Secrets Management Vs. Secrets Elimination: Where Should You Invest?
Enterprises are weighing two divergent authentication philosophies: traditional secrets management, which safeguards static credentials in vaults, and secretless authentication, which eliminates static secrets by issuing short‑lived tokens tied to workload identities. While secretless reduces attack surface and operational friction for cloud‑native workloads, many legacy systems and SaaS APIs still require a secrets manager. Most organizations adopt a hybrid approach, applying each model where it fits best. The strategic decision centers on where to invest—upfront identity infrastructure or ongoing vault operations—to balance security, cost, and compliance.
CISA Flags Apple, Craft CMS, Laravel Bugs in KEV, Orders Patching by April 3, 2026
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) added five high‑severity flaws affecting Apple WebKit, Apple kernel components, Craft CMS, and Laravel Livewire to its Known Exploited Vulnerabilities (KEV) catalog, mandating remediation by April 3 2026. The vulnerabilities carry CVSS scores from...
Digital Arrest Scams: Centre Directs WhatsApp To Block Involved Device IDs
India’s Union Home Ministry has instructed WhatsApp to block the device IDs of users involved in digital‑arrest scams and retain data from deleted accounts for 180 days. The platform will add AI‑driven safeguards, logo‑detection, deep‑fake warnings, and a mandatory SIM‑binding...
Security Considerations on Istio's CRDs with Namespace-Based Multi-Tenancy
Istio’s VirtualService resource, when configured as a mesh gateway, applies routing rules across the entire service mesh, not just the namespace where it is defined. This design flaw enables tenants with permission to create or modify Istio CRDs to launch...
While LeakBase Is Gone, Data Remains At Risk
The FBI and Europol have taken down LeakBase, a dark‑web forum that facilitated large‑scale trading of stolen credentials. The takedown ends the forum’s operations but the data posted there—over 200,000 posts and millions of compromised accounts—likely persists across other underground...
Iranian Cyberattacks Ahead of US, Israel Strikes Discovered
Iranian advanced persistent threat groups, notably MuddyWater, staged six CIDR blocks in September using an Estonian autonomous system, indicating pre‑operational cyber preparation six months before the February 28 U.S.–Israel missile strikes. The buildup was corroborated by Augur Security, which linked the...
A Potential Breach of an Anonymous Tip App Could Have Exposed Sensitive Student Data
Navigate360, a K‑12 safety solutions provider, disclosed a possible breach of its anonymous tip platform, P3 Global Intel, after a hacker claimed access to data from more than 30,000 U.S. schools. The attacker, identifying as Internet Yiff Machine, alleged the...
Weill Cornell Medicine Discloses an Insider Data Breach
Weill Cornell Medicine reported a breach affecting 516 patients after a former employee accessed electronic medical records without authorization. The employee only viewed contact details and visit reasons, with no clinical or financial data disclosed. The hospital notified the patients...
How Controlled Should Your Cloud-Native AI Security Be
Enterprises adopting cloud‑native architectures must secure machine identities, known as Non‑Human Identities (NHIs), and the secrets they carry. A full lifecycle—discovery, classification, continuous monitoring, and remediation—shifts protection from point solutions to proactive governance. Automation and real‑time oversight cut breach risk,...
New Speagle Malware Hijacks Cobra DocGuard for Data Theft
Security researchers have uncovered a new malware strain called Speagle that subverts the legitimate document security platform Cobra DocGuard to steal data. The malware disguises exfiltration as normal client‑server traffic and uses a compromised DocGuard server for command‑and‑control. It selectively infects...
Hacker Group LAPSUS$ Claims Alleged AstraZeneca Data Breach
LAPSUS$ has posted a claim that it exfiltrated roughly 3 GB of AstraZeneca data, including source code, cloud‑infrastructure configurations, and employee‑related records. The group shared sample files that appear to contain authentic GitHub Enterprise user exports and contractor onboarding logs, suggesting...
![Warframe Players Fear The Game Has Been Hacked After Receiving ‘Nefarious Invites’ [Update]](/cdn-cgi/image/width=1200,quality=75,format=auto,fit=cover/https://kotaku.com/app/uploads/2026/03/warframe-metacard-1200x675.jpg)
Warframe Players Fear The Game Has Been Hacked After Receiving ‘Nefarious Invites’ [Update]
Warframe players reported receiving bizarre, often offensive in‑game invite messages, prompting fears of a hack. Digital Extremes investigated and confirmed the messages resulted from altered invite text fields, not from compromised accounts or data breaches. The studio deployed a fix...
