Cyber Hawk

What Boards Must Demand in the Age of AI-Automated Exploitation

March 11, 2026

“You knew, and you could have acted. Why didn’t you?” This is the question you do not want to be asked. And increasingly, it’s the question leaders are forced to answer after an incident. For years,…

Cyber Security

Microsoft Patches 84 Flaws in March Patch Tuesday, Including Two Public Zero-Days

March 11, 2026

Microsoft on Tuesday released patches for a set of 84 new security vulnerabilities affecting various software components, including two that have been listed as publicly known. Of these, eight are ra…

Cyber Security

UNC6426 Exploits nx npm Supply-Chain Attack to Gain AWS Admin Access in 72 Hours

March 11, 2026

A threat actor known as UNC6426 leveraged keys stolen following the supply chain compromise of the nx npm package last year to completely breach a victim's cloud environment within a span of 72 h…

Cyber Security

Five Malicious Rust Crates and AI Bot Exploit CI/CD Pipelines to Steal Developer Secrets

March 10, 2026

Cybersecurity researchers have discovered five malicious Rust crates that masquerade as time-related utilities to transmit .env file data to the threat actors. The Rust packages, published to crates.…

Cyber Security

APT28 Uses BEARDSHELL and COVENANT Malware to Spy on Ukrainian Military

March 10, 2026

The Russian state-sponsored hacking group tracked as APT28 has been observed using a pair of implants dubbed BEARDSHELL and COVENANT to facilitate long‑term surveillance of Ukrainian military personn…

Cyber Security

Threat Actors Mass-Scan Salesforce Experience Cloud via Modified AuraInspector Tool

March 10, 2026

Salesforce has warned of an increase in threat actor activity that's aimed at exploiting misconfigurations in publicly accessible Experience Cloud sites by making use of a customized version of a…

Cyber Security

CISA Flags SolarWinds, Ivanti, and Workspace One Vulnerabilities as Actively Exploited

March 10, 2026

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Monday added three security flaws to its Known Exploited Vulnerabilities (KEV) catalog, based on evidence of active exploitation. T…

Bitcoin Mining

Hot News

Labels

Report Abuse

Recent posts

What Boards Must Demand in the Age of AI-Automated Exploitation

Microsoft Patches 84 Flaws in March Patch Tuesday, Including Two Public Zero-Days

UNC6426 Exploits nx npm Supply-Chain Attack to Gain AWS Admin Access in 72 Hours

Five Malicious Rust Crates and AI Bot Exploit CI/CD Pipelines to Steal Developer Secrets

APT28 Uses BEARDSHELL and COVENANT Malware to Spy on Ukrainian Military

Threat Actors Mass-Scan Salesforce Experience Cloud via Modified AuraInspector Tool

CISA Flags SolarWinds, Ivanti, and Workspace One Vulnerabilities as Actively Exploited

Popular Feeds

Scattered Spider Behind Cyberattacks on M&S and Co-op, Causing Up to $592M in Damages

FBI and Europol Seize LeakBase Forum Used to Trade Stolen Credentials

Where Multi-Factor Authentication Stops and Credential Abuse Starts

Featured News

What Boards Must Demand in the Age of AI-Automated Exploitation

Random Posts

Popular Posts

Scattered Spider Behind Cyberattacks on M&S and Co-op, Causing Up to $592M in Damages

FBI and Europol Seize LeakBase Forum Used to Trade Stolen Credentials

Where Multi-Factor Authentication Stops and Credential Abuse Starts

Bitcoin Mining

Hot News

Labels

Recent posts

Share

Popular Feeds

Featured News

Random Posts

Popular Posts