FRIEND
Bleeping Computer
Proton launches new "Meet" privacy-focused conferencing platform
FOE
Bleeping Computer
GIGABYTE Control Center vulnerable to arbitrary file write flaw
FOE
Dark Reading
The Forgotten Endpoint: Security Risks of Dormant Devices
FOE
Bleeping Computer
Claude AI finds Vim, Emacs RCE bugs that trigger on file open
FOE
The Register (Security)
Don't open that WhatsApp message, Microsoft warns
FOE
Dark Reading
Axios NPM Package Compromised in Precision Attack
FOE
CSO Online
Attackers trojanize Axios HTTP library in highest-impact npm supply chain attack
FOE
Dark Reading
Google's Vertex AI Has an Over-Privileged Problem
FOE
Dark Reading
TeamPCP Breaches Cloud, SaaS Instances With Stolen Credentials
FOE
The Register (Security)
Iran targets M365 accounts with password-spraying attacks
FOE
CSO Online
5-month-old F5 BIG-IP DoS bug becomes critical RCE exploited in the wild
FRIEND
The Hacker News
Android Developer Verification Rollout Begins Ahead of September Enforcement
FOE
Ars Technica (Security)
Quantum computers need vastly fewer resources than thought to break vital encryption
FOE
Bleeping Computer
Cisco source code stolen in Trivy-linked dev environment breach
FOE
The Hacker News
TrueConf Zero-Day Exploited in Attacks on Southeast Asian Government Networks
FRIEND
Dark Reading
Black Hat USA
FRIEND
SecurityWeek
Censys Raises $70 Million for Internet Intelligence Platform
FRIEND
Dark Reading
Rethinking Vulnerability Management Strategies for Mid-Market Security
FOE
SecurityWeek
The Next Cybersecurity Crisis Isn’t Breaches—It’s Data You Can’t Trust
FOE
Dark Reading
AI and Quantum Are Forcing a Rethink of Digital Trust
FOE
SecurityWeek
Stolen Logins Are Fueling Everything From Ransomware to Nation-State Cyberattacks
FOE
SecurityWeek
Venom Stealer Raises Stakes With Continuous Credential Harvesting
FOE
Privacy International
Challenging the militarisation of tech: a visual explainer
FOE
Bleeping Computer
How to Categorize AI Agents and Prioritize Risk
FOE
Bleeping Computer
Hackers compromise Axios npm package to drop cross-platform malware
FOE
SecurityWeek
TeamPCP Moves From OSS to AWS Environments
FOE
Ars Technica (Security)
Iran's hackers are on the offensive against the US and Israel
FOE
SecurityWeek
CrewAI Vulnerabilities Expose Devices to Hacking
FOE
Dark Reading
Iran Deploys 'Pseudo-Ransomware,' Revives Pay2Key Operations
FOE
The Hacker News
Vertex AI Vulnerability Exposes Google Cloud Data and Private Artifacts
FOE
CSO Online
OpenAI patches twin leaks as Codex slips and ChatGPT spills
FRIEND
Bleeping Computer
Microsoft fixes Outlook Classic crashes caused by Teams Meeting add-in
FOE
CISA Alerts
Anritsu Remote Spectrum Monitor
FOE
CISA Alerts
PX4 Autopilot
FOE
SecurityWeek
Google Slashes Quantum Resource Requirements for Breaking Cryptocurrency Encryption
FOE
The Hacker News
The AI Arms Race – Why Unified Exposure Management Is Becoming a Boardroom Priority
FOE
The Hacker News
Silver Fox Expands Asia Cyber Campaign with AtlasCross RAT and Fake Domains
FOE
SecurityWeek
Exploitation of Critical Fortinet FortiClient EMS Flaw Begins
FRIEND
Schneier on Security
Inventors of Quantum Cryptography Win Turing Award
FOE
The Register (Security)
Supply chain blast: Top npm package backdoored to drop dirty RAT on dev machines
FOE
SecurityWeek
StrongSwan Flaw Allows Unauthenticated Attackers to Crash VPNs
FOE
SecurityWeek
Lloyds Data Security Incident Impacts 450,000 Individuals
FOE
Bleeping Computer
Hacker charged with stealing $53 million from Uranium crypto exchange
FRIEND
CSO Online
8 ways to bolster your security posture on the cheap
FOE
CSO Online
The external pressures redefining cybersecurity risk
FOE
CSO Online
6 key takeaways from RSA Conference 2026
FOE
Bleeping Computer
Dutch Finance Ministry takes treasury banking portal offline after breach
FOE
SANS Internet Storm Center
Application Control Bypass for Data Exfiltration, (Tue, Mar 31st)
FOE
CSO Online
Fahndung nach Cyberkriminellen – 130 Firmen attackiert
FOE
Bleeping Computer
CISA orders feds to patch actively exploited Citrix flaw by Thursday
FOE
SecurityWeek
Critical Vulnerability in OpenAI Codex Allowed GitHub Token Compromise
FOE
The Hacker News
Axios Supply Chain Attack Pushes Cross-Platform RAT via Compromised npm Account
FOE
Sophos News
Axios npm package compromised to deploy malware
FOE
Sophos News
The High Cost of Low Trust: Our Commitment to Radical Transparency
FOE
Sophos News
The Cybersecurity Trust Reality in 2026
FOE
CSO Online
Fortinet hit by another exploited cybersecurity flaw
FOE
Bleeping Computer
Healthcare tech firm CareCloud says hackers stole patient data
FOE
Dark Reading
AI-Powered 'DeepLoad' Malware Steals Credentials, Evades Detection
FOE
Bleeping Computer
New RoadK1ll WebSocket implant used to pivot on breached networks
FOE
The Intercept (Privacy)
What Would We All Say If Iran Razed MIT Because of Military-Related Research?
FOE
The Register (Security)
OpenAI patches ChatGPT flaw that smuggled data over DNS
FRIEND
EFF Deeplinks
Welcome, Daily Show Viewers! Learn More About EFF and Privacy's Defender
FRIEND
EPIC
Biometric Update: FTC can do better on age assurance, say privacy rights’ groups
FOE
Dark Reading
AI-Driven Code Surge Is Forcing a Rethink of AppSec
FOE
Bleeping Computer
Critical Citrix NetScaler memory flaw actively exploited in attacks
FOE
Dark Reading
F5 BIG-IP Vulnerability Reclassified as RCE, Under Exploitation
FOE
Dark Reading
F5 BIG-IP Vulnerability Reclassified as RCE, Under Exploitation
FOE
The Hacker News
OpenAI Patches ChatGPT Data Exfiltration Flaw and Codex GitHub Token Vulnerability
FOE
The Register (Security)
Telnyx joins LiteLLM in latest PyPI package poisoning tied to Trivy breach
FOE
Dark Reading
Manufacturing and Healthcare Share Struggles with Passwords
FOE
The Hacker News
DeepLoad Malware Uses ClickFix and WMI Persistence to Steal Browser Credentials
FRIEND
EFF Deeplinks
EFF's Cindy Cohn on The Daily Show! Tonight Monday, March 30
FOE
Dark Reading
Storm Brews Over Critical, No-Click Telegram Flaw
FOE
SANS Internet Storm Center
TeamPCP Supply Chain Campaign: Update 004 - Databricks Investigating Alleged Compromise, TeamPCP Runs Dual Ransomware Operations, and AstraZeneca Data Released, (Mon, Mar 30th)
FRIEND
Bleeping Computer
Apple adds macOS Terminal warning to block ClickFix attacks
FOE
SecurityWeek
Healthcare IT Platform CareCloud Probing Potential Data Breach
FOE
SecurityWeek
Silent Drift: How LLMs Are Quietly Breaking Organizational Access Control
FRIEND
Bleeping Computer
How to Evaluate AI SOC Agents: 7 Questions Gartner Says You Should Be Asking
FOE
The Hacker News
⚡ Weekly Recap: Telecom Sleeper Cells, LLM Jailbreaks, Apple Forces U.K. Age Checks and More
FOE
The Register (Security)
Citrix NetScaler bug exploited in days, may be multiple flaws in a trench coat
FRIEND
The Hacker News
3 SOC Process Fixes That Unlock Tier 1 Productivity
FRIEND
SecurityWeek
Huskeys Emerges From Stealth With $8 Million in Funding
FOE
CSO Online
LangChain path traversal bug adds to input validation woes in AI pipelines
FOE
CISA Alerts
CISA Adds One Known Exploited Vulnerability to Catalog
FOE
SecurityWeek
Russian APT Star Blizzard Adopts DarkSword iOS Exploit Kit
FOE
CSO Online
Leak reveals Anthropic’s ‘Mythos,’ a powerful AI model aimed at cybersecurity use cases
FOE
The Hacker News
The State of Secrets Sprawl 2026: 9 Takeaways for CISOs
FOE
SecurityWeek
European Commission Reports Cyber Intrusion and Data Theft
FOE
SecurityWeek
Hacked Hospitals, Hidden Spyware: Iran Conflict Shows How Digital Fight Is Ingrained in Warfare
FRIEND
Schneier on Security
Apple’s Camera Indicator Lights
FOE
Bleeping Computer
Hackers now exploit critical F5 BIG-IP flaw in attacks, patch now
FOE
SecurityWeek
Telnyx Targeted in Growing TeamPCP Supply Chain Attack
FOE
The Register (Security)
European Commission admits attackers broke into public web systems, but says little else
FOE
CSO Online
APIs are the new perimeter: Here’s how CISOs are securing them
FOE
The Hacker News
Russian CTRL Toolkit Delivered via Malicious LNK Files Hijacks RDP via FRP Tunnels
FOE
Bleeping Computer
Microsoft pulls KB5079391 Windows update over install issues
FOE
SecurityWeek
Exploitation of Fresh Citrix NetScaler Vulnerability Begins
FOE
CSO Online
Why Kubernetes controllers are the perfect backdoor
FOE
SecurityWeek
FBI Confirms Kash Patel Email Hack as US Offers $10M Reward for Hackers
FOE
Bleeping Computer
Critical Fortinet Forticlient EMS flaw now exploited in attacks
FOE
The Register (Security)
Security contractor blew the whistle on support crew's viral indifference
FOE
SecurityWeek
F5 BIG-IP DoS Flaw Upgraded to Critical RCE, Now Exploited in the Wild
FOE
The Hacker News
Three China-Linked Clusters Target Southeast Asian Government in 2025 Cyber Campaign
FOE
Bleeping Computer
European Commission confirms data breach after Europa.eu hack
FOE
The Register (Security)
US foreign router ban criticized for being ‘industrial policy disguised as cybersecurity’
FRIEND
Risky Business News
Risky Bulletin: Apple adds ClickFix warning to macOS terminal
FRIEND
CSO Online
Data Security Posture Management: Die besten DSPM-Tools
FRIEND
SANS Internet Storm Center
DShield (Cowrie) Honeypot Stats and When Sessions Disconnect, (Mon, Mar 30th)
FRIEND
Sophos News
Where AI in the SOC is actually delivering — and where it isn’t
FOE
Sophos News
Incident responders, s'il vous plait: Invites lead to odd malware events
FOE
Bleeping Computer
FBI confirms hack of Director Patel's personal email inbox
FOE
Bleeping Computer
File read flaw in Smart Slider plugin impacts 500K WordPress sites
FOE
The Hacker News
Iran-Linked Hackers Breach FBI Director’s Personal Email, Hit Stryker With Wiper Attack
FOE
SANS Internet Storm Center
TeamPCP Supply Chain Campaign: Update 003 - Operational Tempo Shift as Campaign Enters Monetization Phase With No New Compromises in 48 Hours, (Sat, Mar 28th)
FOE
Bleeping Computer
New Infinity Stealer malware grabs macOS data via ClickFix lures
FOE
SecurityWeek
Cloudflare-Themed ClickFix Attack Drops Infiniti Stealer on Macs
FOE
The Intercept (Privacy)
ICE at Airports Trains Us to Accept Being Terrorized in Our Daily Lives
FOE
The Hacker News
Citrix NetScaler Under Active Recon for CVE-2026-3055 (CVSS 9.3) Memory Overread Bug
FOE
The Hacker News
TA446 Deploys Leaked DarkSword iOS Exploit Kit in Targeted Spear-Phishing Campaign
FOE
The Hacker News
CISA Adds CVE-2025-53521 to KEV After Active F5 BIG-IP APM Exploitation
FOE
EFF Deeplinks
US Tech Companies Must be Accountable in US Courts for Facilitating Persecution and Torture Abroad, EFF Urges US Supreme Court
FOE
Sophos News
Incident responders, s'il vous plait: Invites lead to odd malware events
FOE
Bleeping Computer
Backdoored Telnyx PyPI package pushes malware hidden in WAV audio
FOE
CSO Online
European Commission data stolen in a cyberattack on the infrastructure hosting its web sites
FRIEND
EPIC
EPIC Joins Amicus Brief Urging SCOTUS to Hold Wireless Carriers Accountable for Selling Customers’ Location Data
FRIEND
EPIC
Reason Magazine: Trump Backs Section 702 Reauthorization After Once Calling To ‘KILL FISA’
FOE
CSO Online
Lloyds Bank reveals how IT bug exposed transaction data
FRIEND
The Hacker News
Apple Sends Lock Screen Alerts to Outdated iPhones Over Active Web-Based Exploits
FOE
The Hacker News
TeamPCP Pushes Malicious Telnyx Versions to PyPI, Hides Stealer in WAV Files
FOE
Bleeping Computer
Fake VS Code alerts on GitHub spread malware to developers
FOE
Dark Reading
China Upgrades the Backdoor It Uses to Spy on Telcos Globally
FOE
SecurityWeek
Pro-Iranian Hacking Group Claims Credit for Hack of FBI Director Kash Patel’s Personal Account
FRIEND
EPIC
EPIC Urges Amendments to Maryland Chatbots Bill
FRIEND
Privacy International
Are IP addresses personal data?
FOE
Dark Reading
Wartime Usage of Compromised IP Cameras Highlight Their Danger
FOE
SANS Internet Storm Center
TeamPCP Supply Chain Campaign: Update 002 - Telnyx PyPI Compromise, Vect Ransomware Mass Affiliate Program, and First Named Victim Claim, (Fri, Mar 27th)
FOE
SecurityWeek
In Other News: Palo Alto Recruiter Scam, Anti-Deepfake Chip, Google Sets 2029 Quantum Deadline
FRIEND
Bleeping Computer
Agentic GRC: Teams Get the Tech. The Mindset Shift Is What's Missing.
FOE
The Hacker News
Open VSX Bug Let Malicious VS Code Extensions Bypass Pre-Publish Security Checks
FRIEND
SecurityWeek
OpenAI Launches Bug Bounty Program for Abuse and Safety Risks
FOE
The Register (Security)
AFC Ajax drops ball as flaws let hackers play admin with tickets and bans
FOE
Bleeping Computer
European Commission investigating breach after Amazon cloud account hack
FOE
Bleeping Computer
European Commission investigating breach after Amazon cloud hack
FOE
CSO Online
Attackers exploit critical Langflow RCE within hours as CISA sounds alarm
FOE
The Hacker News
AitM Phishing Targets TikTok Business Accounts Using Cloudflare Turnstile Evasion
FRIEND
Dark Reading
Google Sets 2029 Deadline for Quantum-Safe Cryptography
FOE
CISA Alerts
CISA Adds One Known Exploited Vulnerability to Catalog
FOE
SecurityWeek
TP-Link Patches High-Severity Router Vulnerabilities
FOE
The Register (Security)
Iran war drives urgent need to counter underwater attack drones
FOE
The Hacker News
We Are At War
FOE
CSO Online
Cyberangriff auf die Linke
FOE
SecurityWeek
RSAC 2026 Conference Announcements Summary (Days 3-4)
FRIEND
Bleeping Computer
Anti-piracy coalition takes down AnimePlay app with 5 million users
FOE
SecurityWeek
Coruna iOS Exploit Kit Likely an Update to Operation Triangulation
FOE
The Hacker News
Bearlyfy Hits 70+ Russian Firms with Custom GenieLocker Ransomware
FRIEND
CSO Online
8 steps CISOs can take to empower their teams
FOE
SecurityWeek
CISA Flags Critical PTC Vulnerability That Had German Police Mobilized
FRIEND
Bleeping Computer
Windows 11 KB5079391 update rolls out Smart App Control improvements
FOE
Bleeping Computer
Dutch Police discloses security breach after phishing attack
FOE
The Hacker News
LangChain, LangGraph Flaws Expose Files, Secrets, Databases in Widely Used AI Frameworks
FOE
The Register (Security)
Security boffins scoured the web and found hundreds of valid API keys
FOE
CSO Online
Was ist Social Engineering?
