Cyber Hawk

Cyber Security

Microsoft Patches 84 Flaws in March Patch Tuesday, Including Two Public Zero-Days

March 11, 2026

Microsoft on Tuesday released patches for a set of 84 new security vulnerabilities affecting various software components, including two that have been listed as publicly known. Of these, eight are ra…

Cyber Security

UNC6426 Exploits nx npm Supply-Chain Attack to Gain AWS Admin Access in 72 Hours

March 11, 2026

A threat actor known as UNC6426 leveraged keys stolen following the supply chain compromise of the nx npm package last year to completely breach a victim's cloud environment within a span of 72 h…

Cyber Security

Five Malicious Rust Crates and AI Bot Exploit CI/CD Pipelines to Steal Developer Secrets

March 10, 2026

Cybersecurity researchers have discovered five malicious Rust crates that masquerade as time-related utilities to transmit .env file data to the threat actors. The Rust packages, published to crates.…

Cyber Security

APT28 Uses BEARDSHELL and COVENANT Malware to Spy on Ukrainian Military

March 10, 2026

The Russian state-sponsored hacking group tracked as APT28 has been observed using a pair of implants dubbed BEARDSHELL and COVENANT to facilitate long‑term surveillance of Ukrainian military personn…

Cyber Security

Threat Actors Mass-Scan Salesforce Experience Cloud via Modified AuraInspector Tool

March 10, 2026

Salesforce has warned of an increase in threat actor activity that's aimed at exploiting misconfigurations in publicly accessible Experience Cloud sites by making use of a customized version of a…

Cyber Security

CISA Flags SolarWinds, Ivanti, and Workspace One Vulnerabilities as Actively Exploited

March 10, 2026

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Monday added three security flaws to its Known Exploited Vulnerabilities (KEV) catalog, based on evidence of active exploitation. T…

Cyber Security

Malicious npm Package Posing as OpenClaw Installer Deploys RAT, Steals macOS Credentials

March 09, 2026

Cybersecurity researchers have discovered a malicious npm package that masquerades as an OpenClaw installer to deploy a remote access trojan (RAT) and steal sensitive data from compromised hosts. The…

Bitcoin Mining

Microsoft Patches 84 Flaws in March Patch Tuesday, Including Two Public Zero-Days

UNC6426 Exploits nx npm Supply-Chain Attack to Gain AWS Admin Access in 72 Hours

Five Malicious Rust Crates and AI Bot Exploit CI/CD Pipelines to Steal Developer Secrets

APT28 Uses BEARDSHELL and COVENANT Malware to Spy on Ukrainian Military

Threat Actors Mass-Scan Salesforce Experience Cloud via Modified AuraInspector Tool

CISA Flags SolarWinds, Ivanti, and Workspace One Vulnerabilities as Actively Exploited

Malicious npm Package Posing as OpenClaw Installer Deploys RAT, Steals macOS Credentials

Popular Feeds

Scattered Spider Behind Cyberattacks on M&S and Co-op, Causing Up to $592M in Damages

FBI and Europol Seize LeakBase Forum Used to Trade Stolen Credentials

Where Multi-Factor Authentication Stops and Credential Abuse Starts

Featured News

What Boards Must Demand in the Age of AI-Automated Exploitation

Random Posts

Popular Posts

Scattered Spider Behind Cyberattacks on M&S and Co-op, Causing Up to $592M in Damages

FBI and Europol Seize LeakBase Forum Used to Trade Stolen Credentials

Where Multi-Factor Authentication Stops and Credential Abuse Starts

Bitcoin Mining

Share

Popular Feeds

Featured News

Random Posts

Popular Posts