Cybersecurity Feed
Updated: 27/03/2026, 10:39:50 • Items: 150
Keywords
CVE- ClickFix Malware Leak Attack 0-day zero-day RCE remote code execution privilege escalation LPE kernel exploit PoC exploit weaponized exploit KEV CISA KEV critical vulnerability supply chain attack dependency hijacking DLL sideloading code injection memory corruption SQL injection SSRF XSS sandbox escape hypervisor escape ransomware data exfiltration lateral movement APT nation state Cobalt Strike Sliver Metasploit malware campaign phishing kit loader infostealer rootkit persistence command and control C2 backdoor Fortinet FortiOS FortiGate GlobalProtect Palo Alto Cortex XDR XSIAM Prisma PAN-OS CrowdStrike SentinelOne Mandiant Elastic Security Azure AD KQL Active Directory Kerberos Golden Ticket pass-the-hash Okta identity breach session hijack exploit
Cyber Security News — 27/03/2026, 10:10:40

Anthropic’s Leaked Drafts Expose Powerful New AI Model “Claude Mythos” Click here

Cyber Security News — 27/03/2026, 08:39:21

Claude Chrome Extension 0-Click Vulnerability Enables Silent Prompt Injection Attacks Medium Click here

Cyber Security News — 27/03/2026, 07:30:19

Critical NVIDIA Vulnerabilities Enables RCE and DoS Attacks CVE-2025-33244 High Click here

Unit 42 — 27/03/2026, 03:40:07

Threat Brief: March 2026 Escalation of Cyber Risk Related to Iran (Updated March 26) Click here

Unit 42 — 27/03/2026, 03:30:32

Converging Interests: Analysis of Threat Clusters Targeting a Southeast Asian Government Click here

BleepingComputer — 27/03/2026, 02:07:25

Ajax football club hack exposed fan data, enabled ticket hijack Click here

Cyber Security News — 27/03/2026, 01:15:17

New ClickFix Attack Leverage Windows Run Dialog Box and macOS Terminal to Deploy Malware Click here

Cyber Security News — 27/03/2026, 01:08:53

Leak Bazaar Turns Stolen Corporate Data Into a Structured Criminal Marketplace High Click here

Cyber Security News — 27/03/2026, 00:56:03

VoidLink Rootkit Uses eBPF and Kernel Modules to Hide Deep Inside Linux Systems Click here

BleepingComputer — 27/03/2026, 00:47:43

CISA: New Langflow flaw actively exploited to hijack AI workflows CVE-2026-33017 Critical Click here

darkreading — 27/03/2026, 00:44:05

Critical Flaw in Langflow AI Platform Under Attack Click here

SANS Internet Storm Center, InfoCON: green — 26/03/2026, 23:12:22

TeamPCP Supply Chain Campaign: Update 001 - Checkmarx Scope Wider Than Reported, CISA KEV Entry, and Detection Tools Available, (Thu, Mar 26th) CVE-2026-33634 Critical Click here

Cyber Security News — 26/03/2026, 22:03:49

CISA Warns of Langflow Code Injection Vulnerability Exploited in Attacks CVE-2026-33017 Critical Click here

Cyber Security News — 26/03/2026, 21:54:04

IDrive for Windows Vulnerability Let Attackers Escalate Privileges CVE-2026-1995 High Click here

Red Canary — 26/03/2026, 21:48:49

Scarlet Goldfinch’s year in ClickFix Click here

Cyber Security News — 26/03/2026, 21:47:34

LeakBase Hacker Forum Admin Arrested in Russia by Law Enforcement Authorities Click here

darkreading — 26/03/2026, 20:59:32

How Organizations Can Use Blunders to Level Up Their Security Programs Click here

BleepingComputer — 26/03/2026, 19:30:10

Inside a Modern Fraud Attack: From Bot Signups to Account Takeovers Click here

SecurityWeek — 26/03/2026, 19:01:40

BIND Updates Patch High-Severity Vulnerabilities Click here

The Hacker News — 26/03/2026, 18:42:00

[Webinar] Stop Guessing. Learn to Validate Your Defenses Against Real Attacks Click here