FOE
Risky Business News
Risky Bulletin: Russia to use custom crypto-algorithm for its 5G network
FOE
CSO Online
Google: The quantum apocalypse is coming sooner than we thought
FOE
Ars Technica (Security)
Internet Yiff Machine: We hacked 93GB of "anonymous" crime tips
FOE
Bleeping Computer
Ajax football club hack exposed fan data, enabled ticket hijack
FRIEND
Dark Reading
Infrastructure Attacks With Physical Consequences Down 25%
FOE
EFF Deeplinks
Traffic Violation! License Plate Reader Mission Creep Is Already Here
FOE
Dark Reading
Coruna, DarkSword & Democratizing Nation-State Exploit Kits
FOE
Dark Reading
Is the FCC's Router Ban the Wrong Fix?
FOE
Dark Reading
Automotive Cybersecurity Threats Grow in Era of Connected, Autonomous Vehicles
FOE
Bleeping Computer
CISA: New Langflow flaw actively exploited to hijack AI workflows
FOE
Dark Reading
Critical Flaw in Langflow AI Platform Under Attack
FOE
CSO Online
The CISO’s guide to responding to shadow AI
FOE
EPIC
Yahoo Tech: I Review Routers for a Living. Don’t Buy a Router Right Now
FOE
SANS Internet Storm Center
TeamPCP Supply Chain Campaign: Update 001 - Checkmarx Scope Wider Than Reported, CISA KEV Entry, and Detection Tools Available, (Thu, Mar 26th)
FOE
The Hacker News
China-Linked Red Menshen Uses Stealthy BPFDoor Implants to Spy via Telecom Networks
FRIEND
Sophos News
The High Cost of Low Trust: Our Commitment to Radical Transparency
FRIEND
EFF Deeplinks
Supreme Court Agrees With EFF: ISPs Don't Have To Be Copyright Enforcers
FOE
Bleeping Computer
UK sanctions Xinbi marketplace linked to Asian scam centers
FRIEND
Dark Reading
How Organizations Can Use Blunders to Level Up Their Security Programs
FOE
Dark Reading
AI-Powered Dependency Decisions Introduce, Ignore Security Bugs
FOE
Bleeping Computer
TikTok for Business accounts targeted in new phishing campaign
FOE
SecurityWeek
Hightower Holding Data Breach Impacts 130,000
FRIEND
Bleeping Computer
WhatsApp rolls out more AI features, iOS multi-account support
FOE
Bleeping Computer
Inside a Modern Fraud Attack: From Bot Signups to Account Takeovers
FOE
SecurityWeek
BIND Updates Patch High-Severity Vulnerabilities
FOE
The Hacker News
Claude Extension Flaw Enabled Zero-Click XSS Prompt Injection via Any Website
FOE
Bleeping Computer
Coruna iOS exploit framework linked to Triangulation attacks
FOE
SecurityWeek
Chinese Hackers Caught Deep Within Telecom Backbone Infrastructure
FRIEND
Bleeping Computer
Russia arrests suspected owner of LeakBase cybercrime forum
FRIEND
CSO Online
Databricks pitches Lakewatch as a cheaper SIEM — but is it really?
FOE
SecurityWeek
Cisco Patches Multiple Vulnerabilities in IOS Software
FOE
Dark Reading
Intermediaries Driving Global Spyware Market Expansion
FOE
CISA Alerts
CISA Adds One Known Exploited Vulnerability to Catalog
FOE
CISA Alerts
OpenCode Systems OC Messaging and USSD Gateway
FOE
CISA Alerts
PTC Windchill Product Lifecycle Management
FOE
CISA Alerts
WAGO GmbH & Co. KG Industrial Managed Switches
FOE
The Hacker News
Masters of Imitation: How Hackers and Art Forgers Perfect the Art of Deception
FRIEND
Bleeping Computer
Suspected RedLine infostealer malware admin extradited to US
FOE
The Register (Security)
Brit lawmaker targeted by AI deepfake fails to get answers from US Big Tech
FOE
The Hacker News
ThreatsDay Bulletin: PQC Push, AI Vuln Hunting, Pirated Traps, Phishing Kits & 20 More Stories
FOE
CSO Online
GitHub phishers use fake OpenClaw tokens to drain crypto wallets
FOE
The Hacker News
Coruna iOS Kit Reuses 2023 Triangulation Exploit Code in New Mass Attacks
FOE
The Hacker News
[Webinar] Stop Guessing. Learn to Validate Your Defenses Against Real Attacks
FOE
Schneier on Security
As the US Midterms Approach, AI Is Going to Emerge as a Key Issue Concerning Voters
FOE
SecurityWeek
Alleged RedLine Malware Administrator Extradited to US
FRIEND
SecurityWeek
Dell and HP Roll Out Quantum-Resistant Device Security and AI-Era Cyber Resilience
FOE
The Hacker News
WebRTC Skimmer Bypasses CSP to Steal Payment Data from E-Commerce Sites
FRIEND
CSO Online
10 essenzielle Maßnahmen für physische Sicherheit
FOE
The Register (Security)
Indian government probes CCTV espionage operation linked to Pakistan
FOE
Risky Business News
Srsly Risky Biz: FBI Says Why Get a Warrant When You Have Kash
FOE
CSO Online
New critical Citrix NetScaler hole of similar severity to CitrixBleed2, says expert
FRIEND
Bleeping Computer
GitHub adds AI-powered bug detection to expand security coverage
FRIEND
Dark Reading
At RSAC, the EU Leads While US Officials Are Sidelined
FOE
Bleeping Computer
PolyShell attacks target 56% of all vulnerable Magento stores
FRIEND
SANS Internet Storm Center
Apple Patches (almost) everything again. March 2026 edition., (Wed, Mar 25th)
FOE
The Register (Security)
AI supply chain attacks don’t even require malware…just post poisoned documentation
FOE
The Register (Security)
Scammers have virtual smartphones on speed dial for fraud
FOE
Bleeping Computer
Bubble AI app builder abused to steal Microsoft account credentials
FRIEND
The Register (Security)
Jen Easterly, cybersecurity's 'relentless optimist,' hopes feds come back to RSAC next year
FOE
EPIC
Jury Finds Meta and Google Negligent in Landmark Social Media Addiction Case
FOE
The Register (Security)
Only Trump can decide when cyberwar turns into real war
FOE
Bleeping Computer
New Torg Grabber infostealer malware targets 728 crypto wallets
FOE
CSO Online
Chained vulnerabilities in Cisco Catalyst switches could induce denial-of-service
FOE
EPIC
The 33 Data Brokers Selling US Data to Foreign Actors, According to California
FOE
EPIC
NPR: Your data is everywhere. The government is buying it without a warrant
FRIEND
The Hacker News
LeakBase Admin Arrested in Russia Over Massive Stolen Credential Marketplace
FOE
EFF Deeplinks
EFF Sues for Answers About Medicare's AI Experiment
FOE
Privacy International
PI seeks to inform inquiry of UK Joint Committee on Human Rights on human rights and AI
FOE
Sophos News
The Cybersecurity Trust Reality in 2026
FOE
Dark Reading
Blame Game: Why Public Cyber Attribution Carries Risks
FRIEND
SecurityWeek
Onit Security Raises $11 Million for Exposure Management Platform
FOE
Bleeping Computer
Citrix urges admins to patch NetScaler flaws as soon as possible
FOE
Ars Technica (Security)
Google bumps up Q Day estimate to 2029, far sooner than previously thought
FOE
EFF Deeplinks
👓 Who's Really Watching What Smartglasses See? | EFFector 38.6
FOE
Dark Reading
Phishers Pose as Palo Alto Networks' Recruiters for Months in Job Scam
FOE
Dark Reading
SANS: Top 5 Most Dangerous New Attack Techniques to Watch
FRIEND
SecurityWeek
Russian Cybercriminal Gets 2-Year Prison Sentence in US
FOE
The Hacker News
GlassWorm Malware Uses Solana Dead Drops to Deliver RAT and Steal Browser, Crypto Data
FOE
SecurityWeek
AI Speeds Attacks, But Identity Remains Cybersecurity’s Weakest Link
FRIEND
Dark Reading
Why a 'Near Miss' Database Is Key to Improving Information Sharing
FOE
Bleeping Computer
Paid AI Accounts Are Now a Hot Underground Commodity
FOE
Black Hills Information Security
Lessons From A Chatbot Incident
FRIEND
SecurityWeek
iOS, macOS 26.4 Roll Out With Fresh Security Patches
FRIEND
SecurityWeek
FCC Bans New Routers Made Outside the US Over National Security Risks
FRIEND
Bleeping Computer
Kali Linux 2026.1 released with 8 new tools, new BackTrack mode
FOE
Dark Reading
AI-Native Security Is a Must to Counter AI-Based Attacks
FRIEND
The Intercept (Privacy)
How to Keep ICE Agents Out of Your Devices at Airports
FRIEND
SecurityWeek
RSAC 2026 Conference Announcements Summary (Day 2)
FOE
CSO Online
Trivy supply chain breach compromises over 1,000 SaaS environments, Lapsus$ joins the extortion wave
FOE
CISA Alerts
CISA Adds One Known Exploited Vulnerability to Catalog
FOE
The Hacker News
The Kill Chain Is Obsolete When Your AI Agent Is the Threat
FOE
Dark Reading
Ex-NSA Directors Discuss 'Red Line' for Offensive Cyberattacks
FOE
SecurityWeek
From Trivy to Broad OSS Compromise: TeamPCP Hits Docker Hub, VS Code, PyPI
FOE
The Hacker News
Russian Hacker Sentenced to 2 Years for TA551 Botnet-Driven Ransomware Attacks
FOE
The Hacker News
Device Code Phishing Hits 340+ Microsoft 365 Orgs Across Five Countries via OAuth Abuse
FOE
Bleeping Computer
TP-Link warns users to patch critical router auth bypass flaw
FOE
CSO Online
PyPI warns developers after LiteLLM malware found stealing cloud and CI/CD credentials
FOE
EFF Deeplinks
Digital Hopes, Real Power: Reflecting on the Legacy of the Arab Spring
FOE
Schneier on Security
Sen. Wyden Warns of Another Section 702 Abuse
FOE
Privacy International
Transparency and explainability for algorithmic decisions at work
FRIEND
CSO Online
6 key trends reshaping the IAM market
FOE
SecurityWeek
US Prisons Russian Access Broker for Aiding Ransomware Attacks
FOE
CSO Online
AI is breaking traditional security models — Here’s where they fail first
FRIEND
Bleeping Computer
Manager of botnet used in ransomware attacks gets 2 years in prison
FOE
SecurityWeek
HackerOne Employee Data Exposed in Massive Navia Breach
FRIEND
The Register (Security)
Enterprise PCs are unreliable, unpatched, and unloved compared to Macs
FRIEND
The Hacker News
FCC Bans New Foreign-Made Routers Over Supply Chain and Cyber Risk Concerns
FRIEND
Dark Reading
Iran Hacktivists Make Noise but Have Little Impact on War
FRIEND
CSO Online
Empathie trifft IT-Sicherheit: Der Weg zu gelebter Compliance
FOE
Risky Business News
Risky Bulletin: The Intellexa CEO is pissed!!!
FOE
SANS Internet Storm Center
SmartApeSG campaign pushes Remcos RAT, NetSupport RAT, StealC, and Sectop RAT (ArechClient2), (Wed, Mar 25th)
FOE
Recorded Future Blog
ClickFix Campaigns Targeting Windows and macOS
FOE
Bleeping Computer
PTC warns of imminent threat from critical Windchill, FlexPLM RCE bug
FRIEND
Dark Reading
CSA Launches CSAI Foundation for AI Security
FOE
Bleeping Computer
Popular LiteLLM PyPI package backdoored to steal credentials, auth tokens
FOE
Dark Reading
Checkmarx KICS Code Scanner Targeted in Widening Supply Chain Hit
FOE
Dark Reading
How AI Coding Tools Crushed the Endpoint Security Fortress
FRIEND
The Register (Security)
EFF has a new boss to lead the fight against privacy-sucking forces of doom
FRIEND
EFF Deeplinks
Nicole Ozer Named as Electronic Frontier Foundation’s Executive Director
FRIEND
Bleeping Computer
FCC bans new routers made outside the USA over security risks
FOE
The Register (Security)
1K+ cloud environments infected following Trivy supply chain attack
FRIEND
SecurityWeek
DoE Publishes 5-Year Energy Security Plan
FOE
The Register (Security)
LiteLLM loses game of Trivy pursuit, gets compromised
FOE
SecurityWeek
Why Agentic AI Systems Need Better Governance – Lessons from OpenClaw
FOE
The Hacker News
TeamPCP Backdoors LiteLLM Versions 1.82.7–1.82.8 Likely via Trivy CI/CD Compromise
FOE
SecurityWeek
Poland Faced a Surge in Cyberattacks in 2025, Including a Major Assault on the Energy Sector
FRIEND
Bleeping Computer
Firefox now has a free built-in VPN with 50GB monthly data limit
FOE
The Hacker News
Tax Search Ads Deliver ScreenConnect Malware Using Huawei Driver to Disable EDR
FOE
The Hacker News
Hackers Use Fake Resumes to Steal Enterprise Credentials and Deploy Crypto Miner
FRIEND
The Intercept (Privacy)
Palantir Will No Longer Profit Off of New Yorkers’ Health Data
FRIEND
SecurityWeek
RSAC 2026 Conference Announcements Summary (Day 1)
FRIEND
Bleeping Computer
Microsoft fixes bug causing Classic Outlook sync issues with Gmail
FOE
Dark Reading
GitHub 'OpenClaw Deployer' Repo Delivers Trojan Instead
FOE
EFF Deeplinks
Digital Hopes, Real Power: From Revolution to Regulation
FOE
Bleeping Computer
Zero Trust: Bridging the Gap Between Authentication and Trust
FOE
Bleeping Computer
HackerOne discloses employee data breach after Navia hack
FOE
SANS Internet Storm Center
Detecting IP KVMs, (Tue, Mar 24th)
FOE
SecurityWeek
Extortion Group Claims It Hacked AstraZeneca
FOE
Bleeping Computer
Infinite Campus warns of breach after ShinyHunters claims data theft
FOE
CSO Online
DDoS-Angriffe haben sich verdoppelt
FOE
EFF Deeplinks
UK Politicians Continue to Miss the Point in Latest Social Media Ban Proposal
FRIEND
SecurityWeek
Chrome 146 Update Patches High-Severity Vulnerabilities
FRIEND
CSO Online
HP launches TPM Guard to help defeat physical TPM attacks
FOE
The Register (Security)
HackerOne slams supplier for delayed breach notice after staff data exposed
FRIEND
Dark Reading
How a Large Bank Uses AI Digital Twins for Threat Hunting
FOE
Sophos News
The global CISO landscape: A leadership gap too large to ignore
FOE
Bleeping Computer
Yanluowang ransomware access broker gets 81 months in prison
FOE
Ars Technica (Security)
Self-propagating malware poisons open source software and wipes Iran-based machines
FRIEND
SecurityWeek
Webinar Today: Putting CIS Controls and Benchmarks into Practice
FRIEND
Dark Reading
Microsoft Proposes Better Identity, Guardrails for AI Agents
FOE
SecurityWeek
3.1 Million Impacted by QualDerm Data Breach
FRIEND
The Register (Security)
Country that put backdoors into Cisco routers to spy on world bans foreign routers
FOE
SecurityWeek
Iran Built a Vast Camera Network to Control Dissent. Israel Turned It Into a Targeting Tool
FOE
Bleeping Computer
Dutch Ministry of Finance discloses breach affecting employees
FOE
CISA Alerts
Pharos Controls Mosaic Show Controller
FOE
CISA Alerts
Grassroots DICOM (GDCM)
FOE
CISA Alerts
Schneider Electric EcoStruxure Foxboro DCS
FOE
CISA Alerts
Schneider Electric Plant iT/Brewmaxx
FOE
The Hacker News
Ghost Campaign Uses 7 npm Packages to Steal Crypto Wallets and Credentials
FOE
CSO Online
New ‘StoatWaffle’ malware auto‑executes attacks on developers
FRIEND
The Hacker News
5 Learnings from the First-Ever Gartner Market Guide for Guardian Agents
FOE
The Register (Security)
Russian initial access broker who fed ransomware crews gets 81 months in US prison
FOE
SecurityWeek
Critical Citrix NetScaler Vulnerability Poised for Exploitation, Security Firms Warn
FRIEND
Schneier on Security
Team Mirai and Democracy
FOE
SecurityWeek
Mazda Says Employee, Partner Information Stolen in Cyberattack
FOE
The Hacker News
The Hidden Cost of Cybersecurity Specialization: Losing Foundational Skills
FOE
SecurityWeek
Stryker Says Malicious File Found During Probe Into Iran-Linked Attack
FOE
CSO Online
Autonomous AI adoption is on the rise, but it’s risky
FOE
The Hacker News
TeamPCP Hacks Checkmarx GitHub Actions Using Stolen CI Credentials
FRIEND
CSO Online
Streamline physical security to enable data center growth in the era of AI
FRIEND
CSO Online
Why CISOs should embrace AI honeypots
FOE
The Hacker News
U.S. Sentences Russian Hacker to 6.75 Years for Role in $9M Ransomware Damage
FOE
The Hacker News
Citrix Urges Patching Critical NetScaler Flaw Allowing Unauthenticated Data Leaks
FRIEND
CSO Online
ISO und ISMS: Darum gehen Security-Zertifizierungen schief
FRIEND
CSO Online
Palo Alto updates security platform to discover AI agents
FRIEND
Sophos News
Sophos Firewall ranked the #1 overall firewall solution in G2’s Spring 2026 reports
FRIEND
Sophos News
Cybersecurity for Education – Sophos Protected Classroom
FOE
Bleeping Computer
OpenAI rolls out ChatGPT Library to store your personal files
FRIEND
EPIC
EPIC Testifies in Support of D.C.’s Proposed Personal Health Data Security Amendment Act
FOE
The Register (Security)
Claude attacks were 'Rorschach test' for infosec community, scaring former NSA boss
FOE
Bleeping Computer
Mazda discloses security breach exposing employee and partner data
FOE
Dark Reading
AI in the SOC: What Could Go Wrong?
