Met Police to ‘trial’ handheld facial recognition tech
The Metropolitan Police are set to trial handheld facial recognition technology that will allow officers to conduct biometric checks on the spot, the Mayor of…
Month: March 2026
China issues second warning on OpenClaw risks amid adoption frenzy
China’s cybersecurity agency on Tuesday issued a second warning about security and data risks tied to OpenClaw, despite a rush among local governments and tech…
China’s Zero-Day Pipeline: From Discovery to Deployment
Executive Summary China’s observed use of zero-days has declined since 2023. However, it has expanded its capacity to discover and manage vulnerabilities, signaling a continued…
Dealing with Imperfect Telemetry: Techniques for Effective Incident Response
We’ve all seen threat reports and intrusion write-ups that look deeply polished, with a cohesive timeline that highlights incredible telemetry and analysis skills. Cool diagrams…
CISA Warns of Ivanti Endpoint Manager Authentication Bypass Vulnerability Exploited in Attacks
A serious security flaw in Ivanti Endpoint Manager has caught federal attention after the Cybersecurity and Infrastructure Security Agency (CISA) added it to the Known…
CISA Alerts on Ivanti Endpoint Manager Vulnerability Auth Bypass Exploited in the Wild
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added a newly disclosed security vulnerability affecting Ivanti Endpoint Manager (EPM) to its Known Exploited Vulnerabilities…
Where Can You Promote Your Cybersecurity Webinar Online?
Photo by Chris Montgomery on Unsplash A question asked by many thoughtful professionals who produce excellent quality cybersecurity webinars and/or speak at conferences is—where should…
HR, recruiters targeted in year-long malware campaign
An attack campaign targeting HR departments and job recruiters has been stealthily compromising systems, Aryaka researchers have discovered. By avoiding analysis environments and leveraging a…
New “LeakyLooker” Flaws in Google Looker Studio Could Enable Cross-Tenant SQL Queries
Ravie LakshmananMar 10, 2026Database Security / Vulnerability Cybersecurity researchers have disclosed nine cross-tenant vulnerabilities in Google Looker Studio that could have permitted attackers to run…
Microsoft Cowork: One data store for all your M365 assets
Microsoft has unveiled the next iteration of its Copilot artificial intelligence (AI) tools, which includes a tie-up with Anthropic, a company that recently took a…
Looking Through a Pinhole at a Qilin Ransomware Attack
A big part of a security analyst’s everyday role is figuring out what actually happened during an incident. We can do that by piecing together…
APT28 hackers deploy customized variant of Covenant open-source tool
The Russian state-sponsored APT28 threat group is using a custom variant of the open-source Covenant post-exploitation framework for long-term espionage operations. Also tracked as Fancy…