The Hacker News — 26/03/2026, 18:41:00

Claude Extension Flaw Enabled Zero-Click XSS Prompt Injection via Any Website Medium Click here

BleepingComputer — 26/03/2026, 18:40:14

Coruna iOS exploit framework linked to Triangulation attacks Click here

SecurityWeek — 26/03/2026, 18:30:00

Chinese Hackers Caught Deep Within Telecom Backbone Infrastructure Click here

BleepingComputer — 26/03/2026, 18:20:17

Russia arrests suspected owner of LeakBase cybercrime forum Click here

SecurityWeek — 26/03/2026, 18:02:17

Cisco Patches Multiple Vulnerabilities in IOS Software Medium Click here

All CISA Advisories — 26/03/2026, 17:30:00

CISA Adds One Known Exploited Vulnerability to Catalog CVE-2026-33634 Critical Click here

All CISA Advisories — 26/03/2026, 17:30:00

PTC Windchill Product Lifecycle Management CVE-2026-4681 High Click here

All CISA Advisories — 26/03/2026, 17:30:00

OpenCode Systems OC Messaging and USSD Gateway CVE-2025-70614 Click here

All CISA Advisories — 26/03/2026, 17:30:00

WAGO GmbH & Co. KG Industrial Managed Switches CVE-2026-3587 High Click here

BleepingComputer — 26/03/2026, 17:21:59

Suspected RedLine infostealer malware admin extradited to US Click here

The Hacker News — 26/03/2026, 17:15:00

ThreatsDay Bulletin: PQC Push, AI Vuln Hunting, Pirated Traps, Phishing Kits & 20 More Stories Click here

The Hacker News — 26/03/2026, 16:37:00

Coruna iOS Kit Reuses 2023 Triangulation Exploit Code in Recent Mass Attacks Click here

SecurityWeek — 26/03/2026, 15:36:56

Alleged RedLine Malware Administrator Extradited to US Click here

Cyble — 26/03/2026, 12:39:36

The Energy Sector’s Ransomware Nightmare: Why Critical Infrastructure Can’t Catch a Break High Click here

The Hacker News — 26/03/2026, 12:23:00

WebRTC Skimmer Bypasses CSP to Steal Payment Data from E-Commerce Sites Click here

BleepingComputer — 26/03/2026, 03:10:21

PolyShell attacks target 56% of all vulnerable Magento stores Click here

SANS Internet Storm Center, InfoCON: green — 26/03/2026, 02:59:57

Apple Patches (almost) everything again. March 2026 edition., (Wed, Mar 25th) CVE-2025-43376 Click here

BleepingComputer — 26/03/2026, 00:02:37

New Torg Grabber infostealer malware targets 728 crypto wallets Click here

SANS Internet Storm Center, InfoCON: green — 25/03/2026, 23:14:25

SmartApeSG campaign pushes Remcos RAT, NetSupport RAT, StealC, and Sectop RAT (ArechClient2), (Wed, Mar 25th) Click here

The Hacker News — 25/03/2026, 23:05:00

LeakBase Admin Arrested in Russia Over Massive Stolen Credential Marketplace Click here

darkreading — 25/03/2026, 21:33:29

Blame Game: Why Public Cyber Attribution Carries Risks Click here

BleepingComputer — 25/03/2026, 21:22:10

Citrix urges admins to patch NetScaler flaws as soon as possible Critical Click here

darkreading — 25/03/2026, 20:35:52

Phishers Pose as Palo Alto Networks' Recruiters for Months in Job Scam Click here

darkreading — 25/03/2026, 20:10:33

SANS: Top 5 Most Dangerous New Attack Techniques to Watch Click here

The Hacker News — 25/03/2026, 19:56:00

GlassWorm Malware Uses Solana Dead Drops to Deliver RAT and Steal Browser, Crypto Data Click here

