Breaking News – Cyber Threats (last 6h)
Generated: 2026-03-19 13:00 PDT
- 54 EDR Killers Use BYOVD to Exploit 34 Signed Vulnerable Drivers and Disable Security
The Hacker News • 2026-03-19 11:52 • thehackernews.com
A new analysis of endpoint detection and response (EDR) killers has revealed that 54 of them leverage a technique known as bring your own vulnerable driver (BYOVD) by abusing a total of 34 vulnerable drivers.
EDR killer programs have been a common presence in ransomware intrusions as they offer a way for affiliates to neutralize security software before deploying file-encrypting malware. This
https://thehackernews.com/2026/03/54-edr-killers-use-byovd-to-exploit-34.html - Bitrefill blames North Korean Lazarus group for cyberattack
BleepingComputer • 2026-03-19 10:08 • www.bleepingcomputer.com
Crypto-powered gift card store Bitrefill says that the attack it suffered at the beginning of the month was likely perpetrated by North Korean hackers of the Bluenoroff group. […]
https://www.bleepingcomputer.com/news/security/bitrefill-blames-north-korean-lazarus-group-for-cyberattack/ - FBI seizes Handala data leak site after Stryker cyberattack
BleepingComputer • 2026-03-19 09:14 • www.bleepingcomputer.com
The FBI has seized two websites used by the Handala hacktivist group after the threat actors conducted a destructive cyberattack on medical technology giant Stryker that wiped approximately 80,000 devices. […]
https://www.bleepingcomputer.com/news/security/fbi-seizes-handala-data-leak-site-after-stryker-cyberattack/ - Russian hackers exploit Zimbra flaw in Ukrainian govt attacks
BleepingComputer • 2026-03-19 07:55 • www.bleepingcomputer.com
Hackers part of APT28, a state-backed threat group linked to Russia’s military intelligence service (GRU), are exploiting a Zimbra Collaboration Suite (ZCS) vulnerability in attacks targeting Ukrainian government entities. […]
https://www.bleepingcomputer.com/news/security/russian-apt28-military-hackers-exploit-zimbra-flaw-in-ukrainian-govt-attacks/ - ThreatsDay Bulletin: FortiGate RaaS, Citrix Exploits, MCP Abuse, LiveChat Phish & More
The Hacker News • 2026-03-19 07:25 • thehackernews.com
ThreatsDay Bulletin is back on The Hacker News, and this week feels off in a familiar way. Nothing loud, nothing breaking everything at once. Just a lot of small things that shouldn’t work anymore but still do.
Some of it looks simple, almost sloppy, until you see how well it lands. Other bits feel a little too practical, like they’re already closer to real-world use than anyone
https://thehackernews.com/2026/03/threatsday-bulletin-fortigate-raas.html
Sources: BleepingComputer, The Hacker News, KrebsOnSecurity, SANS ISC, CISA.
