitted by Kissaki to cybersecurity 1 points | 0 comments https://deepdelver.substack.com/p/delve-fake-compliance-as-a-serviceINFOSEC.PUB
24 MarDelve - Fake Compliance as a Servicesubmitted by Kissaki to security 1 points | 0 comments https://deepdelver.substack.com/p/delve-fake-compliance-as-a-servicePROGRAMMING.DEV
24 MarTeamPCP Unleashes Iran-Targeted CanisterWorm Kubernetes WiperCanisterWorm’s latest evolution turns TeamPCP’s cloud-native toolkit into a geopolitically tuned wiper, capable of bricking entire Kubernetes clusters when it lands on systems configured for Iran. The campaign reuses the same Internet Computer Protocol (ICP) canister C2 and backd…GBHACKERS.COM
24 MarDutch Ministry of Finance discloses breach affecting employeesThe Dutch Ministry of Finance confirmed on Monday that some of its systems were breached in a cyberattack detected last week. [...]BLEEPINGCOMPUTER.COM
24 MarHackerOne discloses employee data breach after Navia hackBug bounty platform HackerOne is notifying hundreds of employees that their data was stolen after attackers hacked Navia, one of its U.S. benefits administrators. [...]BLEEPINGCOMPUTER.COM
🔥 INCIDENT REPORTING 18[−]
24 MarUS State Department launches the Bureau of Emerging Threats to tackle current and future threats, including cyberattacks and AI weaponization by adversariessubmitted by Innerworld to cybersecurity 3 points | 0 comments https://abcnews.com/Politics/state-department-launches-effort-counter-cyberattacks-ai-risks/story?id=131265350INFOSEC.PUB
24 MarUS State Department launches the Bureau of Emerging Threats to tackle current and future threats, including cyberattacks and AI weaponization by adversariessubmitted by Innerworld to security 2 points | 0 comments https://abcnews.com/Politics/state-department-launches-effort-counter-cyberattacks-ai-risks/story?id=131265350PROGRAMMING.DEV
24 MarUS State Department launches the Bureau of Emerging Threats to tackle current and future threats, including cyberattacks and AI weaponization by adversariessubmitted by Innerworld to cybersecurity 2 points | 0 comments https://abcnews.com/Politics/state-department-launches-effort-counter-cyberattacks-ai-risks/story?id=131265350SH.ITJUST.WORKS
24 MarWeekly Update 496Presently sponsored by: Report URI: Guarding you from rogue JavaScript! Don’t get pwned; get real-time alerts & prevent breaches #SecureYourSite Watching OpenClaw do its thing must be like watching the first plane take flight. It's a bit rickety and stuck together with a lot…TROYHUNT.COM
24 MarNew Leak Site Tied to Active Initial Access Broker Emerges on Underground ForumsA new Tor-based leak site dubbed ALP-001 has quietly moved from selling network footholds to publicly naming victims, signaling an evolution from pure initial access brokerage to full-scale cyber extortion. The ALP-001 site, reachable only over Tor, advertises itself as a “Data L…GBHACKERS.COM
24 MarU.S. Sentences Russian Hacker to 6.75 Years for Role in $9M Ransomware DamageA 26-year-old Russian citizen has been sentenced in the U.S. to 6.75 years (81 months) in prison for his role in assisting major cybercrime groups, including the Yanluowang ransomware crew, in conducting numerous attacks against U.S. companies and other organizations. According t…THEHACKERNEWS.COM
24 MarRussian Access Broker Jailed for Facilitating Ransomware Attacks Targeting U.S. CompaniesA United States federal court has sentenced Aleksei Volkov, a 26-year-old Russian national, to 81 months in prison for operating as an initial access broker. Volkov played a critical part in enabling major cybercrime syndicates, including the Yanluowang ransomware group, to breac…GBHACKERS.COM
24 MarMazda Says Employee, Partner Information Stolen in CyberattackThe hackers stole internal IDs, names, email addresses, and business partner IDs from an internal management system. The post Mazda Says Employee, Partner Information Stolen in Cyberattack appeared first on SecurityWeek .SECURITYWEEK.COM
24 MarTeamPCP Hacks Checkmarx GitHub Actions Using Stolen CI CredentialsTwo more GitHub Actions workflows have become the latest to be compromised by credential-stealing malware by a threat actor known as TeamPCP, the cloud-native cybercriminal operation also behind the Trivy supply chain attack. The workflows, both maintained by the supply chain sec…THEHACKERNEWS.COM
24 Mar3.1 Million Impacted by QualDerm Data BreachHackers stole personal, medical, and health insurance information from the company’s internal systems. The post 3.1 Million Impacted by QualDerm Data Breach appeared first on SecurityWeek .SECURITYWEEK.COM