FRIEND
The Register (Security)
Public-private partnerships vital in disrupting China's Typhoons, says RSA panel with no government speakers
FOE
Bleeping Computer
Tycoon2FA phishing platform returns after recent police disruption
FOE
Dark Reading
Trivy Supply Chain Attack Targets CI/CD Secrets
FOE
Dark Reading
Ransomware's New Era: Moving at AI Speed
FOE
Ars Technica (Security)
After hackers hit an Iowa company, cars around the country failed to start
FOE
The Register (Security)
Lightning-fast exploits make it essential to patch fast, ask questions later
FRIEND
SANS Internet Storm Center
Tool updates: lots of security and logic fixes, (Mon, Mar 23rd)
FRIEND
Dark Reading
CISOs Debate Human Role in AI-Powered Security
FOE
Bleeping Computer
TeamPCP deploys Iran-targeted wiper in Kubernetes attacks
FOE
Bleeping Computer
Crunchyroll probes breach after hacker claims to steal 6.8M users' data
FOE
The Hacker News
North Korean Hackers Abuse VS Code Auto-Run Tasks to Deploy StoatWaffle Malware
FOE
EPIC
Portland Press Herald: Portland Sea Dogs, Maine Mariners worry about Democratic legislative priority
FOE
Bleeping Computer
Trivy supply-chain attack spreads to Docker, GitHub repos
FRIEND
SecurityWeek
RSAC 2026 Conference Announcements Summary (Pre-Event)
FOE
Krebs on Security
‘CanisterWorm’ Springs Wiper Attack Targeting Iran
FOE
CSO Online
Faster attacks and ‘recovery denial’ ransomware reshape threat landscape
FOE
Dark Reading
Attackers Hide Infostealer in Copyright Infringement Notices
FRIEND
The Register (Security)
Google unleashes Gemini AI agents on the dark web
FOE
The Register (Security)
Smooth criminals talking their way into cloud environments, Google says
FOE
SecurityWeek
M-Trends 2026: Initial Access Handoff Shrinks From Hours to 22 Seconds
FOE
SecurityWeek
Chip Services Firm Trio-Tech Says Subsidiary Hit by Ransomware
FRIEND
Bleeping Computer
Varonis Atlas: Securing AI and the Data That Powers It
FOE
SecurityWeek
Aqua’s Trivy Vulnerability Scanner Hit by Supply Chain Attack
FOE
The Hacker News
⚡ Weekly Recap: CI/CD Backdoor, FBI Buys Location Data, WhatsApp Ditches Numbers & More
FOE
The Register (Security)
US chip testing firm shrugged off ransomware hit as minor - then came the data leak
FOE
The Register (Security)
RSAC 2026: Uncle Sam backs out, and AI agents are everywhere
FOE
Bleeping Computer
Microsoft Exchange Online service change causes email access issues
FRIEND
NIST Cybersecurity Insights
Reflections from the Second NIST Cyber AI Profile Workshop
FOE
Sophos News
NICKEL ALLEY strategy: Fake it 'til you make it
FOE
The Hacker News
We Found Eight Attack Vectors Inside AWS Bedrock. Here's What Attackers Can Do with Them
FOE
CSO Online
Chrome ABE bypass discovered: New VoidStealer malware steals passwords and cookies
FOE
The Register (Security)
Microsoft fixes broken Windows update days after vowing fewer broken updates
FOE
SecurityWeek
QNAP Patches Four Vulnerabilities Exploited at Pwn2Own
FOE
Schneier on Security
Microsoft Xbox One Hacked
FOE
The Hacker News
Microsoft Warns IRS Phishing Hits 29,000 Users, Deploys RMM Malware
FOE
SecurityWeek
Tycoon 2FA Fully Operational Despite Law Enforcement Takedown
FOE
The Register (Security)
The drone swarm is coming, and NATO air defenses are too expensive to cope
FOE
Bleeping Computer
FBI warns of Handala hackers using Telegram in malware attacks
FOE
CSO Online
Behavioral XDR and threat intel nab North Korean fake IT worker within 10 days of hire
FOE
The Intercept (Privacy)
Democrats Might Save Mike Johnson’s Push to Give Trump Domestic Spying Power
FOE
CSO Online
Why US companies must be ready for quantum by 2030: A practical roadmap
FOE
Bleeping Computer
CISA orders feds to patch DarkSword iOS flaws exploited attacks
FOE
The Hacker News
Trivy Hack Spreads Infostealer via Docker, Triggers Worm and Kubernetes Wiper
FRIEND
Bleeping Computer
New KB5085516 emergency update fixes Microsoft account sign-in
FOE
CSO Online
The insider threat rises again
FOE
The Hacker News
Hackers Exploit CVE-2025-32975 (CVSS 10.0) to Hijack Unpatched Quest KACE SMA Systems
FOE
SecurityWeek
Oracle Releases Emergency Patch for Critical Identity Manager Vulnerability
FOE
Risky Business News
Risky Bulletin: GitHub is starting to have a real malware problem
FRIEND
Sophos News
High-Five: Sophos Ranked Number 1 Overall in Endpoint, EDR, XDR, MDR, and Firewall in the G2 Spring 2026 Reports
FOE
Sophos News
Oracle vulnerability (CVE-2026-21992) impacts core products
FOE
Sophos News
NICKEL ALLEY strategy: Fake it ‘til you make it
FOE
The Register (Security)
Russians are posing as Signal support to launch phishing attacks
FOE
Bleeping Computer
VoidStealer malware steals Chrome master key via debugger trick
FRIEND
Dark Reading
AI Dominates RSAC Innovation Sandbox
FOE
Bleeping Computer
Trivy vulnerability scanner breach pushed infostealer via GitHub Actions
FRIEND
Bleeping Computer
Google adds ‘Advanced Flow’ for safe APK sideloading on Android
FOE
Bleeping Computer
Microsoft Azure Monitor alerts abused in callback phishing campaigns
FOE
The Hacker News
FBI Warns Russian Hackers Target Signal, WhatsApp in Mass Phishing Attacks
FOE
SecurityWeek
Critical Quest KACE Vulnerability Potentially Exploited in Attacks
FOE
The Hacker News
Oracle Patches Critical CVE-2026-21992 Enabling Unauthenticated RCE in Identity Manager
FOE
The Hacker News
CISA Flags Apple, Craft CMS, Laravel Bugs in KEV, Orders Patching by April 3, 2026
FOE
The Hacker News
Trivy Supply Chain Attack Triggers Self-Spreading CanisterWorm Across 47 npm Packages
FOE
CSO Online
Trivy vulnerability scanner backdoored with credential stealer in supply chain attack
FOE
CSO Online
Are nations ready to be the cybersecurity insurers of last resort?
FOE
EFF Deeplinks
Congress Is Dropping the Ball with a Clean Extension of FISA
FOE
The Register (Security)
Cryptographers engage in war of words over RustSec bug reports and subsequent ban
FRIEND
Schneier on Security
Friday Squid Blogging: Jumbo Flying Squid in the South Pacific
FOE
Ars Technica (Security)
Widely used Trivy scanner compromised in ongoing supply-chain attack
FOE
Bleeping Computer
FBI links Signal phishing attacks to Russian intelligence services
FOE
Dark Reading
Patch Now: Oracle's Fusion Middleware Has Critical RCE Flaw
FOE
Bleeping Computer
Oracle pushes emergency fix for critical Identity Manager RCE flaw
FRIEND
CSO Online
Water utilities strengthen cybersecurity through cooperation
FOE
The Hacker News
Trivy Security Scanner GitHub Actions Breached, 75 Tags Hijacked to Steal CI/CD Secrets
FOE
EPIC
White House AI Framework Protects AI Companies, Not People
FRIEND
Bleeping Computer
Police take down 373,000 fake CSAM sites in Operation Alice
FOE
CSO Online
Stop using AI to submit bug reports, says Google
FOE
Dark Reading
Cyber OpSec Fail: Beast Gang Exposes Ransomware Server
FOE
SecurityWeek
In Other News: New Android Safeguards, Operation Alice, UK Toughens Cyber Reporting
FOE
The Hacker News
Critical Langflow Flaw CVE-2026-33017 Triggers Attacks within 20 Hours of Disclosure
FOE
Bleeping Computer
CISA orders feds to patch max-severity Cisco flaw by Sunday
FOE
SecurityWeek
3 Men Charged With Conspiring to Smuggle US Artificial Intelligence to China
FOE
Bleeping Computer
How CISOs Can Survive the Era of Geopolitical Cyberattacks
FOE
The Register (Security)
UK police force presses pause on live facial recognition after study finds racial bias
FRIEND
SecurityWeek
Eclypsium Raises $25 Million for Device Supply Chain Security
FRIEND
The Register (Security)
Feds disrupt monster IoT botnets behind record-breaking DDoS attacks
FOE
Dark Reading
Interlock Ransomware Targets Cisco Enterprise Firewalls
FOE
The Register (Security)
Jaguar Land Rover's cyber bailout sets worrying precedent, watchdog warns
FOE
SecurityWeek
US Confirms Handala Link to Iran Government Amid Takedown of Hackers’ Sites
FOE
CISA Alerts
Russian Intelligence Services Target Commercial Messaging Application Accounts
FRIEND
NIST Cybersecurity Insights
All aboard: the NIST Cybersecurity for IoT Program is headed to our next stop! Share your input on where we’re headed during our Future Directions Two-Day Workshop on March 31st.
FOE
CISA Alerts
CISA Adds Five Known Exploited Vulnerabilities to Catalog
FRIEND
CSO Online
DDoS-Attacken: Schlag gegen internationale Cyberkriminelle
FRIEND
SecurityWeek
Cape Raises $100 Million for Protection Against Cellular Security Threats
FOE
Schneier on Security
Proton Mail Shared User Information with the Police
FOE
SecurityWeek
Navia Data Breach Impacts 2.7 Million
FRIEND
The Hacker News
Google Adds 24-Hour Wait for Unverified App Sideloading to Reduce Malware and Scams
FOE
SecurityWeek
Thousands of Magento Sites Hit in Ongoing Defacement Campaign
FOE
The Register (Security)
Starmer's digital ID reboot raises same old questions as its Blair-era ancestor
FOE
The Hacker News
The Importance of Behavioral Analytics in AI-Enabled Cyber Attacks
FOE
Bleeping Computer
Musician admits to $10M streaming royalty fraud using AI bots
FOE
The Hacker News
Magento PolyShell Flaw Enables Unauthenticated Uploads, RCE and Account Takeover
FRIEND
SecurityWeek
Allure Security Raises $17 Million for Online Brand Protection
FOE
The Intercept (Privacy)
Data Centers Are Military Targets Now
FOE
SANS Internet Storm Center
GSocket Backdoor Delivered Through Bash Script, (Fri, Mar 20th)
FOE
SecurityWeek
Critical Langflow Vulnerability Exploited Hours After Public Disclosure
FRIEND
Bleeping Computer
International joint action disrupts world’s largest DDoS botnets
FOE
Bleeping Computer
Microsoft: March Windows updates break Teams, OneDrive sign-ins
FRIEND
SecurityWeek
Aisuru and Kimwolf DDoS Botnets Disrupted in International Operation
FRIEND
The Register (Security)
While you're here, could you go out of your way to do an impossible job?
