The RSAC 2026 Conference talks worth catching
Another year and yet another RSAC Conference looms. While there are a few invite-only events on Sunday, this year’s conference starts in earnest on Monday,…
Month: March 2026
Microsoft brings phishing-resistant Windows sign-ins via Entra passkeys
Microsoft is rolling out passkey support for Microsoft Entra on Windows devices, adding phishing-resistant passwordless authentication via Windows Hello. The feature is opt-in and will…
GPS Attacks Near Iran Are Wreaking Havoc on Delivery and Mapping Apps
People on social media have reported strange events on delivery and navigation apps—drivers appear to be in the middle of the sea, or a 10-minute…
Gogs Flaw Could Let Attackers Quietly Overwrite Large File Storage Data
A critical security vulnerability has been identified in Gogs, a widely used open-source self-hosted Git service. / Tracked as CVE-2026-25921, this flaw allows unauthenticated attackers…
Microsoft flips Windows Autopatch to default hotpatch security updates
Microsoft is changing the default behavior in Windows Autopatch so that hotpatch security updates are enabled automatically for eligible devices managed through Microsoft Intune or…
APT28 Uses BEARDSHELL and COVENANT Malware to Spy on Ukrainian Military
Ravie LakshmananMar 10, 2026Cyber Espionage / Threat Intelligence The Russian state-sponsored hacking group tracked as APT28 has been observed using a pair of implants dubbed…
‘Work is broken’: Can agentic AI fix it?
When DevRev co-founder Manoj Agarwal told an audience in London’s Canary Wharf last November that “work is broken”, he captured a frustration that many CIOs…
APT28 conducts long-term espionage on Ukrainian forces using custom malware
APT28 conducts long-term espionage on Ukrainian forces using custom malware Pierluigi Paganini March 10, 2026 APT28 used BEARDSHELL and COVENANT malware to spy on Ukrainian…
Cyber retaliation surges after US–Israel strikes on Iran as hacktivists hit governments, defense, critical sectors
New analysis from Intel 471 found that military strikes by the U.S. and Israel against Iran triggered a sharp surge in hacktivist activity across cyber…
Google Cloud warns cloud misconfigurations and identity security gaps pose growing risks to critical infrastructure systems
New data from Google Cloud finds that basic security failures continue to drive the majority of cloud compromises, even as threat activity grows more sophisticated.…
Secure AI Models and Endpoints with Inventory-First AI Security | Qualys TotalAI
Key Takeaways AI security demands a paradigm shift, treating models, endpoints, and integrations as dynamic attack surfaces requiring continuous governance. Inventory-driven visibility is foundational to…
New KadNap botnet hijacks ASUS routers to fuel cybercrime proxy network
A newly discovered botnet malware called KadNap is targeting primarily ASUS routers and other edge networking devices to turn them into proxies for malicious traffic. Since…