A newly identified variant of the VoidStealer infostealer has drawn serious attention from the security community after it became the first malware known to bypass Google Chrome’s Application-Bound Encryption (ABE) without requiring code injection or elevated system privileges. The variant,…
3 Men Charged With Conspiring to Smuggle US Artificial Intelligence to China
The men violated U.S. export controls laws by scheming to divert massive quantities of the high-performance servers assembled in the United States to China. The post 3 Men Charged With Conspiring to Smuggle US Artificial Intelligence to China appeared first…
HPE Patches Critical Aruba AOS-CX Vulnerabilities Including Authentication Bypass Flaw
Hewlett Packard Enterprise (HPE) has released security updates to address multiple vulnerabilities in its Aruba AOS-CX network operating system, including a critical flaw that could allow attackers to bypass authentication and gain administrative control. AOS-CX comes from Aruba Networks,…
APT28 Deploys Enhanced Version of Covenant in Ongoing Threat Activity
In recent months, the contours of cyber warfare have once again become clearer as APT28 – an agent of Russian intelligence that has operated in Ukraine for a number of years – elicits renewed precision and technological sophistication in…
Termite Ransomware Linked to Velvet Tempest’s ClickFix, CastleRAT Attacks
Cyber threat actors known as Velvet Tempest have been observed deploying sophisticated attacks involving Termite ransomware, utilizing the ClickFix social engineering technique and the CastleRAT backdoor.These intrusions, tracked by MalBeacon researchers, unfolded over 12 days in a simulated U.S.…
Meta’s Smart Glasses Face Privacy Backlash as Experts Flag Legal and Ethical Risks
A whirlwind of concerns around Meta’s AI-enabled smart glasses are intensifying after reports suggested that human reviewers may have accessed sensitive user recordings, raising broader questions about privacy, consent, and data protection. Online discussions have surged, with users expressing…
Russian Cyber Campaign Targets Signal and WhatsApp Users Through Social Engineering Tactics
Hackers believed to be linked to Russia are attempting to gain access to Signal and WhatsApp accounts of government officials, journalists, and military personnel worldwide—not by breaking encryption, but by manipulating users into giving up their access credentials. This…
US, allies move to dismantle four high-volume IoT botnets
The armies of hacked computers and internet of things gadgets powered disruption and extortion campaigns that sometimes cost victims tens of thousands of dollars. This article has been indexed from Cybersecurity Dive – Latest News Read the original article: US,…
News brief: Stryker recovering after large-scale cyberattack
<div></div> <div> <div> <p paraeid=”{82bb4c45-7afe-4e77-8131-35bf588a6ef6}{39}” paraid=”1570770248″><span xml:lang=”EN-US” data-contrast=”auto”>More than a week after the blistering March 11 cyberattack on Stryker, the Michigan-based medtech company continues to restore systems to resume normal operations.</span><span data-ccp-props=”{}”> </span></p> </div> <div> <p paraeid=”{82bb4c45-7afe-4e77-8131-35bf588a6ef6}{79}” paraid=”51152698″><span xml:lang=”EN-US” data-contrast=”auto”>The attack, claimed by Iran-linked threat actor Handala, affected the company’s ordering, processing, shipping and manufacturing. In a post on X, Handala asserted that it wiped data from 200,000 systems, servers, laptops and…
2.7 million hit in workplace benefits data breach exposing SSNs, dates of birth and health account data
Nearly 2.7 million Americans are being notified that their personal data may have been compromised following a cyberattack on Navia Benefit Solutions, a backend benefits administrator that serves over 10,000 employers across the US. The company manages Flexible Spending Accounts…
Cyber Briefing: 2026.03.20
DarkSword iOS exploits emerge, zero-days targeted, supply-chain malware spreads, phishing scams rise, botnets dismantled, and fraud cases surface. This article has been indexed from CyberMaterial Read the original article: Cyber Briefing: 2026.03.20
Why Image Format Conversion Is Becoming a Practical Issue in Web Security and Performance
