Collecting Cyber-News from over 60 sources

Tag: update

Innovation without exposure: A CISO’s secure-by-design framework for business outcomes

Mar 2, 2026 1:47 PM

Tags: ai, authentication, awareness, business, chatgpt, cisa, ciso, cloud, control, cyber, cybersecurity, data, detection, firmware, framework, fraud, governance, identity, injection, iot, law, leak, LLM, metric, mitre, network, nist, offense, radius, RedTeam, resilience, risk, risk-management, service, social-engineering, threat, tool, unauthorized, update

A detection engineer owning “detection as code” patterns and test harnessesA threat hunter owning telemetry quality improvements and query optimizationAn incident responder owning tabletop iterations and runbook hardeningA cloud security lead owning guardrailed landing zone enhancementsThe critical constraint is this: every experiment needs an exit plan. Either it becomes a supported capability, or it is…
OneUptime Command Injection Vulnerability Poses Major Risk of Full System Takeover

Mar 2, 2026 1:47 PM

Tags: cve, cyber, flaw, injection, monitoring, risk, update, vulnerability

A critical command injection vulnerability, identified as CVE-2026-27728, has been discovered in OneUptime, a platform for monitoring and managing online services. This flaw allows authenticated users to execute arbitrary operating system commands on the Probe server, posing a significant risk of a full system takeover. Organizations using versions prior to 10.0.7 are urged to patch…
ClawJacked flaw exposed OpenClaw users to data theft

Mar 2, 2026 12:47 PM

Tags: ai, control, data, data-breach, flaw, malicious, theft, update, vulnerability

“ClawJacked” flaw let malicious sites hijack OpenClaw AI agents to steal data; patch released in version 2026.2.26. A high-severity vulnerability called ClawJacked in OpenClaw allowed malicious websites to brute-force and take control of local AI agent instances. Oasis Security discovered the flaw, which enabled silent data theft. OpenClaw addressed the issue with version 2026.2.26, released…
ClawJacked flaw exposed OpenClaw users to data theft

Mar 2, 2026 12:47 PM

Tags: ai, control, data, data-breach, flaw, malicious, theft, update, vulnerability

“ClawJacked” flaw let malicious sites hijack OpenClaw AI agents to steal data; patch released in version 2026.2.26. A high-severity vulnerability called ClawJacked in OpenClaw allowed malicious websites to brute-force and take control of local AI agent instances. Oasis Security discovered the flaw, which enabled silent data theft. OpenClaw addressed the issue with version 2026.2.26, released…
APT28 Tied to CVE-2026-21513 MSHTML 0-Day Exploited Before Feb 2026 Patch Tuesday

Mar 2, 2026 12:47 PM

Tags: cve, exploit, flaw, framework, microsoft, russia, threat, unauthorized, update, vulnerability, zero-day

A recently disclosed security flaw patched by Microsoft may have been exploited by the Russia-linked state-sponsored threat actor known as APT28, according to new findings from Akamai.The vulnerability in question is CVE-2026-21513 (CVSS score: 8.8), a high-severity security feature bypass affecting the MSHTML Framework.”Protection mechanism failure in MSHTML Framework allows an unauthorized First seen on…
Security hole could let hackers take over Juniper Networks PTX core routers

Feb 27, 2026 11:38 PM

Tags: access, ai, ceo, control, data, data-breach, defense, detection, exploit, firewall, flaw, framework, hacker, identity, malicious, mobile, network, risk, router, service, update, vulnerability

The hole is “especially dangerous, because these devices often sit in the middle of the network, not on the fringes,” said Piyush Sharma, CEO of Tuskira. “If an attacker gains control of a PTX, the impact is bigger than a single device compromise because it can become a traffic vantage point and a control point…
Samsung updates ACR privacy practices after Texas sues TV manufacturers

Feb 27, 2026 7:37 PM

Tags: data, privacy, technology, update

In December, Texas sued five major smart TV manufacturers, Samsung, Sony, LG, Hisense and TCL Technology, for allegedly collecting ACR data without consumers in the state being fully informed and consenting. First seen on therecord.media Jump to article: therecord.media/samsung-updates-acr-privacy-practices-texas
NDSS 2025 Enhancing Security In Third-Party Library Reuse

