Main Menu
Cyber Security
New Threat Vector Exploits DNS Queries for Data Exfiltration in AI Environments
EU Council Sanctions Three Entities and Two Individuals for Cyberattacks on Critical Infrastructure
Identity-Based Access Control for AI Agents Is Now a Security Necessity
Hidden Commands in Font Rendering Are Being Used to Manipulate AI Assistants Through Webpages
Surf AI Raises $57 Million for Its Agentic Security Operations Platform
RondoDox Botnet Ramps Up Attacks, Hitting 15,000 Daily Exploitation Attempts
Tech and Retail Giants Sign Global Pact to Combat Online Scams and Fraud
Tech Giants Invest $12.5 Million in Open Source Software Security
Ongoing Python Package Attack Uses Stolen GitHub Tokens
Stryker’s Internal Microsoft Environment Was Breached Last Week
DRILLAPP Backdoor Campaign Targets Ukrainian Organizations With Edge Debugging Abuse
New Malware Tactics Take Aim at Windows, iOS, and Linux Users
Companies House Restores WebFiling Service After Security Flaw Exposed Corporate Data
How AI Is Making Financial Fraud 4.5 Times More Profitable
Ongoing Exchange Online Outage Leaves Customers Without Mailbox Access
Signal Cyberattack in Germany Targets Politicians Through Impersonation
Silence from the Corporate Giants: Four Companies Yet to Comment on Oracle EBS Hack
FBI Seeks Gamer Help in Steam Malware Investigation
Shadow AI Is Quietly Spreading Across SaaS Environments
Microsoft Teams Is Adding Automatic Bot Tagging in Meeting Lobbies
Canadian Outsourcing Leader Telus Digital Faces a Severe Data Breach
VENON Banking Malware Targets Brazilian Users With Rust-Based Code
Apple Releases iOS and iPadOS Updates to Patch Coruna Exploits
Veeam Software Fixes Critical RCE Vulnerabilities in Backup & Replication Solution
England Hockey Investigates Possible Data Breach by AiLock Ransomware Group
International Operation Dismantles the Dangerous SocksEscort Proxy Service
Apple Patches Older iPhones and iPads Against Coruna Exploit Kit Attacks
Cybercriminals Target Airline Loyalty Programs: A New Threat to Travelers
Global Arrests Made in a Social Media Scam Targeting Thousands
SQL Injection Flaw in Ally WordPress Plugin Puts 400,000 Sites at Risk
Software Supply Chains Are the New Frontline for Cyber Risk
Cybersecurity
Software Supply Chains Are the New Frontline for Cyber Risk
Gabby Lee March 19, 2026
Explore how perimeter security isn't enough to protect against threats in software supply chains.
Sam Altman's Eyeball-Scanning Orb Takes on a New Role in AI Integration
Cybersecurity
Sam Altman’s Eyeball-Scanning Orb Takes on a New Role in AI Integration
Gabby Lee March 18, 2026
Sam Altman integrates agentic AI with his eyeball-scanning orb, enhancing its applications in cryptography and bot identification.
Companies House Confirmed a Vulnerability That Put Millions of Business Records at Risk
Cybersecurity
Companies House Confirmed a Vulnerability That Put Millions of Business Records at Risk
Andrew Doyle March 18, 2026
UK Companies House vulnerability exposed millions of firm details, potentially allowing unauthorized access and record alteration.
New Threat Vector Exploits DNS Queries for Data Exfiltration in AI Environments
Cybersecurity
New Threat Vector Exploits DNS Queries for Data Exfiltration in AI Environments
Mitchell Langley March 18, 2026
Researchers expose a method leveraging DNS queries for data exfiltration from AI code execution environments.
EU Council Sanctions Three Entities and Two Individuals for Cyberattacks on Critical Infrastructure
Cybersecurity
EU Council Sanctions Three Entities and Two Individuals for Cyberattacks on Critical Infrastructure
Mitchell Langley March 18, 2026
The EU Council has sanctioned three entities and two individuals involved in cyberattacks on critical infrastructure within the region.
Identity-Based Access Control for AI Agents Is Now a Security Necessity
Cybersecurity
Identity-Based Access Control for AI Agents Is Now a Security Necessity
Gabby Lee March 18, 2026
How identity-based access control for AI agents helps safeguard against misuse and data exposure.
Hidden Commands in Font Rendering Are Being Used to Manipulate AI Assistants Through Webpages
Application Security
Hidden Commands in Font Rendering Are Being Used to Manipulate AI Assistants Through Webpages
Andrew Doyle March 18, 2026
A font-rendering vulnerability manipulates AI assistants by concealing malicious web commands in innocent HTML.