WebP boosts performance raises compatibility issues, making image format conversion to PNG essential for secure, flexible, and efficient web workflows today. This article has been indexed from Hackread – Cybersecurity News, Data Breaches, AI and More Read the original article:…
Forescout Reports Strong Growth and Profitability in FY2025
Forescout Technologies reported strong financial results for fiscal year 2025, highlighting continued profitability, customer growth, and momentum in large enterprise deals as demand for cybersecurity solutions remains high. The San Jose-based company said it added more than 230 net new…
Could your face change what you pay? NYC wants limits on biometric tracking
NYC lawmakers are pushing to rein in biometric tracking before it turns into real-world surveillance pricing and customer profiling. This article has been indexed from Malwarebytes Read the original article: Could your face change what you pay? NYC wants limits…
UK police force presses pause on live facial recognition after study finds racial bias
Cams statistically more likely to ID Black people, says new research A UK police force has suspended its deployment of live facial recognition (LFR) technology after a study revealed it was statistically more likely to identify Black people on a…
IT Security News Hourly Summary 2026-03-20 15h : 12 posts
12 posts were published in the last hour 13:36 : New Fake Zoom Meeting Invite Scam Spreads Malware on Windows PCs 13:36 : Feds disrupt monster IoT botnets behind record-breaking DDoS attacks 13:36 : Eclypsium Raises $25 Million for Device…
New Fake Zoom Meeting Invite Scam Spreads Malware on Windows PCs
Cybersecurity researchers at Sublime Security have discovered a new scam that uses realistic, interactive JavaScript-based Zoom meeting invites to trick users into installing malware. This article has been indexed from Hackread – Cybersecurity News, Data Breaches, AI and More Read…
Feds disrupt monster IoT botnets behind record-breaking DDoS attacks
Millions of hijacked devices powered traffic floods targeting defense systems and beyond The US government has moved to disrupt a cluster of IoT botnets behind some of the largest DDoS attacks ever recorded, including traffic bursts topping 30 terabits per…
Eclypsium Raises $25 Million for Device Supply Chain Security
The company will use the investment to expand its platform’s capabilities and grow channel partnerships. The post Eclypsium Raises $25 Million for Device Supply Chain Security appeared first on SecurityWeek. This article has been indexed from SecurityWeek Read the original…
Cloud Security Posture Management in 2026
By 2026, CSPM has evolved from a basic auditor into an AI-driven, context-aware pillar of CNAPP. Explore how modern Cloud Security Posture Management integrates with DevOps, utilizes “Security as Code,” and automates remediation across AWS, Azure, and GCP to eliminate…
Cisco FMC flaw was exploited by Interlock weeks before patch (CVE-2026-20131)
A critical vulnerability (CVE-2026-20131) in Cisco Secure Firewall Management Center (FMC) that Cisco disclosed and patched in early March 2026 has been exploited as a zero-day by the Interlock ransomware gang, Amazon CISO and VP of Security Engineering CJ Moses…
Jaguar Land Rover’s cyber bailout sets worrying precedent, watchdog warns
Lack of clear criteria risks encouraging firms to lean on state support instead of worrying about insurance The UK’s cyber watchdog has warned that the government’s £1.5 billion bailout of Jaguar Land Rover (JLR) risks setting a troubling precedent for…
Google slows Android sideloading to trip up scammers
Google’s advanced flow for Android changes how apps from unverified developers are installed, adding steps to reduce scam-driven sideloading. The feature is aimed at experienced users and allows sideloading through a controlled, one-time setup. It addresses scam scenarios where attackers…
Nordstrom Email Abuse Sends Crypto Scams
Nordstrom customers were recently targeted by a sophisticated phishing campaign that sent fraudulent cryptocurrency offers directly from an official company email address. This article has been indexed from CyberMaterial Read the original article: Nordstrom Email Abuse Sends Crypto Scams