Latest Cybersecurity News

The Hacker NewsMar 31, 20267m5

The AI Arms Race – Why Unified Exposure Management Is Becoming a Boardroom Priority

AI weaponizes the kill chain across hours or days, forcing continuous exposure and agentic defense to reduce exploitation risk.

StrongSwan Flaw Allows Unauthenticated Attackers to Crash VPNs

SecurityWeek

SecurityWeekMar 31, 20262m5

StrongSwan Flaw Allows Unauthenticated Attackers to Crash VPNs

Remotely exploitable, the integer underflow vulnerability impacts StrongSwan releases spanning 15 years.

Lloyds Data Security Incident Impacts 450,000 Individuals

SecurityWeek

SecurityWeekMar 31, 20263m5

Lloyds Data Security Incident Impacts 450,000 Individuals

A faulty software update led to the exposure of mobile banking users’ transactions to other users of the application.

Iranian hackers breach FBI director’s personal email, and post his CV and photos online

Graham Cluley

Graham CluleyMar 31, 20263m5

Iranian hackers breach FBI director’s personal email, and post his CV and photos online

It's not every day that you read that the head of America's top law enforcement agency has been hacked, but then - these aren't ordinary times.

Critical Vulnerability in OpenAI Codex Allowed GitHub Token Compromise

SecurityWeek

SecurityWeekMar 31, 20264m5

Critical Vulnerability in OpenAI Codex Allowed GitHub Token Compromise

Researchers found an OpenAI Codex vulnerability that could have been exploited to compromise GitHub tokens.

Axios Supply Chain Attack Pushes Cross-Platform RAT via Compromised npm Account

The Hacker News

The Hacker NewsMar 31, 20266m54

Axios Supply Chain Attack Pushes Cross-Platform RAT via Compromised npm Account

Axios 1.14.1 and 0.30.4 injected malicious plain-crypto-js@4.2.1 after npm compromise on March 31, 2026, deploying cross-platform RAT malware.

AI-Powered 'DeepLoad' Malware Steals Credentials, Evades Detection

AI-Powered 'DeepLoad' Malware Steals Credentials, Evades Detection

The massive amount of junk code that hides the malware's logic from security scans was almost certainly generated by AI, researchers say.

AI-Driven Code Surge Is Forcing a Rethink of AppSec

AI-Driven Code Surge Is Forcing a Rethink of AppSec

In a conversation with Dark Reading’s Terry Sweeney, Black Duck CEO Jason Schmitt explains how AI is reshaping application security and why it must evolve to keep pace.

Fortinet BIG-IP Vulnerability Reclassified as RCE, Under Exploitation

Fortinet BIG-IP Vulnerability Reclassified as RCE, Under Exploitation

CVE-2025-53521 was initially disclosed in October as a high-severity denial-of-service (DoS) flaw, but new information has revealed the bug is actually much more dangerous.

F5 BIG-IP Vulnerability Reclassified as RCE, Under Exploitation

F5 BIG-IP Vulnerability Reclassified as RCE, Under Exploitation

CVE-2025-53521 was initially disclosed in October as a high-severity denial-of-service (DoS) flaw, but new information has revealed the bug is actually much more dangerous.

OpenAI Patches ChatGPT Data Exfiltration Flaw and Codex GitHub Token Vulnerability

The Hacker News

The Hacker NewsMar 30, 20266m6

OpenAI Patches ChatGPT Data Exfiltration Flaw and Codex GitHub Token Vulnerability

ChatGPT and Codex flaws patched Feb 2026 exposed DNS exfiltration and GitHub tokens, raising enterprise AI security risks.

Manufacturing and Healthcare Share Struggles with Passwords

Manufacturing and Healthcare Share Struggles with Passwords

The two key economic sectors struggle with security for a reason: Many insiders view access management as a roadblock, while attackers see it as a way in.