FOE
CSO Online
The espionage reality: Your infrastructure is already in the collection path
FOE
Bleeping Computer
Ex-data analyst stole company data in $2.5M extortion scheme
FRIEND
The Hacker News
DoJ Disrupts 3 Million-Device IoT Botnets Behind Record 31.4 Tbps Global DDoS Attacks
FOE
The Hacker News
Apple Warns Older iPhones Vulnerable to Coruna, DarkSword Exploit Kit Attacks
FRIEND
CSO Online
Die besten IAM-Tools
FRIEND
Risky Business News
Risky Bulletin: AWS kills bucketsquatting
FRIEND
Krebs on Security
Feds Disrupt IoT Botnets Behind Huge DDoS Attacks
FOE
Sophos News
The global CISO landscape: A leadership gap too large to ignore
FOE
CSO Online
CISA urges IT to harden endpoint management systems after cyberattack by pro-Iranian group
FOE
CSO Online
That cheap KVM device could expose your network to remote compromise
FOE
Dark Reading
AI Conundrum: Why MCP Security Can't Be Patched Away
FOE
Bleeping Computer
Navia discloses data breach impacting 2.7 million people
FRIEND
Dark Reading
With Government's Role Uncertain, Businesses Unite to Combat Fraud
FOE
Ars Technica (Security)
Millions of iPhones can be hacked with a new tool found in the wild
FRIEND
Dark Reading
Native Launches With Security Control Plane for Multicloud
FOE
Bleeping Computer
New ‘PolyShell’ flaw allows unauthenticated RCE on Magento e-stores
FOE
The Hacker News
Speagle Malware Hijacks Cobra DocGuard to Steal Data via Compromised Servers
FOE
The Register (Security)
Unknown attackers exploit yet another critical SharePoint bug
FOE
EPIC
EPIC Endorses Bipartisan Government Surveillance Reform Act to Rein in Runaway Warrantless Surveillance
FOE
The Hacker News
54 EDR Killers Use BYOVD to Exploit 34 Signed Vulnerable Drivers and Disable Security
FRIEND
EPIC
EPIC Urges House Financial Services Committee to Protect Financial Privacy
FOE
The Register (Security)
Google gives Android users a way to install unverified apps if they prove they really, really want to
FOE
CSO Online
Ransomware group exploited Cisco firewall vulnerability as a zero day, weeks before a patch appeared
FRIEND
SecurityWeek
Oasis Security Raises $120 Million for Agentic Access Management
FRIEND
Dark Reading
Post-Quantum Web Could be Safer, Faster
FRIEND
SecurityWeek
1stProtect Emerges From Stealth With $20 Million in Funding
FOE
SecurityWeek
Critical ScreenConnect Vulnerability Exposes Machine Keys
FRIEND
SecurityWeek
Privacy Platform Cloaked Raises $375M to Expand Enterprise Reach
FOE
Ars Technica (Security)
Google details new 24-hour process to sideload unverified Android apps
FOE
Bleeping Computer
Bitrefill blames North Korean Lazarus group for cyberattack
FOE
CSO Online
Beijing wants its own quantum-resistant encryption standards rather than adopt NIST’s
FOE
Sophos News
Android devices ship with firmware-level malware
FOE
Bleeping Computer
FBI seizes Handala data leak site after Stryker cyberattack
FOE
The Register (Security)
Lock down Microsoft Intune, feds warn after Stryker attack
FOE
SecurityWeek
Iran Readied Cyberattack Capabilities for Response Prior to Epic Fury
FOE
SecurityWeek
Marquis Data Breach Affects 672,000 Individuals
FOE
Bleeping Computer
Russian hackers exploit Zimbra flaw in Ukrainian govt attacks
FOE
CSO Online
Telnet vulnerability opens door to remote code execution as root
FOE
The Hacker News
ThreatsDay Bulletin: FortiGate RaaS, Citrix Exploits, MCP Abuse, LiveChat Phish & More
FOE
SecurityWeek
Security Firm Aura Discloses Data Breach Impacting 900,000 Records
FOE
Bleeping Computer
7 Ways to Prevent Privilege Escalation via Password Resets
FRIEND
SecurityWeek
Hacker Conversations: Ben Harris, from Unintentional Young Hacker to Intentional Adult CEO
FOE
SecurityWeek
Russian APT Exploits Zimbra Vulnerability Against Ukraine
FOE
Bleeping Computer
Max severity Ubiquiti UniFi flaw may allow account takeover
FOE
CSO Online
SpyCloud’s 2026 Identity Exposure Report Reveals Explosion of Non-Human Identity Theft
FOE
The Hacker News
New Perseus Android Banking Malware Monitors Notes Apps to Extract Sensitive Data
FOE
CISA Alerts
CISA Adds One Known Exploited Vulnerability to Catalog
FOE
CISA Alerts
Schneider Electric EcoStruxure Automation Expert
FOE
CISA Alerts
Schneider Electric Modicon M241, M251, and M262
FOE
CISA Alerts
Mitsubishi Electric CNC Series
FOE
CISA Alerts
CTEK Chargeportal
FOE
CISA Alerts
Automated Logic WebCTRL Premium Server
FOE
CISA Alerts
IGL-Technologies eParking.fi
FOE
CISA Alerts
Schneider Electric EcoStruxure PME and EPO
FOE
CISA Alerts
Schneider Electric Modicon Controllers M241, M251, M258, and LMC058
FOE
Bleeping Computer
CISA urges US orgs to secure Microsoft Intune systems after Stryker breach
FOE
The Hacker News
How Ceros Gives Security Teams Visibility and Control in Claude Code
FRIEND
SecurityWeek
Raven Emerges From Stealth With $20 Million in Funding
FOE
Bleeping Computer
New ‘Perseus’ Android malware checks user notes for secrets
FOE
Bleeping Computer
Critical Microsoft SharePoint flaw now exploited in attacks
FOE
CSO Online
5 key priorities for your RSAC 2026 agenda
FOE
CSO Online
The multi-billion dollar mistake: Why cloud misconfigurations are your biggest security threat
FOE
Schneier on Security
Hacking a Robot Vacuum
FOE
SecurityWeek
CISA Warns of Attacks Exploiting Recent SharePoint Vulnerability
FOE
The Hacker News
DarkSword iOS Exploit Kit Uses 6 Flaws, 3 Zero-Days for Full Device Takeover
FOE
CSO Online
Your MFA isn’t broken — it’s being bypassed, and your employees can’t tell the difference
FOE
SecurityWeek
Cisco Firewall Vulnerability Exploited as Zero-Day in Interlock Ransomware Attacks
FOE
Dark Reading
EU Sanctions Companies in China, Iran for Cyberattacks
FOE
CSO Online
Anthropic ban heralds new era of supply chain risk — with no clear playbook
FOE
The Hacker News
CISA Warns of Zimbra, SharePoint Flaw Exploits; Cisco Zero-Day Hit in Ransomware Attacks
FRIEND
CSO Online
Cloud Access Security Broker – ein Kaufratgeber
FOE
Risky Business News
Srsly Risky Biz: Successful War Leaves Iran With One Option, Cyber
FOE
SANS Internet Storm Center
Interesting Message Stored in Cowrie Logs, (Wed, Mar 18th)
FOE
Sophos News
Android devices ship with firmware-level malware
FOE
Recorded Future Blog
2025 Year in Review: Malicious, Infrastructure
FRIEND
The Register (Security)
Okta made a nightmare micromanager for your AI agents
FOE
Bleeping Computer
Aura confirms data breach exposing 900,000 marketing contacts
FOE
The Register (Security)
State snoops and spyware vendors planting info-stealing malware on iPhones, Google warns
FOE
Dark Reading
DarkSword: iPhone Exploit Kit Serves Spies & Thieves Alike
FOE
Dark Reading
C2 Implant 'SnappyClient' Targets Crypto Wallets
FOE
Bleeping Computer
CISA orders feds to patch Zimbra XSS flaw exploited in attacks
FOE
SecurityWeek
The Collapse of Predictive Security in the Age of Machine-Speed Attacks
FOE
Bleeping Computer
ConnectWise patches new flaw allowing ScreenConnect hijacking
FRIEND
SecurityWeek
Autonomous Offensive Security Firm XBOW Raises $120M at $1B+ Valuation
FOE
The Register (Security)
Amazon security boss says crims abused max-security Cisco firewall flaw weeks before disclosure
FOE
The Hacker News
OFAC Sanctions DPRK IT Worker Network Funding WMD Programs Through Fake Remote Jobs
FOE
Bleeping Computer
Ransomware gang exploits Cisco flaw in zero-day attacks since January
FOE
The Hacker News
Interlock Ransomware Exploits Cisco FMC Zero-Day CVE-2026-20131 for Root Access
FRIEND
SecurityWeek
Cloud Security Startup Native Exits Stealth With $42 Million in Funding
FOE
Bleeping Computer
Marquis: Ransomware gang stole data of 672K people in cyberattack
FOE
SecurityWeek
‘DarkSword’ iOS Exploit Kit Used by State-Sponsored Hackers, Spyware Vendors
FOE
Dark Reading
'Claudy Day’ Trio of Flaws Exposes Claude Users to Data Theft
FOE
SecurityWeek
Virtual Summit Today: Supply Chain & Third-Party Risk Summit
FOE
SecurityWeek
EU Sanctions Chinese, Iranian Firms Supporting Hacking Operations
FOE
EPIC
Senators Demand Answers on Meta’s Plans for Facial Recognition ‘Smart’ Glasses, Following NYT Report and EPIC Letters
FOE
Bleeping Computer
The Refund Fraud Economy: Exploiting Major Retailers and Payment Platforms
FOE
Bleeping Computer
New “Darksword” iOS exploit used in infostealer attack on iPhones
FRIEND
Black Hills Information Security
How to Lead Effective Tabletops
FOE
SecurityWeek
Shadow AI Risk: How SaaS Apps Are Quietly Enabling Massive Breaches
FRIEND
SecurityWeek
Manifold Raises $8 Million for AI Detection and Response
FOE
The Register (Security)
North Korea's 100,000-strong fake IT worker army rake in $500M a year for Kim Jong Un
FOE
Bleeping Computer
Nordstrom's email system abused to send crypto scams to customers
FOE
SANS Internet Storm Center
Scans for "adminer", (Wed, Mar 18th)
FOE
Dark Reading
Meta, TikTok Steal Personal & Financial Info When Users Click Ads
FOE
Dark Reading
SideWinder Espionage Campaign Expands Across Southeast Asia
FOE
SecurityWeek
Iranian Hackers Likely Used Malware-Stolen Credentials in Stryker Breach
FRIEND
SecurityWeek
Apple Debuts Background Security Improvements With Fresh WebKit Patches
FRIEND
The Register (Security)
Britain's satellite-watching gap to be plugged with £17.5M eyeball in Cyprus
FOE
CISA Alerts
CISA Urges Endpoint Management System Hardening After Cyberattack Against US Organization
FOE
CISA Alerts
CISA Adds One Known Exploited Vulnerability to Catalog
FOE
CISA Alerts
CISA Adds One Known Exploited Vulnerability to Catalog
FRIEND
CSO Online
Reco targets AI agent blind spots with new security capability
FOE
The Hacker News
Claude Code Security and Magecart: Getting the Threat Model Right
FOE
The Hacker News
9 Critical IP KVM Flaws Enable Unauthenticated Root Access Across Four Vendors
FOE
Schneier on Security
Meta’s AI Glasses and Privacy
FOE
SecurityWeek
Researcher Discovers 4th WhatsApp View Once Bypass; Meta Won’t Patch
FOE
CSO Online
BSI moniert Software-Sicherheit im Gesundheitswesen
FRIEND
The Hacker News
Product Walkthrough: How Mesh CSMA Reveals and Breaks Attack Paths to Crown Jewels
FRIEND
EPIC
PRESS RELEASE: FTC Should Develop Privacy-Protective Age Assurance Standards, Leading Orgs Say
FOE
CSO Online
Can you prove the person on the other side is real?
FOE
CSO Online
ClickFix treibt neue Infostealer-Kampagnen an
FOE
CSO Online
Cybersecurity and privacy priorities for 2026: The legal risk map
FOE
The Hacker News
Ubuntu CVE-2026-3888 Bug Lets Attackers Gain Root via systemd Cleanup Timing Exploit
FOE
The Register (Security)
Iran's cyberattack against med tech firm is 'just the beginning'
FOE
CSO Online
CISOs rethink their data protection strategies
FRIEND
The Hacker News
Apple Fixes WebKit Vulnerability Enabling Same-Origin Policy Bypass on iOS and macOS
FOE
The Hacker News
Critical Unpatched Telnetd Flaw (CVE-2026-32746) Enables Unauthenticated Root RCE via Port 23
FRIEND
The Register (Security)
Linux Foundation kicks off effort to shield FOSS maintainers from AI slop bug reports
FRIEND
CSO Online
Die besten Hacker-Filme
FOE
The Register (Security)
Japan to allow ‘proactive cyber-defense’ from October 1st
FOE
Risky Business News
Risky Bulletin: EU finally imposes more cyber sanctions
FOE
Bleeping Computer
Apple pushes first Background Security Improvements update to fix WebKit flaw
FOE
Dark Reading
More Attackers Are Logging In, Not Breaking In
FOE
Bleeping Computer
GlassWorm malware hits 400+ code repos on GitHub, npm, VSCode, OpenVSX
FRIEND
Dark Reading
Clear Communication: The Missing Link in Cybersecurity Success
FOE
Dark Reading
Less Lucrative Ransomware Market Makes Attackers Alter Methods
FRIEND
Ars Technica (Security)
How World ID wants to put a unique human identity on every AI agent
FOE
The Register (Security)
World<s>Coin</s>'s newest pitch: Scan your eyeballs to prove AI agents really represent you
FOE
EPIC
EPIC Joins Coalition to Urge OpenAI to Withdraw California AI Safety Ballot Initiative
FOE
Dark Reading
Hackers Target Cybersecurity Firm Outpost24 in 7-Stage Phish
FRIEND
CSO Online
Nvidia NemoClaw promises to run OpenClaw agents securely
FOE
The Intercept (Privacy)
Trump Wants to Put You in a Massive, Secret Government Database
FOE
Bleeping Computer
Europe sanctions Chinese and Iranian firms for cyberattacks
FOE
Ars Technica (Security)
Researchers disclose vulnerabilities in IP KVMs from four manufacturers
FOE
The Hacker News
AI Flaws in Amazon Bedrock, LangSmith, and SGLang Enable Data Exfiltration and RCE
FOE
The Register (Security)
EU sanctions Iranian cyber front over election meddling, Charlie Hebdo breach
FRIEND
SecurityWeek
Tech Giants Invest $12.5 Million in Open Source Security
FOE
SecurityWeek
UK Companies House Exposed Details of Millions of Firms
FOE
Dark Reading
Warlock Ransomware Group Augments Post-Exploitation Activities
FOE
The Hacker News
LeakNet Ransomware Uses ClickFix via Hacked Sites, Deploys Deno In-Memory Loader
FRIEND
SecurityWeek
Surf AI Raises $57 Million for Agentic Security Operations Platform
FOE
Bleeping Computer
Top 5 Things CISOs Need to Do Today to Secure AI Agents
FOE
Bleeping Computer
New font-rendering trick hides malicious commands from AI tools
FRIEND
Bleeping Computer
Microsoft stops force-installing the Microsoft 365 Copilot app
FOE
SecurityWeek
Robotic Surgery Giant Intuitive Discloses Cyberattack
FOE
CSO Online
Cyber-Attacken fluten Eon-Netz: Angriffe verzehnfacht
FOE
SecurityWeek
174 Vulnerabilities Targeted by RondoDox Botnet
FRIEND
SecurityWeek
Google, Meta, Microsoft Among Signatories of Pact to Combat Scams
FOE
Bleeping Computer
LeakNet ransomware uses ClickFix, Deno runtime in stealthy attacks
FRIEND
Bleeping Computer
Microsoft shares fix for Windows C: drive access issues on Samsung PCs
FOE
CISA Alerts
Schneider Electric SCADAPack and RemoteConnect
FOE
CISA Alerts
Schneider Electric EcoStruxure Data Center Expert
FOE
CISA Alerts
Siemens SICAM SIAPP SDK
FOE
CISA Alerts
CODESYS in Festo Automation Suite
FRIEND
SecurityWeek
Tracebit Raises $20M for Cloud-Native Deception Technology
FOE
SANS Internet Storm Center
IPv4 Mapped IPv6 Addresses, (Tue, Mar 17th)
FOE
The Hacker News
AI is Everywhere, But CISOs are Still Securing It with Yesterday's Skills and Tools, Study Finds
FOE
CSO Online
AWS Bedrock’s ‘isolated’ sandbox comes with a DNS escape hatch
FRIEND
Bleeping Computer
New Windows 11 hotpatch fixes Bluetooth device visibility issue
FOE
SecurityWeek
CISA Flags Year-Old Wing FTP Vulnerability as Exploited
FOE
Bleeping Computer
Microsoft: Enabling Teams Meeting add-in breaks Outlook Classic
FOE
SecurityWeek
AI, APIs and DDoS Collide in New Era of Coordinated Cyberattacks
FOE
Schneier on Security
South Korean Police Accidentally Post Cryptocurrency Wallet Password
FOE
The Hacker News
Konni Deploys EndRAT Through Phishing, Uses KakaoTalk to Propagate Malware
FOE
The Register (Security)
Too big to ignore, too small to be served: the midmarket security gap
FRIEND
The Register (Security)
Switzerland built a secure alternative to BGP. The rest of the world hasn't noticed yet
FRIEND
EFF Deeplinks
Bonus Podcast Episode: Privacy’s Defender - Cindy Cohn with Cory Doctorow
FOE
CSO Online
Runtime: The new frontier of AI agent security
FOE
The Hacker News
CISA Flags Actively Exploited Wing FTP Vulnerability Leaking Server Paths
FOE
The Register (Security)
Gartner suggests Friday afternoon Copilot ban because users may be too lazy to check its mistakes
FRIEND
CSO Online
6 Risk-Assessment-Frameworks im Vergleich
FOE
CSO Online
Was ist ein Keylogger?
FRIEND
The Register (Security)
Bank built its own threat hunting agent because vendors can’t keep pace with new threats
FOE
Dark Reading
China-Nexus Hackers Skulk in Southeast Asian Military Orgs for Years
FOE
Dark Reading
GlassWorm Malware Evolves to Hide in Dependencies
FOE
EPIC
The Associated Press: Tax scams are on the rise. Here’s what to know
FRIEND
Dark Reading
Inside Olympic Cybersecurity: Lessons From Paris 2024 to Milan Cortina 2026
FOE
The Register (Security)
Robotics surgical biz Intuitive discloses phishing attack
FOE
The Hacker News
GlassWorm Attack Uses Stolen GitHub Tokens to Force-Push Malware Into Python Repos
FRIEND
EPIC
EPIC Testifies in Support of Colorado Bill on Surveillance Pricing and Wages
FOE
EFF Deeplinks
Blocking the Internet Archive Won’t Stop AI, But It Will Erase the Web’s Historical Record
FOE
Bleeping Computer
Stryker attack wiped tens of thousands of devices, no malware needed
FOE
The Register (Security)
Cybercrime has skyrocketed 245% since the start of the Iran war
FOE
Bleeping Computer
CISA flags Wing FTP Server flaw as actively exploited in attacks
FOE
Bleeping Computer
UK’s Companies House confirms security flaw exposed business data
FOE
The Register (Security)
AI finally delivers those elusive productivity gains... for cybercriminals
FOE
Bleeping Computer
Microsoft Exchange Online outage blocks access to mailboxes
FOE
SecurityWeek
Oracle EBS Hack: Only 4 Corporate Giants Still Silent on Potential Impact
FOE
SecurityWeek
Security Firm Executive Targeted in Sophisticated Phishing Attack
FOE
The Hacker News
⚡ Weekly Recap: Chrome 0-Days, Router Botnets, AWS Breach, Rogue AI Agents & More
FOE
Dark Reading
Attackers Abuse LiveChat to Phish Credit Card, Personal Data
FOE
Bleeping Computer
Shadow AI is everywhere. Here’s how to find and secure it.