Feb 27, 2026 6:37 PM

Tags: conference, detection, Internet, network, open-source, programming, software, tool, update, vulnerability

Session 14A: Software Security: Applications & Policies Authors, Creators & Presenters: Shangzhi Xu (The University of New South Wales), Jialiang Dong (The University of New South Wales), Weiting Cai (Delft University of Technology), Juanru Li (Feiyu Tech), Arash Shaghaghi (The University of New South Wales), Nan Sun (The University of New South Wales), Siqi Ma…
Third-Party Patching and the Business Footprint We All Share

Feb 27, 2026 4:37 PM

Tags: attack, business, email, exploit, risk, software, tool, update

Everyday tools like PDF readers, email clients, and archive utilities quietly define the real attack surface. Action1 explains how third-party software drift increases exploit risk and why consistent patching reduces exposure across endpoints. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/third-party-patching-and-the-business-footprint-we-all-share/
Juniper issues emergency patch for critical PTX router RCE

Feb 27, 2026 2:37 PM

Tags: cve, flaw, network, rce, remote-code-execution, router, update, vulnerability

Juniper released an emergency patch for Junos OS Evolved to fix CVE-2026-21902, a critical RCE flaw affecting PTX routers. Juniper Networks issued an out-of-band security update for Junos OS Evolved to address a critical remote code execution vulnerability, tracked as CVE-2026-21902 (CVSS score of 9.3), impacting PTX routers. The company urges customers to apply the…
Your personal OpenClaw agent may also be taking orders from malicious websites

Feb 27, 2026 1:37 PM

Tags: access, ai, api, attack, authentication, credentials, identity, malicious, monitoring, radius, software, update, vulnerability

A larger blast radius: Unlike regular software vulnerabilities, compromised AI agents have a bigger blast radius as they hold sensitive API keys, session tokens, file system access, and the authority to execute tasks across enterprise tools.Barr emphasized that autonomous systems “aggregate identity, credentials, and workflow authority,” meaning a failure doesn’t occur quietly. Instead, the agent…
Android 17 second beta expands privacy controls for contacts, SMS and local networks

Feb 27, 2026 1:37 PM

Tags: android, api, control, google, network, privacy, update

Google’s second beta of Android 17 continues updates to platform behavior and introduces new APIs focused on protecting sensitive data. Protecting contact and local network … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2026/02/27/android-17-beta-privacy-updates/
How to make LLMs a defensive advantage without creating a new attack surface

Feb 27, 2026 12:37 PM

Tags: access, ai, api, attack, authentication, best-practice, business, control, credentials, cyber, cybersecurity, data, email, exploit, framework, fraud, governance, group, identity, infrastructure, injection, intelligence, international, LLM, login, malware, mitre, nist, phishing, radius, RedTeam, risk, risk-management, scam, spear-phishing, switch, technology, threat, tool, training, unauthorized, update, vulnerability

Alert triage summaries that turn raw telemetry into a short “what happened, why it matters and what I should check next” narrativeInvestigation copilots that generate a timeline from logs, tickets and chat transcripts, then highlight gaps and recommended pivotsDetection engineering assistance for drafting Sigma, YARA or query language snippets that an engineer can review and…
Critical Trend Micro Apex One Vulnerabilities Allow Remote Malicious Code Execution

Feb 27, 2026 11:37 AM

Tags: cyber, endpoint, flaw, malicious, update, vulnerability, windows

Trend Micro has disclosed eight security vulnerabilities in its Apex One endpoint protection platform, including two critical-severity flaws that allow unauthenticated remote attackers to upload malicious code and execute commands on affected systems. The company released a Critical Patch on February 24, 2026, under Solution ID KA-0022458, covering Apex One 2019 (on-premises) on Windows and…
Critical Trend Micro Apex One Vulnerabilities Allow Remote Malicious Code Execution

Feb 27, 2026 11:37 AM

Tags: cyber, endpoint, flaw, malicious, update, vulnerability, windows

Trend Micro has disclosed eight security vulnerabilities in its Apex One endpoint protection platform, including two critical-severity flaws that allow unauthenticated remote attackers to upload malicious code and execute commands on affected systems. The company released a Critical Patch on February 24, 2026, under Solution ID KA-0022458, covering Apex One 2019 (on-premises) on Windows and…
Microsoft Defender Enhances Security with URL Click Alerts for Microsoft Teams

