Latest Cybersecurity News

'Overly Permissive' Salesforce Cloud Configs in the Crosshairs

Dark Reading

Dark ReadingMar 10, 20261m12

'Overly Permissive' Salesforce Cloud Configs in the Crosshairs

Some customers have mishandled guest user configurations otherwise intended to allow third-party access to important — and sensitive — client data.

New 'Zombie ZIP' technique lets malware slip past security tools

BleepingComputerMar 10, 20263m11

New 'Zombie ZIP' technique lets malware slip past security tools

A new technique dubbed "Zombie ZIP" helps conceal payloads in compressed files specially created to avoid detection from security solutions such as antivirus and endpoint detection and response (EDR) products.

SecurityWeek

SecurityWeekMar 10, 20263m11

Microsoft Patches 83 Vulnerabilities

Microsoft has fixed a critical vulnerability, but none of the flaws fixed this Patch Tuesday has been exploited in the wild.

Russian Threat Actor Sednit Resurfaces With Sophisticated Toolkit

Dark Reading

Dark ReadingMar 10, 20261m10

Russian Threat Actor Sednit Resurfaces With Sophisticated Toolkit

After several years of using simple implants, the Russia-affiliated actor is back with two new sophisticated malware tools.

Microsoft releases Windows 10 KB5078885 extended security update

BleepingComputerMar 10, 20263m10

Microsoft releases Windows 10 KB5078885 extended security update

Microsoft has released the Windows 10 KB5078885 extended security update to fix the March 2026 Patch Tuesday vulnerabilities, including 2 zero-days and an issue that prevent some devices from shutting down.

Adobe Patches 80 Vulnerabilities Across Eight Products

SecurityWeek

SecurityWeekMar 10, 20262m12

Adobe Patches 80 Vulnerabilities Across Eight Products

Adobe has rolled out patches for 80 vulnerabilities across 8 products, including Commerce, Illustrator, Acrobat Reader, and Premiere Pro.

Microsoft March 2026 Patch Tuesday fixes 2 zero-days, 79 flaws

BleepingComputerMar 10, 202610m15

Microsoft March 2026 Patch Tuesday fixes 2 zero-days, 79 flaws

Today is Microsoft's March 2026 Patch Tuesday with security updates for 79 flaws, including 2 publicly disclosed zero-day vulnerabilities.

Jazz Emerges From Stealth With $61M in Funding for AI-Powered DLP

SecurityWeek

SecurityWeekMar 10, 20262m12

Jazz Emerges From Stealth With $61M in Funding for AI-Powered DLP

The startup brings AI to data loss prevention to provide visibility into intent, context, and risk.

Windows 11 KB5079473 & KB5078883 cumulative updates released

BleepingComputerMar 10, 20266m14

Windows 11 KB5079473 & KB5078883 cumulative updates released

Microsoft has released Windows 11 KB5079473 and KB5078883 cumulative updates for versions 25H2/24H2 and 23H2 to fix security vulnerabilities, bugs, and add new features.

Vulnerabilities

Microsoft Patch Tuesday March 2026, (Tue, Mar 10th)

SANS ISC

Vulnerabilities

Microsoft Patch Tuesday March 2026, (Tue, Mar 10th)

Microsoft today released patches for 93 vulnerabilities, including 9 vulnerabilities in Chromium affecting Microsoft Edge. 8 of the vulnerabilities are rated critical. 2 were disclosed prior to today but have not yet been exploited. This update addresses no already-exploited vulnerabilities.

SANS ISCMar 10, 20261m12

HPE warns of critical AOS-CX flaw allowing admin password resets

BleepingComputerMar 10, 20263m10

HPE warns of critical AOS-CX flaw allowing admin password resets

Hewlett Packard Enterprise (HPE) has patched multiple security vulnerabilities in the Aruba Networking AOS-CX operating system, including several authentication and code execution issues.

FortiGate Devices Exploited to Breach Networks and Steal Service Account Credentials

The Hacker News