News Archives - Page 10 of 920

Microsoft March 2026 Patch Tuesday fixes 2 zero-days, 79 flaws

Tag CVE ID CVE Title Severity .NET CVE-2026-26131 .NET Elevation of Privilege Vulnerability Important .NET CVE-2026-26127 .NET Denial of Service Vulnerability Important Active Directory Domain Services CVE-2026-25177 Active Directory Domain Services Elevation of Privilege Vulnerability Important ASP.NET Core CVE-2026-26130 ASP.NET Core Denial of Service Vulnerability Important Azure Arc CVE-2026-26141 Hybrid Worker Extension (Arc-enabled Windows VMs) […]

10 Mar

Windows 11 KB5079473 & KB5078883 cumulative updates released

Microsoft has released Windows 11 KB5079473 and KB5078883 cumulative updates for versions 25H2/24H2 and 23H2 to fix security vulnerabilities, bugs, and add new features. Today’s updates are mandatory as they contain the March 2026 Patch Tuesday security patches for vulnerabilities discovered in previous months. You can install today’s update by going to Start > Settings > Windows Update and clicking on ‘Check for Updates.’ March 2026 Update for Windows […]

09 Mar

Dutch govt warns of Signal, WhatsApp account hijacking attacks

Russian state-sponsored hackers have been linked to an ongoing Signal and WhatsApp phishing campaign targeting government officials, military personnel, and journalists to gain access to sensitive messages. This report comes from the Netherlands Defence Intelligence and Security Service (MIVD) and the Netherlands General Intelligence and Security Service (AIVD), who confirmed that Dutch government employees have been […]

09 Mar

Ericsson US discloses data breach after service provider hack

Ericsson Inc., the U.S. subsidiary of Swedish networking and telecommunications giant Ericsson, says attackers have stolen data belonging to an undisclosed number of employees and customers after hacking one of its service providers. Headquartered in Stockholm and founded in 1876, the parent company is a communications tech leader with nearly 90,000 employees worldwide. In data […]

09 Mar

Microsoft Teams will tag third-party bots trying to join meetings

Microsoft says Teams will soon automatically tag third-party bots in lobbies, allowing organizers to control whether they can join meetings. As detailed in a new Microsoft 365 roadmap entry, the feature is currently in development and scheduled to roll out in May 2026. When it reaches general availability, it will be available across Windows, macOS, […]

09 Mar

ShinyHunters claims ongoing Salesforce Aura data theft attacks

Salesforce is warning customers that hackers are targeting websites with misconfigured Experience Cloud platforms that give guest users access to more data than intended. However, the ShinyHunters extortion gang claims to be actively exploiting a new bug to steal data from instances. Salesforce has shared guidance for its customers to defend against hackers actively targeting […]

08 Mar

EU court adviser says banks must immediately refund phishing victims

Athanasios Rantos, the Advocate General of the Court of Justice of the EU (CJEU), has issued a formal opinion suggesting that banks must immediately refund account holders affected by unauthorized transactions, even when it’s their fault. The opinion was issued in response to a request for a preliminary ruling submitted by the District Court in Koszalin, Poland, […]

08 Mar

Hackers abuse .arpa DNS and ipv6 to evade phishing defenses

Threat actors are abusing the special-use “.arpa” domain and IPv6 reverse DNS in phishing campaigns that more easily evade domain reputation checks and email security gateways. The .arpa domain is a special top-level domain reserved for internet infrastructure rather than normal websites. It is used for reverse DNS lookups, which allow systems to map an […]

07 Mar

Termite ransomware breaches linked to ClickFix CastleRAT attacks

Ransomware threat actors tracked as Velvet Tempest are using the ClickFix technique and legitimate Windows utilities to deploy the DonutLoader malware and the CastleRAT backdoor. Researchers at cyber-deception threat intelligence firm MalBeacon observed the hackers’ actions in an emulated organization environment over a period of 12 days. Velvet Tempest, also tracked as DEV-0504, is a […]

Category: News

Microsoft March 2026 Patch Tuesday fixes 2 zero-days, 79 flaws

Windows 11 KB5079473 & KB5078883 cumulative updates released

Google: Cloud attacks exploit flaws more than weak credentials

Dutch govt warns of Signal, WhatsApp account hijacking attacks

Ericsson US discloses data breach after service provider hack

Microsoft Teams will tag third-party bots trying to join meetings

ShinyHunters claims ongoing Salesforce Aura data theft attacks

EU court adviser says banks must immediately refund phishing victims

Hackers abuse .arpa DNS and ipv6 to evade phishing defenses

Termite ransomware breaches linked to ClickFix CastleRAT attacks