🚨 CISA KEV 1[−]
30 Mar KEVCISA Adds One Known Exploited Vulnerability to CatalogCISA has added one new vulnerability to its Known Exploited Vulnerabilities (KEV) Catalog , based on evidence of active exploitation. CVE-2026-3055 Citrix NetScaler Out-of-Bounds Read Vulnerability This type of vulnerability is a frequent attack vector for malicious cyber actors …CISA.GOV
🐛 COMMON VULNERABILITIES AND EXPOSURES 28[−]
30 Mar KEVCritical Citrix NetScaler memory flaw actively exploited in attacksHackers are exploiting a critical severity vulnerability, tracked as CVE-2026-3055, in Citrix NetScaler ADC and NetScaler Gateway appliances to obtain sensitive data. [...]BLEEPINGCOMPUTER.COM
30 Mar KEVFortinet hit by another exploited cybersecurity flawYet another critical flaw in a Fortinet product has come to light as attackers continue to target the company, this time by actively exploiting a critical SQL injection vulnerability in the cybersecurity company’s management server. The vulnerability, ( CVE-2026-21643 ), allows u…CSOONLINE.COM
30 MarLangChain path traversal bug adds to input validation woes in AI pipelinesSecurity researchers are warning that applications using AI frameworks without proper safeguards can expose sensitive information in basic, yet critical, non-AI ways. According to a recent Cyera analysis, widely used AI orchestration tools, LangChain and LangGraph, are vulnerable…CSOONLINE.COM
30 MarAttackers are exploiting RCE vulnerability in BIG-IP APM systems (CVE-2025-53521) - Help Net Securitysubmitted by kid to cybersecurity 9 points | 0 comments https://www.helpnetsecurity.com/2026/03/28/big-ip-apm-vulnerability-cve-2025-53521-exploited/SH.ITJUST.WORKS
30 MarZDI-26-249: NoMachine Uncontrolled Search Path Element Local Privilege Escalation VulnerabilityThis vulnerability allows local attackers to escalate privileges on affected installations of NoMachine. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The ZDI has assigned a CVSS rating of 7.8…ZERODAYINITIATIVE.COM
30 MarZDI-26-248: NoMachine External Control of File Path Local Privilege Escalation VulnerabilityThis vulnerability allows local attackers to escalate privileges on affected installations of NoMachine. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The ZDI has assigned a CVSS rating of 7.8…ZERODAYINITIATIVE.COM
30 MarZDI-26-247: NoMachine External Control of File Path Arbitrary File Deletion VulnerabilityThis vulnerability allows local attackers to delete arbitrary files on affected installations of NoMachine. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The ZDI has assigned a CVSS rating of …ZERODAYINITIATIVE.COM
30 MarZDI-26-246: (0Day) aws-mcp-server Command Injection Remote Code Execution VulnerabilityThis vulnerability allows remote attackers to execute arbitrary code on affected installations of aws-mcp-server. Authentication is not required to exploit this vulnerability. The ZDI has assigned a CVSS rating of 9.8. The following CVEs are assigned: CVE-2026-5058.ZERODAYINITIATIVE.COM
30 MarZDI-26-245: (0Day) aws-mcp-server AWS CLI Command Injection Remote Code Execution VulnerabilityThis vulnerability allows remote attackers to execute arbitrary code on affected installations of aws-mcp-server. Authentication is not required to exploit this vulnerability. The ZDI has assigned a CVSS rating of 9.8. The following CVEs are assigned: CVE-2026-5059.ZERODAYINITIATIVE.COM
30 MarZDI-26-244: (Pwn2Own) QNAP QHora-322 miro_webserver_controllers_api_login_singIn Authentication Bypass VulnerabilityThis vulnerability allows network-adjacent attackers to bypass authentication on affected installations of QNAP QHora-322 routers. Authentication is not required to exploit this vulnerability. The ZDI has assigned a CVSS rating of 5.0. The following CVEs are assigned: CVE-2024-13…ZERODAYINITIATIVE.COM
30 MarZDI-26-243: (Pwn2Own) QNAP TS-453E write_file_to_svr External Control of File Path Remote Code Execution VulnerabilityThis vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of QNAP TS-453E devices. Although authentication is required to exploit this vulnerability, the existing authentication mechanism can be bypassed. The ZDI has assigned a CVSS …ZERODAYINITIATIVE.COM
