Tag: vulnerability

Software vulnerabilities push credential abuse aside in cloud intrusions

Mar 11, 2026 6:48 AM

Tags: access, cloud, credentials, software, vulnerability

Cloud intrusions are unfolding on shorter timelines, with attackers leaning more on unpatched software and compromised identities. H2 2025 distribution of initial access … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2026/03/11/google-cloud-environments-cyber-threats-report/
Fortinet FortiManager fgtupdates Flaw Enables Attackers to Execute Malicious Commands Remotely

Mar 11, 2026 6:48 AM

Tags: cve, cvss, cyber, flaw, fortinet, malicious, network, unauthorized, vulnerability

Fortinet has issued a security alert regarding a high-severity vulnerability affecting its FortiManager platform. Tracked as CVE-2025-54820 and carrying a CVSS score of 7.0, this flaw allows remote, unauthenticated attackers to execute unauthorized commands. Because FortiManager is designed to centrally manage multiple Fortinet security devices, securing these systems is critical to maintaining a strong network…
Microsoft SQL Server Zero-Day Exposes Privilege Escalation Risk for Users

Mar 11, 2026 6:48 AM

Tags: control, cve, cvss, cyber, flaw, malicious, microsoft, risk, sql, unauthorized, vulnerability, zero-day

Microsoft has disclosed a critical security flaw affecting SQL Server, officially tracked as CVE-2026-21262. Released on March 10, 2026, this elevation of privilege vulnerability exposes organizations to significant risks by allowing malicious actors to gain unauthorized control over enterprise database environments. With a maximum severity rating of >>Important<< and a CVSS 3.1 score of 8.8,…
Microsoft Patch Tuesday, March 2026 Edition

Mar 11, 2026 5:48 AM

Tags: flaw, microsoft, update, vulnerability, windows, zero-day

Microsoft Corp. today pushed security updates to fix at least 77 vulnerabilities in its Windows operating systems and other software. There are no pressing “zero-day” flaws this month (compared to February’s five zero-day treat), but as usual some patches may deserve more rapid attention from organizations using Windows. Here are a few highlights from this…
Jack & Jill went up the hill, and an AI tried to hack them

Mar 11, 2026 5:48 AM

Tags: access, ai, attack, authentication, data, email, endpoint, exploit, hacking, injection, jobs, phishing, RedTeam, service, social-engineering, strategy, tool, vulnerability

get_or_create_company” endpoint that determines from a user’s email domain whether it should create a new company on the platform or associate them with an existing company to auto-join CodeWall’s account. Thanks to the bug that failed to check user roles when onboarding, it then obtained full org admin privileges and was able to access team…
Jack & Jill went up the hill, and an AI tried to hack them

Mar 11, 2026 5:48 AM

Tags: access, ai, attack, authentication, data, email, endpoint, exploit, hacking, injection, jobs, phishing, RedTeam, service, social-engineering, strategy, tool, vulnerability

get_or_create_company” endpoint that determines from a user’s email domain whether it should create a new company on the platform or associate them with an existing company to auto-join CodeWall’s account. Thanks to the bug that failed to check user roles when onboarding, it then obtained full org admin privileges and was able to access team…
March Patch Tuesday: Three high severity holes in Microsoft Office

Mar 11, 2026 1:48 AM

Tags: ai, apache, backup, browser, chrome, cloud, credentials, cve, cvss, cyber, email, endpoint, exploit, google, incident, incident response, injection, insurance, iot, linux, macOS, malicious, microsoft, network, office, sap, soc, sql, tool, update, vulnerability, windows

aadsshlogin package. Systems with the extension already installed have packages.microsoft.com configured automatically, so no additional setup is required.”The cloud ecosystem doesn’t really handle patching well,” Reguly said. “It’s a relatively immature process, and the way that Microsoft handles these products really demonstrates that. The CVE impacting Azure Linux Virtual Machines (CVE-2026-23665) or the multiple CVEs…
Microsoft Patch Tuesday security updates for March 2026 fixed 84 bugs