FOE
SANS Internet Storm Center
/proxy/ URL scans with IP addresses, (Mon, Mar 16th)
FOE
SecurityWeek
China-Linked Hackers Hit Asian Militaries in Patient Espionage Operation
FOE
SecurityWeek
Threat Actor Targeting VPN Users in New Credential Theft Campaign
FOE
The Register (Security)
Flaw in UK's corporate registry let directors rummage through rival records
FOE
CISA Alerts
CISA Adds One Known Exploited Vulnerability to Catalog
FRIEND
The Hacker News
Why Security Validation Is Becoming Agentic
FOE
SecurityWeek
ForceMemo: Python Repositories Compromised in GlassWorm Aftermath
FOE
The Hacker News
ClickFix Campaigns Spread MacSync macOS Infostealer via Fake AI Tool Installers
FOE
CSO Online
Open VSX extensions hijacked: GlassWorm malware spreads via dependency abuse
FOE
CSO Online
Nine critical vulnerabilities in Linux AppArmor put over 12M enterprise systems at risk
FOE
Schneier on Security
Possible New Result in Quantum Factorization
FOE
The Hacker News
DRILLAPP Backdoor Targets Ukraine, Abuses Microsoft Edge Debugging for Stealth Espionage
FOE
SecurityWeek
Hacking Attempt Reported at Poland’s Nuclear Research Center
FRIEND
CSO Online
What it takes to win that CSO role
FOE
CSO Online
ClickFix techniques evolve in new infostealer campaigns
FRIEND
The Hacker News
Android 17 Blocks Non-Accessibility Apps from Accessibility API to Prevent Malware Abuse
FRIEND
CSO Online
GenAI-Security als Checkliste
FOE
Risky Business News
Risky Bulletin: Meta disrupts Mexican cartels
FOE
Recorded Future Blog
2025 Identity Threat Landscape Report: Inside the Infostealer Economy: Credential Threats in 2025
FOE
The Register (Security)
Outsourcer Telus admits to attack – may have lost a petabyte of data to ShinyHunters
FRIEND
Bleeping Computer
OpenAI says ChatGPT ads are not rolling out globally for now
FOE
EPIC
The Guardian: Hacked data shines light on homeland security’s AI surveillance ambitions
FOE
EFF Deeplinks
The Foilies 2026
FRIEND
Bleeping Computer
Betterleaks, a new open-source secrets scanner to replace Gitleaks
FOE
SecurityWeek
Loblaw Data Breach Impacts Customer Information
FOE
The Intercept (Privacy)
Crypto Spends Big in Illinois House Races to Say Consumer Rights Supporters Are Corrupt
FRIEND
Bleeping Computer
Microsoft releases Windows 11 OOB hotpatch to fix RRAS RCE flaw
FOE
The Hacker News
OpenClaw AI Agent Flaws Could Enable Prompt Injection and Data Exfiltration
FRIEND
Schneier on Security
Upcoming Speaking Engagements
FOE
Bleeping Computer
AppsFlyer Web SDK hijacked to spread crypto-stealing JavaScript code
FOE
The Hacker News
GlassWorm Supply-Chain Attack Abuses 72 Open VSX Extensions to Target Developers
FOE
SecurityWeek
Critical HPE AOS-CX Vulnerability Allows Admin Password Resets
FOE
SANS Internet Storm Center
SmartApeSG campaign uses ClickFix page to push Remcos RAT, (Sat, Mar 14th)
FOE
Bleeping Computer
Microsoft: Windows 11 users can't access C: drive on some Samsung PCs
FRIEND
Schneier on Security
Friday Squid Blogging: Increased Squid Population in the Falklands
FOE
Bleeping Computer
FBI seeks victims of Steam games used to spread malware
FOE
Ars Technica (Security)
Supply-chain attack using invisible code hits GitHub and other repositories
FOE
EPIC
League of Women Voters, EPIC Urge Court to Protect Privacy and Voting Rights by Reversing Illegal Overhaul of SAVE System
FOE
CSO Online
Google warns of two actively exploited Chrome zero days
FOE
Dark Reading
Fake PoCs, Misunderstood Risks Cause Cisco SD-WAN Chaos
FRIEND
EPIC
EPIC Testifies in Support of Maryland Chatbots Bill
FRIEND
EFF Deeplinks
EFF Launches New Fight to Free the Law
FOE
Dark Reading
The Data Gap: Why Nonprofit Cyber Incidents Go Underreported
FOE
The Hacker News
Chinese Hackers Target Southeast Asian Militaries with AppleChris and MemFun Malware
FOE
The Register (Security)
Credential-stealing crew spoofs VPN clients from Cisco, Fortinet, and others
FOE
Dark Reading
Cyberattackers Don't Care About Good Causes
FRIEND
Bleeping Computer
Poland's nuclear research centre targeted by cyberattack
FOE
The Hacker News
Meta to Shut Down Instagram End-to-End Encrypted Chat Support Starting May 2026
FOE
Bleeping Computer
Microsoft investigates classic Outlook sync and connection issues
FOE
EPIC
In McCarthy v. Amazon, Ninth Circuit Allows “Suicide Kit” Lawsuits Against Amazon to Proceed
FOE
Sophos News
Initial access techniques used by Iran-based threat actors
FOE
CSO Online
Cyber criminals too are working from home… your home
FOE
Dark Reading
Will AI Save Consumers From Smartphone-Based Phishing Attacks?
FOE
SecurityWeek
Starbucks Data Breach Impacts Employees
FRIEND
The Hacker News
INTERPOL Dismantles 45,000 Malicious IPs, Arrests 94 in Global Cybercrime
FOE
The Intercept (Privacy)
I Wrote a Movie Review. Cops Took It From A Protester’s Home to Make the Case That He’s a Terrorist.
FOE
SecurityWeek
In Other News: N8n Flaw Exploited, Slopoly Malware, Interpol Cybercrime Crackdown
FRIEND
Bleeping Computer
From VMware to what’s next: Protecting data during hypervisor migration
FOE
EPIC
Bloomberg Law: Complying With California Kids Code Is Suddenly More Complicated
FOE
The Hacker News
Storm-2561 Spreads Trojan VPN Clients via SEO Poisoning to Steal Credentials
FRIEND
Bleeping Computer
Police sinkholes 45,000 IP addresses in cybercrime crackdown
FOE
The Hacker News
Investigating a New Click-Fix Variant
FOE
Bleeping Computer
Fake enterprise VPN downloads used to steal company credentials
FOE
Dark Reading
Most Google Cloud Attacks Start With Bug Exploitation
FOE
Dark Reading
Real-Time Banking Trojan Strikes Brazil's Pix Users
FOE
The Register (Security)
Interpol cybercrime crackdown leads to 94 arrests, 45,000 IP takedowns
FOE
SecurityWeek
Iran-Linked Hackers Take Aim at US and Other Targets, Raising Risk of Cyberattacks During War
FOE
CSO Online
Veeam warns admins to patch now as critical RCE flaws hit Backup & Replication
FOE
CISA Alerts
CISA Adds Two Known Exploited Vulnerabilities to Catalog
FRIEND
The Register (Security)
NanoClaw latches onto Docker Sandboxes for safer AI agents
FRIEND
SecurityWeek
Bold Security Emerges From Stealth With $40 Million in Funding
FOE
The Register (Security)
Google rushes Chrome update fixing two zero-days already under attack
FRIEND
SecurityWeek
Google Paid Out $17 Million in Bug Bounty Rewards in 2025
FOE
Schneier on Security
Academia and the “AI Brain Drain”
FOE
SecurityWeek
Iran-Linked Hacker Attack on Stryker Disrupted Manufacturing and Shipping
FOE
SecurityWeek
Onyx Security Launches With $40 Million in Funding
FOE
The Hacker News
Google Fixes Two Chrome Zero-Days Exploited in the Wild Affecting Skia and V8
FRIEND
CSO Online
Hybrid resilience: Designing incident response across on-prem, cloud and SaaS without losing your mind
FOE
CSO Online
Storm-2561 targets enterprise VPN users with SEO poisoning, fake clients
FRIEND
SecurityWeek
Authorities Disrupt SocksEscort Proxy Service Powered by AVrecon Botnet
FOE
The Hacker News
Nine CrackArmor Flaws in Linux AppArmor Enable Root Escalation, Bypass Container Isolation
FOE
Bleeping Computer
Starbucks discloses data breach affecting hundreds of employees
FOE
SecurityWeek
Chrome 146 Update Patches Two Exploited Zero-Days
FOE
SANS Internet Storm Center
A React-based phishing page with credential exfiltration via EmailJS, (Fri, Mar 13th)
FOE
CSO Online
The cyber perimeter was never dead. We just abandoned it.
FOE
Bleeping Computer
Google fixes two new Chrome zero-days exploited in attacks
FRIEND
The Hacker News
Authorities Disrupt SocksEscort Proxy Botnet Exploiting 369,000 IPs Across 163 Countries
FOE
The Hacker News
Veeam Patches 7 Critical Backup & Replication Flaws Allowing Remote Code Execution
FRIEND
CSO Online
10 Kennzahlen, die CISOs weiterbringen
FOE
Risky Business News
Risky Bulletin: Another residential proxy provider falls as authorities continue crackdowns
FOE
CSO Online
Telus Digital hit with massive data breach
FRIEND
Sophos News
March Patch Tuesday visits 15 product families
FOE
Sophos News
Initial access techniques used by Iran-based threat actors
FOE
The Register (Security)
Rogue AI agents can work together to hack systems and steal secrets
FRIEND
EPIC
Ninth Circuit Deals Another Blow to Big Tech’s Campaign for Broad Immunity from Regulation, Allows Parts of California’s Design Code to Go into Effect
FOE
Ars Technica (Security)
The who, what, and why of the attack that has shut down Stryker's Windows network"
FRIEND
Dark Reading
Why Post-Quantum Cryptography Can't Wait
FOE
Bleeping Computer
Canadian retail giant Loblaw notifies customers of data breach
FOE
Dark Reading
Iran MOIS Colludes With Criminals to Boost Cyberattacks
FOE
Bleeping Computer
England Hockey investigating ransomware data breach
FOE
Dark Reading
Commercial Spyware Opponents Fear US Policy Shifting
FOE
Bleeping Computer
AI-generated Slopoly malware used in Interlock ransomware attack
FRIEND
Schneier on Security
iPhones and iPads Approved for NATO Classified Data
FOE
EFF Deeplinks
A.B. 1043’s Internet Age Gates Hurt Everyone
FOE
EFF Deeplinks
Rep. Finke Was Right: Age-Gating Isn’t About Kids, It’s About Control
FOE
CSO Online
Medical giant Stryker crippled after Iranian hackers remotely wipe computers
FOE
The Hacker News
Rust-Based VENON Malware Targets 33 Brazilian Banks with Credential-Stealing Overlays
FRIEND
Dark Reading
Delinea's StrongDM Acquisition Highlights the Changing Role of PAM
FOE
The Hacker News
Hive0163 Uses AI-Assisted Slopoly Malware for Persistent Access in Ransomware Attacks
FOE
Bleeping Computer
Veeam warns of critical flaws exposing backup servers to RCE attacks
FOE
Dark Reading
Why Stryker's Outage Is a Disaster Recovery Wake-Up Call
FRIEND
The Register (Security)
Operating Lightning takes down SocksEscort proxy network blamed for tens of millions in fraud
FRIEND
Bleeping Computer
US disrupts SocksEscort proxy network powered by Linux malware
FRIEND
Bleeping Computer
Google paid $17.1 million for vulnerability reports in 2025
FOE
SecurityWeek
Apple Updates Legacy iOS Versions to Patch Coruna Exploits
FOE
Bleeping Computer
Telus Digital confirms breach after hacker claims 1 petabyte data theft
FOE
Dark Reading
What Orgs Can Learn From Olympics, World Cup IR Plans
FOE
Bleeping Computer
Going the Extra Mile: Travel Rewards Turn into Underground Currency.
