Citrix Urges Patching Critical NetScaler Flaw Allowing Unauthenticated Data Leaks

March 24, 2026 at 11:29AM Citrix has released security updates to address two vulnerabilities in NetScaler ADC and NetScaler Ga…

North Korean Hackers Abuse VS Code Auto-Run Tasks to Deploy StoatWaffle Malware

March 23, 2026 at 11:39PM The North Korean threat actors behind the Contagious Interview campaign, also tracked as WaterPlum, h…

We Found Eight Attack Vectors Inside AWS Bedrock. Here's What Attackers Can Do with Them

March 23, 2026 at 05:25PM AWS Bedrock is Amazon's platform for building AI-powered applications. It gives developers access…

Microsoft Warns IRS Phishing Hits 29,000 Users, Deploys RMM Malware

March 23, 2026 at 04:25PM Microsoft has warned of fresh campaigns that are capitalizing on the upcoming tax season in the U.S. …

Trivy Hack Spreads Infostealer via Docker, Triggers Worm and Kubernetes Wiper

March 23, 2026 at 02:01PM Cybersecurity researchers have uncovered malicious artifacts distributed via Docker Hub following the…

Hackers Exploit CVE-2025-32975 (CVSS 10.0) to Hijack Unpatched Quest KACE SMA Systems

March 23, 2026 at 11:45AM Threat actors are suspected to be exploiting a maximum-severity security flaw impacting Quest KACE Sy…

Oracle Patches Critical CVE-2026-21992 Enabling Unauthenticated RCE in Identity Manager

March 21, 2026 at 03:54PM Oracle has released security updates to address a critical security flaw impacting Identity Manager a…

CISA Flags Apple, Craft CMS, Laravel Bugs in KEV, Orders Patching by April 3, 2026

March 21, 2026 at 01:55PM The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Friday added five security flaws …

Trivy Supply Chain Attack Triggers Self-Spreading CanisterWorm Across 47 npm Packages

March 21, 2026 at 12:58PM The threat actors behind the supply chain attack targeting the popular Trivy scanner are suspected to…

Trivy Security Scanner GitHub Actions Breached, 75 Tags Hijacked to Steal CI/CD Secrets

March 20, 2026 at 11:17PM Trivy, a popular open-source vulnerability scanner maintained by Aqua Security, was compromised a sec…

DoJ Disrupts 3 Million-Device IoT Botnets Behind Record 31.4 Tbps Global DDoS Attacks

March 20, 2026 at 11:55AM The U.S. Department of Justice (DoJ) on Thursday announced the disruption of command-and-control (C2)…

Apple Warns Older iPhones Vulnerable to Coruna, DarkSword Exploit Kit Attacks

March 20, 2026 at 10:46AM Apple is urging users who are still running an outdated version of iOS to update their iPhones to sec…