Surf AI Raises $57 Million for Its Agentic Security Operations Platform
Cybersecurity
Surf AI Raises $57 Million for Its Agentic Security Operations Platform
Gabby Lee March 18, 2026
Surf AI secures $57M in funding for its security operations platform.
LeakNet Ransomware Adopts ClickFix to Trick Users Into Compromising Themselves
News
LeakNet Ransomware Adopts ClickFix to Trick Users Into Compromising Themselves
Andrew Doyle March 18, 2026
LeakNet ransomware integrates ClickFix for access, shifting from traditional entry strategies.
RondoDox Botnet Ramps Up Attacks, Hitting 15,000 Daily Exploitation Attempts
Cybersecurity
RondoDox Botnet Ramps Up Attacks, Hitting 15,000 Daily Exploitation Attempts
Mitchell Langley March 18, 2026
The RondoDox botnet targets 174 vulnerabilities, increasing activity to 15,000 exploitation attempts daily.
Tech and Retail Giants Sign Global Pact to Combat Online Scams and Fraud
Cybersecurity
Tech and Retail Giants Sign Global Pact to Combat Online Scams and Fraud
Gabby Lee March 18, 2026
Major tech and retail organizations have banded together to address online scams and fraud, establishing a first-of-its-kind industry accord designed ...
Tech Giants Invest $12.5 Million in Open Source Software Security
Cybersecurity
Tech Giants Invest $12.5 Million in Open Source Software Security
Andrew Doyle March 18, 2026
Major tech firms contribute $12.5 million to enhance open source software security.
Ongoing Python Package Attack Uses Stolen GitHub Tokens
Application Security
Ongoing Python Package Attack Uses Stolen GitHub Tokens
Andrew Doyle March 17, 2026
Attack leverages stolen GitHub tokens to introduce malware into numerous Python repositories.
Stryker's Internal Microsoft Environment Was Breached Last Week
Cybersecurity
Stryker’s Internal Microsoft Environment Was Breached Last Week
Gabby Lee March 17, 2026
Stryker's internal Microsoft environment breach led to the remote wiping of tens of thousands of employee devices last week.
Payload Ransomware Group Claims Breach of Royal Bahrain Hospital
News
Payload Ransomware Group Claims Breach of Royal Bahrain Hospital
Mitchell Langley March 17, 2026
Royal Bahrain Hospital reportedly targeted by Payload ransomware, with 110 GB of sensitive data allegedly stolen.
DRILLAPP Backdoor Campaign Targets Ukrainian Organizations With Edge Debugging Abuse
Cybersecurity
DRILLAPP Backdoor Campaign Targets Ukrainian Organizations With Edge Debugging Abuse
Andrew Doyle March 17, 2026
Russian-linked threat actors deploy DRILLAPP backdoor campaign in Ukraine.
Phishing Attack Hits Intuitive's Internal IT Business Systems
News
Phishing Attack Hits Intuitive’s Internal IT Business Systems
Mitchell Langley March 17, 2026
Intuitive's internal systems hit by phishing attack; patient operations remain unaffected.
New Malware Tactics Take Aim at Windows, iOS, and Linux Users
Application Security
New Malware Tactics Take Aim at Windows, iOS, and Linux Users
Andrew Doyle March 17, 2026
Explore how new malware strains are targeting users with advanced methods and reverse engineering insights.
Companies House Restores WebFiling Service After Security Flaw Exposed Corporate Data
Cybersecurity
Companies House Restores WebFiling Service After Security Flaw Exposed Corporate Data
Andrew Doyle March 17, 2026
Companies House fixes a security flaw in WebFiling, protecting UK companies' data.
How AI Is Making Financial Fraud 4.5 Times More Profitable
Cybersecurity
How AI Is Making Financial Fraud 4.5 Times More Profitable
Andrew Doyle March 17, 2026
Financial fraud schemes using AI boost profitability by 4.5 times, Interpol reports.
Software Supply Chains Are the New Frontline for Cyber Risk
Cybersecurity
Software Supply Chains Are the New Frontline for Cyber Risk
Gabby Lee March 19, 2026
Companies House Confirmed a Vulnerability That Put Millions of Business Records at Risk
Cybersecurity
Companies House Confirmed a Vulnerability That Put Millions of Business Records at Risk
Andrew Doyle March 18, 2026
LeakNet Ransomware Adopts ClickFix to Trick Users Into Compromising Themselves
News
LeakNet Ransomware Adopts ClickFix to Trick Users Into Compromising Themselves
Andrew Doyle March 18, 2026
RondoDox Botnet Ramps Up Attacks, Hitting 15,000 Daily Exploitation Attempts
Cybersecurity
RondoDox Botnet Ramps Up Attacks, Hitting 15,000 Daily Exploitation Attempts
Mitchell Langley March 18, 2026