FRIEND
BrightTALK InfoSec
Building Resilient Cloud Security Architectures for Today’s Threat Landscape
FRIEND
Bleeping Computer
Apple patches older iPhones and iPads against Coruna exploits
FOE
The Register (Security)
CISA warns max-severity n8n bug is being exploited in the wild
FOE
The Hacker News
How to Scale Phishing Detection in Your SOC: 3 Steps for CISOs
FRIEND
SecurityWeek
Meta Launches New Protection Tools as It Helps Disrupt Scam Centers
FOE
The Hacker News
ThreatsDay Bulletin: OAuth Trap, EDR Killer, Signal Phishing, Zombie ZIP, AI Platform Hack & More
FOE
EPIC
DOJ Wants Sensitive Voter Data but Can’t Be Bothered to Protect It
FOE
SecurityWeek
Ally WordPress Plugin Flaw Exposes Over 200,000 Websites to Attacks
FOE
SecurityWeek
The Human IOC: Why Security Professionals Struggle with Social Vetting
FOE
SecurityWeek
Splunk, Zoom Patch Severe Vulnerabilities
FOE
CISA Alerts
Siemens Heliox EV Chargers
FOE
CISA Alerts
Inductive Automation Ignition Software
FOE
CISA Alerts
Trane Tracer SC, Tracer SC+, and Tracer Concierge
FOE
CISA Alerts
Siemens RUGGEDCOM APE1808 Devices
FOE
CISA Alerts
Siemens SIMATIC
FOE
CISA Alerts
Siemens SIDIS Prime
FOE
CSO Online
PhantomRaven returns to npm with 88 bad packages
FOE
Bleeping Computer
US charges another ransomware negotiator linked to BlackCat attacks
FOE
The Hacker News
Attackers Don't Just Send Phishing Emails. They Weaponize Your SOC's Workload
FOE
SecurityWeek
Cisco Patches High-Severity IOS XR Vulnerabilities
FOE
The Hacker News
Apple Issues Security Updates for Older iOS Devices Targeted by Coruna WebKit Exploit
FOE
SecurityWeek
Critical N8n Vulnerabilities Allowed Server Takeover
FOE
SecurityWeek
Polyfill Supply Chain Attack Impacting 100k Sites Linked to North Korea
FOE
CSO Online
North Korean fake IT worker tradecraft exposed
FOE
The Hacker News
Six Android Malware Families Target Pix Payments, Banking Apps, and Crypto Wallets
FOE
CSO Online
AI use is changing how much companies pay for cyber insurance
FOE
CSO Online
“Zombie ZIP”: Neue Angriffstechnik täuscht Virenscanner
FOE
The Hacker News
CISA Flags Actively Exploited n8n RCE Bug as 24,700 Instances Remain Exposed
FRIEND
CSO Online
Wie CISOs schlechte Angebote enttarnen
FOE
Risky Business News
Srsly Risky Biz: Trump's Cyber Strategy… Great, Amazing, The Best Yet
FOE
The Register (Security)
China’s CERT warns OpenClaw can inflict nasty wounds
FOE
SANS Internet Storm Center
When your IoT Device Logs in as Admin, It?s too Late! [Guest Diary], (Wed, Mar 11th)
FRIEND
Recorded Future Blog
February 2026 CVE Landscape: 13 Critical Vulnerabilities Mark 43% Drop from January
FOE
CSO Online
Resumés with malicious ISO attachments are circulating, says Aryaka
FOE
CSO Online
CISA warns of actively exploited Ivanti EPM and Cisco SD-WAN flaws
FRIEND
EFF Deeplinks
Certbot and Let's Encrypt Now Support IP Address Certificates
FOE
The Register (Security)
Iran plots 'infrastructure warfare' against US tech giants
FOE
Dark Reading
A Guy Who Wrote the Code Died in 2005. I Still Have to Secure It
FOE
The Intercept (Privacy)
Trump’s AI-Powered World Wars
FOE
Dark Reading
INC Ransomware Group Holds Healthcare Hostage in Oceania
FOE
Ars Technica (Security)
14,000 routers are infected by malware that's highly resistant to takedowns
FOE
The Register (Security)
Iran-linked cyber crew says they hit US med-tech firm
FOE
Dark Reading
Xygeni GitHub Action Compromised Via Tag Poison
FRIEND
Bleeping Computer
WhatsApp introduces parent-managed accounts for pre-teens
FOE
Bleeping Computer
SQLi flaw in Elementor Ally plugin impacts 250k+ WordPress sites
FRIEND
SecurityWeek
Senate Confirms Joshua Rudd to Lead NSA and US Cyber Command
FOE
Bleeping Computer
CISA orders feds to patch n8n RCE flaw exploited in attacks
FRIEND
The Register (Security)
Meta, international cops use handcuffs and AI to stop scammers
FOE
Bleeping Computer
Medtech giant Stryker offline after Iran-linked wiper malware attack
FOE
Bleeping Computer
New PhantomRaven NPM attack wave steals dev data via 88 packages
FOE
The Hacker News
Researchers Trick Perplexity's Comet AI Browser Into Phishing Scam in Under Four Minutes
FOE
Krebs on Security
Iran-Backed Hackers Claim Wiper Attack on Medtech Firm Stryker
FOE
SecurityWeek
MedTech Giant Stryker Crippled by Iran-Linked Hacker Attack
FOE
The Hacker News
Critical n8n Flaws Allow Remote Code Execution and Exposure of Stored Credentials
FOE
EFF Deeplinks
Government Spying 🤝 Targeted Advertising | EFFector 38.5
FOE
Dark Reading
Chinese Nexus Actors Shift Focus to Qatar Amid Iranian Conflict
FRIEND
SecurityWeek
Wiz Joins Google Cloud as Landmark Acquisition Closes
FOE
The Register (Security)
ICO fines Police Scotland over data-sharing debacle in gross misconduct case
FRIEND
Black Hills Information Security
Understanding GRC: How to Navigate Risks and Compliance Standards
FRIEND
SecurityWeek
CISO Conversations: Aimee Cardwell
FOE
SecurityWeek
238,000 Impacted by Bell Ambulance Data Breach
FRIEND
Bleeping Computer
Meta adds new WhatsApp, Facebook, and Messenger anti-scam tools
FRIEND
SecurityWeek
Scanner Raises $22 Million for AI-Powered Threat Hunting
FRIEND
The Hacker News
Meta Disables 150K Accounts Linked to Southeast Asia Scam Centers in Global Crackdown
FRIEND
CSO Online
AWS expands Security Hub for multicloud security operations
FOE
The Register (Security)
Swiss e-voting pilot can't count 2,048 ballots after USB keys fail to decrypt them
FOE
The Hacker News
Dozens of Vendors Patch Security Flaws Across Enterprise Software and Network Devices
FRIEND
SecurityWeek
OpenAI to Acquire AI Security Startup Promptfoo
FOE
The Register (Security)
Dutch cops bust teen suspected of posing as bank staff to steal cards
FOE
SecurityWeek
Fortinet, Ivanti, Intel Patch High-Severity Vulnerabilities
FOE
CISA Alerts
CISA Adds One Known Exploited Vulnerability to Catalog
FRIEND
SecurityWeek
How to 10x Your Vulnerability Management Program in the Agentic Era
FOE
CSO Online
Overly permissive ‘guest’ settings put Salesforce customers at risk
FOE
The Hacker News
What Boards Must Demand in the Age of AI-Automated Exploitation
FRIEND
The Register (Security)
EU legal eagle says banks should refund cybercrime victims first, argue later
FOE
SecurityWeek
Michelin Confirms Data Breach Linked to Oracle EBS Attack
FOE
Schneier on Security
Canada Needs Nationalized, Public AI
FOE
CSO Online
Why zero trust breaks down in IoT and OT environments
FOE
CSO Online
Did cybersecurity recently have its Gatling gun moment?
FRIEND
SecurityWeek
Quantro Security Emerges From Stealth With $2.5 Million in Funding
FOE
CSO Online
Critical flaw in HPE Aruba CX switches lets attackers seize admin control without credentials
FRIEND
CSO Online
CSO Awards 2026 celebrates world-class security strategies
FRIEND
CSO Online
Announcing the 2026 CSO Hall of Fame honorees
FOE
CSO Online
A 5-step approach to taming shadow AI
FOE
SANS Internet Storm Center
Analyzing "Zombie Zip" Files (CVE-2026-0866), (Wed, Mar 11th)
FOE
SecurityWeek
‘BlackSanta’ Malware Activates EDR and AV Killer Before Detonating Payload
FOE
The Hacker News
Microsoft Patches 84 Flaws in March Patch Tuesday, Including Two Public Zero-Days
FRIEND
The Register (Security)
Building the UK’s next generation of cyber talent
FOE
Privacy International
Privacy International’s remarks at the side event of the 61st Session of the UN Human Rights Council on the Human Rights Impacts of Using Artificial Intelligence in Countering Terrorism
FRIEND
SecurityWeek
ICS Patch Tuesday: Vulnerabilities Fixed by Siemens, Schneider, Moxa, Mitsubishi Electric
FOE
The Hacker News
UNC6426 Exploits nx npm Supply-Chain Attack to Gain AWS Admin Access in 72 Hours
FOE
CSO Online
12 ways attackers abuse cloud services to hack your enterprise
FOE
The Hacker News
Five Malicious Rust Crates and AI Bot Exploit CI/CD Pipelines to Steal Developer Secrets
FOE
CSO Online
6 Mittel gegen Security-Tool-Wildwuchs
FOE
CSO Online
Jack & Jill went up the hill — and an AI tried to hack them
FOE
Dark Reading
Middle East Conflict Highlights Cloud Resilience Gaps
FRIEND
Dark Reading
Microsoft Patches 83 CVEs in March Update
FRIEND
Krebs on Security
Microsoft Patch Tuesday, March 2026 Edition
FOE
Sophos News
Evil evolution: ClickFix and macOS infostealers
FOE
CSO Online
March Patch Tuesday: Three high severity holes in Microsoft Office
FOE
EFF Deeplinks
Copyright Bullying vs. Religious Freedom
FOE
Bleeping Computer
New ‘BlackSanta’ EDR killer spotted targeting HR departments
FRIEND
Risky Business News
Risky Bulletin: Gen. Joshua Rudd confirmed as next CyberCom and NSA head
FOE
EPIC
EPIC Leads Group of Law & Technology Scholars in Rebutting Social Media Companies’ Arguments that Surveillance-Based Feeds Are Constitutionally-Protected Speech
FOE
Bleeping Computer
New BeatBanker Android malware poses as Starlink app to hijack devices
FOE
Dark Reading
'Overly Permissive' Salesforce Cloud Configs in the Crosshairs
FOE
EFF Deeplinks
Think Twice Before Buying or Using Meta’s Ray-Bans
FRIEND
EPIC
Maine Senate Passes Strong Privacy Bill
FOE
EFF Deeplinks
The Government Must Not Force Companies to Participate in AI-powered Surveillance
FOE
The Register (Security)
Critical Microsoft Excel bug weaponizes Copilot Agent for zero-click information disclosure attack
FOE
Bleeping Computer
New 'Zombie ZIP' technique lets malware slip past security tools
FOE
CSO Online
Threat intelligence by ESET is a game changer
FRIEND
CSO Online
The CSO role is evolving fast with AI in Cyber Defense strategy
FRIEND
SecurityWeek
Microsoft Patches 83 Vulnerabilities
FOE
Dark Reading
Russian Threat Actor Sednit Resurfaces With Sophisticated Toolkit
FOE
The Register (Security)
Cybercrime isn't just a cover for Iran's government goons - it's a key part of their operations
FRIEND
Bleeping Computer
Microsoft releases Windows 10 KB5078885 extended security update
FOE
SecurityWeek
Adobe Patches 80 Vulnerabilities Across Eight Products
FOE
Bleeping Computer
Microsoft March 2026 Patch Tuesday fixes 2 zero-days, 79 flaws
FRIEND
SecurityWeek
Jazz Emerges From Stealth With $61M in Funding for AI-Powered DLP
FRIEND
Bleeping Computer
Windows 11 KB5079473 & KB5078883 cumulative updates released
FOE
SANS Internet Storm Center
Microsoft Patch Tuesday March 2026, (Tue, Mar 10th)
FOE
Bleeping Computer
HPE warns of critical AOS-CX flaw allowing admin password resets
FOE
The Register (Security)
Crooks compromise WordPress sites to push infostealers via fake CAPTCHA prompts
FOE
The Hacker News
FortiGate Devices Exploited to Breach Networks and Steal Service Account Credentials
FOE
The Hacker News
KadNap Malware Infects 14,000+ Edge Devices to Power Stealth Proxy Botnet
FRIEND
Bleeping Computer
Microsoft brings phishing-resistant Windows sign-ins via Entra passkeys
FRIEND
SecurityWeek
Kai Emerges From Stealth With $125M in Funding for AI Platform Bridging IT and OT Security
FOE
SecurityWeek
Webinar Today: Securing Fragile OT in an Exposed World
FOE
Bleeping Computer
New KadNap botnet hijacks ASUS routers to fuel cybercrime proxy network
FOE
Sophos News
Evil evolution: ClickFix and macOS infostealers
FOE
SecurityWeek
SAP Patches Critical FS-QUO, NetWeaver Vulnerabilities
FOE
SecurityWeek
Thousands Affected by Ericsson Data Breach
FOE
EPIC
EPIC Leads Coalition Demanding the Government Reverse Illegal Data Grab… Again
FOE
Bleeping Computer
The New Turing Test: How Threats Use Geometry to Prove 'Humanness'
FOE
The Register (Security)
Fake job applications pack malware that kills EDR before stealing data
FOE
Dark Reading
'BlackSanta' EDR Killer Targets HR Workflows
FRIEND
SecurityWeek
OpenAI Rolls Out Codex Security Vulnerability Scanner
FRIEND
SecurityWeek
Kevin Mandia’s Armadin Launches With $190 Million in Funding
FOE
The Hacker News
New "LeakyLooker" Flaws in Google Looker Studio Could Enable Cross-Tenant SQL Queries
FOE
SecurityWeek
Hundreds of Salesforce Customers Allegedly Targeted in New Data Theft Campaign
FOE
The Register (Security)
Ericsson blames vendor vishing slip-up for breach exposing thousands of records
FRIEND
The Register (Security)
Protecting democracy means democratizing cybersecurity. Bring on the hackers
FOE
CISA Alerts
Honeywell IQ4x BMS Controller
FOE
CISA Alerts
Ceragon Siklu MultiHaul and EtherHaul Series
FOE
CISA Alerts
Apeman Cameras
FOE
CISA Alerts
Lantronix EDS3000PS and EDS5000
FRIEND
SecurityWeek
Escape Raises $18 Million to Automate Pentesting
FOE
SecurityWeek
Recent Ivanti Endpoint Manager Flaw Exploited in Attacks
FOE
The Hacker News
How to Stop AI Data Leaks: A Webinar Guide to Auditing Modern Agentic Workflows
FOE
The Register (Security)
Polish cops bust alleged teen DDoS kit sellers – youngest just 12
FOE
Bleeping Computer
CISA: Recently patched Ivanti EPM flaw now actively exploited
FOE
CSO Online
Devs looking for OpenClaw get served a GhostClaw RAT
FOE
SecurityWeek
SIM Swaps Expose a Critical Flaw in Identity Security
FRIEND
The Hacker News
The Zero-Day Scramble is Avoidable: A Guide to Attack Surface Reduction
FOE
The Hacker News
APT28 Uses BEARDSHELL and COVENANT Malware to Spy on Ukrainian Military
FRIEND
Bleeping Computer
Microsoft to enable Windows hotpatch security updates by default
FOE
Bleeping Computer
APT28 hackers deploy customized variant of Covenant open-source tool
FOE
CSO Online
The OT security time bomb: Why legacy industrial systems are the biggest cyber risk nobody wants to fix
FOE
Schneier on Security
Jailbreaking the F-35 Fighter Jet
FRIEND
CSO Online
OpenAI to acquire Promptfoo to strengthen AI agent security testing
FOE
CSO Online
Why access decisions are becoming the weakest link in identity security
FRIEND
CSO Online
I replaced manual pen tests with automation. Here’s what I learned.
FOE
The Hacker News
Threat Actors Mass-Scan Salesforce Experience Cloud via Modified AuraInspector Tool
FRIEND
SecurityWeek
Cylake Raises $45 Million to Secure Organizations Barred From Cloud
FOE
CSO Online
When AI safety constrains defenders more than attackers
FOE
The Hacker News
CISA Flags SolarWinds, Ivanti, and Workspace One Vulnerabilities as Actively Exploited
FOE
CSO Online
Security-Tools für KI-Infrastrukturen – ein Kaufratgeber
FOE
CSO Online
Hacker abusing .arpa domain to evade phishing detection, says Infoblox
FOE
Bleeping Computer
Microsoft Teams phishing targets employees with A0Backdoor malware
FOE
The Register (Security)
AI vs AI: Agent hacked McKinsey's chatbot and gained full read-write access in just two hours
FOE
Bleeping Computer
Google: Cloud attacks exploit flaws more than weak credentials
FOE
Bleeping Computer
Dutch govt warns of Signal, WhatsApp account hijacking attacks
FOE
Dark Reading
White House Cyber Strategy Prioritizes Offense
FOE
Dark Reading
'InstallFix' Attacks Spread Fake Claude Code Sites
FOE
EFF Deeplinks
The SAFE Act is an Imperfect Vehicle for Real Section 702 Reform
FRIEND
EFF Deeplinks
Privacy's Defender: Launch Party in Berkeley
FOE
Bleeping Computer
Ericsson US discloses data breach after service provider hack
FOE
The Hacker News
Malicious npm Package Posing as OpenClaw Installer Deploys RAT, Steals macOS Credentials
FOE
The Register (Security)
ShinyHunters claims more high-profile victims in latest Salesforce customers data heist
FRIEND
CSO Online
CVE program funding secured, easing fears of repeat crisis
FRIEND
EFF Deeplinks
EFFecting Change: Privacy's Defender
FRIEND
Bleeping Computer
Microsoft Teams will tag third-party bots trying to join meetings
FOE
Bleeping Computer
ShinyHunters claims ongoing Salesforce Aura data theft attacks
FOE
The Register (Security)
EV charger biz ELECQ zapped by ransomware crooks, customer contact data stolen
FRIEND
SecurityWeek
Cybersecurity M&A Roundup: 42 Deals Announced in February 2026
FOE
Bleeping Computer
FBI warns of phishing attacks impersonating US city, county officials
FRIEND
SANS Internet Storm Center
Encrypted Client Hello: Ready for Prime Time?, (Mon, Mar 9th)
FOE
The Hacker News
UNC4899 Breached Crypto Firm After Developer AirDropped Trojanized File to Work Device
FOE
Bleeping Computer
Why Password Audits Miss the Accounts Attackers Actually Want
FOE
Bleeping Computer
Microsoft still working to fix Windows Explorer white flashes
FOE
The Hacker News
⚡ Weekly Recap: Qualcomm 0-Day, iOS Exploit Chains, AirSnitch Attack & Vibe-Coded Malware
FOE
The Register (Security)
Dutch cops warn 100 alleged scammers: Turn yourselves in or we tell Grandma
FOE
SecurityWeek
ClickFix Attack Uses Windows Terminal to Evade Detection
FOE
The Register (Security)
Russian cybercrims phish their way into officials' Signal and WhatsApp accounts
FOE
SecurityWeek
Internet Infrastructure TLD .arpa Abused in Phishing Attacks
FOE
Dark Reading
Chinese Cyber Threat Lurks In Critical Asian Sectors for Years
FOE
CISA Alerts
CISA Adds Three Known Exploited Vulnerabilities to Catalog
FOE
The Register (Security)
Microsoft Azure CTO set Claude on his 1986 Apple II code, says it found vulns
FRIEND
CSO Online
OpenAI says Codex Security found 11,000 high-impact bugs in a month
FRIEND
The Hacker News
Can the Security Platform Finally Deliver for the Mid-Market?
