Breaking News – Cyber Threats (last 6h)
Generated: 2026-03-25 17:00 PDT
- GitHub adds AI-powered bug detection to expand security coverage
BleepingComputer • 2026-03-25 16:23 • www.bleepingcomputer.com
GitHub is adopting AI-based scanning for its Code Security tool to expand vulnerability detections beyond the CodeQL static analysis and cover more languages and frameworks. […]
https://www.bleepingcomputer.com/news/security/github-adds-ai-powered-bug-detection-to-expand-security-coverage/ - PolyShell attacks target 56% of all vulnerable Magento stores
BleepingComputer • 2026-03-25 14:40 • www.bleepingcomputer.com
Attacks leveraging the ‘PolyShell’ vulnerability in version 2 of Magento Open Source and Adobe Commerce installations are underway, targeting more than half of all vulnerable stores. […]
https://www.bleepingcomputer.com/news/security/polyshell-attacks-target-56-percent-of-all-vulnerable-magento-stores/ - Apple Patches (almost) everything again. March 2026 edition., (Wed, Mar 25th)
SANS ISC Diary (full) • 2026-03-25 14:29 • isc.sans.eduApple released the next version of its operating system, patching 85 different vulnerabilities across all of them. None of the vulnerabilities are currently being exploited. The last three macOS “generations” are covered, as are the last two versions of iOS/iPadOS. For tvOS, watchOS, and visionOS, only the current version received patches. This update also includes the recently released Background Security Improvements. Some older watchOS versions received updates, but these updates do not address any security issues.
- Bubble AI app builder abused to steal Microsoft account credentials
BleepingComputer • 2026-03-25 12:48 • www.bleepingcomputer.com
Threat actors are evading phishing detection in campaigns targeting Microsoft accounts by abusing the no-code app-building platform Bubble to generate and host malicious web apps. […]
https://www.bleepingcomputer.com/news/security/bubble-ai-app-builder-abused-to-steal-microsoft-account-credentials/ - New Torg Grabber infostealer malware targets 728 crypto wallets
BleepingComputer • 2026-03-25 11:32 • www.bleepingcomputer.com
A new info-stealing malware called Torg Grabber is stealing sensitive data from 850 browser extensions, more than 700 of them for cryptocurrency wallets. […]
https://www.bleepingcomputer.com/news/security/new-torg-grabber-infostealer-malware-targets-728-crypto-wallets/
Sources: BleepingComputer, The Hacker News, KrebsOnSecurity, SANS ISC, CISA.
