iOS 26 Security Update Warning—iOS 18 Silent Compromise Exploit Alert

Apple confirms hidden iOS 26 security update, and Google confirms silent iOS 18 spyware compromise. What you need to know and ...
Windows Report

VoidStealer Malware Exploits Chrome Memory to Extract Encryption Keys

Chrome users face a new threat as VoidStealer 2.0 bypasses ABE protections and steals data during browser startup processes.

Microsoft Confirms SQL Zero-Day Security Vulnerability—Here’s The Fix

Microsoft has confirmed that a hacker who successfully exploits a zero-day SQL vulnerability could gain system administrator privileges. Here’s how to fix it.
TMCnet

RAVEN.IO Raises $20 Million to Prevent Cyberattacks as AI-Generated Exploits Make CVE-Based Security Obsolete

New approach to application security in production at 11 companies analyzes code behavior at runtime rather than relying on CVEs or external defenses. PALO ALTO, Calif., March 18, ...

Trivy vulnerability scanner breach pushed infostealer via GitHub Actions

The Trivy vulnerability scanner was compromised in a supply-chain attack by threat actors known as TeamPCP, which distributed ...

New Apple Hack: Up to 270M iPhones Vulnerable to ‘DarkSword’ Exploit

Researchers uncover “DarkSword,” a powerful iPhone exploit targeting millions via compromised websites. Learn how it works ...
StateTech Magazine

Vulnerability Exploitability eXchange: Smarter Patching for State and Local IT Teams

VEX helps public-sector security teams prioritize repairs by identifying which vulnerabilities affect their systems.

Ransomware gang exploits Cisco flaw in zero-day attacks since January

The Interlock ransomware gang has been exploiting a maximum severity remote code execution (RCE) vulnerability in Cisco's ...
SecurityWeek

Russian APT Exploits Zimbra Vulnerability Against Ukraine

Russia-linked APT28 has exploited a high-severity XSS vulnerability in Zimbra in attacks against Ukrainian entities.
CSO Online

Ransomware group exploited Cisco firewall vulnerability as a zero day, weeks before a patch appeared

Admins have been handed a patching emergency as Amazon reveals that Interlock ransomware started targeting the FMC flaw in ...
Infosecurity Magazine

AI-Enabled Adversaries Compress Time-to-Exploit Following Vulnerability Disclosure

Rapid7 says median time from publication to CISA KEV inclusion dropped to five days ...
The Hacker News

Interlock Ransomware Exploits Cisco FMC Zero-Day CVE-2026-20131 for Root Access

Interlock ransomware is actively exploiting CVE-2026-20131 (CVSS 10.0) in Cisco FMC, enabling unauthenticated remote code ...