Claude Extension Flaw Enabled Zero-Click XSS Prompt Injection via Any Website

26/03/2026 0 Comments 0 tags

Cybersecurity researchers have disclosed a vulnerability in Anthropic’s Claude Google Chrome Extension that could have been exploited to trigger malicious prompts simply by visiting a web page. The flaw “allowed

Coruna iOS Kit Reuses 2023 Triangulation Exploit Code in New Mass Attacks

26/03/2026 0 Comments 0 tags

The kernel exploit for two security vulnerabilities used in the recently uncovered Apple iOS exploit kit known as Coruna is an updated version of the same exploit that was used

[Webinar] Stop Guessing. Learn to Validate Your Defenses Against Real Attacks

26/03/2026 0 Comments 0 tags

Most teams have security tools in place. Alerts are firing, dashboards look clean, threat intel is flowing in. On the surface, everything feels under control. But one question usually stays

WebRTC Skimmer Bypasses CSP to Steal Payment Data from E-Commerce Sites

26/03/2026 0 Comments 0 tags

Cybersecurity researchers have discovered a new payment skimmer that uses WebRTC data channels as a means to receive payloads and exfiltrate data, effectively bypassing security controls. “Instead of the usual

LeakBase Admin Arrested in Russia Over Massive Stolen Credential Marketplace

25/03/2026 0 Comments 0 tags

The alleged administrator of the LeakBase cybercrime forum has been arrested by Russian law enforcement authorities, state media reported Thursday. According to TASS and MVD Media, a news website linked

GlassWorm Malware Uses Solana Dead Drops to Deliver RAT and Steal Browser, Crypto Data

25/03/2026 0 Comments 0 tags

Cybersecurity researchers have flagged a new evolution of the GlassWorm campaign that delivers a multi-stage framework capable of comprehensive data theft and installing a remote access trojan (RAT), which deploys

Device Code Phishing Hits 340+ Microsoft 365 Orgs Across Five Countries via OAuth Abuse

25/03/2026 0 Comments 0 tags

Cybersecurity researchers are calling attention to an active device code phishing campaign that’s targeting Microsoft 365 identities across more than 340 organizations in the U.S., Canada, Australia, New Zealand, and

Russian Hacker Sentenced to 2 Years for TA551 Botnet-Driven Ransomware Attacks

25/03/2026 0 Comments 0 tags

The U.S. Department of Justice (DoJ) said a Russian national has been sentenced to two years in prison for managing a botnet that was used to launch ransomware attacks against

The Kill Chain Is Obsolete When Your AI Agent Is the Threat

25/03/2026 0 Comments 0 tags

In September 2025, Anthropic disclosed that a state-sponsored threat actor used an AI coding agent to execute an autonomous cyber espionage campaign against 30 global targets. The AI handled 80-90%

FCC Bans New Foreign-Made Routers Over Supply Chain and Cyber Risk Concerns

25/03/2026 0 Comments 0 tags

The U.S. Federal Communications Commission (FCC) said on Monday that it was banning the import of new, foreign-made consumer routers, citing “unacceptable” risks to cyber and national security. The action