TOP CYBERSECURITY HEADLINES

New Threat Vector Exploits DNS Queries for Data Exfiltration in AI Environments
Cybersecurity
New Threat Vector Exploits DNS Queries for Data Exfiltration in AI Environments
EU Council Sanctions Three Entities and Two Individuals for Cyberattacks on Critical Infrastructure
Cybersecurity
EU Council Sanctions Three Entities and Two Individuals for Cyberattacks on Critical Infrastructure
Identity-Based Access Control for AI Agents Is Now a Security Necessity
Cybersecurity
Identity-Based Access Control for AI Agents Is Now a Security Necessity
Hidden Commands in Font Rendering Are Being Used to Manipulate AI Assistants Through Webpages
Application Security
Hidden Commands in Font Rendering Are Being Used to Manipulate AI Assistants Through Webpages

This Week’s Security Spotlight

Canadian Outsourcing Leader Telus Digital Faces a Severe Data Breach
Cybersecurity
Canadian Outsourcing Leader Telus Digital Faces a Severe Data Breach
Andrew Doyle March 13, 2026
Senate Confirms Joshua Rudd to Lead the NSA and US Cyber Command
Cybersecurity
Senate Confirms Joshua Rudd to Lead the NSA and US Cyber Command
Andrew Doyle March 12, 2026
Critical Security Vulnerabilities Patched in n8n Workflow Automation Platform
CVE Vulnerability Alerts
Critical Security Vulnerabilities Patched in n8n Workflow Automation Platform
Mitchell Langley March 12, 2026
OpenClaw Security Issues Persist as SecureClaw Open Source Tool Debuts
Cybersecurity
OpenClaw Security Issues Persist as SecureClaw Open Source Tool Debuts
Andrew Doyle February 19, 2026
More In News
Trending
Targeted Phishing Attack Breaches Security Firm Executive
Russian Campaign Targets Ukraine with BadPaw and MeowMeow Malware
Underground Sale of Compromised cPanel Credentials Fuels Phishing Infrastructure
Phishing Warnings as LastPass Users Get Targeted by Fake Alerts

Daily Briefing Newsletter

Subscribe to the Daily Security Review Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.

Featured Videos​

Podcasts

Podcasts
Palo Alto Networks Uncovers 194,000-Domain Smishing Campaign Linked to “Smishing Triad”
October 28, 2025
Podcasts
Coveware Reports Historic Drop in Ransomware Payments: Only 23% of Victims Paid in Q3 2025
October 28, 2025
Podcasts
Firefox Add-Ons Must Declare Data Collection—or Be Rejected
October 28, 2025

