Aggregator

Newly Minted Unicorn Says AI-Driven Attacks Force Shift to Continuous Pen Testing
Xbow has raised $120 million in Series C funding after proving its autonomous AI hacking platform can outperform human pen testers. CEO Oege de Moor says the rise of AI-driven cyberattacks is forcing enterprises to test systems continuously rather than periodically.

Also, Telus Breach, Microsoft Hotpatching, Interpol Malicious IP Takedown
This week, Russian hacker OpSec failure, Interpol helped disrupt 45,000 malicious IPs, the FBI is looking for an ATM jackpotting suspect and Telus disclosed a breach. Windows hotpatching, an FTP exploit, a foiled attack on a nuclear research center and China-linked espionage.

Vulnerability Affects Certain Centricity Medical Imaging Products
The U.S. Food and Drug Administration has issued a recall notice for certain GE Healthcare Centricity medical imaging products due to a "potential" cybersecurity vulnerability that could allow a hacker to manipulate data or impact availability of the affected products.

Phishing Campaign Used AsyncRAT to Maintain Long-Term Network Access
A suspected cyberespionage campaign targeted a Libyan oil refinery using commodity malware and politically themed phishing lures. The activity ran from November 2025 to mid-February, with evidence that attackers maintained long-term access to at least one oil company network.

CISA has added five new vulnerabilities to its Known Exploited Vulnerabilities (KEV) Catalog, based on evidence of active exploitation.

• CVE-2025-31277 Apple Multiple Products Buffer Overflow Vulnerability
• CVE-2025-32432 Craft CMS Code Injection Vulnerability
• CVE-2025-43510 Apple Multiple Products Improper Locking Vulnerability
• CVE-2025-43520 Apple Multiple Products Classic Buffer Overflow Vulnerability
• CVE-2025-54068 Laravel Livewire Code Injection Vulnerability

These types of vulnerabilities are frequent attack vectors for malicious cyber actors and pose significant risks to the federal enterprise.

Binding Operational Directive (BOD) 22-01: Reducing the Significant Risk of Known Exploited Vulnerabilities established the KEV Catalog as a living list of known Common Vulnerabilities and Exposures (CVEs) that carry significant risk to the federal enterprise. BOD 22-01 requires Federal Civilian Executive Branch (FCEB) agencies to remediate identified vulnerabilities by the due date to protect FCEB networks against active threats. See the BOD 22-01 Fact Sheet for more information.

Although BOD 22-01 only applies to FCEB agencies, CISA strongly urges all organizations to reduce their exposure to cyberattacks by prioritizing timely remediation of KEV Catalog vulnerabilities as part of their vulnerability management practice. CISA will continue to add vulnerabilities to the catalog that meet the specified criteria. 

Workshop Details… We’re looking forward to hearing from the community during our “Future Directions” Workshop! Date: March 31 - April 1, 2026 Where: NIST’s Gaithersburg campus! Registration and Details: HERE Can’t make it? We still want to hear from you – email us at IoTSecurity [at] nist.gov (IoTSecurity[at]nist[dot]gov). All Aboard for Product Cybersecurity The NIST Cybersecurity for Internet of Things (IoT) Program was established to help real-world practitioners navigate the gray areas between IT and connected products. This provides clarity when it comes to challenges, available existing resources, and understanding where

Хакеры Interlock полтора месяца хозяйничали в сетях Cisco, пока мир ничего не подозревал.

An urgent warning highlights a critical zero-day in Cisco products, now added to the CISA Known Exploited Vulnerabilities Catalog after active exploitation in ransomware campaigns. Network defenders and security administrators are urged to take immediate action. The rapid exploitation of this vulnerability by financially motivated threat actors highlights the severe risk it poses to enterprise […]

The post CISA Warns of Cisco Secure Firewall Management Center 0-Day Exploited in Ransomware Attacks appeared first on Cyber Security News.

Ransomware attackers have widened their approach to defeating endpoint security, moving well past the technique of exploiting vulnerable drivers. For years, the Bring Your Own Vulnerable Driver (BYOVD) method was the primary way attackers disabled security tools before launching their file-encrypting payloads. Today, that picture has grown much more complex, with threat actors now deploying […]

The post Ransomware Actors Expand EDR Killer Tactics Beyond Vulnerable Drivers appeared first on Cyber Security News.

Fake job offers on Google Forms are spreading PureHVNC malware that can take over your device.

The post That “job brief” on Google Forms could infect your device appeared first on Security Boulevard.

Платформа Venus Protocol ужесточила требования к залогам после потери 3,6 миллиона долларов.

A critical security advisory addressing multiple high-severity vulnerabilities in Jenkins core and the LoadNinja plugin. Issued on March 18, 2026, the alert warns that these flaws could allow attackers to execute arbitrary code and fully compromise continuous integration and continuous deployment pipelines.​ The most severe flaw, tracked as CVE-2026-33001, stems from how Jenkins handles symbolic […]

The post Critical Jenkins Vulnerabilities Expose CI/CD Servers to RCE Attacks appeared first on Cyber Security News.

Most SCA tools do one thing: they tell you when something’s vulnerable. AutoSecT has expanded its scope by incorporating AI-driven Software Composition Analysis, which takes it a step further. First and foremost, let’s begin the prologue on the ongoing shift from rule-based scanning to AI-driven code reasoning. Traditional static analysis tools (SAST) rely on predefined […]

The post Inside AutoSecT: How AI Agents Are Transforming Software Composition Analysis appeared first on Kratikal Blogs.

The post Inside AutoSecT: How AI Agents Are Transforming Software Composition Analysis appeared first on Security Boulevard.

Apple warns that outdated iPhones are vulnerable to Coruna and DarkSword exploit kits and urges users to update iOS. Apple has warned that iPhones running outdated iOS versions are at risk from exploit kits like Coruna and DarkSword. These attacks use malicious web content to trigger infection chains that can steal sensitive data. Users are […]

Простой клик в онлайн-магазине выдает корпорациям все тайны покупателя.

一年一度的两会，是观察国家政策走向的重要窗口。2026年政府工作报告已经新鲜出炉，其中关于网络安全的表述，字字千钧。今天，我们就来深度拆解这份报告背后的安全信号。本次报告明确提出：“健全数据要素基础制度，强化数据安全与个人信息保护，完...