Alleged Crunchyroll Data Breach Exposes User Data
The reported Crunchyroll data breach has sparked a new debate across the anime streaming community, not just because of the scale of the alleged exposure, but…
Month: March 2026
US regulator bans imports of new foreign-made routers
The US Federal Communications Commission said it was banning the import of all new foreign-made consumer routers, the latest crackdown on Chinese-made electronic gear over…
North Korea-linked threat actors abuse VS Code auto-run to spread StoatWaffle malware
North Korea-linked threat actors abuse VS Code auto-run to spread StoatWaffle malware Pierluigi Paganini March 24, 2026 North Korea-linked threat actors use VS Code auto-run…
Chaining DOM clobbering and CSP bypasses for XSS
At Intigriti, we host monthly web-based Capture The Flag (CTF) challenges as a way to engage with the security researcher community. This month’s challenge, brought…
Network edge devices still widely used after reaching end-of-life status
A report by VulnCheck shows nation-state hackers often target flaws in aging routers, firewalls and VPNs. Source link
FBI: Iranian hackers targeting opponents with Telegram malware
Iranian government-connected groups are deploying malware via the Telegram messaging app, taking aim at dissidents and other opponents of Tehran around the world, the FBI…
Rubrik announces Microsoft Defender integration and new AI governance engine
Rubrik has announced two new product developments at RSAC 2026: an integration with Microsoft Defender aimed at speeding identity-attack recovery, and a new AI governance…
ISO und ISMS: Darum gehen Security-Zertifizierungen schief
Mit einer ISO 27001-Zertifizierung weisen Unternehmen nach, dass sie ein wirksames Informationssicherheits-Managementsystems (ISMS) betreiben. Lesen Sie, weshalb der Zertifizierungsprozess häufig schief geht. Foto: mentalmind –…
Streamlining the Security Analyst Experience — Elastic Security Labs
The term Agentic SOC (Security Operations Center) is one of the most popular concepts in security today. But what does it truly mean in practice,…
Mazda discloses security breach exposing employee and partner data
Mazda Motor Corporation (Mazda) announced that information belonging to its employees and business partners had been exposed in a security incident detected last December. Mazda…
511,000+ End-of-Life Microsoft IIS Instances Exposed Online, Secure Now!
A massive attack surface involving outdated Microsoft Internet Information Services (IIS) servers. During Shadowserver’s daily network scans on March 23, 2026, researchers identified over 511,000…
511,000+ End-of-Life IIS Instances Found Online, Raising Security Risks
Security researchers at The Shadowserver Foundation have identified a massive internet-facing attack surface, discovering more than 511,000 End-of-Life Microsoft Internet Information Services (IIS) instances currently…