Latest Cybersecurity News and Articles
19 March 2026
A new exploit kit for Apple iOS devices designed to steal sensitive data from is being wielded by multiple threat actors since at least November 2025, according to reports from Google Threat Intelligence Group (GTIG), iVerify, and Lookout.
According to GTIG, multiple commercial surveillance vendors and suspected state-sponsored actors have utilized the full-chain exploit kit, codenamed DarkSword
19 March 2026
Amazon found evidence that the FMC software vulnerability has been exploited since late January, and found links to Russia.
The post Cisco Firewall Vulnerability Exploited as Zero-Day in Interlock Ransomware Attacks appeared first on SecurityWeek.
19 March 2026
A hacker group claimed to breach a platform used for submitting tips about criminal events.
19 March 2026
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has urged government agencies to apply patches for two security flaws impacting Synacor Zimbra Collaboration Suite (ZCS) and Microsoft Office SharePoint, stating they have been actively exploited in the wild.
The vulnerabilities in question are as follows -
CVE-2025-66376 (CVSS score: 7.2) - A stored cross-site scripting
19 March 2026
Joe Kent is under investigation for alleged leaks of classified information
19 March 2026
The FBI has seized the website of the Iranian-linked hackers believed to be behind the recent cyberattack against Stryker.
18 March 2026
With exploitation of vulnerabilities taking just days, preemptive security must be the new model for defenders.
The post The Collapse of Predictive Security in the Age of Machine-Speed Attacks appeared first on SecurityWeek.
18 March 2026
The company has developed an AI-powered platform that autonomously discovers and validates software vulnerabilities.
The post Autonomous Offensive Security Firm XBOW Raises $120M at $1B+ Valuation appeared first on SecurityWeek.
18 March 2026
The U.S. Department of the Treasury's Office of Foreign Assets Control (OFAC) has sanctioned six individuals and two entities for their involvement in the Democratic People's Republic of Korea (DPRK) information technology (IT) worker scheme with an aim to defraud U.S. businesses and generate illicit revenue for the regime to fund its weapons of mass destruction (WMD) programs.
"The North Korean
18 March 2026
Amazon Threat Intelligence is warning of an active Interlock ransomware campaign that's exploiting a recently disclosed critical security flaw in Cisco Secure Firewall Management Center (FMC) Software.
The vulnerability in question is CVE-2026-20131 (CVSS score: 10.0), a case of insecure deserialization of user-supplied Java byte stream, which could allow an unauthenticated, remote attacker to
18 March 2026
The full supply chain is at risk for cyberattacks.
18 March 2026
Phil Venables, former CISO of Google Cloud and now a venture partner at Ballistic Ventures, has joined Native’s board of directors.
The post Cloud Security Startup Native Exits Stealth With $42 Million in Funding appeared first on SecurityWeek.
18 March 2026
Targeting six iOS vulnerabilities and leading to full device compromise, the exploit chain is meant for surveillance.
The post ‘DarkSword’ iOS Exploit Kit Used by State-Sponsored Hackers, Spyware Vendors appeared first on SecurityWeek.
18 March 2026
A telehealth organization accessed patient medical data in order to share it with law firms.
18 March 2026
Cyber risk doesn’t stop at your perimeter. Today’s most dangerous threats could be hiding in your software supply chain.
The post Virtual Summit Today: Supply Chain & Third-Party Risk Summit appeared first on SecurityWeek.
18 March 2026
The sanctions target two Chinese individuals, two Chinese companies, and one Iranian firm involved in hacking EU member states.
The post EU Sanctions Chinese, Iranian Firms Supporting Hacking Operations appeared first on SecurityWeek.
18 March 2026
From Chaos to Control examines the chaos that often comes from shadow AI hidden in SaaS apps and urges better visibility and control over agentic AI.
The post Shadow AI Risk: How SaaS Apps Are Quietly Enabling Massive Breaches appeared first on SecurityWeek.
18 March 2026
Focused on securing autonomous AI on endpoints, the startup will invest in product development.
The post Manifold Raises $8 Million for AI Detection and Response appeared first on SecurityWeek.
18 March 2026
The medtech giant has been working on restoring systems affected by the cyberattack conducted by the Handala hackers.
The post Iranian Hackers Likely Used Malware-Stolen Credentials in Stryker Breach appeared first on SecurityWeek.
18 March 2026
The lightweight updates are meant to deliver security protections between security updates.
The post Apple Debuts Background Security Improvements With Fresh WebKit Patches appeared first on SecurityWeek.