Collecting Cyber-News from over 60 sources

Tag: access

Hackers Exploit Telegram for Initial Access to Corporate VPN, RDP, and Cloud Systems

Mar 3, 2026 12:47 PM

Tags: access, cloud, corporate, credentials, cyber, data-breach, exploit, hacker, marketplace, network, ransomware, vpn

Hackers are increasingly abusing Telegram as an initial access marketplace, turning stealer logs and leaked credentials into direct entry points for corporate VPN, RDP, and cloud environments. The platform now acts as a high-speed bridge between compromised credentials and full network compromise, supporting ransomware operators, Initial Access Brokers (IABs), and hacktivist collectives. Telegram hosts popular…
Epic Fury introduces new layer of enterprise risk

Mar 3, 2026 11:46 AM

Tags: access, apt, attack, business, cisa, ciso, communications, country, credentials, cyber, cybersecurity, data-breach, disinformation, exploit, group, infrastructure, intelligence, international, Internet, iran, malware, middle-east, network, ransomware, resilience, risk, rust, service, software, technology, tool, ukraine

Physical attacks on US-linked locations through direct action or partner groups. We are already seeing Iranian missile launches into a variety of nations in the region.Cyber operations that include disruptive activity, targeted intrusions, credential and access harvesting, destructive malware deployment, and the use of compromised infrastructure to support broader influence or operational objectives.Proxy networks across…
Operation Epic Fury: Potential Iranian Cyber Counteroffensive Operations

Mar 3, 2026 9:47 AM

Tags: access, attack, botnet, credentials, cyber, data, ddos, defense, espionage, exploit, government, group, infrastructure, intelligence, Internet, iran, leak, malware, military, monitoring, ransomware, service, social-engineering, technology, theft, threat, tool, update, vulnerability

Following the joint military operation known as Operation Epic Fury, the Tenable Research Special Operations (RSO) team is providing an update regarding potential cyber counteroffensive operations conducted by Iran-linked threat actors. Key takeaways: Following Operation Epic Fury, Iran-linked threat actors are expected to launch counteroffensive operations against critical infrastructure and opportunistic targets. Several Iranian-linked threat…
Chrome Gemini Vulnerability Lets Attackers Access Victims’ Camera and Microphone Remotely

Mar 3, 2026 6:47 AM

Tags: access, ai, browser, cctv, chrome, cve, cyber, data-breach, flaw, google, malicious, privacy, unauthorized, vulnerability

A newly discovered high-severity vulnerability in Google Chrome’s Gemini Live integration, tracked as CVE-2026-0628, exposed users to significant privacy and security risks. Researchers found that the flaw could allow malicious browser extensions to hijack the Gemini side panel, granting unauthorized access to a user’s camera, microphone, and local files. The integration of AI assistants into…
Phish of the day: Microsoft OAuth scams abuse redirects for malware delivery

Mar 3, 2026 5:47 AM

Tags: access, malicious, malware, microsoft, phishing, scam

Crims hope for payday from malicious payloads rather than stealing access tokens First seen on theregister.com Jump to article: www.theregister.com/2026/03/03/microsoft_oauth_scams/
Phish of the day: Microsoft OAuth scams abuse redirects for malware delivery

Mar 3, 2026 5:47 AM

Tags: access, malicious, malware, microsoft, phishing, scam

Crims hope for payday from malicious payloads rather than stealing access tokens First seen on theregister.com Jump to article: www.theregister.com/2026/03/03/microsoft_oauth_scams/
MCP Servers and the Return of the Service Account Problem

Mar 3, 2026 12:46 AM

Tags: access, infrastructure, service

3 min readAcross large enterprises, MCP servers are quietly assuming a role security teams know all too well from previous eras of IT infrastructure development. Like the service account before them, they typically operate as persistent access brokers with broad privileges, shared across workflows, and gradually treated as background plumbing rather than as identities that…
MCP Servers and the Return of the Service Account Problem

Mar 3, 2026 12:46 AM

Tags: access, infrastructure, service

3 min readAcross large enterprises, MCP servers are quietly assuming a role security teams know all too well from previous eras of IT infrastructure development. Like the service account before them, they typically operate as persistent access brokers with broad privileges, shared across workflows, and gradually treated as background plumbing rather than as identities that…
University of Mississippi Medical Center reopens clinics after ransomware attack

Mar 2, 2026 6:47 PM

Tags: access, attack, ransomware

The academic medical center’s clinics can once again access patient records and are resuming normal operations more than a week after the attack. First seen on cybersecuritydive.com Jump to article: www.cybersecuritydive.com/news/university-mississippi-medical-center-ransomware-attack/813507/
New Chrome Vulnerability Let Malicious Extensions Escalate Privileges via Gemini Panel

Mar 2, 2026 6:47 PM

Tags: access, browser, chrome, cve, cybersecurity, flaw, google, malicious, vulnerability