24 MarYanluowang ransomware access broker gets 81 months in prisonA Russian national was sentenced to nearly 7 years in prison after pleading guilty to acting as an initial access broker (IAB) for Yanluowang ransomware attacks. [...]BLEEPINGCOMPUTER.COM
24 MarInfinite Campus warns of breach after ShinyHunters claims data theftInfinite Campus, a widely used K-12 student information system, is warning customers of a data breach following an extortion attempt by a threat actor. [...]BLEEPINGCOMPUTER.COM
24 MarExtortion Group Claims It Hacked AstraZenecaThe Lapsus$ hackers allegedly compromised internal code repositories, credentials, and employee data. The post Extortion Group Claims It Hacked AstraZeneca appeared first on SecurityWeek .SECURITYWEEK.COM
24 MarSQL Server Ransomware Attacks: How They Work and How to Harden Your DatabaseKey Takeaways ●       Documented SQL Server attacks have moved from initial access to ransomware deployment within the hour when exposure is high and defenses are absent — but attack timelines vary widely depending on privileges, host controls, segmentation, and at…GBHACKERS.COM
24 MarCrunchyroll confirms data breach after hacker claims unauthorized accessCrunchyroll said it continues to investigate the data breach involving its users' personal information.TECHCRUNCH.COM
24 MarPoland Faced a Surge in Cyberattacks in 2025, Including a Major Assault on the Energy SectorThe attacks included a destructive infiltration of Poland's energy system in December and was suspected of originating in Russia. The post Poland Faced a Surge in Cyberattacks in 2025, Including a Major Assault on the Energy Sector appeared first on SecurityWeek .SECURITYWEEK.COM
24 MarTeamPCP Backdoors LiteLLM Versions 1.82.7–1.82.8 Likely via Trivy CI/CD CompromiseTeamPCP, the threat actor behind the recent compromises of Trivy and KICS, has now compromised a popular Python package named litellm, pushing two malicious versions containing a credential harvester, a Kubernetes lateral movement toolkit, and a persistent backdoor. Multiple secu…THEHACKERNEWS.COM
24 MarPopular LiteLLM PyPI package compromised in TeamPCP supply chain attackThe TeamPCP hacking group continues its supply-chain rampage, now compromising the massively popular "LiteLLM" Python package on PyPI and claiming to have stolen data from hundreds of thousands of devices during the attack. [...]BLEEPINGCOMPUTER.COM
🕵️ THREAT INTELLIGENCE 25[−]
24 MarISC Stormcast For Tuesday, March 24th, 2026 https://isc.sans.edu/podcastdetail/9862, (Tue, Mar 24th)(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.ISC.SANS.EDU
24 MarThe US bans all new foreign-made network routerssubmitted by return2ozma to cybersecurity 2 points | 0 comments https://www.engadget.com/big-tech/the-us-bans-all-new-foreign-made-network-routers-223622966.htmlSH.ITJUST.WORKS
24 MarFake ChatGPT Invites Target Android Users With MalwareThreat actors are now abusing Google’s Firebase App Distribution service to push fake Android ChatGPT and Meta advertising apps that steal Facebook credentials and enable account takeover. The operation closely mirrors a recent iOS phishing campaign that used bogus ChatGPT and Ge…GBHACKERS.COM
24 MarSilentConnect Uses Fake Invites to Deploy ScreenConnect RATSILENTCONNECT is a new multi-stage Windows loader that abuses fake online invitations and trusted cloud services to silently deploy the ConnectWise ScreenConnect remote access tool on victim systems. The campaign blends social engineering, living-off-the-land binaries, and low-le…GBHACKERS.COM
24 MarMicrosoft Unveils New GenAI Security Protections in Azure AI FoundryMicrosoft has outlined a new set of security safeguards designed to protect generative AI models hosted on Azure AI Foundry, as organizations increasingly adopt advanced AI systems into critical workflows. The move comes amid rapid growth in generative AI capabilities, where new …GBHACKERS.COM
24 MarGoogle Forms Job Scam Spreads PureHVNC MalwareA newly observed malware campaign is leveraging trusted platforms like Google Forms to distribute the PureHVNC Remote Access Trojan (RAT), marking a shift in how attackers initiate infections. Rather than relying on traditional phishing emails or malicious websites, threat actors…GBHACKERS.COM
24 MarStryker Says Malicious File Found During Probe Into Iran-Linked AttackThe FBI has published an alert describing the malware used by Iranian government hackers. The post Stryker Says Malicious File Found During Probe Into Iran-Linked Attack appeared first on SecurityWeek .SECURITYWEEK.COM