30 MarZDI-26-242: (Pwn2Own) QNAP TS-453E server_handlers.pyc rr2s.kwargs Error Message Information Disclosure VulnerabilityThis vulnerability allows network-adjacent attackers to disclose sensitive information on affected installations of QNAP TS-453E devices. Although authentication is required to exploit this vulnerability, the existing authentication mechanism can be bypassed. The ZDI has assigned…ZERODAYINITIATIVE.COM
30 MarZDI-26-241: (Pwn2Own) QNAP QHora-322 qvpn_db_mgr username SQL Injection Remote Code Execution VulnerabilityThis vulnerability allows remote attackers to execute arbitrary code on affected installations of QNAP QHora-322 routers. Although authentication is required to exploit this vulnerability, the existing authentication mechanism can be bypassed. The ZDI has assigned a CVSS rating o…ZERODAYINITIATIVE.COM
30 MarZDI-26-240: (Pwn2Own) QNAP QHora-322 qvpn_db_mgr role_type Improper Neutralization of Escape Sequences Authentication Bypass VulnerabilityThis vulnerability allows remote attackers to bypass authentication on affected QNAP QHora-322 routers. Although authentication is required to exploit this vulnerability, the existing authentication mechanism can be bypassed. The ZDI has assigned a CVSS rating of 6.3. The followi…ZERODAYINITIATIVE.COM
30 MarZDI-26-239: (Pwn2Own) QNAP QHora-322 login.newAuthMiddleware.Authenticator Authentication Bypass VulnerabilityThis vulnerability allows remote attackers to bypass authentication on affected installations of QNAP QHora-322 routers. Authentication is not required to exploit this vulnerability. The ZDI has assigned a CVSS rating of 5.6. The following CVEs are assigned: CVE-2025-62844.ZERODAYINITIATIVE.COM
30 MarZDI-26-238: Linux Kernel AoE Driver Use-After-Free Local Privilege Escalation VulnerabilityThis vulnerability allows local attackers to escalate privileges on affected installations of Linux Kernel. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The ZDI has assigned a CVSS rating of …ZERODAYINITIATIVE.COM
30 MarZDI-26-237: (Pwn2Own) QNAP QHora-322 ip6_wanifset Improper Restriction of Communication Channel to Intended Endpoints Firewall Bypass VulnerabilityThis vulnerability allows network-adjacent attackers to bypass firewall rules on affected installations of QNAP QHora-322 routers. Authentication is not required to exploit this vulnerability. The ZDI has assigned a CVSS rating of 6.3. The following CVEs are assigned: CVE-2025-62…ZERODAYINITIATIVE.COM
30 MarZDI-26-236: Digilent DASYLab DSB File Parsing Out-Of-Bounds Write Remote Code Execution VulnerabilityThis vulnerability allows remote attackers to execute arbitrary code on affected installations of Digilent DASYLab. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The ZDI has assigned a CVSS rati…ZERODAYINITIATIVE.COM
30 MarZDI-26-235: Digilent DASYLab DSA File Parsing Out-Of-Bounds Write Remote Code Execution VulnerabilityThis vulnerability allows remote attackers to execute arbitrary code on affected installations of Digilent DASYLab. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The ZDI has assigned a CVSS rati…ZERODAYINITIATIVE.COM
30 MarZDI-26-234: Digilent DASYLab DSA File Parsing Out-Of-Bounds Read Remote Code Execution VulnerabilityThis vulnerability allows remote attackers to execute arbitrary code on affected installations of Digilent DASYLab. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The ZDI has assigned a CVSS rati…ZERODAYINITIATIVE.COM
30 MarZDI-26-233: Digilent DASYLab DSA File Parsing Out-Of-Bounds Read Remote Code Execution VulnerabilityThis vulnerability allows remote attackers to execute arbitrary code on affected installations of Digilent DASYLab. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The ZDI has assigned a CVSS rati…ZERODAYINITIATIVE.COM
30 MarZDI-26-232: (Pwn2Own) Red Hat Enterprise Linux vmwgfx Driver Integer Overflow Local Privilege Escalation VulnerabilityThis vulnerability allows local attackers to escalate privileges on affected installations of Red Hat Enterprise Linux. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The ZDI has assigned a CVS…ZERODAYINITIATIVE.COM