Cybersecurity researchers have disclosed details of a now-patched security flaw in Google Chrome that could have permitted attackers to escalate privileges and gain access to local files on the system.The vulnerability, tracked as CVE-2026-0628 (CVSS score: 8.8), has been described as a case of insufficient policy enforcement in the WebView tag. It was patched by…
Dust Specter APT Targets Government Officials in Iraq

Mar 2, 2026 5:47 PM

Tags: access, ai, api, apt, attack, backdoor, browser, chrome, cisco, cloud, control, data, detection, encryption, google, government, group, infrastructure, iran, iraq, malicious, malware, monitoring, network, open-source, password, powershell, rat, service, social-engineering, software, threat, tool, update, windows

IntroductionIn January 2026, Zscaler ThreatLabz observed activity by a suspected Iran-nexus threat actor targeting government officials in Iraq. ThreatLabz discovered previously undocumented malware including SPLITDROP, TWINTASK, TWINTALK, and GHOSTFORM. Due to significant overlap in tools, techniques, and procedures (TTPs), as well as victimology, between this campaign and activity associated with Iran-nexus APT groups, ThreatLabz assesses with medium-to-high confidence that an…
Anthropic’s Claude hit by widespread service outage (updated)

Mar 2, 2026 5:47 PM

Tags: access, ai, service

Anthropic suffered widespread service disruptions Monday morning, leaving thousands of users unable to access its Claude AI platform. Most users reporting problems said they … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2026/03/02/anthropic-claude-service-disruptions-worldwide/
BYOVD Turns Trusted Drivers Against Windows Security

Mar 2, 2026 4:49 PM

Tags: access, exploit, vulnerability, windows

BYOVD lets attackers exploit signed but vulnerable Windows drivers to gain kernel-level access and disable security tools. First seen on esecurityplanet.com Jump to article: www.esecurityplanet.com/threats/byovd-turns-trusted-drivers-against-windows-security/
Anthropic’s Claude hit by widespread service outage

Mar 2, 2026 4:49 PM

Tags: access, ai, service

Anthropic suffered widespread service disruptions Monday morning, leaving thousands of users unable to access its Claude AI platform. Most users reporting problems said they … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2026/03/02/anthropic-claude-service-disruptions-worldwide/
âš¡ Weekly Recap: SD-WAN 0-Day, Critical CVEs, Telegram Probe, Smart TV Proxy SDK and More

Mar 2, 2026 3:47 PM

Tags: access, ai, cloud, control, cve, data-breach, network, service, tool, zero-day

This week is not about one big event. It shows where things are moving. Network systems, cloud setups, AI tools, and common apps are all being pushed in different ways. Small gaps in access control, exposed keys, and normal features are being used as entry points.The pattern becomes clear only when you see everything together.…
Bug in Google’s Gemini AI Panel Opens Door to Hijacking

Mar 2, 2026 2:47 PM

Tags: access, ai, exploit, google, privacy, vulnerability

Attackers could have exploited the vulnerability to escalate privileges, violate user privacy while browsing, and access sensitive resources. First seen on darkreading.com Jump to article: www.darkreading.com/endpoint-security/bug-google-gemini-ai-panel-hijacking
Bug in Google’s Gemini AI Panel Opens Door to Hijacking

Mar 2, 2026 2:47 PM

Tags: access, ai, exploit, google, privacy, vulnerability

Attackers could have exploited the vulnerability to escalate privileges, violate user privacy while browsing, and access sensitive resources. First seen on darkreading.com Jump to article: www.darkreading.com/endpoint-security/bug-google-gemini-ai-panel-hijacking
Bug in Google’s Gemini AI Panel Opens Door to Hijacking

Mar 2, 2026 2:47 PM

Tags: access, ai, exploit, google, privacy, vulnerability

Attackers could have exploited the vulnerability to escalate privileges, violate user privacy while browsing, and access sensitive resources. First seen on darkreading.com Jump to article: www.darkreading.com/endpoint-security/bug-google-gemini-ai-panel-hijacking
Cyberattack briefly disrupts Russian internet regulator and defense ministry websites

Mar 2, 2026 12:47 PM

Tags: access, attack, cyberattack, ddos, defense, government, Internet, russia

Russia’s internet regulator and defense ministry said their servers were hit by a large DDoS attack that briefly disrupted access to several government websites late last week. First seen on therecord.media Jump to article: therecord.media/cyberattack-briefly-takes-down-russian-government-websites
A scorecard for cyber and risk culture

Mar 2, 2026 11:47 AM

Tags: access, automation, awareness, breach, business, compliance, control, credentials, cyber, finance, governance, identity, jobs, metric, mitigation, phishing, risk, service, strategy, tool, training

When someone asks for an exception.When a change goes in late.When an alert fires at 2 a.m.When a junior analyst spots something odd and wonders if it’s worth escalating.When an executive wants speed, and the team wants safety. Ownership means people act like the risk is partly theirs. They don’t outsource judgment to “security.” They…
Definition: Initial Access Broker | IAB – Was macht ein Initial Access Broker?

