AstraZeneca Data Breach: What You Need to Know
AstraZeneca Data Breach: What You Need to Know [Update] March 27, 2026: LAPSUS$ Releases AstraZeneca Data and Adds Virta Health A newly surfaced Dark Web post is drawing attention to an alleged AstraZ...
CVE-2025-32975: Quest KACE SMA SSO Authentication Bypass Enables Admin...
CVE-2025-32975: Quest KACE SMA SSO Authentication Bypass Enables Admin Takeover Quest KACE Systems Management Appliance (SMA) has a maximum-severity vulnerability, CVE-2025-32975, that allows an attac...
Crunchyroll Alleged Data Breach: What Do Users Need to Know?
Crunchyroll Alleged Data Breach: What Do Users Need to Know? Reports of a possible Crunchyroll (A popular anime streaming platform) data breach have drawn attention after claims surfaced that a threat...
Stryker Cyberattack: What You Need to Know
Stryker Cyberattack: What You Need to Know On March 11, 2026, Stryker disclosed a cyberattack that caused a global disruption to its Microsoft environment. Within days, the incident became one of the ...
What the Telus 1 Petabyte Breach Could Mean for Customers and Third-Pa...
What the Telus 1 Petabyte Breach Could Mean for Customers and Third-Party Risk A breach at a service provider rarely stays contained to one company. Telus Digital confirmed that attackers gained unaut...
Veeam Backup & Replication: CVE-2026-21666 and Related RCE Fixes
Veeam Backup & Replication: CVE-2026-21666 and Related RCE Fixes Veeam shipped new security fixes for Veeam Backup & Replication (VBR) on March 12, 2026, publishing separate KBs for its suppor...
March 2026 Patch Tuesday: 83 Vulnerabilities, Two Publicly Disclosed Z...
March 2026 Patch Tuesday: 83 Vulnerabilities, Two Publicly Disclosed Zero-Days Microsoft released its March 2026 Patch Tuesday security updates, resolving a total of 83 vulnerabilities across Windows ...
Iran vs. Israel & US Cyber War 2026: Operation Epic Fury Threat Intell...
Iran vs. Israel & US Cyber War 2026: Operation Epic Fury Threat Intelligence On February 28, 2026, the US and Israel launched Operation Epic Fury, striking Iran’s military command, missile infrast...
Iranian APT MuddyWater Uses Dindoor Malware to Target U.S. Networks
Iranian APT MuddyWater Uses Dindoor Malware to Target U.S. Networks A recently uncovered cyber espionage campaign attributed to the Iranian state-linked threat group MuddyWater has drawn attention fro...
Cisco Catalyst SD-WAN Manager (CVE-2026-20122 & CVE-2026-20128) Flaws ...
Cisco Catalyst SD-WAN Manager (CVE-2026-20122 & CVE-2026-20128) Flaws Exploited Cisco has confirmed active exploitation targeting two vulnerabilities in Cisco Catalyst SD-WAN Manager (formerly vMa...
CISA Flags Hikvision Camera & Rockwell Logix Vulnerabilities as Active...
CISA Flags Hikvision Camera & Rockwell Logix Vulnerabilities as Actively Exploited Two long-standing vulnerabilities affecting Hikvision cameras and Rockwell Automation Logix environments are now ...
FBI Seizes LeakBase Cybercrime Forum, Data of 142,000 Members
FBI Seizes LeakBase Cybercrime Forum, Data of 142,000 Members [Update] March 13, 2026: “Russia Seizes New LeakBase Domain Following Earlier Takedown” So, LeakBase. Here’s what most miss in the threat ...
CVE-2026-22719: VMware Aria Operations Command Injection Added to CISA...
CVE-2026-22719: VMware Aria Operations Command Injection Added to CISA KEV Broadcom previously disclosed and patched CVE-2026-22719, a command injection issue in VMware Aria Operations (formerly vReal...
CVE-2026-0628: Chrome “Gemini Live” Side Panel Injection Bug
CVE-2026-0628: Chrome “Gemini Live” Side Panel Injection Bug CVE-2026-0628 is a high-severity Google Chrome and Chromium vulnerability caused by insufficient policy enforcement in the <webview> ...
OpenClaw’s ClawJacked Vulnerability Explained, What Organizations Need...
OpenClaw’s ClawJacked Vulnerability Explained, What Organizations Need to Know? OpenClaw, along with its recent exploitation technique called ClawJacked, has raised concerns about how cloud-based deve...
Claude Code Security: What It Is, What It Isn't?
Claude Code Security: What It Is, What It Isn’t? When Anthropic released Claude Code Security on February 20, 2026, cybersecurity stocks dropped almost immediately. A few days later, Anthropic announc...
CVE-2026-20127: Cisco Catalyst SD-WAN Auth Bypass Exploited In The Wil...
CVE-2026-20127: Cisco Catalyst SD-WAN Auth Bypass Exploited In The Wild Cisco recently disclosed a zero-day, tracked as CVE-2026-20127, warning that the issue is already being actively exploited in re...
SolarWinds Serv-U 15.5.4 Fixes Four Privileged RCE Vulnerabilities
SolarWinds Serv-U 15.5.4 Fixes Four Privileged RCE Vulnerabilities SolarWinds has released Serv-U 15.5.4 to address four high-impact vulnerabilities affecting Serv-U 15.5. While these issues require a...
Critical Elasticsearch Exposure: 544M Plain-Text Credentials Found Pub...
Critical Elasticsearch Exposure: 544M Plain-Text Credentials Found Publicly Accessible SOCRadar’s AI-powered Sensitive Data Exposure Monitoring service identified a publicly accessible and misconfigur...
Severe VS Code Extension CVEs Expose Developers to RCE and File Exfilt...
Severe VS Code Extension CVEs Expose Developers to RCE and File Exfiltration A recent report highlighted a coordinated disclosure affecting four popular Visual Studio Code (VS Code) extensions: Live S...