Google Threat Intel Flags 'Ghostblade' Crypto-Stealing Malware
Google Threat Intelligence has uncovered Ghostblade, a new JavaScript‑based malware targeting iOS devices to steal cryptocurrency private keys and messaging data. The tool operates only during a brief browsing session, exfiltrates data to malicious servers, and then self‑deletes, erasing crash...
How SW and HW Vulnerabilities Can Complement LLM-Specific Algorithmic Attacks (UT Austin, Intel Et Al.)
A collaborative paper titled “Cascade” reveals how conventional software and hardware flaws can be weaponized alongside LLM‑specific algorithmic attacks to compromise compound AI pipelines. The authors demonstrate two proof‑of‑concept attacks: a code‑injection combined with a Rowhammer guardrail bypass that injects...
FBI, CISA Issue PSA on Russian Intelligence Campaign to Target Messaging Apps
The FBI and CISA released a joint public service announcement warning that Russian intelligence‑linked hackers are conducting a global phishing campaign against commercial messaging apps. The attackers impersonate Signal support staff to coax verification codes, compromising accounts of current and...
AI Is Now the Decisive Factor in Cyber Conflict
AI has become a decisive factor in cyber conflict, especially across the Asia‑Pacific region. Deep‑fake and generative AI have driven social‑engineering incidents up 53% year‑over‑year and fraud claims up 233%. By 2025, AI‑driven threats are projected to affect 56% of...
California City Reports Ransomware Attack as LA Transit Agency Finds ‘Unauthorized Activity’
Foster City, California declared a state of emergency after a ransomware attack forced the city to pause all non‑emergency public services. Emergency 911 and police dispatch remained functional, and the city council meeting was shifted to an in‑person format without...
New Methods for Assuring Digital Identity and Authenticity
The surge of generative AI has made realistic deepfakes and synthetic media commonplace, prompting a market shift toward foolproof digital identity verification. Emerging defenses combine hardware‑enforced trust, cryptographic watermarks and continuous behavioral biometrics to prove content provenance. Regulatory pressure, such...
Strengthening Cybersecurity in Canada’s Municipal Sector: A Verified Analysis
The City of Hamilton’s February 2024 ransomware attack crippled 80% of its network and forced the municipality to spend roughly C$18.3 million on response, recovery and upgrades. A demanded ransom of C$18.5 million was refused, and a subsequent C$5 million cyber‑insurance claim was denied...
Socure’s Deepanker Saxena Breaks Down How to Spot Fake Job Candidates
Socure’s head of product Deepanker Saxena warns that AI‑driven fake job applicants are infiltrating hiring pipelines, giving fraudsters rapid access to corporate systems. He explains that a compromised employee can cause ransomware, data theft, or IP loss within minutes of...
Rubrik Intros Google Workspace Data Protection
Rubrik announced Rubrik Data Protection for Google Workspace, targeting enterprises that rely on Gmail and Google Drive. The solution offers immutable, air‑gapped backups and a point‑and‑click recovery interface that can shrink restoration times from days to minutes. It integrates policy‑driven...
Rubrik Intros Google Workspace Data Protection
Rubrik announced Rubrik Data Protection for Google Workspace, extending immutable, air‑gapped backups to Gmail and Google Drive. The solution promises rapid, point‑and‑click recovery that can shrink restoration times from days to minutes while preserving original data and permissions. It includes...
Trivy Security Scanner GitHub Actions Breached, 75 Tags Hijacked to Steal CI/CD Secrets
Trivy, a widely used open‑source vulnerability scanner, suffered a second supply‑chain breach when attackers force‑pushed 75 of 76 tags in the official aquasecurity/trivy‑action repository to deliver a malicious payload. The code runs inside GitHub Actions runners, harvesting environment variables, cloud...
Fake ‘Trusted Sender’ Labels Misused in New Apple Mail Phishing Scheme
A new phishing campaign embeds counterfeit “trusted sender” banners directly into email bodies, tricking recipients into believing messages are verified by Apple Mail. Apple’s mail client does not generate such labels, so the banners are pure HTML graphics that appear...
