Tag: threat
-
Healthcare organizations are accepting cyber risk to cut costs
Healthcare organizations are cutting cybersecurity budgets under financial pressure even as the threats targeting their systems intensify. A PwC survey of 381 global … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2026/03/03/pwc-healthcare-cybersecurity-threats-2026/
-
Cyberattackers Exploit OpenVSX Aqua Trivy with Malicious AI Prompts to Hijack Coding Tools
Threat actors compromised the Aqua Trivy VS Code extension on OpenVSX by publishing malicious versions 1.8.12 and 1.8.13 on February 27-28, 2026. These versions injected prompts to hijack local AI coding tools for system reconnaissance and data exfiltration. Aqua Trivy is a popular open-source vulnerability scanner with a VS Code extension, hosted on OpenVSX under…
-
AuraStealer Infostealer Targeting Users with 48 C2 Domains in Ongoing Campaigns
Threat actors are actively deploying a new infostealer dubbed “AuraStealer,” backed by a growing customer base, 48 identified command”‘and”‘control (C2) domains, and multiple ongoing campaigns abusing popular platforms like TikTok and cracked”‘software sites. AuraStealer emerged on Russian”‘language cybercrime forums in mid”‘2025, positioning itself as a successor and competitor to LummaC2 in the wake of Lumma’s…
-
CyberStrikeAI tool adopted by hackers for AI-powered attacks
Researchers warn that a newly identified open-source AI security testing platform called CyberStrikeAI was used by the same threat actor behind a recent campaign that breached hundreds of Fortinet FortiGate firewalls. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/cyberstrikeai-tool-adopted-by-hackers-for-ai-powered-attacks/
-
How safe are Non-Human Identities from cyber threats
Why Are Non-Human Identities Crucial in Combating Cyber Threats? Have you ever considered the importance of Non-Human Identities (NHIs)? Protecting these machine identities has become as critical as safeguarding human credentials, particularly with the rise of automation and cloud computing. NHIs serve as the backbone of authentication processes in various industries, including financial services, healthcare,……
-
How does AI contribute to cybersecurity stability
Is AI the Key to Cybersecurity Stability? Where digital threats are becoming increasingly sophisticated, one might ask: can artificial intelligence be the linchpin in fortifying our defenses and achieving cybersecurity stability? With industries like financial services, healthcare, travel, and technology double down on using innovative systems, including DevOps and security operations centers (SOC), it becomes……
-
Middle east crisis prompts UK NCSC warning on potential Iranian cyber activity
UK’s NCSC warns of potential Iranian cyberattacks as Middle East tensions rise, urging vigilance from exposed organizations. The UK’s National Cyber Security Centre (NCSC) has warned organizations of a potential increase in Iranian cyber threats amid the escalating Middle East conflict. While it sees no immediate shift in the direct threat to Britain, officials stress…
-
The FBI’s cyber chief is using Winter SHIELD to accelerate China prep, threat intelligence sharing
Brett Leatherman is running the bureau’s most public cyber campaign yet, pushing basic security hygiene while quietly preparing industry for stepped-up Chinese threats. First seen on cyberscoop.com Jump to article: cyberscoop.com/brett-leatherman-fbi-cyber-priorities-winter-shield/
-
NCSC: No increase in cyber threat from Iran, but be prepared
While cyber threat levels remain stable following the outbreak of war in the Middle East at the weekend, at-risk organisations in the UK should take steps now to ward off potential reprisals from Iran-linked threat actors. First seen on computerweekly.com Jump to article: www.computerweekly.com/news/366639713/NCSC-No-increase-in-cyber-threat-from-Iran-but-be-prepared
-
SANDWORM_MODE: The Rise of Adaptive Supply Chain Worms
<div cla Earlier this year, we asked our team where they expect open source cyberattacks to go next. Sonatype Principal Security Researcher Garrett Calpouzos shared his thoughts about how he anticipated attackers won’t simply use automation, but also abuse victims’ AI tools: First seen on securityboulevard.com Jump to article: securityboulevard.com/2026/03/sandworm_mode-the-rise-of-adaptive-supply-chain-worms/
-
SANDWORM_MODE: The Rise of Adaptive Supply Chain Worms
<div cla Earlier this year, we asked our team where they expect open source cyberattacks to go next. Sonatype Principal Security Researcher Garrett Calpouzos shared his thoughts about how he anticipated attackers won’t simply use automation, but also abuse victims’ AI tools: First seen on securityboulevard.com Jump to article: securityboulevard.com/2026/03/sandworm_mode-the-rise-of-adaptive-supply-chain-worms-2/
-
When Trusted Authentication Enables Privilege Escalation
Active Directory remains the backbone of enterprise identity. Despite years of modernization efforts, many organizations still rely on legacy authentication protocols that were never designed for today’s threat landscape. New reporting from Dark Reading highlights how attackers continue to abuse NTLM and Kerberos within Microsoft Active Directory environments to escalate privileges, move laterally, and maintain…
-
North Korean Hackers Target Developers Through npm Packages
Open-source ecosystems power modern software development. Millions of developers rely on public repositories to accelerate innovation and reduce development time. That trust, however, is increasingly being weaponized. New reporting from The Hacker News reveals that North Korean threat actors have published 26 malicious packages to the npm registry in an attempt to compromise developer environments…