24 MarGcore Radar report reveals 150% surge in DDoS attacks year-on-yearLuxembourg, Luxembourg, March 24th, 2026, CyberNewswire Gcore data highlights a threat landscape defined by newfound automated attack capabilities, scale, and frequency Gcore, the global infrastructure and software provider for AI, cloud, network, and security solutions, today an…GBHACKERS.COM
24 MarTeam Mirai and DemocracyJapan’s election last month and the rise of the country’s newest and most innovative political party, Team Mirai , illustrates the viability of a different way to do politics. In this model, technology is used to make democratic processes stronger, instead of undermining them. It…SCHNEIER.COM
24 MarIran Built a Vast Camera Network to Control Dissent. Israel Turned It Into a Targeting ToolThe role of Israel’s hijacking of Iran’s street cameras in the killing of the country’s supreme leader underscores how surveillance systems are increasingly being targeted by adversaries in wartime. The post Iran Built a Vast Camera Network to Control Dissent. Israel Turned It In…SECURITYWEEK.COM
24 MarWebinar Today: Putting CIS Controls and Benchmarks into PracticeLearn how the CIS Critical Security Controls and the CIS Benchmarks can be used together to support secure configuration at scale. The post Webinar Today: Putting CIS Controls and Benchmarks into Practice appeared first on SecurityWeek .SECURITYWEEK.COM
24 MarChrome 146 Update Patches High-Severity VulnerabilitiesThe software refresh fixes eight memory safety bugs affecting seven Chrome components. The post Chrome 146 Update Patches High-Severity Vulnerabilities appeared first on SecurityWeek .SECURITYWEEK.COM
24 MarDetecting IP KVMs, (Tue, Mar 24th)I have written about how to&#;x26;#;xc2;&#;x26;#;xa0; use IP KVMs securely , and recently, researchers at Eclypsium published yet another report on IP KVM vulnerabilities. &#;x26;#;xc2;&#;…ISC.SANS.EDU
24 MarThe Hardest Part of SecuritySecurity programs often prioritize visibility and risk assessment, but remediation remains the most difficult step. Identifying vulnerabilities without fixing them leaves organizations exposed. Delays in patching, updating code, or implementing controls can turn known risks into …YOUTUBE.COM
24 MarDDoS-Angriffe haben sich verdoppeltsrcset="https://b2b-contenthub.com/wp-content/uploads/2026/03/DDoS-Attack-COunt_16-9.png?quality=50&strip=all 2200w, https://b2b-contenthub.com/wp-content/uploads/2026/03/DDoS-Attack-COunt_16-9.png?resize=300%2C168&quality=50&strip=all 300w, https://b2b-contenthub.com…CSOONLINE.COM
24 MarRSAC 2026 Conference Announcements Summary (Day 1)A summary of the announcements made by vendors on the first day of the RSAC 2026 Conference. The post RSAC 2026 Conference Announcements Summary (Day 1) appeared first on SecurityWeek .SECURITYWEEK.COM
24 MarSupply Chain Attack in litellm 1.82.8 on PyPIsubmitted by cm0002 to cybersecurity 1 points | 0 comments https://futuresearch.ai/blog/litellm-pypi-supply-chain-attack/INFOSEC.PUB
24 MarI Didn’t Revoke my API Keys Because Claude Called Me An IdiotI need to confess something. A few days ago whilst vibe coding at 2am (which can end up burning through tokens like they are going out of fashion) I accidentally pasted my API key directly into a Claude chat instead of the terminal window I had open.KNOWBE4.COM
24 MarGoverning AI agent behavior: Aligning user, developer, role, and organizational intentThis research report explores the layers of agent intent and how to align them for secure enterprise AI adoption. The post Governing AI agent behavior: Aligning user, developer, role, and organizational intent appeared first on Microsoft Security Blog .TECHCOMMUNITY.MICROSOFT.COM
24 MarWhy Agentic AI Systems Need Better Governance – Lessons from OpenClawAgentic AI platforms are shifting from passive recommendation tools to autonomous action-takers with real system access, The post Why Agentic AI Systems Need Better Governance – Lessons from OpenClaw appeared first on SecurityWeek .SECURITYWEEK.COM
24 MarDoE Publishes 5-Year Energy Security PlanCESER’s Project Armor is a five year initiative to harden the US critical energy infrastructure, including strengthening energy systems ‘to prevent and recover from wildfires and other hazards’. The post DoE Publishes 5-Year Energy Security Plan appeared first on SecurityWeek .SECURITYWEEK.COM
24 MarScam Baiting, AI, and the New Grift Economy, Part 1 - Rinoa Poison - SWN #566Rinoa Poison joins Security Weekly News to break down the world of scam baiting, how modern scams are evolving, and why AI is making fraud harder to spot. In this two-part conversation, she shares how scam baiters operate, the risks involved, and what everyday people should know.…YOUTUBE.COM