Mar 11, 2026 1:48 AM

Tags: exploit, flaw, microsoft, office, sql, update, vulnerability, windows

Microsoft Patch Tuesday security updates for March 2026 addressed 84 vulnerabilities in its products. None of the flaws are known to be exploited so far. Microsoft Patch Tuesday security updates for March 2026 addressed 84 vulnerabilities across its products. The IT giant addressed flaws across Windows, Office, Edge, Azure, SQL Server, Hyper-V, and ReFS. Including…
Microsoft Patch Tuesday for March 2026, Snort rules and prominent vulnerabilities

Mar 10, 2026 11:48 PM

Tags: microsoft, update, vulnerability

Microsoft has released its monthly security update for”¯March 2026 which includes 79 vulnerabilities, including three that Microsoft marked as “critical.” First seen on blog.talosintelligence.com Jump to article: blog.talosintelligence.com/microsoft-patch-tuesday-march-2026/
CISA Warns SolarWinds and Ivanti Vulnerabilities Are Actively Exploited

Mar 10, 2026 10:48 PM

Tags: cisa, cybersecurity, exploit, hacker, infrastructure, ivanti, update, vulnerability

Organizations often prioritize patching vulnerabilities based on severity scores, assuming that lower-rated issues pose limited risk. In practice, attackers frequently exploit vulnerabilities that remain unpatched in real environments, regardless of their official severity rating. New reporting from The Hacker News highlights that the Cybersecurity and Infrastructure Security Agency (CISA) has added multiple vulnerabilities affecting products…
Microsoft’s March 2026 Patch Tuesday Addresses 83 CVEs (CVE-2026-21262, CVE-2026-26127)

Mar 10, 2026 10:48 PM

Tags: access, ai, attack, authentication, best-practice, cve, cyber, data, dos, exploit, flaw, identity, infrastructure, iot, linux, microsoft, mobile, office, rce, remote-code-execution, service, sql, tool, update, vulnerability, windows

8Critical 75Important 0Moderate 0Low Microsoft addresses 83 CVEs including two vulnerabilities that were publicly disclosed prior to a patch being released. Microsoft patched 83 CVEs in its March 2026 Patch Tuesday release, with eight rated critical and 75 rated as important. Our counts omitted one CVE (CVE-2026-26030) assigned by GitHub. This month’s update includes patches…
Google Cloud Security Threat Horizons Report #13 (H1 2026) Is Out!

Mar 10, 2026 9:48 PM

Tags: access, ai, apt, attack, cloud, credentials, cybersecurity, data, email, exploit, extortion, google, incident response, injection, intelligence, LLM, metric, phishing, ransomware, rce, remote-code-execution, saas, service, social-engineering, software, theft, threat, vulnerability, zero-day

This is my completely informal, uncertified, unreviewed and otherwise completely unofficial blog inspired by my reading of our next Cloud Threat Horizons Report, #13 (full version, no info to enter!) that we just released (the official blog for #1 report, my unofficial blogs for #2, #3, #4, #5, #6, #7, #8, #9, #10, #11 and #12).…
Threat intelligence by ESET is a game changer

Mar 10, 2026 9:48 PM

Tags: ai, business, ciso, cybersecurity, data, detection, edr, exploit, identity, india, intelligence, phishing, service, social-engineering, threat, vulnerability, zero-day

The Advent of AI Ransomware detections in India surged by 70% between the second half of 2024 and the first half of 2025 as per ESET’s Telemetry. Phishing remains the most prevalent cyberthreat affecting Indian users, underscoring the ongoing need for vigilance and education around social engineering tactics.Attacks are increasing on edge systems and appliances as…
Microsoft’s monthly Patch Tuesday is first in 6 months with no actively exploited zero-days

Mar 10, 2026 9:48 PM

Tags: exploit, microsoft, update, vulnerability, zero-day

The vendor said six of the 83 vulnerabilities it addressed this month are more likely to be exploited. First seen on cyberscoop.com Jump to article: cyberscoop.com/microsoft-patch-tuesday-march-2026/
Attackers exploit FortiGate devices to access sensitive network information

Mar 10, 2026 9:48 PM

Tags: access, breach, corporate, credentials, data, exploit, network, service, vulnerability