30 MarZDI-26-231: Apple macOS Exposure of Sensitive Information to Unauthorized Sphere Information Disclosure VulnerabilityThis vulnerability allows local attackers to disclose sensitive information on affected installations of Apple macOS. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The ZDI has assigned a CVSS …ZERODAYINITIATIVE.COM
30 MarZDI-26-230: Apple macOS CoreMedia Framework Out-Of-Bounds Write Remote Code Execution VulnerabilityThis vulnerability allows remote attackers to execute arbitrary code on affected installations of Apple macOS. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The ZDI has assigned a CVSS rating of…ZERODAYINITIATIVE.COM
30 MarZDI-26-229: OpenClaw Client PKCE Verifier Information Disclosure VulnerabilityThis vulnerability allows remote attackers to disclose stored credentials on affected installations of OpenClaw. User interaction is required to exploit this vulnerability in that the target must initiate an OAuth authorization flow. The ZDI has assigned a CVSS rating of 5.3. The…ZERODAYINITIATIVE.COM
30 MarZDI-26-228: OpenClaw Canvas Authentication Bypass VulnerabilityThis vulnerability allows remote attackers to bypass authentication on affected installations of OpenClaw. Authentication is not required to exploit this vulnerability. The ZDI has assigned a CVSS rating of 7.4. The following CVEs are assigned: CVE-2026-3690.ZERODAYINITIATIVE.COM
30 MarZDI-26-227: OpenClaw Canvas Path Traversal Information Disclosure VulnerabilityThis vulnerability allows remote attackers to disclose sensitive information on affected installations of OpenClaw. Authentication is required to exploit this vulnerability. The ZDI has assigned a CVSS rating of 6.5. The following CVEs are assigned: CVE-2026-3689.ZERODAYINITIATIVE.COM
30 MarVU#221883: CrewAI contains multiple vulnerabilities including SSRF, RCE and local file readOverview Four vulnerabilities have been identified in CrewAI, including remote code execution (RCE), arbitrary local file read, and server-side request forgery (SSRF). CVE-2026-2275 is directly caused by the Code Interpreter Tool. The other three vulnerabilities result from impro…KB.CERT.ORG
⚠️ VULNERABILITY DISCLOSURE 16[−]
30 MarRussian State Hackers Go After IoS DevicesMac Malware 'Infinity Stealer,' DarkSword iOS Exploits, China Telecom Espionage & TeamTNT Supply Chain Hits Cybersecurity Today would like to thank Meter for their support in bringing you this podcast. Meter delivers a complete networking stack, wired, wireless and cellular in on…CYBERSECURITYTODAY.LIBSYN.COM
30 MarA Vulnerability in F5 Products Could Allow for Remote Code ExecutionA vulnerability has been discovered in F5 Products that could allow for remote code execution. F5 BIG IP APM is an access policy management solution designed to enforce secure access to applications, APIs, and sensitive data. It is commonly deployed by enterprises, financial inst…CISECURITY.ORG
30 MarMultiple Vulnerabilities in NetScaler ADC and NetScaler Gateway Could Allow for Memory OverreadMultiple Vulnerabilities have been discovered in NetScaler ADC and NetScaler Gateway, the most severe of which could allow for memory overread. NetScaler ADC is a networking product that functions as an Application Delivery Controller (ADC), a tool that optimizes, secures, and en…CISECURITY.ORG
30 MarHealthcare tech firm CareCloud says hackers stole patient dataHealthcare IT firm CareCloud has disclosed a data breach incident that exposed sensitive data and caused a network disruption lasting approximately eight hours. [...]BLEEPINGCOMPUTER.COM
30 MarHackers exploiting critical F5 BIG-IP flaw in attacks, patch nowF5 has reclassified a BIG-IP APM denial-of-service (DoS) vulnerability as a critical-severity remote code execution (RCE) flaw, warning that attackers are exploiting it to deploy webshells on unpatched devices. [...]BLEEPINGCOMPUTER.COM
30 MarCritical Fortinet Forticlient EMS flaw now exploited in attacksAttackers are now actively exploiting a critical vulnerability in Fortinet's FortiClient EMS platform, according to threat intelligence company Defused. [...]BLEEPINGCOMPUTER.COM
