ICYMI: 2026-03-12
Latest Headlines
Rust-Based VENON Malware Targets 33 Brazilian Banks with Credential-Stealing Overlays
Hive0163 Uses AI-Assisted Slopoly Malware for Persistent Access in Ransomware Attacks
How to Scale Phishing Detection in Your SOC: 3 Steps for CISOs
ThreatsDay Bulletin: OAuth Trap, EDR Killer, Signal Phishing, Zombie ZIP, AI Platform Hack & More
Attackers Don’t Just Send Phishing Emails. They Weaponize Your SOC’s Workload
Apple Issues Security Updates for Older iOS Devices Targeted by Coruna WebKit Exploit
Six Android Malware Families Target Pix Payments, Banking Apps, and Crypto Wallets
CISA Flags Actively Exploited n8n RCE Bug as 24,700 Instances Remain Exposed
US Lawmakers Move to Kill the FBI’s Warrantless Wiretap Access
How ‘Handala’ Became the Face of Iran’s Hacker Counterattacks
Meta Launches New Protection Tools as It Helps Disrupt Scam Centers
Ally WordPress Plugin Flaw Exposes Over 200,000 Websites to Attacks
The Human IOC: Why Security Professionals Struggle with Social Vetting
Polyfill Supply Chain Attack Impacting 100k Sites Linked to North Korea
Attackers Hijack Microsoft 365 Accounts Through OAuth Device Code Abuse Without Stealing Passwords
Critical MediaTek Vulnerability Lets Attackers Steal Android Phone PINs in 45 Seconds
Microsoft Copilot Email and Teams Summarization Vulnerability Enables Phishing Attacks
Paloalto Cortex XDR Broker Vulnerability Attackers to Obtain and Modify Sensitive Information
Ericsson US Discloses Data Breach – Hackers Stolen Employees and Customers Data
Cisco IOS XR Software Vulnerability Allow Attacker to Execute Commands as Root
Splunk RCE Vulnerability Allows Attackers to Execute Arbitrary Shell Commands
SolarWinds Web Help Desk Deserialization Vulnerability Enables Command Execution
Critical Microsoft Office Vulnerability Enables Remote Code Execution Attacks
GitLab Security Update – Patch for XSS and API DoS Vulnerabilities
Canadian retail giant Loblaw notifies customers of data breach
AI-generated Slopoly malware used in Interlock ransomware attack
Veeam warns of critical flaws exposing backup servers to RCE attacks
US disrupts SocksEscort proxy network powered by Linux malware
Telus Digital confirms breach after hacker claims 1 petabyte data theft
Going the Extra Mile: Travel Rewards Turn into Underground Currency.
Apple patches older iPhones and iPads against Coruna exploits
US charges another ransomware negotiator linked to BlackCat attacks
– MTZ