Latest Cybersecurity News and Articles
11 March 2026
The startup integrates with existing cybersecurity stacks, ingests and normalizes data, and delivers intelligence to reduce risks.
The post Quantro Security Emerges From Stealth With $2.5 Million in Funding appeared first on SecurityWeek.
11 March 2026
The malware disables antivirus and EDR protections at the kernel level, clearing the path for credential harvesting, system reconnaissance, and eventual data exfiltration.
The post ‘BlackSanta’ Malware Activates EDR and AV Killer Before Detonating Payload appeared first on SecurityWeek.
11 March 2026
Microsoft on Tuesday released patches for a set of 84 new security vulnerabilities affecting various software components, including two that have been listed as publicly known.
Of these, eight are rated Critical, and 76 are rated Important in severity. Forty-six of the patched vulnerabilities relate to privilege escalation, followed by 18 remote code execution, 10 information disclosure, four
11 March 2026
Industrial giants Siemens, Schneider Electric, Mitsubishi Electric, and Moxa have published new ICS Patch Tuesday advisories.
The post ICS Patch Tuesday: Vulnerabilities Fixed by Siemens, Schneider, Moxa, Mitsubishi Electric appeared first on SecurityWeek.
11 March 2026
A threat actor known as UNC6426 leveraged keys stolen following the supply chain compromise of the nx npm package last year to completely breach a victim's cloud environment within a span of 72 hours.
The attack started with the theft of a developer's GitHub token, which the threat actor then used to gain unauthorized access to the cloud and steal data.
"The threat actor, UNC6426, then used this
11 March 2026
Cybersecurity researchers have discovered five malicious Rust crates that masquerade as time-related utilities to transmit .env file data to the threat actors.
The Rust packages, published to crates.io, are listed below -
chrono_anchor
dnp3times
time_calibrator
time_calibrators
time-sync
The crates, per Socket, impersonate timeapi.io and were published between late February and early March
10 March 2026
Microsoft Corp. today pushed security updates to fix at least 77 vulnerabilities in its Windows operating systems and other software. There are no pressing "zero-day" flaws this month (compared to February's five zero-day treat), but as usual some patches may deserve more rapid attention from organizations using Windows. Here are a few highlights from this month's Patch Tuesday.
10 March 2026
Microsoft has fixed a critical vulnerability, but none of the flaws fixed this Patch Tuesday has been exploited in the wild.
The post Microsoft Patches 83 Vulnerabilities appeared first on SecurityWeek.
10 March 2026
Adobe has rolled out patches for 80 vulnerabilities across 8 products, including Commerce, Illustrator, Acrobat Reader, and Premiere Pro.
The post Adobe Patches 80 Vulnerabilities Across Eight Products appeared first on SecurityWeek.
10 March 2026
The startup brings AI to data loss prevention to provide visibility into intent, context, and risk.
The post Jazz Emerges From Stealth With $61M in Funding for AI-Powered DLP appeared first on SecurityWeek.
10 March 2026
Cybersecurity researchers are calling attention to a new campaign where threat actors are abusing FortiGate Next-Generation Firewall (NGFW) appliances as entry points to breach victim networks.
The activity involves the exploitation of recently disclosed security vulnerabilities or weak credentials to extract configuration files containing service account credentials and network topology
10 March 2026
Cybersecurity researchers have discovered a new malware called KadNap that's primarily targeting Asus routers to enlist them into a botnet for proxying malicious traffic.
The malware, first detected in the wild in August 2025, has expanded to over 14,000 infected devices, with more than 60% of victims located in the U.S., according to the Black Lotus Labs team at Lumen. A lesser number of
10 March 2026
Security leaders share approval and critiques of Trump’s Cyber Strategy for America.
10 March 2026
The company was created by a Claroty founder and is backed by Evolution Equity Partners, N47, and other investors.
The post Kai Emerges From Stealth With $125M in Funding for AI Platform Bridging IT and OT Security appeared first on SecurityWeek.
10 March 2026
Join the webinar as we examine the current OT threat landscape and move past the "doom and gloom" to discuss the mechanics of modern OT exposure.
The post Webinar Today: Securing Fragile OT in an Exposed World appeared first on SecurityWeek.
10 March 2026
A code injection bug in FS-QUO and an insecure deserialization flaw in NetWeaver could lead to arbitrary code execution.
The post SAP Patches Critical FS-QUO, NetWeaver Vulnerabilities appeared first on SecurityWeek.
10 March 2026
The telecommunications equipment and services giant has blamed the incident on a third-party vendor.
The post Thousands Affected by Ericsson Data Breach appeared first on SecurityWeek.
10 March 2026
Codex Security, formerly Aardvark, has found hundreds of critical vulnerabilities in tested software in the past month.
The post OpenAI Rolls Out Codex Security Vulnerability Scanner appeared first on SecurityWeek.
10 March 2026
Armadin uses AI-powered red teaming to find and exploit weaknesses in the same way that attackers attack them.
The post Kevin Mandia’s Armadin Launches With $190 Million in Funding appeared first on SecurityWeek.
10 March 2026
Cybersecurity researchers have disclosed nine cross-tenant vulnerabilities in Google Looker Studio that could have permitted attackers to run arbitrary SQL queries on victims' databases and exfiltrate sensitive data within organizations' Google Cloud environments.
The shortcomings have been collectively named LeakyLooker by Tenable. There is no evidence that the vulnerabilities were exploited in