SecurityWeek — 25/03/2026, 19:45:00

AI Speeds Attacks, But Identity Remains Cybersecurity’s Weakest Link Click here

darkreading — 25/03/2026, 19:39:01

Why a 'Near-Miss' Database Is Key to Improving Information Sharing Click here

Cyble — 25/03/2026, 19:11:52

The Agentic AI Attack Surface: Prompt Injection, Memory Poisoning, and How to Defend Against Them Click here

darkreading — 25/03/2026, 17:56:14

AI-Native Security Is a Must to Counter AI-Based Attacks Click here

All CISA Advisories — 25/03/2026, 17:30:00

CISA Adds One Known Exploited Vulnerability to Catalog CVE-2026-33017 Critical Click here

The Hacker News — 25/03/2026, 17:28:00

The Kill Chain Is Obsolete When Your AI Agent Is the Threat Click here

darkreading — 25/03/2026, 17:25:50

Ex-NSA Directors Discuss 'Red Line' for Offensive Cyberattacks Click here

The Hacker News — 25/03/2026, 17:22:00

Russian Hacker Sentenced to 2 Years for TA551 Botnet-Driven Ransomware Attacks High Click here

SOC Prime — 25/03/2026, 17:01:40

Telemetry Pipeline: How It Works and Why It Matters in 2026 Click here

darkreading — 25/03/2026, 02:58:16

Checkmarx KICS Code Scanner Targeted in Widening Supply Chain Hit Click here

The Hacker News — 24/03/2026, 23:51:00

TeamPCP Backdoors LiteLLM Versions 1.82.7–1.82.8 via Trivy CI/CD Compromise Click here

The Hacker News — 24/03/2026, 22:35:00

Tax Search Ads Deliver ScreenConnect Malware Using Huawei Driver to Disable EDR Click here

SANS Internet Storm Center, InfoCON: green — 24/03/2026, 19:25:25

Detecting IP KVMs, (Tue, Mar 24th) Click here

darkreading — 24/03/2026, 18:46:21

How a Large Bank Uses AI Digital Twins for Threat Hunting Click here

Business Insights Cybersecurity Blog by Bitdefender — 24/03/2026, 18:14:59

Ransomware Attacks Against the US: 2026 Insights High Click here

All CISA Advisories — 24/03/2026, 17:30:00

Pharos Controls Mosaic Show Controller CVE-2026-2417 High Click here

All CISA Advisories — 24/03/2026, 17:30:00

Schneider Electric Plant iT/Brewmaxx CVE-2025-49844 High Click here

All CISA Advisories — 24/03/2026, 17:30:00

Grassroots DICOM (GDCM) CVE-2026-3650 Click here

The Hacker News — 24/03/2026, 16:08:00

TeamPCP Hacks Checkmarx GitHub Actions Using Stolen CI Credentials Click here

Threat Research & Intelligence Archives - Sekoia.io Blog — 24/03/2026, 13:07:16

Silver Fox: The Only Tax Audit Where the Fine Print Installs Malware Click here

The Hacker News — 24/03/2026, 12:19:00

U.S. Sentences Russian Hacker to 6.75 Years for Role in $9M Ransomware Damage High Click here

The Hacker News — 24/03/2026, 11:29:00

Citrix Urges Patching Critical NetScaler Flaw Allowing Unauthenticated Data Leaks CVE-2026-3055 High Click here

Blog — 24/03/2026, 10:30:00

CrowdStrike Services and Agentic MDR Put the Agentic SOC in Reach Click here

Blog — 24/03/2026, 10:30:00

CrowdStrike Advances CNAPP with Industry-First Adversary-Informed Risk Prioritization Click here

Blog — 24/03/2026, 10:30:00

CrowdStrike Flex for Services Expands Access to Elite Security Expertise Click here

Cyble — 24/03/2026, 10:20:51

India’s Evolving Cyber Threat Landscape: State-Sponsored Attacks, Hacktivism, and What’s Next in 2026 High Click here

Cloud Threat Landscape — 24/03/2026, 05:30:00

LiteLLM supply chain attack (Incident) Click here

darkreading — 24/03/2026, 03:13:59

Trivy Supply Chain Attack Targets CI/CD Secrets Click here

darkreading — 24/03/2026, 03:10:37

Ransomware's New Era: Moving at AI Speed High Click here

SANS Internet Storm Center, InfoCON: green — 24/03/2026, 02:09:05

Tool updates: lots of security and logic fixes, (Mon, Mar 23rd) Medium Click here

