ICYMI: 2026-03-10
Latest Headlines
How to Stop AI Data Leaks: A Webinar Guide to Auditing Modern Agentic Workflows
FortiGate Devices Exploited to Breach Networks and Steal Service Account Credentials
KadNap Malware Infects 14,000+ Edge Devices to Power Stealth Proxy Botnet
New “LeakyLooker” Flaws in Google Looker Studio Could Enable Cross-Tenant SQL Queries
The Zero-Day Scramble is Avoidable: A Guide to Attack Surface Reduction
APT28 Uses BEARDSHELL and COVENANT Malware to Spy on Ukrainian Military
Threat Actors Mass-Scan Salesforce Experience Cloud via Modified AuraInspector Tool
CISA Flags SolarWinds, Ivanti, and Workspace One Vulnerabilities as Actively Exploited
DHS Ousts CBP Privacy Officers Who Questioned ‘Illegal’ Orders
GPS Attacks Near Iran Are Wreaking Havoc on Delivery and Mapping Apps
Jazz Emerges From Stealth With $61M in Funding for AI-Powered DLP
Kai Emerges From Stealth With $125M in Funding for AI Platform Bridging IT and OT Security
Kevin Mandia’s Armadin Launches With $190 Million in Funding
Hundreds of Salesforce Customers Allegedly Targeted in New Data Theft Campaign
Zoom Workplace for Windows Vulnerabilities Allow Privilege Escalation
Fortinet FortiManager fgtupdates Vulnerability Allows Attackers to Execute Malicious Commands
Microsoft Patch Tuesday March 2026 – 78 Vulnerabilities Fixed, Including One 0-day
Cloudflare Pingora Vulnerabilities Allows Request Smuggling & Cache Poisoning Attacks
Malformed ZIP Files Allows Attackers to Bypass Antivirus and EDR Detections
OpenAI to Acquire Promptfoo to Fix Vulnerabilities in AI Systems
Ivanti Desktop and Server Management Vulnerability Allows Attackers to Escalate Privileges
Kali Linux Enhances AI-driven Penetration Testing with Local Ollama, 5ire, and MCP Kali Server
CISA Warns of Ivanti Endpoint Manager Authentication Bypass Vulnerability Exploited in Attacks
New ‘BlackSanta’ EDR killer spotted targeting HR departments
New BeatBanker Android malware poses as Starlink app to hijack devices
New ‘Zombie ZIP’ technique lets malware slip past security tools
Microsoft releases Windows 10 KB5078885 extended security update
Microsoft March 2026 Patch Tuesday fixes 2 zero-days, 79 flaws
Windows 11 KB5079473 & KB5078883 cumulative updates released
HPE warns of critical AOS-CX flaw allowing admin password resets
Microsoft brings phishing-resistant Windows sign-ins via Entra passkeys
New KadNap botnet hijacks ASUS routers to fuel cybercrime proxy network
The New Turing Test: How Threats Use Geometry to Prove ‘Humanness’
CISA: Recently patched Ivanti EPM flaw now actively exploited
Microsoft to enable Windows hotpatch security updates by default
APT28 hackers deploy customized variant of Covenant open-source tool
– MTZ