Attackers are exploiting FortiGate devices to breach networks and steal configuration data containing service account credentials and network details. SentinelOne researchers warn that attackers are exploiting vulnerabilities or weak credentials in FortiGate devices to gain initial access to corporate networks. Once inside, they extract configuration files that may contain service account credentials and information about…
Salesforce Sounds Alarm Over Fresh Data Extortion Campaign

Mar 10, 2026 9:48 PM

Tags: access, cybercrime, data, exploit, extortion, google, ransom, service, tool, vulnerability

CRM-Obsessed ShinyHunters Gang Exploits Misconfigured Customer Experience Portals. A prolific and noisy cybercrime gang with a penchant for stealing Salesforce customers’ data and holding it ransom is taking advantage of misconfigured guest accounts meant to provide public access to services meant to remain private, using a Google scanning tool to identify vulnerable accounts. First seen…
Microsoft releases Windows 10 KB5078885 extended security update

Mar 10, 2026 7:49 PM

Tags: microsoft, update, vulnerability, windows, zero-day

Microsoft has released the Windows 10 KB5078885 extended security update to fix the March 2026 Patch Tuesday vulnerabilities, including 2 zero-days and an issue that prevent some devices from shutting down. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/microsoft/microsoft-releases-windows-10-kb5078885-extended-security-update/
Windows 11 KB5079473 & KB5078883 cumulative updates released

Mar 10, 2026 7:49 PM

Tags: microsoft, update, vulnerability, windows

Microsoft has released Windows 11 KB5079473 and KB5078883 cumulative updates for versions 25H2/24H2 and 23H2 to fix security vulnerabilities, bugs, and add new features. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/microsoft/windows-11-kb5079473-and-kb5078883-cumulative-updates-released/
HPE warns of critical AOS-CX flaw allowing admin password resets

Mar 10, 2026 7:49 PM

Tags: authentication, flaw, password, vulnerability

Hewlett Packard Enterprise (HPE) has patched multiple security vulnerabilities in the Aruba Networking AOS-CX operating system, including several authentication and code execution issues. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/hpe-warns-of-critical-aos-cx-flaw-allowing-admin-password-resets/
FortiGate Devices Exploited to Breach Networks and Steal Service Account Credentials

Mar 10, 2026 7:49 PM

Tags: breach, credentials, cybersecurity, exploit, firewall, network, service, threat, vulnerability

Cybersecurity researchers are calling attention to a new campaign where threat actors are abusing FortiGate Next-Generation Firewall (NGFW) appliances as entry points to breach victim networks. The activity involves the exploitation of recently disclosed security vulnerabilities or weak credentials to extract configuration files containing service account credentials and network topology First seen on thehackernews.com Jump…
KI-basierte Risikoprognose für Sicherheitsupdates

Mar 10, 2026 5:47 PM

Tags: ai, risk, update, vulnerability

Sollte man Sicherheitsupdates schnellstmöglich ausführen oder erst testen? Diese Entscheidung gehört zu den schwierigsten Aufgaben im IT-Betrieb. Einerseits müssen kritische Schwachstellen möglichst sofort geschlossen werden, andererseits können fehlerhafte Patches Systeme destabilisieren oder sogar Ausfälle verursachen. Qualys stellt nun eine neue KI-gestützte Funktion in <> vor, die genau dieses Risiko adressieren soll: den <<AI-powered Patch Reliability […]…
Cloud Attackers Now Prefer Vulnerability Exploits Over Credentials, Google Cloud Finds

Mar 10, 2026 5:47 PM

Tags: cloud, credentials, exploit, google, software, vulnerability

Google Cloud report details a sharp rise in attackers exploiting software vulnerabilities, including React2Shell First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/cloud-attackers-prefer-exploits/
The Economic Argument: The Real Cost of Insecure APIs in the AI Era

Mar 10, 2026 3:48 PM

Tags: access, ai, api, application-security, attack, business, compliance, control, corporate, cybersecurity, data, defense, exploit, finance, flaw, framework, governance, identity, injection, international, jobs, malicious, privacy, regulation, risk, threat, tool, vulnerability

When cybersecurity teams talk about risk, they usually speak in technical terms like vulnerabilities, exploits, and attack vectors. But when they walk into the boardroom, they need to speak a different language. They need to speak about cost. In the era of AI, the cost of insecure APIs has shifted from a potential liability to…
CISA shortens patch deadline for critical Ivanti, SolarWinds bugs