Feb 27, 2026 8:37 AM

Tags: cyber, detection, email, malicious, microsoft, monitoring, office, threat, update

Microsoft is expanding its threat detection capabilities by extending Microsoft Defender for Office 365 (MDO) URL click alerting into Microsoft Teams. This critical update allows security teams to detect, investigate, and respond to potentially malicious link clicks within Teams messages, expanding threat monitoring beyond traditional email vectors. By surfacing these alerts, organizations can identify threats…
Trend Micro fixes two critical flaws in Apex One

Feb 27, 2026 12:37 AM

Tags: flaw, remote-code-execution, update, vulnerability, windows

Trend Micro fixed two critical Apex One flaws enabling remote code execution on vulnerable Windows systems and urged immediate updates. Trend Micro has addressed two critical vulnerabilities in Apex One that could allow attackers to achieve remote code execution on affected Windows systems. The company released security updates and strongly urged customers to apply the…
NDSS 2025 Retrofitting XoM For Stripped Binaries Without Embedded Data Relocation

Feb 26, 2026 10:37 PM

Tags: attack, conference, control, data, Hardware, Internet, network, programming, software, threat, update, vulnerability

Session 13D: Software Security: Code and Compiler Authors, Creators & Presenters: Chenke Luo (Wuhan University), Jiang Ming (Tulane University), Mengfei Xie (Wuhan University), Guojun Peng (Wuhan University), Jianming Fu (Wuhan University) PAPER Retrofitting XoM For Stripped Binaries Without Embedded Data Relocation System programs are frequently coded in memory-unsafe languages such as C/C++, rendering them susceptible…
APT37 Adds New Capabilities for Air-Gapped Networks

Feb 26, 2026 5:37 PM

Tags: access, android, api, attack, authentication, backdoor, cloud, communications, computer, credentials, data, detection, endpoint, google, government, group, Hardware, infection, infrastructure, injection, Internet, malicious, malware, microsoft, monitoring, network, north-korea, powershell, service, social-engineering, threat, tool, update, windows

IntroductionIn December 2025, Zscaler ThreatLabz discovered a campaign linked to APT37 (also known as ScarCruft, Ruby Sleet, and Velvet Chollima), which is a DPRK-backed threat group. In this campaign, tracked as Ruby Jumper by ThreatLabz, APT37 uses Windows shortcut (LNK) files to initiate an attack that utilizes a set of newly discovered tools. These tools, RESTLEAF, SNAKEDROPPER, THUMBSBD, and VIRUSTASK,…
APT37 Adds New Capabilities for Air-Gapped Networks

Feb 26, 2026 5:37 PM

Tags: access, android, api, attack, authentication, backdoor, cloud, communications, computer, credentials, data, detection, endpoint, google, government, group, Hardware, infection, infrastructure, injection, Internet, malicious, malware, microsoft, monitoring, network, north-korea, powershell, service, social-engineering, threat, tool, update, windows

IntroductionIn December 2025, Zscaler ThreatLabz discovered a campaign linked to APT37 (also known as ScarCruft, Ruby Sleet, and Velvet Chollima), which is a DPRK-backed threat group. In this campaign, tracked as Ruby Jumper by ThreatLabz, APT37 uses Windows shortcut (LNK) files to initiate an attack that utilizes a set of newly discovered tools. These tools, RESTLEAF, SNAKEDROPPER, THUMBSBD, and VIRUSTASK,…
Accelerate Secure Releases With Microsoft Copilot and Sonatype Guide

Feb 26, 2026 3:36 PM

Tags: ai, guide, microsoft, software, update

<div cla AI coding assistants, such as Microsoft Copilot, are fundamentally transforming the process of software development. Developers can generate scaffolding, draft functions, update dependencies, and even build full applications in seconds. The speed is real, and so is the productivity boost. First seen on securityboulevard.com Jump to article: securityboulevard.com/2026/02/accelerate-secure-releases-with-microsoft-copilot-and-sonatype-guide/
Accelerate Secure Releases With Microsoft Copilot and Sonatype Guide

