Latest Cybersecurity News

Stay informed with real-time threat intelligence, vulnerability disclosures, and expert analysis from the cybersecurity community.

All Malware & Threats468 Vulnerabilities240 Data Breaches20 Ransomware0 APT & Threat Actors0 Cloud Security0 MENA Cybersecurity0 Compliance & Frameworks0 Tools & Tutorials0 Industry News1128

Ubuntu CVE-2026-3888 Bug Lets Attackers Gain Root via systemd Cleanup Timing Exploit

The Hacker News

Industry News

Ubuntu CVE-2026-3888 Bug Lets Attackers Gain Root via systemd Cleanup Timing Exploit

Ubuntu CVE-2026-3888 flaw exploits cleanup timing in snap-confine to gain root access, risking full system compromise.

The Hacker NewsMar 18, 20263m5

Apple Fixes WebKit Vulnerability Enabling Same-Origin Policy Bypass on iOS and macOS

The Hacker News

Industry News

Apple Fixes WebKit Vulnerability Enabling Same-Origin Policy Bypass on iOS and macOS

Apple fixes WebKit CVE-2026-20643 in iOS 26.3.1, macOS 26.3.2 using background patches, reducing exploit risk.

The Hacker NewsMar 18, 20263m5

Critical Unpatched Telnetd Flaw (CVE-2026-32746) Enables Unauthenticated Root RCE via Port 23

The Hacker News

Industry News

Critical Unpatched Telnetd Flaw (CVE-2026-32746) Enables Unauthenticated Root RCE via Port 23

CVE-2026-32746 exposes telnetd via pre-auth flaw (CVSS 9.8), enabling root RCE through port 23, risking full system takeover.

The Hacker NewsMar 18, 20263m5

Apple pushes first Background Security Improvements update to fix WebKit flaw

BleepingComputer

Malware & Threats

Apple pushes first Background Security Improvements update to fix WebKit flaw

Apple has released its first Background Security Improvements update to fix a WebKit flaw tracked as CVE-2026-20643 on iPhones, iPads, and Macs without requiring a full operating system upgrade.

BleepingComputerMar 18, 20263m5

Industry News

More Attackers Are Logging In, Not Breaking In

Dark Reading

Industry News

More Attackers Are Logging In, Not Breaking In

Credential theft soared in the second half of 2025, thanks in part to the industrialization of infostealer malware and AI-enabled social engineering.

Dark ReadingMar 17, 20261m5

GlassWorm malware hits 400+ code repos on GitHub, npm, VSCode, OpenVSX

BleepingComputer

Malware & Threats

GlassWorm malware hits 400+ code repos on GitHub, npm, VSCode, OpenVSX

The GlassWorm supply-chain campaign has returned with a new, coordinated attack that targeted hundreds of packages, repositories, and extensions on GitHub, npm, and VSCode/OpenVSX extensions.

BleepingComputerMar 17, 20263m5

Industry News

Clear Communication: The Missing Link in Cybersecurity Success

Dark Reading

Industry News

Clear Communication: The Missing Link in Cybersecurity Success

When technical expertise meets clear communication, cybersecurity teams thrive. Learn how to foster trust and collaboration across diverse working groups.

Dark ReadingMar 17, 20261m5

Industry News

Less Lucrative Ransomware Market Makes Attackers Alter Methods

Dark Reading

Industry News

Less Lucrative Ransomware Market Makes Attackers Alter Methods

Ransomware actors are ditching Cobalt Strike in favor of native Windows tools, as payment rates hit record lows and data theft surges.

Dark ReadingMar 17, 20261m5

Industry News

Hackers Target Cybersecurity Firm Outpost24 in 7-Stage Phish

Dark Reading

Industry News

Hackers Target Cybersecurity Firm Outpost24 in 7-Stage Phish

The cyberattackers leveraged trusted brands and domains in an attempt to redirect a C-suite executive at Outpost24 to give up his credentials.

Dark ReadingMar 17, 20261m5

Europe sanctions Chinese and Iranian firms for cyberattacks

BleepingComputer

Malware & Threats

Europe sanctions Chinese and Iranian firms for cyberattacks

The European Union Council has announced sanctions against three entities and two individuals for their involvement in cyberattacks targeting critical infrastructure in the region.

BleepingComputerMar 17, 20263m5

AI Flaws in Amazon Bedrock, LangSmith, and SGLang Enable Data Exfiltration and RCE

The Hacker News

Industry News

AI Flaws in Amazon Bedrock, LangSmith, and SGLang Enable Data Exfiltration and RCE

DNS flaw in Amazon Bedrock and critical AI vulnerabilities expose data and enable RCE, risking breaches and infrastructure compromise.

The Hacker NewsMar 17, 20266m5

Tech Giants Invest $12.5 Million in Open Source Security

SecurityWeek

Industry News

Tech Giants Invest $12.5 Million in Open Source Security

Anthropic, AWS, Google, Microsoft, and OpenAI fund the Linux Foundation’s long-term security initiatives focused on open source software.

SecurityWeekMar 17, 20262m5