Cyber Security News

Software Supply Chains Are the New Frontline for Cyber Risk
Cybersecurity
Software Supply Chains Are the New Frontline for Cyber Risk
March 19, 2026
Sam Altman's Eyeball-Scanning Orb Takes on a New Role in AI Integration
Cybersecurity
Sam Altman’s Eyeball-Scanning Orb Takes on a New Role in AI Integration
March 18, 2026
Companies House Confirmed a Vulnerability That Put Millions of Business Records at Risk
Cybersecurity
Companies House Confirmed a Vulnerability That Put Millions of Business Records at Risk
March 18, 2026
New Threat Vector Exploits DNS Queries for Data Exfiltration in AI Environments
Cybersecurity
New Threat Vector Exploits DNS Queries for Data Exfiltration in AI Environments
March 18, 2026
EU Council Sanctions Three Entities and Two Individuals for Cyberattacks on Critical Infrastructure
Cybersecurity
EU Council Sanctions Three Entities and Two Individuals for Cyberattacks on Critical Infrastructure
March 18, 2026
Identity-Based Access Control for AI Agents Is Now a Security Necessity
Cybersecurity
Identity-Based Access Control for AI Agents Is Now a Security Necessity
March 18, 2026
  • All
  • Application Security
  • Blog
  • CVE Vulnerability Alerts
  • Cybersecurity
  • Cybersecurity Newsletter
  • Data Security
  • Endpoint Security
  • Identity and Access Management
  • Information Security
  • Network Security
  • News
  • Phishing
  • Podcasts
  • Product Reviews
  • Ransomware
  • Ransomware Victims
  • Resources
  • Security Spotlight
  • Sponsored
  • Threat Actors
  • Threat Actors
  • Threat Detection Tools
New Threat Vector Exploits DNS Queries for Data Exfiltration in AI Environments
March 18, 2026
Researchers expose a method leveraging DNS queries for data exfiltration from AI code execution environments.
EU Council Sanctions Three Entities and Two Individuals for Cyberattacks on Critical Infrastructure
March 18, 2026
The EU Council has sanctioned three entities and two individuals involved in cyberattacks on critical infrastructure within the region.
Identity-Based Access Control for AI Agents Is Now a Security Necessity
March 18, 2026
How identity-based access control for AI agents helps safeguard against misuse and data exposure.
Hidden Commands in Font Rendering Are Being Used to Manipulate AI Assistants Through Webpages
March 18, 2026
A font-rendering vulnerability manipulates AI assistants by concealing malicious web commands in innocent HTML.
Surf AI Raises $57 Million for Its Agentic Security Operations Platform
March 18, 2026
Surf AI secures $57M in funding for its security operations platform.
LeakNet Ransomware Adopts ClickFix to Trick Users Into Compromising Themselves
March 18, 2026
LeakNet ransomware integrates ClickFix for access, shifting from traditional entry strategies.
RondoDox Botnet Ramps Up Attacks, Hitting 15,000 Daily Exploitation Attempts
March 18, 2026
The RondoDox botnet targets 174 vulnerabilities, increasing activity to 15,000 exploitation attempts daily.
Tech and Retail Giants Sign Global Pact to Combat Online Scams and Fraud
March 18, 2026
Major tech and retail organizations have banded together to address online scams and fraud, establishing a first-of-its-kind industry accord designed ...
Tech Giants Invest $12.5 Million in Open Source Software Security
March 18, 2026
Major tech firms contribute $12.5 million to enhance open source software security.
Ongoing Python Package Attack Uses Stolen GitHub Tokens
March 17, 2026
Attack leverages stolen GitHub tokens to introduce malware into numerous Python repositories.
Stryker’s Internal Microsoft Environment Was Breached Last Week
March 17, 2026
Stryker's internal Microsoft environment breach led to the remote wiping of tens of thousands of employee devices last week.
Payload Ransomware Group Claims Breach of Royal Bahrain Hospital
March 17, 2026
Royal Bahrain Hospital reportedly targeted by Payload ransomware, with 110 GB of sensitive data allegedly stolen.
Phishing Attack Hits Intuitive’s Internal IT Business Systems
March 17, 2026
Intuitive's internal systems hit by phishing attack; patient operations remain unaffected.
DRILLAPP Backdoor Campaign Targets Ukrainian Organizations With Edge Debugging Abuse
March 17, 2026
Russian-linked threat actors deploy DRILLAPP backdoor campaign in Ukraine.
New Malware Tactics Take Aim at Windows, iOS, and Linux Users
March 17, 2026
Explore how new malware strains are targeting users with advanced methods and reverse engineering insights.
Companies House Restores WebFiling Service After Security Flaw Exposed Corporate Data
March 17, 2026
Companies House fixes a security flaw in WebFiling, protecting UK companies' data.
How AI Is Making Financial Fraud 4.5 Times More Profitable
March 17, 2026
Financial fraud schemes using AI boost profitability by 4.5 times, Interpol reports.
Ongoing Exchange Online Outage Leaves Customers Without Mailbox Access
March 17, 2026
Microsoft is addressing an Exchange Online outage impacting mailbox and calendar access.
Signal Cyberattack in Germany Targets Politicians Through Impersonation
March 17, 2026
Cyberattack on Signal and WhatsApp targets high-profile German officials, including former BND VP, using impersonation tactics.
Targeted Phishing Attack Breaches Security Firm Executive
March 17, 2026
A phishing attack involved DKIM-signed emails, trusted infrastructures, and Cloudflare protection against a security firm executive.
New Threat Vector Exploits DNS Queries for Data Exfiltration in AI Environments
EU Council Sanctions Three Entities and Two Individuals for Cyberattacks on Critical Infrastructure
Identity-Based Access Control for AI Agents Is Now a Security Necessity
Hidden Commands in Font Rendering Are Being Used to Manipulate AI Assistants Through Webpages
Surf AI Raises $57 Million for Its Agentic Security Operations Platform
LeakNet Ransomware Adopts ClickFix to Trick Users Into Compromising Themselves
RondoDox Botnet Ramps Up Attacks, Hitting 15,000 Daily Exploitation Attempts
Tech and Retail Giants Sign Global Pact to Combat Online Scams and Fraud
Tech Giants Invest $12.5 Million in Open Source Software Security
Ongoing Python Package Attack Uses Stolen GitHub Tokens
Stryker’s Internal Microsoft Environment Was Breached Last Week
Payload Ransomware Group Claims Breach of Royal Bahrain Hospital
Phishing Attack Hits Intuitive’s Internal IT Business Systems
DRILLAPP Backdoor Campaign Targets Ukrainian Organizations With Edge Debugging Abuse
New Malware Tactics Take Aim at Windows, iOS, and Linux Users
Companies House Restores WebFiling Service After Security Flaw Exposed Corporate Data
How AI Is Making Financial Fraud 4.5 Times More Profitable
Ongoing Exchange Online Outage Leaves Customers Without Mailbox Access
Signal Cyberattack in Germany Targets Politicians Through Impersonation
Targeted Phishing Attack Breaches Security Firm Executive