-
Vulnerability monitoring service secures public-sector websites faster
Tags: business, ceo, cyber, dns, government, Internet, monitoring, office, resilience, risk, service, skills, technology, threat, tool, update, vulnerabilityTools good, talk better: The UK government’s VMS uses a combination of commercial and proprietary scanning tools to detect vulnerabilities in internet-facing assets.But McKay cautions against drawing the wrong conclusion from the results.”Process, accountability and taking ownership for explaining why this matters to the resilience of the business is far more important than the technical…
-
Iran-linked hackers raise threat level against US, allies
Security researchers warn that hacktivists and state-linked groups are using DDoS, phishing and other tactics against critical infrastructure. First seen on cybersecuritydive.com Jump to article: www.cybersecuritydive.com/news/iran-hackers-threat-level-us-allies/813494/
-
2nd March Threat Intelligence Report
Wynn Resorts, a United States-based casino and hotel operator, has confirmed that employee data was accessed following an extortion threat linked to ShinyHunters. The company said operations were not disrupted. Reports indicate […] First seen on research.checkpoint.com Jump to article: research.checkpoint.com/2026/2nd-march-threat-intelligence-report/
-
Scalable Security for Small and Large Enterprises
Building Adaptive Cyber Defense That Grows with Your Business The Scalability Imperative in Modern Cybersecurity Digital transformation has redefined how organizations operate. Cloud adoption, hybrid work models, SaaS platforms, and connected ecosystems have expanded the attack surface across businesses of every size. What differs is not the type of threats faced but the scale First…
-
Expect Iran to Launch Cyber-Attacks Globally, Warns Google Head of Threat Intel
John Hultquist suggests “aggressive” Iranian cyber attackers will target the US and its Gulf allies with plausibly deniable ransomware attacks, hacktivist campaigns and more First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/iran-cyber-attacks-global-google/
-
Criminal IP to Present Decision-Ready Threat Intelligence at RSAC 2026
Torrance, United States / California, 2nd March 2026, CyberNewswire First seen on hackread.com Jump to article: hackread.com/criminal-ip-to-present-decision-ready-threat-intelligence-at-rsac-2026/
-
Link11 Releases European Cyber Report 2026: DDoS Attacks Become a Constant Threat
Frankfurt am Main, Germany, March 2nd, 2026, CyberNewswire Link11 has published its European Cyber Report 2026, revealing that DDoS attacks reached a new level in 2025 and have become a permanent stress factor for digital infrastructures. The report shows that the number of documented attacks in the Link11 network rose by 75% in 2025, following…
-
MSHTML Zero-Day in Windows Exploited by APT28 Prior to Feb 2026 Security Update
Microsoft released its Patch Tuesday updates, addressing 59 vulnerabilities, including a critical zero-day flaw in the Windows MSHTML framework. Tracked as CVE-2026-21513, this actively exploited vulnerability allows attackers to bypass security features and execute arbitrary code. APT28 is a well-documented advanced persistent threat group known for sophisticated malware campaigns. Security researchers from Akamai discovered that…
-
British organizations urged to be alert to threat of Iranian cyberattacks
In an advisory, the U.K.’s National Cyber Security Centre warned British organizations to review and strengthen their cyber defenses amid the evolving situation in Iran and throughout the Middle East. First seen on therecord.media Jump to article: therecord.media/iran-britain-cyber-threats-warning
-
Link11 Releases European Cyber Report 2026: DDoS Attacks Become a Constant Threat
Frankfurt am Main, Germany, 2nd March 2026, CyberNewswire First seen on securityboulevard.com Jump to article: securityboulevard.com/2026/03/link11-releases-european-cyber-report-2026-ddos-attacks-become-a-constant-threat/
-
Link11 Releases European Cyber Report 2026: DDoS Attacks Become a Constant Threat
Frankfurt am Main, Germany, 2nd March 2026, CyberNewswire First seen on hackread.com Jump to article: hackread.com/link11-releases-european-cyber-report-2026-ddos-attacks-become-a-constant-threat/
-
North Korean Hackers Publish 26 npm Packages Hiding Pastebin C2 for Cross-Platform RAT
Cybersecurity researchers have disclosed a new iteration of the ongoing Contagious Interview campaign, where the North Korean threat actors have published a set of 26 malicious packages to the npm registry.The packages masquerade as developer tools, but contain functionality to extract the actual command-and-control (C2) by using seemingly harmless Pastebin content as a dead drop…
-
How CISOs can build a resilient workforce
Tags: ai, automation, ciso, communications, cyber, cybersecurity, data, infrastructure, jobs, monitoring, network, risk, service, skills, soc, software, strategy, technology, threat, tool, trainingBurnout leads to job dissatisfaction: Burnout is an ongoing concern for many CISOs and their teams, especially when unpredictable events can trigger workload spikes, burnout can escalate fast. “It’s something that can overwhelm pretty quickly,” Ford says.Industry surveys continue to flash red on persistent burnout that leads to job dissatisfaction. The ISC2 study found almost…
-
When cyber threats start thinking for themselves
In this Help Net Security video, Jason Rivera, Field CISO Head of Solution Engineering at SimSpace, discusses how autonomous AI agents are changing cyber threats. … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2026/03/02/autonomous-cyber-threats-video/