30 MarOpenAI Patches ChatGPT Data Exfiltration Flaw and Codex GitHub Token VulnerabilityA previously unknown vulnerability in OpenAI ChatGPT allowed sensitive conversation data to be exfiltrated without user knowledge or consent, according to new findings from Check Point. "A single malicious prompt could turn an otherwise ordinary conversation into a covert exfiltr…THEHACKERNEWS.COM
30 Mar⚡ Weekly Recap: Telecom Sleeper Cells, LLM Jailbreaks, Apple Forces U.K. Age Checks and MoreSome weeks are loud. This one was quieter but not in a good way. Long-running operations are finally hitting courtrooms, old attack methods are showing up in new places, and research that stopped being theoretical right around the time defenders stopped paying attention. There's …THEHACKERNEWS.COM
30 MarThree China-Linked Clusters Target Southeast Asian Government in 2025 Cyber CampaignThree threat activity clusters aligned with China have targeted a government organization in Southeast Asia as part of what has been described as a "complex and well-resourced operation." The campaigns have led to the deployment of various malware families, including HIUPAN (aka …THEHACKERNEWS.COM
30 MarReport: There Are Nearly 66 Billion Stolen Identity Records on Criminal ForumsResearchers at SpyCloud warn that the number of stolen identity records on criminal forums rose to 65.7 billion in 2025, a 23% increase from the previous year.KNOWBE4.COM
30 MarLeak reveals Anthropic’s ‘Mythos,’ a powerful AI model aimed at cybersecurity use casesAnthropic didn’t intend to introduce Mythos this way. Details of what it calls its most capable AI model yet surfaced through a data leak in its content management system (CMS), revealing a LLM with sharply improved reasoning and coding skills. The data leak, which was the result…CSOONLINE.COM
30 MarAPIs are the new perimeter: Here’s how CISOs are securing themRecent breaches suggest attackers are shifting beyond traditional endpoints to target application programming interfaces (APIs). But typical perimeter protections can completely miss this vector. “We used to talk about defense-in-depth and endpoint protection,” says Sean Murphy ,…CSOONLINE.COM
30 MarWhy Kubernetes controllers are the perfect backdoorIn my years securing cloud-native environments, I’ve noticed a recurring blind spot. We obsess over the “front doors” such as exposed dashboards, misconfigured RBAC , or unpatched container vulnerabilities. We harden the perimeter, but we often ignore the machinery humming inside…CSOONLINE.COM
30 MarOops, all Interviews: Switching to Cyber, CISO Reflections, and the State of TPCRM - ESW #452Interview with Helen Patton about her new book, Switching to Cyber Helen joins us to discuss her second book, "Switching to Cyber." Her first book discussed strategies for handling various stages of the cybersecurity career, while this one, co-written with Josiah Dykstra, provide…YOUTUBE.COM
30 MarVU#655822: Kyverno is vulnerable to server-side request forgery (SSRF)Overview Kyverno, versions 1.16.0 to present, contains an SSRF vulnerability in its CEL-based HTTP functions, which lack URL validation or namespace scoping and allow namespaced policies to trigger arbitrary internal HTTP requests. An attacker with only namespace-level permission…KB.CERT.ORG
30 MarCloudflare Client-Side Security: smarter detection, now open to everyoneWe are opening our advanced Client-Side Security tools to all users, featuring a new cascading AI detection system. By combining graph neural networks and LLMs, we've reduced false positives by up to 200x while catching sophisticated zero-day exploits.CLOUDFLARE.COM
📢 SECURITY ADVISORIES 2[−]
30 MarPopular AI gateway startup LiteLLM ditches controversial startup DelveLiteLLM had obtained two security compliance certifications via Delve and fell victim to some horrific credential-stealing malware last week.TECHCRUNCH.COM
30 MarAutomated Audits vs. Manual: The Binary ChoiceTraditional manual audits require sending auditors, filling questionnaires, and gathering evidence manually. New automated tools connect directly to your security infrastructure to gather and anonymize evidence continuously. This reduces workload for vendors and clients, speeds u…YOUTUBE.COM
🔥 INCIDENT REPORTING 4[−]
