Breaking News – Cyber Threats (last 6h)
Generated: 2026-03-23 03:00 PDT
- FBI warns of Handala hackers using Telegram in malware attacks
BleepingComputer • 2026-03-23 02:45 • www.bleepingcomputer.com
The U.S. Federal Bureau of Investigation (FBI) warned network defenders that Iranian hackers linked to the country’s Ministry of Intelligence and Security (MOIS) are using Telegram in malware attacks. […]
https://www.bleepingcomputer.com/news/security/fbi-warns-of-handala-hackers-using-telegram-in-malware-attacks/ - CISA orders feds to patch DarkSword iOS flaws exploited attacks
BleepingComputer • 2026-03-23 01:37 • www.bleepingcomputer.com
CISA ordered U.S. government agencies to patch three iOS vulnerabilities targeted in cryptocurrency theft and cyberespionage attacks using the DarkSword exploit kit. […]
https://www.bleepingcomputer.com/news/security/cisa-orders-feds-to-patch-darksword-ios-flaws-exploited-attacks/ - Trivy Hack Spreads Infostealer via Docker, Triggers Worm and Kubernetes Wiper
The Hacker News • 2026-03-23 01:31 • thehackernews.com
Cybersecurity researchers have uncovered malicious artifacts distributed via Docker Hub following the Trivy supply chain attack, highlighting the widening blast radius across developer environments.
The last known clean release of Trivy on Docker Hub is 0.69.3. The malicious versions 0.69.4, 0.69.5, and 0.69.6 have since been removed from the container image library.
“New image tags 0.69.5 and
https://thehackernews.com/2026/03/trivy-hack-spreads-infostealer-via.html - New KB5085516 emergency update fixes Microsoft account sign-in
BleepingComputer • 2026-03-23 01:04 • www.bleepingcomputer.com
Microsoft has released an emergency update to address a major issue that breaks sign-ins with Microsoft accounts across multiple Microsoft apps, including Teams and OneDrive. […]
https://www.bleepingcomputer.com/news/microsoft/new-kb5085516-emergency-update-fixes-microsoft-account-sign-in/ - Hackers Exploit CVE-2025-32975 (CVSS 10.0) to Hijack Unpatched Quest KACE SMA Systems
The Hacker News • 2026-03-22 23:15 • thehackernews.com
Threat actors are suspected to be exploiting a maximum-severity security flaw impacting Quest KACE Systems Management Appliance (SMA), according to Arctic Wolf.
The cybersecurity company said it observed malicious activity starting the week of March 9, 2026, in customer environments that’s consistent with the exploitation of CVE-2025-32975 on unpatched SMA systems exposed to the internet. It’s
https://thehackernews.com/2026/03/hackers-exploit-cve-2025-32975-cvss-100.html
Sources: BleepingComputer, The Hacker News, KrebsOnSecurity, SANS ISC, CISA.
