Apple pushes first Background Security Improvements update to fix WebKit flaw

March 17, 2026

Apple has released its first Background Security Improvements update to fix a WebKit flaw tracked as CVE-2026-20643 on iPhones, iPads,

GlassWorm malware hits 400+ code repos on GitHub, npm, VSCode, OpenVSX

March 17, 2026

The GlassWorm supply-chain campaign has returned with a new, coordinated attack that targeted hundreds of packages, repositories, and extensions on

Iranian Cyber Ops Maintain US Network Footholds, Target Cameras for Regional Surveillance

March 17, 2026

Iran’s cyber operations took a sharp turn in early 2026, with state-linked threat actors quietly embedding themselves inside US and

AI Flaws in Amazon Bedrock, LangSmith, and SGLang Enable Data Exfiltration and RCE

March 17, 2026

Cybersecurity researchers have disclosed details of a new method for exfiltrating sensitive data from artificial intelligence (AI) code execution environments

AWS Bedrock AgentCore Sandbox Bypass Allows Covert C2 Channels and Data Exfiltration

March 17, 2026

A significant security flaw in AWS Bedrock AgentCore Code Interpreter’s “Sandbox” network mode, a feature advertised by AWS as providing

LeakNet Ransomware Uses ClickFix via Hacked Sites, Deploys Deno In-Memory Loader

March 17, 2026

The ransomware operation known as LeakNet has adopted the ClickFix social engineering tactic delivered through compromised websites as an initial

Top 5 Things CISOs Need to Do Today to Secure AI Agents

March 17, 2026

By Itamar Apelblat, Co-Founder and CEO, Token Security Agentic AI represents a once-in-a-generation shift in how organizations operate. AI agents

Phishers Abuse LiveChat Support Tools to Steal Sensitive Data in New SaaS-Based Attack Tactic

March 17, 2026

A newly identified phishing campaign is turning legitimate customer service software into a weapon for stealing sensitive user data. Attackers

CISA Flags Actively Exploited Wing FTP Vulnerability Leaking Server Paths

March 17, 2026

Ravie LakshmananMar 17, 2026Vulnerability / Network Security The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Monday added a medium-severity

Fake Shipment Tracking Scams Surge in MEA, Stealing Banking Data Through Real-Time Phishing

March 16, 2026

Every day, billions of people rely on postal and courier services to deliver everything from personal letters to online orders.

GlassWorm Attack Uses Stolen GitHub Tokens to Force-Push Malware Into Python Repos

March 16, 2026

Ravie LakshmananMar 16, 2026Malware / Cryptocurrency The GlassWorm malware campaign is being used to fuel an ongoing attack that leverages

Stryker attack wiped tens of thousands of devices, no malware needed

March 16, 2026

Last week’s cyberattack on medical technology giant Stryker was limited to its internal Microsoft environment and remotely wiped tens of

Cookie	Duration	Description
cookielawinfo-checkbox-analytics	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Analytics".
cookielawinfo-checkbox-functional	11 months	The cookie is set by GDPR cookie consent to record the user consent for the cookies in the category "Functional".
cookielawinfo-checkbox-necessary	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Necessary".
cookielawinfo-checkbox-others	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Other.
cookielawinfo-checkbox-performance	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Performance".
viewed_cookie_policy	11 months	The cookie is set by the GDPR Cookie Consent plugin and is used to store whether or not user has consented to the use of cookies. It does not store any personal data.