Breaking News – Cyber Threats (last 6h)
Generated: 2026-03-02 07:00 PST
- ⚡ Weekly Recap: SD-WAN 0-Day, Critical CVEs, Telegram Probe, Smart TV Proxy SDK and More
The Hacker News • 2026-03-02 05:26 • thehackernews.com
This week is not about one big event. It shows where things are moving. Network systems, cloud setups, AI tools, and common apps are all being pushed in different ways. Small gaps in access control, exposed keys, and normal features are being used as entry points.
The pattern becomes clear only when you see everything together. Faster scans, smarter misuse of trusted services, and steady
https://thehackernews.com/2026/03/weekly-recap-sd-wan-0-day-critical-cves.html - Anthropic confirms Claude is down in a worldwide outage
BleepingComputer • 2026-03-02 04:23 • www.bleepingcomputer.com
Claude appears to be having a major outage right now, with elevated errors reported across all platforms. […]
https://www.bleepingcomputer.com/news/artificial-intelligence/anthropic-confirms-claude-is-down-in-a-worldwide-outage/ - LLM-Assisted Deanonymization
Schneier on Security • 2026-03-02 04:05 • www.schneier.comTurns out that LLMs are good at de-anonymization:
We show that LLM agents can figure out who you are from your anonymous online posts. Across Hacker News, Reddit, LinkedIn, and anonymized interview transcripts, our method identifies users with high precision and scales to tens of thousands of candidates.
While it has been known that individuals can be uniquely identified by surprisingly few attributes, this was often practically limited. Data is often only available in unstruct…
https://www.schneier.com/blog/archives/2026/03/llm-assisted-deanonymization.html - How to Protect Your SaaS from Bot Attacks with SafeLine WAF
The Hacker News • 2026-03-02 03:55 • thehackernews.com
Most SaaS teams remember the day their user traffic started growing fast. Few notice the day bots started targeting them.
On paper, everything looks great: more sign-ups, more sessions, more API calls. But in reality, something feels off:Sign-ups increase, but users aren’t activating.
Server costs rise faster than revenue.
Logs are filled with repeated requests from strange user agents.If
https://thehackernews.com/2026/03/how-to-protect-your-saas-from-bot.html - Quick Howto: ZIP Files Inside RTF, (Mon, Mar 2nd)
SANS ISC Diary (full) • 2026-03-02 03:13 • isc.sans.eduIn diary entry “Quick Howto: Extract URLs from RTF files” I mentioned ZIP files.
- Wireshark 4.6.4 Released, (Mon, Mar 2nd)
SANS ISC Diary (full) • 2026-03-02 03:11 • isc.sans.eduWireshark release 4.6.4 fixes 3 vulnerabilities and 15 bugs.
- APT28 Tied to CVE-2026-21513 MSHTML 0-Day Exploited Before Feb 2026 Patch Tuesday
The Hacker News • 2026-03-02 02:36 • thehackernews.com
A recently disclosed security flaw patched by Microsoft may have been exploited by the Russia-linked state-sponsored threat actor known as APT28, according to new findings from Akamai.
The vulnerability in question is CVE-2026-21513 (CVSS score: 8.8), a high-severity security feature bypass affecting the MSHTML Framework.
“Protection mechanism failure in MSHTML Framework allows an unauthorized
https://thehackernews.com/2026/03/apt28-tied-to-cve-2026-21513-mshtml-0.html
Sources: BleepingComputer, The Hacker News, KrebsOnSecurity, SANS ISC, CISA.