24 MarWhen Virtual Machines Fail YouVirtual machines are commonly used to isolate risky activity, like interacting with potential attackers or malware. That isolation isn’t guaranteed. VM escape is rare—but real. If it happens, attackers can reach the host system, leading to serious compromise that’s difficult to r…YOUTUBE.COM
24 MarMandiant Global Median Dwell Time Deteriorates from 11 to 14 Days  Oh snap. My single most important cybersecurity metric deteriorated again.  In the M-Trends report for calendar year 2024, Mandiant’s global median dwell time metric worsened from 10 to 11 days. In the newest report, released today, for calendar year 2025, that metric…TAOSECURITY.BLOGSPOT.COM
🌐 CYBER THREAT LANDSCAPE 2[−]
24 MarTax Search Ads Deliver ScreenConnect Malware Using Huawei Driver to Disable EDRA large-scale malvertising campaign active since January 2026 has been observed targeting U.S.-based individuals searching for tax-related documents to serve rogue installers for ConnectWise ScreenConnect that drop a tool named HwAudKiller to blind security programs using the bri…THEHACKERNEWS.COM
24 MarInvestigating from the Endpoint Across Your Environment with Elastic Security XDRThis article highlights how Elastic Security XDR unifies endpoint protection with multi-domain security analytics to help analysts trace and contain multi-stage attacks across hybrid and cloud environments.ELASTIC.CO
📡 INFOSEC NEWS 19[−]
24 MarThe Hidden Cost of Cybersecurity Specialization: Losing Foundational SkillsCybersecurity has changed fast. Roles are more specialized, and tooling is more advanced. On paper, this should make organizations more secure. But in practice, many teams struggle with the same basic problems they faced years ago: unclear risk priorities, misaligned tooling…THEHACKERNEWS.COM
24 MarGhost Campaign Uses 7 npm Packages to Steal Crypto Wallets and CredentialsCybersecurity researchers have uncovered a new set of malicious npm packages that are designed to steal cryptocurrency wallets and sensitive data. The activity is being tracked by ReversingLabs as the Ghost campaign. The list of identified packages, all published by a user named …THEHACKERNEWS.COM
24 Mar5 Learnings from the First-Ever Gartner Market Guide for Guardian AgentsOn February 25, 2026, Gartner published its inaugural Market Guide for Guardian Agents, marking an important milestone for this emerging category. For those unfamiliar with the various Gartner report types, “a Market Guide defines a market and explains what clients can expect it …THEHACKERNEWS.COM
24 MarBubble’s role in phishing scams | Kaspersky official blogThe Tycoon phishing kit has introduced new functionality to create redirect web apps with the help of Bubble.KASPERSKY.COM
24 MarZero Trust: Bridging the Gap Between Authentication and TrustPassing MFA doesn't mean a session is safe, attackers can hijack tokens and bypass identity checks. Specops Software explains why Zero Trust must verify both user identity and device health. [...]BLEEPINGCOMPUTER.COM
24 MarFCC bans import of new consumer routers made overseas, citing security risksThe FCC ban will affect the import of all new, foreign-made consumer routers, the agency's head Brendan Carr said.TECHCRUNCH.COM
24 MarMicrosoft fixes bug causing Classic Outlook sync issues with Gmail​Microsoft has fixed a known issue causing Gmail and Yahoo email synchronization and connection problems for classic Outlook users. [...]BLEEPINGCOMPUTER.COM
24 MarHackers Use Fake Resumes to Steal Enterprise Credentials and Deploy Crypto MinerAn ongoing phishing campaign is targeting French-speaking corporate environments with fake resumes that lead to the deployment of cryptocurrency miners and information stealers. "The campaign uses highly obfuscated VBScript files disguised as resume/CV documents, delivered throug…THEHACKERNEWS.COM
24 MarFirefox now has a free built-in VPN with 50GB monthly data limitMozilla released Firefox 149 with added privacy protection through a built-in VPN tool offering up to 50GB of monthly traffic. [...]BLEEPINGCOMPUTER.COM
24 MarFCC bans new routers made outside the USA over security risksThe Federal Communications Commission has updated its Covered List to include all consumer routers made in foreign countries, banning the sale of new models in the U.S. [...]BLEEPINGCOMPUTER.COM
24 MarSecurity Automation with Elastic Workflows: From Alert to ResponseA practical guide to building intelligent, automated security playbooks with Elastic Workflows.ELASTIC.CO
24 MarStreamlining the Security Analyst ExperienceAlert Triage, Investigation, and Response with Elastic's Agentic Security Operations Platform.ELASTIC.CO
24 MarSupercharge Your SOCDetection Engineering in the Era of AI Agents - The New Frontier.ELASTIC.CO