ICYMI: 2026-03-09
Latest Headlines
Malicious npm Package Posing as OpenClaw Installer Deploys RAT, Steals macOS Credentials
UNC4899 Breached Crypto Firm After Developer AirDropped Trojanized File to Work Device
⚡ Weekly Recap: Qualcomm 0-Day, iOS Exploit Chains, AirSnitch Attack & Vibe-Coded Malware
Can the Security Platform Finally Deliver for the Mid-Market?
Chrome Extension Turns Malicious After Ownership Transfer, Enabling Code Injection and Data Theft
Web Server Exploits and Mimikatz Used in Attacks Targeting Asian Critical Infrastructure
Cybersecurity M&A Roundup: 42 Deals Announced in February 2026
Internet Infrastructure TLD .arpa Abused in Phishing Attacks
Cloned AI Tool Sites Distribute Malware in ‘InstallFix’ Campaign
Hackers Use Fake CleanMyMac Site to Deploy SHub Stealer and Hijack Crypto Wallets
BoryptGrab Stealer Spreads via Fake GitHub Repositories, Stealing Browser and Crypto Wallet Data
Iran-Linked Hackers Target U.S. Critical Infrastructure Amid Rising Cyber Threat Activity
MaaS VIP Keylogger Campaign Uses Steganography and In-Memory Execution to Steal Credentials at Scale
Signal Confirms Targeted Phishing Attacks Resulting in Account Takeovers
Vietnam-Based Cybercrime Network Enables Fraudulent Account Signups at Scale
Security Risk Advisors Releases “The Purple Perspective 2026” Report
Critical ExifTool Flaw Lets Malicious Images Trigger Code Execution on macOS
Microsoft Launches Copilot Cowork, a New AI Feature in Microsoft 365 to Automate Tasks
M365Pwned – Red Team GUI Toolkit for Microsoft 365 Exploitation via Graph API
Microsoft Teams phishing targets employees with A0Backdoor malware
Google: Cloud attacks exploit flaws more than weak credentials
Dutch govt warns of Signal, WhatsApp account hijacking attacks
Ericsson US discloses data breach after service provider hack
Microsoft Teams will tag third-party bots trying to join meetings
ShinyHunters claims ongoing Salesforce Aura data theft attacks
FBI warns of phishing attacks impersonating US city, county officials
Why Password Audits Miss the Accounts Attackers Actually Want
Microsoft still working to fix Windows Explorer white flashes
– MTZ