30 MarNew RoadK1ll WebSocket implant used to pivot on breached networksA newly identified malicious implant named RoadK1ll is enabling threat actors to quietly move from a compromised host to other systems on the network. [...]BLEEPINGCOMPUTER.COM
30 MarEuropean Commission confirms data breach after Europa.eu hackThe European Commission has confirmed a data breach after its Europa.eu web platform was hacked in a cyberattack claimed by the ShinyHunters extortion gang. [...]BLEEPINGCOMPUTER.COM
30 MarHIBP Mega Update: Passkeys, k-Anonymity Searches, Massive Speed Enhancements and a Bulk Domain Verification APIPresently sponsored by: Report URI: Guarding you from rogue JavaScript! Don’t get pwned; get real-time alerts & prevent breaches #SecureYourSite For a hobby project built in my spare time to provide a simple community service, Have I Been Pwned sure has, well, "escalated&quo…TROYHUNT.COM
30 MarDutch Police discloses security breach after phishing attacksubmitted by kid to cybersecurity 6 points | 0 comments https://www.bleepingcomputer.com/news/security/dutch-police-discloses-security-breach-after-phishing-attack/SH.ITJUST.WORKS
🕵️ THREAT INTELLIGENCE 14[−]
30 MarApple’s Camera Indicator LightsA thoughtful review of Apple’s system to alert users that the camera is on. It’s really well-designed, and important in a world where malware could surreptitiously start recording. The reason it’s tempting to think that a dedicated camera indicator light is more…SCHNEIER.COM
30 MarDeepLoad Malware Uses ClickFix and WMI Persistence to Steal Browser CredentialsA new campaign has leveraged the ClickFix social engineering tactic as a way to distribute a previously undocumented malware loader referred to as DeepLoad. "It likely uses AI-assisted obfuscation and process injection to evade static scanning, while credential theft starts immed…THEHACKERNEWS.COM
30 MarISC Stormcast For Monday, March 30th, 2026 https://isc.sans.edu/podcastdetail/9870, (Mon, Mar 30th)(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.ISC.SANS.EDU
30 MarAddressing the OWASP Top 10 Risks in Agentic AI with Microsoft Copilot StudioAgentic AI introduces new security risks. Learn how the OWASP Top 10 Risks for Agentic Applications maps to real mitigations in Microsoft Copilot Studio. The post Addressing the OWASP Top 10 Risks in Agentic AI with Microsoft Copilot Studio appeared first on Microsoft Security Bl…MICROSOFT.COM
30 MarCriminals Are Selling Stolen Tax Forms for Cheap on the Dark WebResearchers at Malwarebytes warn that cybercriminals are peddling stolen tax documents for as low as $4 per identity, with freshly stolen forms selling for $20 each. These documents allow threat actors to conduct refund fraud, using stolen personal information to claim victims’ t…KNOWBE4.COM
30 MarFIRESIDE CHAT: AI gives rise to a semantic attack surface, forcing a new class of network defenseSAN FRANCISCO — Enterprises rushing to deploy AI in their operations are opening a security exposure most of their existing tools were never designed to address. That’s the hard message coming out of RSAC 2026 — and it’s one worth … (more…) The post FIRESIDE CHA…LASTWATCHDOG.COM
30 MarSecurity Leadership Styles: Builder, Fixer, or Scale OperatorSecurity leaders often fit into one of three archetypes: Builders, Fixers, or Scale Operators. Builders prefer clean slates to design security programs from the ground up. Fixers enjoy tackling chaos and transforming disorder into stability. Scale Operators focus on managing grow…YOUTUBE.COM
30 MarMentorship Monday - Discussions for career and learning!submitted by shellsharks to cybersecurity 4 points | 1 comments Weekly thread for any and all career, learning and general guidance questions. Thinking of taking a training or going for a cert? Wondering how to level up your career? Wondering what NOT to do? Got other questions? …INFOSEC.PUB
30 MarSecurity boffins harvest bumper crop of API keys from web • The Registersubmitted by kid to cybersecurity 7 points | 0 comments https://www.theregister.com/2026/03/27/security_boffins_harvest_bumper_cropSH.ITJUST.WORKS
30 MarDevSecOps Tools?submitted by dudesss to cybersecurity 6 points | 2 comments I’m a DevOps programmer, and would like to get into the security part of it. Do you guys know any tools I should have know in DevSecOps? I’m a huge fan of FOSS if that helps.SH.ITJUST.WORKS