FBI Takes Down Leak Sites Tied to Iran’s Ministry of Intelligence and Security
The FBI seized four domains that Iran’s Ministry of Intelligence and Security used to host stolen data, linking the operation to the state‑run “Handala” group. Handala leveraged Microsoft Intune’s wipe function to destroy data on more than 200,000 Stryker devices,...
New ‘Quirks’ Could Make States’ Privacy Laws Impossible to Follow, Experts Worry
Federal efforts to create a unified data‑privacy framework stalled as the American Privacy Rights Act failed to pass, leaving roughly 20 state laws in force. Experts warn that emerging state‑level quirks—such as Virginia’s notice‑consent model, Maryland’s data‑minimization focus, and New...
Securing the Code Factory: Why SDLC Infrastructure Has Become a Core Cloud Risk
Software supply‑chain security is shifting from protecting shipped code to defending the infrastructure that builds it. Recent incidents—Ultralytics’ GitHub Actions hijack, the Shai‑Hulud 2.0 campaign compromising tens of thousands of CI runners, and the Trust Wallet breach—show attackers can inject...
CISA Recommends Privileged Access Controls for Endpoint Management After Stryker Incident
CISA issued an urgent advisory after a March 11 cyberattack on Stryker that leveraged a compromised Microsoft Intune administrator account to create a global admin and wipe managed devices. The breach highlights a growing trend where attackers target the control planes...
Ubiquiti Defect Poses Account Takeover Risk for UniFi Networking Application Users
Researchers have identified a critical path‑traversal flaw (CVE‑2026‑22557) in Ubiquiti’s UniFi Network Application that enables unauthenticated attackers to manipulate files and take over accounts. The vendor issued patches on Wednesday, also addressing a related privilege‑escalation bug (CVE‑2026‑22558). Censys data shows...
Businesses Are Struggling to Combat AI-Based Fraud, a Study Finds
A Darwinium study of 500 senior executives reveals that 97% of businesses have seen a rise in AI‑driven fraud over the past year, with 45% attributing attacks to advanced fraud‑as‑a‑service platforms. While 95% now list agentic AI among their top...
Enterprise Data Protection, Governance, and Cost Optimization with Xray and Revyz in Jira
Revyz has launched an integrated backup and governance layer for Xray, Atlassian’s test‑management add‑on in Jira. The solution replaces native Atlassian backups with automated, forever‑incremental, immutable snapshots that also deduplicate attachments. By adding configuration‑drift analytics and role‑based access controls, Revyz...
Just 10% Secure AI, DivisionHex Unveils Threat Hunting Tool
Coalfire’s DivisionHex practice launched an AI Threat Hunting service aimed at detecting shadow AI, compromised agents, and emergent agentic insider risks within enterprise environments. The offering extends traditional threat‑hunting techniques to monitor AI behavior, flagging unauthorized data access, privilege escalation,...
Aikido Receives the 2026 Global ASPM Customer Value Leadership Recognition
Aikido Security has been honored with Frost & Sullivan’s 2026 Global Customer Value Leadership Recognition in the Application Security Posture Management (ASPM) sector. The award highlights the company’s AI‑driven, developer‑first platform that unifies security across code, cloud, and runtime while...
How CISOs Can Survive the Era of Geopolitical Cyberattacks
Geopolitical cyber threats are shifting from ransomware to destructive wiper campaigns, exemplified by Iran‑linked Handala’s March 2026 attack on Stryker that crippled operations in 79 countries. The article outlines a five‑step containment playbook for CISOs, emphasizing credential protection, zero‑trust network segmentation,...
Ekco Launches Managed Risk Operations Centre to Help Irish Organisations Reduce Cyber Risk
Ekco has introduced a Managed Risk Operations Centre (ROC) in Ireland, powered by Qualys Enterprise TruRisk Management. The service consolidates fragmented vulnerability data into a continuous, business‑aligned risk reduction model. It prioritises exposures based on exploit likelihood, asset criticality and...
Why Flat Kubernetes Networks Fail at Scale
Flat Kubernetes networking models work for small clusters but break at scale. As policies proliferate, the lack of hierarchy leads to unpredictable rule precedence and debugging challenges. Introducing security hierarchies—platform, security, and application tiers—adds explicit ordering and aligns with Zero...
Eon Strengthens Enterprise Data Protection Capabilities with Latest Enhancements
Eon, a data and AI infrastructure platform, announced ransomware protection tailored for cloud databases. The solution detects anomalies such as row‑count drops and schema changes across major databases and provides automated recovery points. It extends unified protection to VMs and...