Mar 10, 2026 3:48 PM

Tags: cisa, cve, cybersecurity, infrastructure, ivanti, update, vulnerability

The Cybersecurity and Infrastructure Security Agency (CISA) gave all federal civilian agencies until Thursday to patch CVE-2025-26399, a critical vulnerability impacting the popular SolarWinds Web Help Desk. First seen on therecord.media Jump to article: therecord.media/cisa-shortens-patch-deadline-ivanti-solarwinds
CISA Alerts on Ivanti Endpoint Manager Vulnerability Auth Bypass Exploited in the Wild

Mar 10, 2026 2:47 PM

Tags: access, authentication, cisa, credentials, cve, cyber, cybersecurity, data, endpoint, exploit, infrastructure, ivanti, kev, vulnerability

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added a newly disclosed security vulnerability affecting Ivanti Endpoint Manager (EPM) to its Known Exploited Vulnerabilities (KEV) Catalog, warning that the issue is being actively exploited in the wild. The vulnerability, tracked as CVE-2026-1603, allows attackers to bypass authentication protections and potentially access sensitive credential data…
New “LeakyLooker” Flaws in Google Looker Studio Could Enable Cross-Tenant SQL Queries

Mar 10, 2026 2:47 PM

Tags: cloud, cybersecurity, data, exploit, flaw, google, sql, vulnerability

Cybersecurity researchers have disclosed nine cross-tenant vulnerabilities in Google Looker Studio that could have permitted attackers to run arbitrary SQL queries on victims’ databases and exfiltrate sensitive data within organizations’ Google Cloud environments.The shortcomings have been collectively named LeakyLooker by Tenable. There is no evidence that the vulnerabilities were exploited in First seen on thehackernews.com…
LeakyLooker: Hacking Google Cloud’s Data via Dangerous Looker Studio Vulnerabilities

Mar 10, 2026 2:47 PM

Tags: access, api, attack, authentication, breach, business, cloud, control, credentials, data, data-breach, email, exploit, flaw, google, group, guide, hacking, identity, infrastructure, injection, intelligence, jobs, leak, malicious, mitigation, monitoring, network, oracle, password, programming, service, sql, tool, unauthorized, update, vulnerability

Tenable Research revealed “LeakyLooker,” a set of nine novel cross-tenant vulnerabilities in Google Looker Studio. These flaws could have let attackers exfiltrate or modify data across Google services like BigQuery and Google Sheets. Google has since remediated all identified issues. We discovered and disclosed nine novel cross-tenant vulnerabilities in Google Looker Studio (formerly Data Studio).…
Recently patched Ivanti EPM flaw now actively exploited

Mar 10, 2026 1:47 PM

Tags: attack, cisa, endpoint, exploit, flaw, ivanti, update, vulnerability

CISA flagged a high-severity Ivanti Endpoint Manager (EPM) vulnerability as actively exploited in attacks and ordered U.S. federal agencies to patch systems within three weeks. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/cisa-recently-patched-ivanti-epm-flaw-now-actively-exploited/
SAP Releases Patches for Security Flaws Allowing Remote Code Execution

Mar 10, 2026 1:47 PM

Tags: cyber, flaw, remote-code-execution, sap, software, update, vulnerability

On March 10, 2026, SAP released its monthly Security Patch Day updates, addressing multiple vulnerabilities across its enterprise software products. Maintaining a structured patch management cycle aligned with this monthly schedule remains a foundational practice for enterprise SAP security. This month’s rollout includes 15 new security notes, with no updates to previously issued patches. Administrators…
The Zero-Day Scramble is Avoidable: A Guide to Attack Surface Reduction

Mar 10, 2026 1:47 PM

Tags: attack, control, data-breach, exploit, guide, Internet, Intruder, vulnerability, zero-day

You can’t control when the next critical vulnerability drops. You can control how much of your environment is exposed when it does. The problem is that most teams have more internet-facing exposure than they realise. Intruder’s Head of Security digs into why this happens and how teams can manage it deliberately.Time-to-exploit is shrinkingThe larger and…