Mar 2, 2026 10:47 AM

Tags: access

First seen on security-insider.de Jump to article: www.security-insider.de/was-ist-ein-initial-access-broker-a-b6b7859e2f6498af06639819b220bc3b/
Middle East AWS Outage Sends Shockwaves Through Cloud Infrastructure Service

Mar 2, 2026 8:46 AM

Tags: access, cloud, cyber, data, infrastructure, middle-east, service

A severe infrastructure incident in the Middle East has triggered a massive Amazon Web Services (AWS) outage, disrupting critical cloud operations across the region. The event, which aggressively impacted the ME-CENTRAL-1 (United Arab Emirates) and ME-SOUTH-1 (Bahrain) regions, left countless organizations unable to access essential compute, networking, and storage resources. Physical Damage Sparks Data Center…
Zero Networks liefert NIS2Leitfaden mit Checkliste

Feb 28, 2026 2:36 PM

Tags: access, compliance, mfa, network, nis-2

Automatisierte, identitätsbasierte Mikrosegmentierung verhindert laterale Bewegungen in großem Maßstab. MFA auf Netzwerkebene erzwingt privilegierten Zugriff für alle Systeme, einschließlich Legacy-Umgebungen. First seen on infopoint-security.de Jump to article: www.infopoint-security.de/zero-networks-liefert-nis2-compliance-leitfaden-mit-checkliste/a43870/
Iran ‘s Internet near-totally blacked out amid US, Israeli strikes

Feb 28, 2026 1:36 PM

Tags: access, country, data, Internet, iran, network

Iran experienced a near-total internet blackout as Israel and the U.S. launched strikes, according to NetBlocks. Internet access across Iran was drastically reduced on Saturday as Israel and the United States carried out strikes against the country, according to independent and non-partisan global internet monitor NetBlocks. Network data indicated a near-total nationwide blackout. The national…
Thousands of Public Google Cloud API Keys Exposed with Gemini Access After API Enablement

Feb 28, 2026 12:36 PM

Tags: access, api, cloud, data-breach, endpoint, google, service

New research has found that Google Cloud API keys, typically designated as project identifiers for billing purposes, could be abused to authenticate to sensitive Gemini endpoints and access private data.The findings come from Truffle Security, which discovered nearly 3,000 Google API keys (identified by the prefix “AIza”) embedded in client-side code to provide Google-related services…
Microsoft warns of RAT delivered through trojanized gaming utilities

Feb 28, 2026 10:37 AM

Tags: access, microsoft, powershell, rat, threat, tool

Attackers spread trojanized gaming tools to deliver a stealthy RAT using PowerShell, LOLBins, and Defender evasion tactics. Threat actors are tricking users into running trojanized gaming utilities shared through browsers and chat platforms to deploy a remote access trojan. >>Microsoft Defender researchers uncovered a campaign that lured users into running trojanized gaming utilities (Xeno.exe or…
Hackers Exploit Windows File Explorer and WebDAV to Distribute Malware

Feb 28, 2026 10:37 AM

Tags: access, control, cyber, cybersecurity, detection, endpoint, exploit, hacker, intelligence, malware, threat, windows

Cybersecurity researchers at Cofense Intelligence have uncovered an ongoing campaign where threat actors abuse Windows File Explorer to distribute malware. By exploiting the legacy WebDAV protocol, attackers are tricking victims into downloading Remote Access Trojans (RATs) while bypassing traditional web browser security controls and some Endpoint Detection and Response (EDR) systems.”‹ WebDAV Exploit WebDAV (Web-based…
India disrupts access to popular developer platform Supabase with blocking order

Feb 28, 2026 5:36 AM

Tags: access, government, india

India, one of Supabase’s biggest markets, is seeing patchy access after a government block order. First seen on techcrunch.com Jump to article: techcrunch.com/2026/02/27/india-disrupts-access-to-popular-developer-platform-supabase-with-blocking-order/
Security hole could let hackers take over Juniper Networks PTX core routers

Feb 27, 2026 11:38 PM

Tags: access, ai, ceo, control, data, data-breach, defense, detection, exploit, firewall, flaw, framework, hacker, identity, malicious, mobile, network, risk, router, service, update, vulnerability

The hole is “especially dangerous, because these devices often sit in the middle of the network, not on the fringes,” said Piyush Sharma, CEO of Tuskira. “If an attacker gains control of a PTX, the impact is bigger than a single device compromise because it can become a traffic vantage point and a control point…
NDSS 2025 CASPR: Context-Aware Security Policy Recommendation

Feb 27, 2026 10:36 PM

Tags: access, china, conference, control, Internet, network, software

Session 14A: Software Security: Applications & Policies Authors, Creators & Presenters: All From The Institute of Information Engineering, Chinese Academy of Sciences: Lifang Xiao, Hanyu Wang, Aimin Yu, Lixin Zhao, Dan Meng PAPER CASPR: Context-Aware Security Policy Recommendation Nowadays, SELinux has been widely used to provide flexible mandatory access control and security policies are critical…