FOE
SecurityWeek
Cloned AI Tool Sites Distribute Malware in ‘InstallFix’ Campaign
FOE
Schneier on Security
New Attack Against Wi-Fi
FRIEND
CSO Online
NIS-2: Tausende reißen BSI-Frist und riskieren Strafen
FOE
The Hacker News
Chrome Extension Turns Malicious After Ownership Transfer, Enabling Code Injection and Data Theft
FOE
The Register (Security)
Royal Navy races to arm ships against drone threat
FOE
CSO Online
Rogues gallery: 15 worst ransomware groups active today
FOE
The Hacker News
Web Server Exploits and Mimikatz Used in Attacks Targeting Asian Critical Infrastructure
FRIEND
CSO Online
4 ways to prepare your SOC for agentic AI
FOE
CSO Online
PQC roadmap remains hazy as vendors race for early advantage
FOE
CSO Online
Tarnung als Taktik: Warum Ransomware-Angriffe raffinierter werden
FOE
The Register (Security)
Iran is the first out-loud cyberwar the US has fought
FRIEND
Risky Business News
Risky Bulletin: New White House EO prioritizes fight against scams and cybercrime
FOE
Krebs on Security
How AI Assistants are Moving the Security Goalposts
FOE
The Register (Security)
FBI is investigating breach that may have hit its wiretapping tools
FRIEND
Bleeping Computer
EU court adviser says banks must immediately refund phishing victims
FOE
Bleeping Computer
Hackers abuse .arpa DNS and ipv6 to evade phishing defenses
FOE
SecurityWeek
Recent Cisco Catalyst SD-WAN Vulnerability Now Widely Exploited
FOE
The Intercept (Privacy)
OpenAI on Surveillance and Autonomous Killings: You’re Going to Have to Trust Us
FOE
The Register (Security)
AI agents now help attackers, including North Korea, manage their drudge work
FOE
The Intercept (Privacy)
Columbia Flouted Its Own Policies and Let ICE Into University Buildings
FRIEND
The Hacker News
OpenAI Codex Security Scanned 1.2 Million Commits and Found 10,561 High-Severity Issues
FOE
Bleeping Computer
Termite ransomware breaches linked to ClickFix CastleRAT attacks
FRIEND
SecurityWeek
US Cyber Strategy Targets Adversaries, Critical Infrastructure, and Emerging Technologies
FOE
Bleeping Computer
Microsoft: Hackers abusing AI at every stage of cyberattacks
FOE
SecurityWeek
Over 100 GitHub Repositories Distributing BoryptGrab Stealer
FOE
SecurityWeek
Pentagon’s Chief Tech Officer Says He Clashed With AI Company Anthropic Over Autonomous Warfare
FOE
Ars Technica (Security)
From Iran to Ukraine, everyone's trying to hack security cameras
FRIEND
The Hacker News
Anthropic Finds 22 Firefox Vulnerabilities Using Claude Opus 4.6 AI Model
FRIEND
SANS Internet Storm Center
YARA-X 1.14.0 Release, (Sat, Mar 7th)
FOE
SecurityWeek
FBI Investigating ‘Suspicious’ Cyber Activity on System Holding Sensitive Surveillance Information
FRIEND
EFF Deeplinks
Admiring Our Heroes for International Women’s Day: Celebrating Women Who Have Received EFF Awards
FOE
CSO Online
Trump’s cyber strategy emphasizes offensive operations, deregulation, AI
FRIEND
EFF Deeplinks
Admiring Our Heroes for International Women’s Day: Five Women In Tech That EFF Admires
FOE
CSO Online
ClickFix attackers using new tactic to evade detection, says Microsoft
FRIEND
The Register (Security)
Firefox taps Anthropic AI bug hunter, but rancid RAM still flipping bits
FOE
Bleeping Computer
Cognizant TriZetto breach exposes health data of 3.4 million patients
FOE
Ars Technica (Security)
Feds take notice of iOS vulnerabilities exploited under mysterious circumstances
FRIEND
Dark Reading
Cylake Offers AI-Native Security Without Relying on Cloud Services
FOE
The Register (Security)
Spyware disguised as emergency-alert app sent to Israeli smartphones
FOE
The Intercept (Privacy)
Dems Need to Wise Up: ICE Is a Threat to Our Elections
FOE
CSO Online
Only 30 minutes per quarter on cyber risk: Why CISO-board conversations are falling short
FOE
Dark Reading
North Korean APTs Use AI to Enhance IT Worker Scams
FOE
Schneier on Security
Anthropic and the Pentagon
FOE
CSO Online
FBI wiretap system tapped by hackers
FOE
CSO Online
OAuth vulnerability in n8n automation platform could lead to system compromise
FRIEND
SecurityWeek
ArmorCode Raises $16 Million for Exposure Management Platform
FOE
EFF Deeplinks
Weasel Words: OpenAI’s Pentagon Deal Won’t Stop AI‑Powered Surveillance
FOE
EFF Deeplinks
Weasel Words: OpenAI’s Pentagon Deal Won’t Stop AI‑Powered Surveillance
FOE
Bleeping Computer
CISA warns of Apple flaws exploited in spyware, crypto-theft attacks
FOE
SecurityWeek
In Other News: FBI Hacked, US Security Pro Killed in Iran War, Hijacked Cameras Used in Khamenei Strike
FOE
The Hacker News
Transparent Tribe Uses AI to Mass-Produce Malware Implants in Campaign Targeting India
FRIEND
Dark Reading
EU Auto Rules Shift Gears on Cybersecurity Standards
FOE
The Register (Security)
Cisco warns of two more SD-WAN bugs under active attack
FRIEND
Bleeping Computer
EC-Council Expands AI Certification Portfolio to Strengthen U.S. AI Workforce Readiness and Security
FOE
Bleeping Computer
Fake Claude Code install guides push infostealers in InstallFix attacks
FOE
The Hacker News
Multi-Stage VOID#GEIST Malware Delivering XWorm, AsyncRAT, and Xeno RAT
FRIEND
Bleeping Computer
Microsoft 365 Backup to add file-level restore for faster recovery
FOE
Privacy International
What does it mean when Big Tech goes to war?
FOE
Dark Reading
Iran's Cyber-Kinetic War Doctrine Takes Shape
FOE
Dark Reading
Cyberattack on Mexico's Gov't Agencies Highlight AI Threat
FOE
The Register (Security)
Microsoft spots ClickFix campaign getting users to self-pwn on Windows Terminal
FOE
CSO Online
Targeted advertising is also targeting malware
FOE
SecurityWeek
CISA Adds iOS Flaws From Coruna Exploit Kit to KEV List
FRIEND
Privacy International
Privacy International & Women on Web - Securing Reproductive Justice: A Guide to Digital Privacy for Sexual and Reproductive Justice Activists
FOE
SecurityWeek
Rockwell Vulnerability Allowing Remote ICS Hacking Exploited in Attacks
FOE
The Register (Security)
Son of government contractor arrested after alleged $46M crypto heist from US Marshals
FOE
Schneier on Security
Claude Used to Hack Mexican Government
FRIEND
SecurityWeek
James ‘Aaron’ Bishop Tapped to Serve as New Pentagon CISO
FRIEND
The Register (Security)
Microsoft finally gets around to fixing Windows 10 Recovery Environment after breaking it in October
FOE
SecurityWeek
Iranian APT Hacked US Airport, Bank, Software Company
FRIEND
The Hacker News
The MSP Guide to Using AI-Powered Risk Management to Scale Cybersecurity
FOE
The Hacker News
Iran-Linked MuddyWater Hackers Target U.S. Networks With New Dindoor Backdoor
FOE
The Register (Security)
Transport for London says 2024 breach affected 7M customers, not 5,000
FOE
Bleeping Computer
Ghanain man pleads guilty to role in $100 million fraud ring
FRIEND
SecurityWeek
Data Security Firm Evervault Raises $25 Million in Series B Funding
FOE
CSO Online
Teenage hacker myth primed for a middle-age criminal makeover
FOE
Bleeping Computer
FBI investigates breach of surveillance and wiretap systems
FOE
The Hacker News
China-Linked Hackers Use TernDoor, PeerTime, BruteEntry in South American Telecom Attacks
FOE
CSO Online
Challenges and projects for the CISO in 2026
FOE
CSO Online
Zero-day exploits hit enterprises faster and harder
FOE
The Hacker News
Microsoft Reveals ClickFix Campaign Using Windows Terminal to Deploy Lumma Stealer
FOE
The Hacker News
Hikvision and Rockwell Automation CVSS 9.8 Flaws Added to CISA KEV Catalog
FOE
CSO Online
Europa im Visier von Cyber-Identitätsdieben
FRIEND
CSO Online
7 Anzeichen für akuten MSSP-Bedarf
FOE
Risky Business News
Risky Bulletin: Iranian hackers are scanning for security cameras to aid missile strikes
FRIEND
CSO Online
LeakBase marketplace unplugged by cops in 14 countries
FOE
The Register (Security)
Google says spyware makers and China-linked groups dominated zero-day attacks last year
FOE
Bleeping Computer
Chinese state hackers target telcos with new malware toolkit
FOE
Bleeping Computer
Bing AI promoted fake OpenClaw GitHub repo pushing info-stealing malware
FOE
Dark Reading
Nation-State Actor Embraces AI Malware Assembly Line
FOE
Dark Reading
Tycoon 2FA Goes Boom as Europol, Vendors Bust Phishing Platform
FOE
Bleeping Computer
Wikipedia hit by self-propagating JavaScript worm that vandalized pages
FRIEND
EPIC
EPIC Testifies in Support of Three Tech Policy Bills in Maryland
FOE
Dark Reading
Cisco Drops 48 New Firewall Vulnerabilities, 2 Critical
FOE
The Register (Security)
Iran intelligence backdoored US bank, airport, software outfit networks
FOE
Bleeping Computer
WordPress membership plugin bug exploited to create admin accounts
FOE
Bleeping Computer
FBI arrests suspect linked to $46M crypto theft from US Marshals
FRIEND
EPIC
EPIC Testifies in Support of Michigan Kids Code
FOE
Schneier on Security
Israel Hacked Traffic Cameras in Iran
FOE
The Intercept (Privacy)
Congress Is Considering Abolishing Your Right to Be Anonymous Online
FOE
CSO Online
Cisco issues emergency patches for critical firewall vulnerabilities
FOE
Privacy International
Privacy International's response to the UK Home Office consultation on facial recognition technology
FRIEND
Dark Reading
Fig Security Emerges From Stealth to Fix Broken Security Operations
FOE
The Intercept (Privacy)
Nida Allam Concedes to Valerie Foushee With Razor-Thin Loss for Progressives in Key Midterm Primary
FRIEND
Dark Reading
Software Development Practices Help Enterprises Tackle Real-Life Risks
FOE
Privacy International
Privacy International's submission on the impact of digital and AI-assisted surveillance on assembly and association rights
FOE
The Hacker News
Cisco Confirms Active Exploitation of Two Catalyst SD-WAN Manager Vulnerabilities
FOE
Bleeping Computer
Google says 90 zero-days were exploited in attacks last year
FOE
Bleeping Computer
2026 Browser Data Reveals Major Enterprise Security Blind Spots
FOE
SecurityWeek
Google: Half of 2025’s 90 Exploited Zero-Days Aimed at Enterprises
FOE
CSO Online
Coruna iOS exploit kit moved from spy tool to mass criminal campaign in under a year
FOE
EFF Deeplinks
The Government Uses Targeted Advertising to Track Your Location. Here's What We Need to Do.
FOE
EFF Deeplinks
The Government Uses Targeted Advertising to Track Your Location. Here's What We Need to Do.
FOE
Dark Reading
LatAm Now Faces 2x More Cyberattacks Than US
FOE
The Hacker News
ThreatsDay Bulletin: DDR5 Bot Scalping, Samsung TV Tracking, Reddit Privacy Fine & More
FRIEND
CSO Online
Europol: Großer Markt für gestohlene Daten geschlossen
FOE
The Hacker News
Preparing for the Quantum Era: Post-Quantum Cryptography Webinar for Security Leaders
FRIEND
SecurityWeek
Russian Ransomware Operator Pleads Guilty in US
FOE
Bleeping Computer
Police dismantles online gambling ring exploiting Ukrainian women
FOE
The Register (Security)
UK watchdog eyes Meta's smart glasses after workers say they 'see everything'
FOE
SecurityWeek
Cisco Warns of More Catalyst SD-WAN Flaws Exploited in the Wild
FOE
The Hacker News
Dust Specter Targets Iraqi Officials with New SPLITDROP and GHOSTFORM Malware
FOE
CISA Alerts
CISA Adds Five Known Exploited Vulnerabilities to Catalog
FOE
CISA Alerts
Delta Electronics CNCSoft-G2
FRIEND
CSO Online
Europol schließt riesigen Markt für gestohlene Daten
FOE
Schneier on Security
Hacked App Part of US/Israeli Propaganda Campaign Against Iran
FRIEND
SecurityWeek
Reclaim Security Raises $20 Million to Accelerate Remediation
FOE
The Hacker News
Where Multi-Factor Authentication Stops and Credential Abuse Starts
FOE
The Intercept (Privacy)
Federal Agents Are Intimidating Legal Observers at Their Homes: “They Know Where You Live.”
FRIEND
SecurityWeek
LeakBase Cybercrime Forum Shut Down, Suspects Arrested
FOE
Bleeping Computer
Cisco flags more SD-WAN flaws as actively exploited in attacks
FOE
The Hacker News
APT28-Linked Campaign Deploys BadPaw Loader and MeowMeow Backdoor in Ukraine
FOE
SecurityWeek
Cisco Patches Critical Vulnerabilities in Enterprise Networking Products
FOE
Bleeping Computer
Phobos ransomware admin pleads guilty to wire fraud conspiracy
FRIEND
Google Project Zero
On the Effectiveness of Mutational Grammar Fuzzing
FOE
CSO Online
State-affiliated hackers set up for critical OT attacks that operators may not detect
FOE
The Hacker News
Europol-Led Operation Takes Down Tycoon 2FA Phishing-as-a-Service Linked to 64,000 Attacks
FRIEND
The Hacker News
FBI and Europol Seize LeakBase Forum Used to Trade Stolen Credentials
FOE
CSO Online
14 old software bugs that took way too long to squash
FOE
CSO Online
Die besten Cyber-Recovery-Lösungen
FOE
SecurityWeek
Nation-State iOS Exploit Kit ‘Coruna’ Found Powering Global Attacks
FOE
Risky Business News
Srsly Risky Biz: The Four Hour Cyber War on Iran
FRIEND
CSO Online
Microsoft leads takedown of Tycoon2FA phishing service infrastructure
FRIEND
SANS Internet Storm Center
Differentiating Between a Targeted Intrusion and an Automated Opportunistic Scanning [Guest Diary], (Wed, Mar 4th)
FRIEND
Sophos News
Optimize Your Sophos Firewall Security
FOE
The Register (Security)
'Hundreds' of Iranian hacking attempts have hit surveillance cameras since the missile strikes
FRIEND
Bleeping Computer
Bitwarden adds support for passkey login on Windows 11
FRIEND
EPIC
SCOTUS to Hear Case Over Proper Scope of the Video Privacy Protection Act (VPPA)
FOE
Bleeping Computer
Mail2Shell zero-click attack lets hackers hijack FreeScout mail servers
FOE
Dark Reading
VMware Aria Operations Bug Exploited, Cloud Resources at Risk
FRIEND
Bleeping Computer
Windows 10 KB5075039 update fixes broken Recovery Environment
FOE
The Register (Security)
Malware-laced OpenClaw installers get Bing AI search boost
FOE
Bleeping Computer
Fake LastPass support email threads try to steal vault passwords
FRIEND
EPIC
EPIC Urges Virginia Governor to Sign Bill Banning Sale of Location Data
FRIEND
EFF Deeplinks
Speaking Freely: Shin Yang
FRIEND
EFF Deeplinks
Speaking Freely: Shin Yang
FRIEND
CSO Online
Why AI, Zero Trust, and modern security require deep visibility
FRIEND
CSO Online
The 10-hour problem: How visibility gaps are burning out the SOC
FOE
Bleeping Computer
Cisco warns of max severity Secure FMC flaws giving root access
FOE
Bleeping Computer
Spyware-grade Coruna iOS exploit kit now used in crypto theft attacks
FOE
Bleeping Computer
Hacker mass-mails HungerRush extortion emails to restaurant patrons
FRIEND
SecurityWeek
Tycoon 2FA Phishing Platform Dismantled in Global Takedown
FRIEND
Bleeping Computer
FBI seizes LeakBase cybercrime forum, data of 142,000 members
FOE
SecurityWeek
New LexisNexis Data Breach Confirmed After Hackers Leak Files
FOE
The Hacker News
149 Hacktivist DDoS Attacks Hit 110 Organizations in 16 Countries After Middle East Conflict
FRIEND
Dark Reading
Stranger Things Meets Cybersecurity: Lessons from the Hive Mind
FRIEND
Bleeping Computer
Europol-coordinated action disrupts Tycoon2FA phishing platform
FRIEND
Dark Reading
Are We Ready for Auto Remediation With Agentic AI?
