Cybersecurity News, Threats & Vulnerability Alerts
Real-time threat monitoring, zero-day vulnerability analysis, and data breach reports.
Poland Nuclear Research Centre Blocks Cyberattack
Interpol Sinks 45,000 Criminal IPs in Global Crackdown
Storm-2561 Distributes Fake VPN Clients to Steal Credentials
Starbucks Data Breach Exposes Employee Personal Info
Google Patches Two Chrome Zero-Days Under Active Attack
Loblaw Logs Out All Users After Security Incident
Canadian retailer Loblaw automatically logged out all digital account holders following an unspecified security incident discovered March 12.
England Hockey Probes AiLock Ransomware Attack Claims
England Hockey investigates potential data breach after AiLock ransomware group lists the sports governing body as victim on March 12, 2026.
AI-Generated Slopoly Malware Powers Interlock Ransomware
Hackers deployed AI-created Slopoly malware to maintain week-long server access during Interlock ransomware attacks targeting multiple organizations.
Veeam Patches Four Critical RCE Flaws in Backup Software
Veeam Software fixed four critical remote code execution vulnerabilities in its Backup & Replication solution on March 12, 2026.
US-Europe Task Force Shuts Down SocksEscort Proxy Network
International law enforcement disrupted SocksEscort proxy network exploiting Linux devices through AVRecon malware on March 12, 2026.
Telus Digital Confirms Breach After 1 Petabyte Data Theft
Canadian BPO giant Telus Digital confirmed a security breach after hackers claimed stealing nearly 1 petabyte of data over multiple months.
Veeam Patches 5 Security Flaws, 3 Critical RCE Bugs
Veeam released March 2026 security updates for Backup & Replication 13, fixing five vulnerabilities including three critical remote code execution flaws.
Legacy Industrial Controllers Sold on eBay Expose Critical Infrastructure
Outdated industrial control systems are being sold on eBay, creating cybersecurity risks for critical infrastructure operators.
INC Ransomware Targets Healthcare Systems Across Oceania
INC ransomware group attacked healthcare facilities and government agencies across Australia, New Zealand, and Tonga in recent coordinated strikes.
Xygeni GitHub Action Compromised in Supply Chain Attack
Attackers compromised AppSec vendor Xygeni's GitHub Action through tag poisoning, operating a command-and-control implant for up to one week.
Elementor Ally Plugin SQL Injection Hits 400K+ Sites
Critical SQL injection flaw in Elementor's Ally WordPress plugin exposes sensitive data on 400,000+ sites without authentication required.
CISA Orders Federal Agencies to Patch n8n RCE Flaw
CISA added an actively exploited n8n remote code execution vulnerability to its Known Exploited Vulnerabilities catalog, requiring federal agencies to patch by March 25.
Stryker Hit by Iranian Wiper Malware Attack
Medical device giant Stryker suffered a destructive wiper malware attack on March 11, 2026, claimed by Iranian-linked hacktivist group Handala.
PhantomRaven Campaign Hits npm with 88 Malicious Packages
New PhantomRaven supply-chain attack targets JavaScript developers through 88 malicious npm packages designed to steal sensitive development data.
Microsoft March 2026 Patch Tuesday Fixes Critical Flaws
Microsoft released March 2026 Patch Tuesday updates addressing multiple critical vulnerabilities across Windows and other products.