EU sanctions Chinese company behind 65,000-device hack 2026-03-17 at 14:26 By Sinisa Markovic The EU Council has sanctioned companies from China and Iran, along with two individuals, over cyberattacks targeting its member states and partners. “Those listed are subject to an asset freeze, while EU citizens and companies are prohibited from providing them with funds […]
EU sanctions Chinese company behind 65,000-device hack Read More »
Millions of UK firms on alert after Companies House data exposure 2026-03-17 at 12:21 By Sinisa Markovic Companies House, the UK’s official company registry, said its WebFiling service is back online after being shut down on Friday to fix a security issue that may have exposed the personal data of millions of firms. An investigation
Millions of UK firms on alert after Companies House data exposure Read More »
Microsoft zeroes in on AI-driven data risks in Fabric 2026-03-17 at 12:21 By Anamarija Pogorelec New Microsoft Purview innovations for Microsoft Fabric help organizations secure data and accelerate AI adoption. The updates focus on identifying risks, preventing data oversharing, and strengthening governance and data quality across the data estate. Integration between Microsoft Purview and Microsoft
Microsoft zeroes in on AI-driven data risks in Fabric Read More »
Hidden instructions in README files can make AI agents leak data 2026-03-17 at 08:02 By Sinisa Markovic Developers rely on AI coding agents to set up projects, install dependencies, and run commands by following instructions in repository README files, which provide setup guidance for software projects. New research identifies a security risk when attackers hide
Hidden instructions in README files can make AI agents leak data Read More »
What to do in the first 24 hours of a breach 2026-03-17 at 07:59 By Help Net Security In this Help Net Security video, Arvind Parthasarathi, CEO of CYGNVS, walks through a 10-step process for handling a cybersecurity breach. The first five steps cover preparation: setting up an out-of-band communication platform, identifying internal stakeholders, selecting
What to do in the first 24 hours of a breach Read More »
Cybersecurity jobs available right now: March 17, 2026 2026-03-17 at 07:59 By Anamarija Pogorelec Application Security DevSecOps Specialist NTT DATA | Italy | On-site – View job details As an Application Security DevSecOps Specialist, you will integrate security into CI/CD pipelines using tools such as SAST, DAST, SCA, secret scanning, and container scanning to ensure
Cybersecurity jobs available right now: March 17, 2026 Read More »
Hackers tried to breach Poland’s nuclear research centre 2026-03-16 at 15:10 By Sinisa Markovic Poland’s National Centre for Nuclear Research (NCBJ) thwarted a cyberattack targeting its IT infrastructure. The attempted intrusion was detected and blocked before attackers could compromise systems or disrupt operations. “No production, operational, or research processes were disrupted, and the MARIA reactor
Hackers tried to breach Poland’s nuclear research centre Read More »
Microsoft Edge 146 adds IP privacy and local network access controls 2026-03-16 at 15:10 By Anamarija Pogorelec Microsoft Edge version 146 (Stable) became available on March 13, 2026, bringing updates to tracking protection, IP privacy, and enterprise network security policies. One change affects tracking prevention in InPrivate browsing. InPrivate windows use the same tracking prevention
Microsoft Edge 146 adds IP privacy and local network access controls Read More »
Meta ditches end-to-end encrypted messaging on Instagram 2026-03-16 at 13:49 By Sinisa Markovic End-to-end encrypted messaging on Instagram will no longer be supported after May 8, 2026. Meta justified the move by saying the feature was rarely used, with only a small fraction of Instagram users enabling encryption. The company advised users seeking end-to-end encryption
Meta ditches end-to-end encrypted messaging on Instagram Read More »
45,000 malicious IP addresses taken down, 94 suspects arrested 2026-03-16 at 10:33 By Sinisa Markovic An international law enforcement operation has taken down more than 45,000 malicious IP addresses and servers linked to phishing, malware, and ransomware activity. The action was carried out as part of Operation Synergia III, an investigation that ran from July
45,000 malicious IP addresses taken down, 94 suspects arrested Read More »