FOE
The Register (Security)
LexisNexis confirms data breach at Legal & Professional arm, some customer records affected
FRIEND
SecurityWeek
Zurich Acquires Beazley in $11 Billion Deal to Lead Cyberinsurance
FOE
Bleeping Computer
Mississippi medical center reopens clinics hit by ransomware attack
FOE
Bleeping Computer
How a Brute Force Attack Unmasked a Ransomware Infrastructure Network
FOE
SecurityWeek
Hacker Conversations: Inti De Ceukelaire, Raging Against the Machine Creatively
FRIEND
EPIC
EPIC Tells Supreme Court that Geofence Searches Need a Warrant with Particularized Probable Cause
FOE
The Register (Security)
Kaspersky dismisses claims Coruna iPhone exploit kit is connected to NSA-linked operation
FOE
Black Hills Information Security
The “P” in PAM is for Persistence: Linux Persistence Technique
FOE
The Hacker News
Coruna iOS Exploit Kit Uses 23 Exploits Across Five Chains Targeting iOS 13–17.2.1
FOE
CSO Online
Iranian cyberattacks fail to materialize but threat remains acute
FOE
SecurityWeek
How Pirated Software Turns Helpful Employees Into Malware Delivery Agents
FRIEND
SecurityWeek
AI Security Firm JetStream Launches With $34 Million in Seed Funding
FOE
Schneier on Security
Manipulating AI Summarization Features
FOE
SecurityWeek
LastPass Warns of New Phishing Campaign
FRIEND
SecurityWeek
Webinar Today: Designing an OT SOC for Safety, Reliability, and Business Continuity
FOE
SecurityWeek
Google Plans Two-Week Release Schedule for Chrome
FRIEND
The Hacker News
New RFP Template for AI Usage Control and AI Governance
FOE
Dark Reading
China's Silver Dragon Razes Governments in EU, SE Asia
FRIEND
SecurityWeek
Global Coalition Publishes 6G Security and Resilience Principles
FOE
SANS Internet Storm Center
Want More XWorm?, (Wed, Mar 4th)
FOE
The Hacker News
Fake Laravel Packages on Packagist Deploy RAT on Windows, macOS, and Linux
FOE
CSO Online
Anthropic AI ultimatums and IP theft: The unspoken risk
FOE
SecurityWeek
Critical FreeScout Vulnerability Leads to Full Server Compromise
FOE
The Hacker News
APT41-Linked Silver Dragon Targets Governments Using Cobalt Strike and Google Drive C2
FOE
SecurityWeek
VMware Aria Operations Vulnerability Exploited in the Wild
FRIEND
CSO Online
How to know you’re a real-deal CSO — and whether that job opening truly seeks one
FOE
The Hacker News
CISA Adds Actively Exploited VMware Aria Operations Flaw CVE-2026-22719 to KEV Catalog
FOE
CSO Online
AI-powered attack kits go open source, and CyberStrikeAI may be just the beginning
FRIEND
The Register (Security)
Google feels the need for security speed, so will ship Chrome updates every two weeks
FRIEND
Dark Reading
Dark Reading Confidential: This Threat Hunter Helped Cops Bust Up An African Cybercrime Syndicate
FOE
Recorded Future Blog
Ongoing Iran Conflict: What You Need to Know
FRIEND
EFF Deeplinks
EFF to Third Circuit: Electronic Device Searches at the Border Require a Warrant
FRIEND
EFF Deeplinks
EFF to Third Circuit: Electronic Device Searches at the Border Require a Warrant
FOE
Bleeping Computer
CISA flags VMware Aria Operations RCE flaw as exploited in attacks
FOE
The Register (Security)
Dev stunned by $82K Gemini bill after unknown API key thief goes to town
FOE
Risky Business News
Risky Bulletin: Cyber Command conducted cyberattacks ahead of Iran strikes
FOE
Bleeping Computer
Paint maker giant AkzoNobel confirms cyberattack on U.S. site
FOE
Bleeping Computer
Facebook accounts unavailable in worldwide outage
FOE
Dark Reading
Indian APT 'Sloppy Lemming' Targets Defense, Critical Infrastructure
FRIEND
EFF Deeplinks
The Anthropic-DOD Conflict: Privacy Protections Shouldn’t Depend On the Decisions of a Few Powerful People
FRIEND
EFF Deeplinks
The Anthropic-DOD Conflict: Privacy Protections Shouldn’t Depend On the Decisions of a Few Powerful People
FOE
Bleeping Computer
Microsoft: Hackers abuse OAuth error flows to spread malware
FOE
The Register (Security)
Chat at your own risk! Data brokers are selling deeply personal bot transcripts
FOE
Dark Reading
Vehicle Tire Pressure Sensors Enable Silent Tracking
FOE
Dark Reading
Qualcomm Zero-Day Exploited in Targeted Android Attacks
FOE
SecurityWeek
Iranian Strikes on Amazon Data Centers Highlight Industry’s Vulnerability to Physical Disasters
FOE
Sophos News
Hacktivist campaigns increase as United States, Iran, and Israel conflict intensifies
FOE
The Register (Security)
Cyberwarriors elevated to big leagues in US war with Iran
FOE
Dark Reading
Speakeasies to Shadow AI: Banning AI Browsers Will Fail
FOE
The Hacker News
Fake Tech Support Spam Deploys Customized Havoc C2 Across Organizations
FRIEND
Bleeping Computer
Google Chrome shifts to two-week release cycle for increased stability
FRIEND
SecurityWeek
Fig Security Launches With $38 Million to Bolster SecOps Resilience
FRIEND
EFF Deeplinks
EFF to Supreme Court: Shut Down Unconstitutional Geofence Searches
FRIEND
EFF Deeplinks
EFF to Supreme Court: Shut Down Unconstitutional Geofence Searches
FOE
Bleeping Computer
LexisNexis confirms data breach as hackers leak stolen files
FOE
SecurityWeek
Honeywell, Researcher Clash Over Impact of Building Controller Vulnerability
FOE
The Register (Security)
Turns out most cybercriminals are old enough to know better
FOE
SANS Internet Storm Center
Bruteforce Scans for CrushFTP , (Tue, Mar 3rd)
FOE
Bleeping Computer
Compromised Site Management Panels are a Hot Item in Cybercrime Markets
FRIEND
The Hacker News
Building a High-Impact Tier 1: The 3 Steps CISOs Must Follow
FOE
The Hacker News
Open-Source CyberStrikeAI Deployed in AI-Driven FortiGate Attacks Across 55 Countries
FOE
The Register (Security)
Until last month, attackers could've stolen info from Perplexity Comet users just by sending a calendar invite
FOE
SecurityWeek
Quantum Decryption of RSA is Much Closer than Expected
FOE
SecurityWeek
New ‘AirSnitch’ Attack Shows Wi-Fi Client Isolation Could be a False Sense of Security
FOE
SecurityWeek
1.2 Million Affected by University of Hawaii Cancer Center Data Breach
FOE
CSO Online
OAuth phishers make ‘check where the link points’ advice ineffective
FOE
Dark Reading
AI Agent Overload: How to Solve the Workload Identity Crisis
FOE
CSO Online
Jetzt Staats-CISO werden – für unter 160.000 Euro
FOE
SecurityWeek
Android Update Patches Exploited Qualcomm Zero-Day
FOE
Ars Technica (Security)
LLMs can unmask pseudonymous users at scale with surprising accuracy
FRIEND
SecurityWeek
Iran Cyber Front: Hacktivist Activity Rises, but State-Sponsored Attacks Stay Low
FRIEND
Schneier on Security
On Moltbook
FOE
CISA Alerts
CISA Adds Two Known Exploited Vulnerabilities to Catalog
FOE
CISA Alerts
Hitachi Energy Relion REB500 Product
FOE
CISA Alerts
Portwell Engineering Toolkits
FOE
CISA Alerts
Labkotec LID-3300IP
FOE
CISA Alerts
Everon OCPP Backends
FOE
CISA Alerts
ePower epower.ie
FOE
CISA Alerts
Mobiliti e-mobi.hu
FOE
CISA Alerts
Mitsubishi Electric MELSEC iQ-F Series EtherNet/IP module and Ethernet module
FOE
CISA Alerts
Hitachi Energy RTU500 Product
FOE
Bleeping Computer
Amazon: Drone strikes damaged AWS data centers in Middle East
FOE
The Register (Security)
Chrome Gemini panel became privilege escalator for rogue extensions
FOE
Dark Reading
As War Continues, Pro-Iranian Actors Launch Barrage of Cyberattacks
FOE
The Hacker News
AI Agents: The Next Wave Identity Dark Matter - Powerful, Invisible, and Unmanaged
FOE
The Hacker News
Starkiller Phishing Suite Uses AitM Reverse Proxy to Bypass Multi-Factor Authentication
FOE
The Register (Security)
Cybercriminals swipe 15.8M medical records from French doctors ministry
FOE
Bleeping Computer
Star Citizen game dev discloses breach affecting user data
FOE
SecurityWeek
Vulnerability in MS-Agent AI Framework Can Allow Full System Compromise
FOE
CSO Online
Studie: Hacker legen Betrieb bei vielen Unternehmen lahm
FOE
CSO Online
Epic Fury introduces new layer of enterprise risk
FOE
Bleeping Computer
UH Cancer Center data breach affects nearly 1.2 million people
FOE
SecurityWeek
Researchers Uncover Method to Track Cars via Tire Sensors
FOE
The Hacker News
Microsoft Warns OAuth Redirect Abuse Delivers Malware to Government Targets
FOE
Bleeping Computer
Android gets patches for Qualcomm zero-day exploited in attacks
FOE
The Hacker News
Google Confirms CVE-2026-21385 in Qualcomm Android Component Exploited
FOE
CSO Online
7 factors impacting the cyber skills gap
FOE
The Hacker News
SloppyLemming Targets Pakistan and Bangladesh Governments Using Dual Malware Chains
FOE
The Register (Security)
Gamers furious as Brit studio Cloud Imperium quietly admits to data breach
FRIEND
CSO Online
Das gehört in Ihr Security-Toolset
FOE
The Register (Security)
Phish of the day: Microsoft OAuth scams abuse redirects for malware delivery
FOE
Bleeping Computer
CyberStrikeAI tool adopted by hackers for AI-powered attacks
FOE
Sophos News
Hacktivist campaigns increase as United States, Iran, and Israel conflict intensifies
FRIEND
EFF Deeplinks
EFF to Court: Don’t Make Embedding Illegal
FRIEND
EFF Deeplinks
EFF to Court: Don’t Make Embedding Illegal
FOE
Dark Reading
Critical OpenClaw Vulnerability Exposes AI Agent Risks
FOE
Dark Reading
The Tug-of-War Over Firewall Backlogs in the AI-Driven Development Era
FOE
The Register (Security)
Iran's cyberwar has begun
FOE
Dark Reading
30 Alleged Members of 'The Com' Arrested in Project Compass
FOE
Bleeping Computer
Fake Google Security site uses PWA app to steal credentials, MFA codes
FRIEND
EPIC
EPIC Urges HHS to Prioritize Patient Privacy in Clinical Care AI Uses
FRIEND
CSO Online
Vulnerability monitoring service secures public-sector websites faster
FOE
Bleeping Computer
Alabama man pleads guilty to hacking, extorting hundreds of women
FOE
The Register (Security)
UK Businesses told to brace cyber defenses amid Iran conflict risk
FOE
Bleeping Computer
Florida woman imprisoned for massive Microsoft license fraud scheme
FOE
The Hacker News
New Chrome Vulnerability Let Malicious Extensions Escalate Privileges via Gemini Panel
FRIEND
The Hacker News
Google Develops Merkle Tree Certificates to Enable Quantum-Resistant HTTPS in Chrome
FRIEND
EFF Deeplinks
National Book Tour for Cindy Cohn’s Memoir, ‘Privacy’s Defender’
FRIEND
EFF Deeplinks
National Book Tour for Cindy Cohn’s Memoir, ‘Privacy’s Defender’
FOE
Bleeping Computer
UK warns of Iranian cyberattack risks amid Middle-East conflict
FOE
SecurityWeek
Vulnerability Allowed Hijacking Chrome’s Gemini Live AI Assistant
FOE
Bleeping Computer
How Deepfakes and Injection Attacks Are Breaking Identity Verification
FOE
SecurityWeek
OpenClaw Vulnerability Allowed Websites to Hijack AI Agents
FOE
The Register (Security)
Memory scalpers hunt scarce DRAM with bot blitz
FOE
SecurityWeek
Madison Square Garden Data Breach Confirmed Months After Hacker Attack
FOE
The Register (Security)
Scammers try to SIM-swap Dubai citizens hours after Iranian missile strikes
FOE
The Hacker News
⚡ Weekly Recap: SD-WAN 0-Day, Critical CVEs, Telegram Probe, Smart TV Proxy SDK and More
FRIEND
Dark Reading
Quantum-Resistant Data Diode Secures Sensitive Data on Edge Devices, Critical Systems
FRIEND
SecurityWeek
Nick Andersen Appointed Acting Director of CISA
FRIEND
SecurityWeek
AWS Expands Security Hub Into a Cross-Domain Security Platform
FOE
Bleeping Computer
Anthropic confirms Claude is down in a worldwide outage
FOE
Schneier on Security
LLM-Assisted Deanonymization
FOE
The Hacker News
How to Protect Your SaaS from Bot Attacks with SafeLine WAF
FOE
SecurityWeek
North Korean APT Targets Air-Gapped Systems in Recent Campaign
FRIEND
SecurityWeek
Google Working Towards Quantum-Safe Chrome HTTPS Certificates
FRIEND
SANS Internet Storm Center
Quick Howto: ZIP Files Inside RTF, (Mon, Mar 2nd)
FRIEND
SANS Internet Storm Center
Wireshark 4.6.4 Released, (Mon, Mar 2nd)
FOE
SecurityWeek
US-Israel and Iran Trade Cyberattacks: Pro-West Hacks Cause Disruption as Tehran Retaliates
FRIEND
CSO Online
Innovation without exposure: A CISO’s secure-by-design framework for business outcomes
FOE
The Hacker News
APT28 Tied to CVE-2026-21513 MSHTML 0-Day Exploited Before Feb 2026 Patch Tuesday
FOE
Dark Reading
Bug in Google's Gemini AI Panel Opens Door to Hijacking
FRIEND
CSO Online
A scorecard for cyber and risk culture
FOE
The Hacker News
North Korean Hackers Publish 26 npm Packages Hiding Pastebin C2 for Cross-Platform RAT
FRIEND
CSO Online
Hacker erpressen weniger Lösegeld
FRIEND
CSO Online
How CISOs can build a resilient workforce
FRIEND
CSO Online
Im Fokus: RZ-Modernisierung
FRIEND
CSO Online
Im Fokus: RZ-Modernisierung
FOE
CSO Online
Kubernetes Security: Wie Sie Ihre Cluster (besser) absichern
FRIEND
The Register (Security)
UK government's Vulnerability Monitoring System is working - fixes flow far faster
FOE
Risky Business News
Risky Bulletin: LLMs can deanonymize internet users based on their past comments
FOE
The Register (Security)
South Korea’s tax office apologizes for leaking seed phrase to seized crypto
FOE
Recorded Future Blog
Latin America's Cybersecurity Turning Point: From Reactive Defense to Threat Intelligence
FOE
Recorded Future Blog
Ongoing Iran Conflict: What You Need to Know
FOE
Bleeping Computer
ClawJacked attack let malicious websites hijack OpenClaw to steal data
FRIEND
Bleeping Computer
Samsung TVs to stop collecting Texans’ data without express consent
FOE
SecurityWeek
Hackers Weaponize Claude Code in Mexican Government Cyberattack
FOE
Sophos News
Cyber Advisory: Increased Cyber Risk Amid U.S.–Israel–Iran Escalation