Feb 26, 2026 3:36 PM

Tags: ai, guide, microsoft, software, update

<div cla AI coding assistants, such as Microsoft Copilot, are fundamentally transforming the process of software development. Developers can generate scaffolding, draft functions, update dependencies, and even build full applications in seconds. The speed is real, and so is the productivity boost. First seen on securityboulevard.com Jump to article: securityboulevard.com/2026/02/accelerate-secure-releases-with-microsoft-copilot-and-sonatype-guide/
Fraudsters integrate ChatGPT into global scam campaigns

Feb 26, 2026 3:36 PM

Tags: ai, chatgpt, fraud, malicious, openai, scam, update

AI models are being folded into fraud and influence operations that follow long standing tactics. A February 2026 update to OpenAI’s Disrupting Malicious Uses of Our Models … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2026/02/26/openai-malicious-chatgpt-use-report/
Zoom Update Scam Infects 1,437 Users in 12 Days to Deploy Surveillance Tools

Feb 26, 2026 2:40 PM

Tags: cyber, exploit, malicious, scam, tool, update, windows

A dangerous new scam is targeting Zoom users by exploiting their trust in video meeting invites. Over just twelve days, 1,437 Windows users unknowingly installed a malicious version of the Teramind monitoring agent after visiting a fake Zoom meeting page designed to trigger silent downloads. The operation starts at uswebzoomus[.]com/zoom/ a domain mimicking Zoom’s legitimate interface. When opened, it displays…
Wireshark 4.6.4 Released to Patch Multiple Security Vulnerabilities

Feb 26, 2026 2:40 PM

Tags: cyber, network, risk, update, vulnerability

Wireshark has released version 4.6.4, delivering security and stability fixes that address several denial”‘of”‘service risks and multiple crashes in protocol dissectors and tools. The update is recommended for all users, especially analysts working with untrusted capture files or live traffic from diverse protocols and devices. Wireshark is a widely used network protocol analyzer that helps…
Optionales Februar-Update für Windows 11 Update – – Speed-Test in der Taskleiste ist eine Browser-Weiterleitung

Feb 26, 2026 1:44 PM

Tags: data, microsoft, update, windows

Microsoft verteilt das optionale Februar-Update für Windows 11. Zu den Neuerungen zählt eine Speed-Test-Weiterleitung. First seen on computerbase.de Jump to article: www.computerbase.de/news/betriebssysteme/optionales-februar-update-fuer-windows-11-speed-test-in-der-taskleiste-ist-eine-browser-weiterleitung.96299
Five Eyes warn: Patch your Cisco SD-WAN or risk root takeover

Feb 26, 2026 1:44 PM

Tags: business, cisco, risk, spy, update

A rare joint alert from all five spy agencies means serious business First seen on theregister.com Jump to article: www.theregister.com/2026/02/26/five_eyes_cisco_sdwan/
Global Cyber Agencies Urge Immediate Patching of Cisco SD-WAN Zero Day

Feb 26, 2026 11:36 AM

Tags: cisco, cyber, exploit, update, zero-day

The US and allies are urging Cisco Catalyst SD-WAN customers to hunt for signs of exploitation First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/immediate-patch-cisco-catalyst/
Sicherheitslücke: Hacker infiltrieren über Cisco-Systeme seit Jahren Netzwerke

Feb 26, 2026 11:36 AM

Tags: bug, cisco, hacker, update

Eine Hackergruppe dringt seit 2023 über eine Sicherheitslücke in Cisco-Systemen in Netzwerkinfrastrukturen ein. Einen Patch gibt es erst jetzt. First seen on golem.de Jump to article: www.golem.de/news/seit-2023-hacker-kapern-cisco-systeme-ueber-kritische-zero-day-luecke-2602-205855.html
Zero-Day-Lücke: Hacker infiltrieren seit Jahren Netzwerke über Cisco-Lücke

Feb 26, 2026 10:37 AM

Tags: bug, cisco, hacker, update, zero-day

Eine Hackergruppe dringt seit 2023 über eine Sicherheitslücke in Cisco-Systemen in Netzwerkinfrastrukturen ein. Einen Patch gibt es erst jetzt. First seen on golem.de Jump to article: www.golem.de/news/seit-2023-hacker-kapern-cisco-systeme-ueber-kritische-zero-day-luecke-2602-205855.html