Explainer: How Cybercrime Outpaces Digital Revolution
Nigeria’s rapid shift to a digital‑first economy is being shadowed by a surge in cybercrime, with global losses projected at $10.5 trillion and Nigerian fraud losses climbing 196% to N52.26 billion over five years. Attackers are leveraging AI‑generated phishing, deep‑fakes and automated...
How Dropzone AI Is Bringing A ‘Software-Only’ Approach To Agentic SOC: CEO
Dropzone AI, founded in 2023 by former ExtraHop scientist Edward Wu, launched a fully software‑only AI SOC Analyst platform that resolves security alerts without any human analyst involvement. The solution promises greater consistency, scalability and transparency, addressing the chronic alert‑overload...
Zimperium Report: Banking Malware Targets 1,200+ Apps
Zimperium’s 2026 Banking Heist Report reveals that 34 active malware families are targeting 1,243 mobile banking apps across 90 countries. Android‑based financial fraud surged 67% year‑over‑year in 2025, with sophisticated campaigns that can fully control devices and bypass traditional defenses....
Top Attack Surface and Exposure Management Platforms to Watch in 2026
Security teams are shifting from patch‑centric tactics to holistic exposure management, which ties together vulnerabilities, misconfigurations, and over‑privileged identities across cloud, SaaS, and IoT assets. Vendors such as Check Point, Palo Alto Networks, Tenable, Microsoft, Wiz, CrowdStrike, Cisco, and Qualys...
One Year on From Retail’s Devastating Cyber Attacks, What’s Changed?
A year after a wave of sophisticated cyber attacks crippled ecommerce platforms and supply chains, retailers have begun overhauling their security models. The industry is moving from perimeter‑based defenses to zero‑trust architectures, with roughly 63% of organisations adopting at least...
Taming the Threat Beast: Building a Threat-Led Cybersecurity Program
A threat‑led cybersecurity program shifts focus from sheer data volume to relevance, enabling organizations to prioritize the threats that truly affect their business. The piece cites a Google Cloud study showing 61 % of security professionals feel overwhelmed by threat feeds...
Global Cybercrime Crackdown: Over 373,000 Dark Web Sites Shut Down
Operation Alice, a March 2026 Europol‑led initiative, dismantled the largest known network of fraudulent dark‑web platforms, shutting down over 373,000 sites that hosted child sexual abuse material and cyber‑crime‑as‑a‑service tools. German authorities identified the platform’s operator and, together with 22...
University College of Dublin Staff Member Due in Court over Accessing Student Data
A University College Dublin employee in his 50s has been arrested and charged for unlawfully accessing student records, appearing in court today. The investigation, led by Ireland's Garda Síochána, uncovered unauthorized database queries that exposed personal information of dozens of...
Jaguar Land Rover's Cyber Bailout Sets Worrying Precedent, Watchdog Warns
The UK government provided Jaguar Land Rover with a £1.5 billion loan guarantee after a ransomware attack that the Cyber Monitoring Centre estimates cost up to £1.9 billion to the British economy. The cyber watchdog warned that rescuing a single firm without clear criteria...
5 Best Password Managers for Teams (Free & Paid) in 2026
The updated 2026 guide ranks the five best password managers for teams, naming Dashlane as the overall leader, Keeper for enterprise, 1Password for small teams, Bitwarden as the top open‑source option, and Enpass for third‑party cloud storage. It highlights that...
Fake Interactive Zoom Call Leads to Malicious ScreenConnect Download
Security researchers discovered a novel phishing campaign that uses a fake, interactive Zoom call to trick users into downloading a malicious update. The lure relies on AI‑generated JavaScript to mimic a glitchy Zoom meeting, directing victims to a counterfeit Microsoft...
UK Cyber Monitoring Centre Plans Expansion in US Amid Risk of Category 5 Attack
The UK Cyber Monitoring Centre (CMC) is preparing a US‑based operation to quantify the financial fallout of cyber incidents, targeting a 2027 launch after proving its model in Britain. In its first year, the CMC rated two 2025 attacks –...
Oracle Pushes Emergency Fusion Middleware Patch
Oracle released an out‑of‑band emergency patch for a critical pre‑authentication remote code execution vulnerability (CVE‑2026‑21992) affecting Oracle Identity Manager and Oracle Web Services Manager. The flaw, located in the Fusion Middleware REST and security components, is easily exploitable and resembles...