The Hacker News — 23/03/2026, 23:39:00

North Korean Hackers Abuse VS Code Auto-Run Tasks to Deploy StoatWaffle Malware Click here

Krebs on Security — 23/03/2026, 21:13:04

‘CanisterWorm’ Springs Wiper Attack Targeting Iran High Click here

darkreading — 23/03/2026, 20:41:01

Attackers Hide Infostealer in Copyright Infringement Notices Click here

Check Point Research — 23/03/2026, 19:08:09

23rd March – Threat Intelligence Report CVE-2026-33017 Critical Click here

The Hacker News — 23/03/2026, 18:44:00

⚡ Weekly Recap: CI/CD Backdoor, FBI Buys Location Data, WhatsApp Ditches Numbers & More Click here

The Hacker News — 23/03/2026, 17:25:00

We Found Eight Attack Vectors Inside AWS Bedrock. Here's What Attackers Can Do with Them Click here

The Hacker News — 23/03/2026, 16:25:00

Microsoft Warns IRS Phishing Hits 29,000 Users, Deploys RMM Malware Click here

The Hacker News — 23/03/2026, 14:01:00

Trivy Hack Spreads Infostealer via Docker, Triggers Worm and Kubernetes Wiper Click here

The Hacker News — 23/03/2026, 11:45:00

Hackers Exploit CVE-2025-32975 (CVSS 10.0) to Hijack Unpatched Quest KACE SMA Systems CVE-2025-32975 Click here

Blog — 23/03/2026, 10:30:00

New CrowdStrike Innovations Secure AI Agents and Govern Shadow AI Across Endpoints, SaaS, and Cloud Click here

Cloud Threat Landscape — 23/03/2026, 05:30:00

KICS supply chain attack (Incident) Click here

The Hacker News — 21/03/2026, 18:47:00

FBI Warns Russian Hackers Target Signal, WhatsApp in Mass Phishing Attacks Click here

The Hacker News — 21/03/2026, 15:54:00

Oracle Patches Critical CVE-2026-21992 Enabling Unauthenticated RCE in Identity Manager CVE-2026-21992 High Click here

The Hacker News — 21/03/2026, 13:55:00

Trivy Supply Chain Attack Triggers Self-Spreading CanisterWorm Across 47 npm Packages Click here

The Hacker News — 21/03/2026, 13:55:00

CISA Flags Apple, Craft CMS, Laravel Bugs in KEV, Orders Patching by April 3, 2026 CVE-2025-31277 Critical Click here

darkreading — 21/03/2026, 01:00:19

Patch Now: Oracle's Fusion Middleware Has Critical RCE Flaw High Click here

The Hacker News — 20/03/2026, 23:17:00

Trivy Security Scanner GitHub Actions Breached, 75 Tags Hijacked to Steal CI/CD Secrets Click here

darkreading — 20/03/2026, 22:01:33

Cyber OpSec Fail: Beast Gang Exposes Ransomware Server High Click here

The Hacker News — 20/03/2026, 20:45:00

Critical Langflow Flaw CVE-2026-33017 Triggers Attacks within 20 Hours of Disclosure CVE-2026-33017 High Click here

darkreading — 20/03/2026, 18:30:00

Interlock Ransomware Targets Cisco Enterprise Firewalls High Click here

Cyble — 20/03/2026, 17:57:47

North Korea’s Crypto Theft Operations: The Role of Lazarus Group in State-Sponsored Financial Warfare Critical Click here

All CISA Advisories — 20/03/2026, 17:30:00

CISA Adds Five Known Exploited Vulnerabilities to Catalog CVE-2025-31277 Critical Click here

The Hacker News — 20/03/2026, 16:27:00

Google Adds 24-Hour Wait for Unverified App Sideloading to Reduce Malware and Scams Click here