30 MarLangChain, LangGraph Flaws Expose Files, Secrets, Databases in Widely Used AI Frameworkssubmitted by kid to cybersecurity 11 points | 1 comments https://thehackernews.com/2026/03/langchain-langgraph-flaws-expose-files.htmlSH.ITJUST.WORKS
30 MarTeamPCP Targets Telnyx Package in Latest Software Supply Chain Attack - Infosecurity Magazinesubmitted by kid to cybersecurity 3 points | 0 comments https://www.infosecurity-magazine.com/news/teampcp-targets-telnyx-pypi-package/SH.ITJUST.WORKS
30 MarChina Upgrades the Backdoor It Uses to Spy on Telcos Globallysubmitted by kid to cybersecurity 27 points | 1 comments https://www.darkreading.com/threat-intelligence/china-upgrades-backdoor-spy-telcosSH.ITJUST.WORKS
30 MarANY.RUN at RSAC™ 2026: Highlights & Industry RecognitionWe’ve just returned from RSAC™ 2026 in San Francisco, one of the most important cybersecurity events of the year. As always, the conference brought together security leaders, vendors, and practitioners from around the world. For the ANY.RUN team, it was …ANY.RUN
🌐 CYBER THREAT LANDSCAPE 1[−]
30 MarTeamPCP’s Telnyx Attack Marks a Shift in Tactics Beyond LiteLLMMoving beyond their LiteLLM campaign, TeamPCP weaponizes the Telnyx Python SDK with stealthy WAV‑based payloads to steal credentials across Linux, macOS, and Windows.TRENDMICRO.COM
📡 INFOSEC NEWS 10[−]
30 MarApple adds macOS Terminal warning to block ClickFix attacksApple has introduced a security feature in macOS Tahoe 26.4 that blocks pasting and executing potentially harmful commands in Terminal and alerts users to possible risks. [...]BLEEPINGCOMPUTER.COM
30 MarHow to Evaluate AI SOC Agents: 7 Questions Gartner Says You Should Be AskingAI SOC agents can reduce alert fatigue, but most teams fail to measure real outcomes. Prophet Security breaks down Gartner's questions for evaluating AI SOC agents and separating real impact from hype. [...]BLEEPINGCOMPUTER.COM
30 MarMicrosoft pulls KB5079391 Windows update over install issuesMicrosoft has pulled a buggy Windows 11 non-security preview update to investigate a known issue that triggers 0x80073712 errors during installation. [...]BLEEPINGCOMPUTER.COM
30 Mar3 SOC Process Fixes That Unlock Tier 1 ProductivityWhat is really slowing Tier 1 down: the threat itself or the process around it? In many SOCs, the biggest delays do not come from the threat alone. They come from fragmented workflows, manual triage steps, and limited visibility early in the investigation. Fixing those process ga…THEHACKERNEWS.COM
30 MarRussian CTRL Toolkit Delivered via Malicious LNK Files Hijacks RDP via FRP TunnelsCybersecurity researchers have discovered a remote access toolkit of Russian-origin that's distributed via malicious Windows shortcut (LNK) files that are disguised as private key folders. The CTRL toolkit, according to Censys, is custom-built using .NET and includes various exec…THEHACKERNEWS.COM
30 MarThe State of Secrets Sprawl 2026: 9 Takeaways for CISOsSecrets sprawl isn't slowing down: in 2025, it accelerated faster than most security teams anticipated. GitGuardian's State of Secrets Sprawl 2026 report analyzed billions of commits across public GitHub and uncovered 29 million new hardcoded secrets in 2025 alone, a 34% increase…THEHACKERNEWS.COM
30 MarDShield (Cowrie) Honeypot Stats and When Sessions Disconnect, (Mon, Mar 30th)A lot of the information seen on DShield honeypots [1] is repeated bot traffic, especially when looking at the Cowrie [2] telnet and SSH sessions. However, how long a session lasts, how many commands are run per session and what the last commands run before a …ISC.SANS.EDU
30 MarApple will hide your email address from apps and websites, but not copsDemands for Apple customer records by federal agents in recent months underscore the privacy limitations of email.TECHCRUNCH.COM
30 MarAn iron curtain for AI: how to improve autonomous AI agent security | Kaspersky official blogThe IronCurtain project offers a new approach to AI agent security: virtual machine isolation and action control via security policies.KASPERSKY.COM