Cyber Hawk

Oracle Patches Critical CVE-2026-21992 Enabling Unauthenticated RCE in Identity Manager

March 21, 2026

Oracle has released security updates to address a critical security flaw impacting Identity Manager and Web Services Manager that could be exploited to achieve remote code execution. The vulnerabilit…

Cyber Security

CISA Flags Apple, Craft CMS, Laravel Bugs in KEV, Orders Patching by April 3, 2026

March 21, 2026

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Friday added five security flaws impacting Apple, Craft CMS, and Laravel Livewire to its Known Exploited Vulnerabilities (KEV) cata…

Cyber Security

Trivy Supply Chain Attack Triggers Self-Spreading CanisterWorm Across 47 npm Packages

March 21, 2026

The threat actors behind the supply chain attack targeting the popular Trivy scanner are suspected to be conducting follow-on attacks that have led to the compromise of a large number of npm packages…

Cyber Security

Trivy Security Scanner GitHub Actions Breached, 75 Tags Hijacked to Steal CI/CD Secrets

March 20, 2026

Trivy, a popular open-source vulnerability scanner maintained by Aqua Security, was compromised a second time within the span of a month to deliver malware that stole sensitive CI/CD secrets. The lat…

Cyber Security

DoJ Disrupts 3 Million-Device IoT Botnets Behind Record 31.4 Tbps Global DDoS Attacks

March 20, 2026

The U.S. Department of Justice (DoJ) on Thursday announced the disruption of command-and-control (C2) infrastructure used by several Internet of Things (IoT) botnets like AISURU, Kimwolf, JackSkid, a…

Cyber Security

Speagle Malware Hijacks Cobra DocGuard to Steal Data via Compromised Servers

March 19, 2026

Cybersecurity researchers have flagged a new malware dubbed Speagle that hijacks the functionality and infrastructure of a legitimate program called Cobra DocGuard. "Speagle is designed to surre…

Cyber Security

54 EDR Killers Use BYOVD to Exploit 34 Signed Vulnerable Drivers and Disable Security

March 19, 2026

A new analysis of endpoint detection and response (EDR) killers has revealed that 54 of them leverage a technique known as bring your own vulnerable driver (BYOVD) by abusing a total of 34 vulnerable…

Bitcoin Mining

Hot News

Labels

Report Abuse

Recent posts

Oracle Patches Critical CVE-2026-21992 Enabling Unauthenticated RCE in Identity Manager

CISA Flags Apple, Craft CMS, Laravel Bugs in KEV, Orders Patching by April 3, 2026

Trivy Supply Chain Attack Triggers Self-Spreading CanisterWorm Across 47 npm Packages

Trivy Security Scanner GitHub Actions Breached, 75 Tags Hijacked to Steal CI/CD Secrets

DoJ Disrupts 3 Million-Device IoT Botnets Behind Record 31.4 Tbps Global DDoS Attacks

Speagle Malware Hijacks Cobra DocGuard to Steal Data via Compromised Servers

54 EDR Killers Use BYOVD to Exploit 34 Signed Vulnerable Drivers and Disable Security

Popular Feeds

Apple Fixes WebKit Vulnerability Enabling Same-Origin Policy Bypass on iOS and macOS

Google Warns of Pixel Firmware Security Flaw Exploited as Zero-Day

CISA Flags Actively Exploited Wing FTP Vulnerability Leaking Server Paths

Featured News

Oracle Patches Critical CVE-2026-21992 Enabling Unauthenticated RCE in Identity Manager

Random Posts

Popular Posts

Apple Fixes WebKit Vulnerability Enabling Same-Origin Policy Bypass on iOS and macOS

Google Warns of Pixel Firmware Security Flaw Exploited as Zero-Day

CISA Flags Actively Exploited Wing FTP Vulnerability Leaking Server Paths

Bitcoin Mining

Hot News

Labels

Recent posts

Share

Popular Feeds

Featured News

Random Posts

Popular Posts