The Hacker News — 20/03/2026, 15:30:00

The Importance of Behavioral Analytics in AI-Enabled Cyber Attacks Click here

The Hacker News — 20/03/2026, 15:00:00

Magento PolyShell Flaw Enables Unauthenticated Uploads, RCE and Account Takeover High Click here

Cyble — 20/03/2026, 14:20:30

The Week in Vulnerabilities: Juniper, Cisco SD-WAN, and Critical ICS Exposure CVE-2026-21902 Critical Click here

The Hacker News — 20/03/2026, 11:55:00

DoJ Disrupts 3 Million-Device IoT Botnets Behind Record 31.4 Tbps Global DDoS Attacks Click here

The Hacker News — 20/03/2026, 10:46:00

Apple Warns Older iPhones Vulnerable to Coruna, DarkSword Exploit Kit Attacks Click here

Krebs on Security — 20/03/2026, 06:19:19

Feds Disrupt IoT Botnets Behind Huge DDoS Attacks Click here

security - Ars Technica — 20/03/2026, 01:41:36

Millions of iPhones can be hacked with a new tool found in the wild Critical Click here

darkreading — 20/03/2026, 01:38:11

Native Launches With Security Control Plane for Multicloud Click here

The Hacker News — 20/03/2026, 00:46:00

Speagle Malware Hijacks Cobra DocGuard to Steal Data via Compromised Servers Click here

The Hacker News — 20/03/2026, 00:22:00

54 EDR Killers Use BYOVD to Exploit 35 Signed Vulnerable Drivers and Disable Security High Click here

Red Canary — 20/03/2026, 00:04:19

Intelligence Insights: March 2026 Click here

The Hacker News — 19/03/2026, 19:55:00

ThreatsDay Bulletin: FortiGate RaaS, Citrix Exploits, MCP Abuse, LiveChat Phish & More Click here

The Hacker News — 19/03/2026, 18:13:00

New Perseus Android Banking Malware Monitors Notes Apps to Extract Sensitive Data Critical Click here

All CISA Advisories — 19/03/2026, 17:30:00

Schneider Electric Modicon Controllers M241, M251, M258, and LMC058 CVE-2025-13902 Click here

All CISA Advisories — 19/03/2026, 17:30:00

CTEK Chargeportal CVE-2026-25192 High Click here

All CISA Advisories — 19/03/2026, 17:30:00

IGL-Technologies eParking.fi CVE-2026-29796 High Click here

All CISA Advisories — 19/03/2026, 17:30:00

Mitsubishi Electric CNC Series CVE-2025-2399 Click here

All CISA Advisories — 19/03/2026, 17:30:00

Automated Logic WebCTRL Premium Server CVE-2026-25086 Click here

All CISA Advisories — 19/03/2026, 17:30:00

CISA Adds One Known Exploited Vulnerability to Catalog CVE-2026-20131 Critical Click here

All CISA Advisories — 19/03/2026, 17:30:00

Schneider Electric Modicon M241, M251, and M262 CVE-2025-13901 High Click here

SentinelLabs - We are hunters, reversers, exploit developers, and tinkerers shedding light on the world of malware, exploits, APTs, and cybercrime across all platforms. — 19/03/2026, 15:30:07

Building an Adversarial Consensus Engine | Multi-Agent LLMs for Automated Malware Analysis Click here

Unit 42 — 19/03/2026, 15:30:01

Analyzing the Current State of AI Use in Malware Click here

The Hacker News — 19/03/2026, 14:44:00

DarkSword iOS Exploit Kit Uses 6 Flaws, 3 Zero-Days for Full Device Takeover Click here

darkreading — 19/03/2026, 12:31:00

EU Sanctions Companies in China, Iran for Cyberattacks Click here

The Hacker News — 19/03/2026, 11:35:00

CISA Warns of Zimbra, SharePoint Flaw Exploits; Cisco Zero-Day Hit in Ransomware Attacks CVE-2025-66376 Critical Click here