Certificate lifespans are shrinking and most organizations aren’t ready 2026-03-16 at 08:32 By Mirko Zorz The push for shorter TLS certificate lifespans has been building for years. It started with Google’s internal push toward 90-day certificates, which gained traction inside the industry before resistance from enterprise customers slowed things down. Then Apple proposed 47-day certificates,
Certificate lifespans are shrinking and most organizations aren’t ready Read More »
What smart factories keep getting wrong about cybersecurity 2026-03-16 at 08:24 By Mirko Zorz In this Help Net Security interview, Packsize CSO Troy Rydman breaks down the biggest vulnerabilities in smart factory environments today, from IoT devices and legacy systems to human error. He explains how unmanaged devices, from sensors to robotic components, often go
What smart factories keep getting wrong about cybersecurity Read More »
VulHunt: Open-source vulnerability detection framework 2026-03-16 at 07:40 By Anamarija Pogorelec Binarly has published VulHunt Community Edition, making the core scanning engine from Binarly’s commercial Transparency Platform available to independent researchers and practitioners. What VulHunt does VulHunt Community Edition is a framework for detecting vulnerabilities in compiled software. It operates against multiple binary representations simultaneously,
VulHunt: Open-source vulnerability detection framework Read More »
Fake scandal clips on Facebook bait victims into investment scams 2026-03-16 at 07:40 By Sinisa Markovic Bitdefender researchers uncovered hundreds of scam campaigns promoted through Facebook ads that use fake news stories, celebrity impersonation, and redirect chains to funnel victims into investment fraud schemes. The activity ran through 310 malvertising campaigns distributed on Meta platforms
Fake scandal clips on Facebook bait victims into investment scams Read More »
Week in review: AiTM phishing kit used to hijack AWS accounts, year-long malware campaign targets HR 2026-03-15 at 15:12 By Help Net Security Here’s an overview of some of last week’s most interesting news, articles, interviews and videos: Turning expertise into opportunity for women in cybersecurity Speaker diversity in cybersecurity has been a talking point
Epic Fury Update: Stryker Attack Highlights Handala’s Shift from Espionage to Disruption 2026-03-13 at 19:32 By Arthur Erzberger On March 11, 2026, the medical technology vendor Stryker disclosed a global cyberattack affecting its Microsoft environment. The company said there was no indication of ransomware or malware, but the full scope and restoration timeline were unknown.
Epic Fury Update: Stryker Attack Highlights Handala’s Shift from Espionage to Disruption Read More »
LevelBlue SpiderLabs Breaks Down the Role of Cyber Operations Taken in the Iran Crisis 2026-03-13 at 19:32 By Gal Romano As combat operations that began on February 28 with joint US-Israeli strikes on Iran’s military and leadership continue, cybersecurity analysts are turning their attention to how this 21st-century conflict is unfolding in the digital domain.
LevelBlue SpiderLabs Breaks Down the Role of Cyber Operations Taken in the Iran Crisis Read More »
EU Parliament backs extension of CSAM detection rules until 2027 2026-03-13 at 14:19 By Anamarija Pogorelec The European Parliament has voted to extend a temporary exemption to EU privacy legislation that allows online platforms to voluntarily detect child sexual abuse material (CSAM). The extension prolongs a derogation from the EU’s ePrivacy Directive, which was set
EU Parliament backs extension of CSAM detection rules until 2027 Read More »
Authorities dismantle SocksEscort proxy network behind millions in fraud 2026-03-13 at 12:22 By Sinisa Markovic SocksEscort, a residential proxy network used to exploit thousands of compromised home routers worldwide and facilitate large-scale fraud that cost victims millions of dollars, has been disrupted in an international law enforcement operation led by the U.S. Department of Justice.
Authorities dismantle SocksEscort proxy network behind millions in fraud Read More »
AI coding agents keep repeating decade-old security mistakes 2026-03-13 at 08:01 By Anamarija Pogorelec Coding agents are now writing production features on real development teams, and a new report from DryRun Security shows that those agents introduce security vulnerabilities at a high rate across nearly every type of application they build. “AI coding agents can
AI coding agents keep repeating decade-old security mistakes Read More »