Internet Security

KadNap bot compromises 14,000+ devices to route malicious traffic

March 11, 2026 add comment
KadNap malware infects 14,000+ edge devices, mainly Asus routers, turning them into a stealth proxy botnet used to route malicious internet traffic. KadNap malware infects more than 14,000 edge... Read more »

Microsoft Patch Tuesday security updates for March 2026 fixed 84 bugs

March 10, 2026 add comment
Microsoft Patch Tuesday security updates for March 2026 addressed 84 vulnerabilities in its products. None of the flaws are known to be exploited so far. Microsoft Patch Tuesday security... Read more »

Attackers exploit FortiGate devices to access sensitive network information

March 10, 2026 add comment
Attackers are exploiting FortiGate devices to breach networks and steal configuration data containing service account credentials and network details. SentinelOne researchers warn that attackers are exploiting vulnerabilities or weak... Read more »

APT28 conducts long-term espionage on Ukrainian forces using custom malware

March 10, 2026 add comment
APT28 used BEARDSHELL and COVENANT malware to spy on Ukrainian military personnel, enabling long-term surveillance since April 2024. The Russia-linked group APT28 (aka UAC-0001, aka Fancy Bear, Pawn Storm, Sofacy Group, Sednit, BlueDelta, and STRONTIUM)... Read more »

Threat actors use custom AuraInspector to harvest data from Salesforce systems

March 10, 2026 add comment
Attackers are mass-scanning Salesforce Experience Cloud sites using a modified AuraInspector tool to exploit misconfigurations and access sensitive data. Salesforce CSOC warns that threat actors are mass-scanning publicly accessible... Read more »

U.S. CISA adds Ivanti EPM, SolarWinds, and Omnissa Workspace One flaws to its Known Exploited Vulnerabilities catalog

March 10, 2026 add comment
U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds EPM, SolarWinds, and Omnissa Workspace One flaws to its Known Exploited Vulnerabilities catalog. The U.S. Cybersecurity and Infrastructure Security Agency (CISA) added... Read more »

Ericsson US confirms breach after third-party provider attack

March 10, 2026 add comment
Ericsson US reports a data breach after attackers hacked a service provider, exposing employee and customer information. Ericsson Inc., the U.S. branch of the Swedish telecom giant, disclosed a... Read more »

Law enforcement disrupted Tycoon 2FA phishing-as-a-service platform

March 10, 2026 add comment
Authorities disrupted the Tycoon 2FA phishing-as-a-service platform used to send millions of phishing emails to over 500,000 orgs worldwide. The joint effort, led by Microsoft, Europol, and industry partners,... Read more »

FBI alert: scammers target zoning permit applicants

March 9, 2026 add comment
The FBI warns of phishing attacks where crooks impersonate U.S. city and county officials to target people requesting planning and zoning permits. The FBI warns that scammers are impersonating... Read more »

Russia-linked hackers target Signal, WhatsApp of officials globally

March 9, 2026 add comment
Russia-linked hackers are targeting Signal and WhatsApp accounts of government and military officials worldwide, warns Dutch intelligence. Dutch intelligence agencies (MIVD and AIVD) warn of a global campaign by... Read more »
Subscribe to our Newsletter