Blog — 19/03/2026, 10:30:00

Secure Homegrown AI Agents with CrowdStrike Falcon AIDR and NVIDIA NeMo Guardrails Click here

darkreading — 19/03/2026, 03:19:02

C2 Implant 'SnappyClient' Targets Crypto Wallets Click here

darkreading — 19/03/2026, 02:45:38

DarkSword: iPhone Exploit Kit Serves Spies & Thieves Alike Critical Click here

Cyble — 18/03/2026, 22:06:00

Cyble and Optiv Partner to Bring Digital Risk Protection to Managed Security Operations Click here

The Hacker News — 18/03/2026, 21:30:00

Interlock Ransomware Exploits Cisco FMC Zero-Day CVE-2026-20131 for Root Access CVE-2026-20131 Critical Click here

darkreading — 18/03/2026, 20:35:58

'Claudy Day’ Trio of Flaws Exposes Claude Users to Data Theft Click here

Threat Intelligence — 18/03/2026, 19:30:00

The Proliferation of DarkSword: iOS Exploit Chain Adopted by Multiple Threat Actors CVE-2025-31277 Critical Click here

SOC Prime — 18/03/2026, 18:31:26

CVE-2026-20643: Vulnerability in WebKit Navigation API May Bypass Same Origin Policy CVE-2026-20643 Critical Click here

The Hacker News — 18/03/2026, 18:00:00

Critical Unpatched Telnetd Flaw (CVE-2026-32746) Enables Unauthenticated Root RCE CVE-2026-32746 High Click here

All CISA Advisories — 18/03/2026, 17:30:00

CISA Adds One Known Exploited Vulnerability to Catalog CVE-2026-20963 Critical Click here

All CISA Advisories — 18/03/2026, 17:30:00

CISA Adds One Known Exploited Vulnerability to Catalog CVE-2025-66376 Critical Click here

All CISA Advisories — 18/03/2026, 17:30:00

CISA Urges Endpoint Management System Hardening After Cyberattack Against US Organization Click here

SOC Prime — 18/03/2026, 16:18:56

Observability Pipeline: Managing Telemetry at Scale Click here

darkreading — 18/03/2026, 03:34:46

More Attackers Are Logging In, Not Breaking In Click here

darkreading — 18/03/2026, 03:11:12

Less Lucrative Ransomware Market Makes Attackers Alter Methods High Click here

security - Ars Technica — 18/03/2026, 02:58:27

How World ID wants to put a unique human identity on every AI agent Click here

darkreading — 18/03/2026, 01:11:24

Hackers Target Cybersecurity Firm Outpost24 in 7-Stage Phish Click here

darkreading — 17/03/2026, 21:06:52

Warlock Ransomware Group Augments Post-Exploitation Activities High Click here

SentinelLabs - We are hunters, reversers, exploit developers, and tinkerers shedding light on the world of malware, exploits, APTs, and cybercrime across all platforms. — 17/03/2026, 18:30:02

LABScon25 Replay | Your Apps May Be Gone, But the Hackers Made $9 Billion and They’re Still Here Click here

Blogs on Information Technology, Network & Cybersecurity | Seqrite — 17/03/2026, 18:27:23

Operation GhostMail: Russian APT exploits Zimbra Webmail to Target Ukraine State Agency CVE-2025-66376 Medium Click here

All CISA Advisories — 17/03/2026, 17:30:00

Siemens SICAM SIAPP SDK CVE-2026-25569 Click here

Cyble — 17/03/2026, 15:44:19

Middle East Cyber Warfare Intensifies: Rising Attacks, Hacktivist Surge, and Global Risk Exposure High Click here

darkreading — 17/03/2026, 06:30:00

China-Nexus Hackers Skulk in Southeast Asian Military Orgs for Years Click here

Unit 42 — 17/03/2026, 03:30:57

Boggy Serpens Threat Assessment Click here

darkreading — 17/03/2026, 02:00:04

GlassWorm Malware Evolves to Hide in Dependencies Click here

Unit 42 — 17/03/2026, 00:45:43

Iranian Cyber Threat Evolution: From MBR Wipers to Identity Weaponization Click here

darkreading — 16/03/2026, 19:40:47

Attackers Abuse LiveChat to Phish Credit Card, Personal Data Click here