Breaking News – Cyber Threats (last 6h)
Generated: 2026-03-17 08:00 PDT
- Top 5 Things CISOs Need to Do Today to Secure AI Agents
BleepingComputer • 2026-03-17 07:02 • www.bleepingcomputer.com
AI agents are autonomous actors with real access to data and systems, not just copilots. Token Security explains why identity-based access control is critical to prevent misuse and data exposure. […]
https://www.bleepingcomputer.com/news/security/top-5-things-cisos-need-to-do-today-to-secure-ai-agents/ - New font-rendering trick hides malicious commands from AI tools
BleepingComputer • 2026-03-17 06:59 • www.bleepingcomputer.com
A new font-rendering attack causes AI assistants to miss malicious commands shown on webpages by hiding them in seemingly harmless HTML. […]
https://www.bleepingcomputer.com/news/security/new-font-rendering-trick-hides-malicious-commands-from-ai-tools/ - Microsoft stops force-installing the Microsoft 365 Copilot app
BleepingComputer • 2026-03-17 06:54 • www.bleepingcomputer.com
Microsoft has stopped automatically installing the Microsoft 365 Copilot app on Windows devices outside the European Economic Area (EEA) that have the Microsoft 365 desktop client apps. […]
https://www.bleepingcomputer.com/news/microsoft/microsoft-stops-force-installing-the-microsoft-365-copilot-app/ - LeakNet ransomware uses ClickFix, Deno runtime in stealthy attacks
BleepingComputer • 2026-03-17 05:09 • www.bleepingcomputer.com
The LeakNet ransomware gang is now using the ClickFix technique for initial access into corporate environments and deploys a malware loader based on the open-source Deno runtime for JavaScript and TypeScript. […]
https://www.bleepingcomputer.com/news/security/leaknet-ransomware-uses-clickfix-and-deno-runtime-for-stealthy-attacks/ - Microsoft shares fix for Windows C: drive access issues on Samsung PCs
BleepingComputer • 2026-03-17 05:03 • www.bleepingcomputer.com
Microsoft has shared guidance to fix C:\ drive access issues and app failures on some Samsung laptops running Windows 11, versions 25H2 and 24H2. […]
https://www.bleepingcomputer.com/news/microsoft/microsoft-shares-fix-for-windows-c-drive-access-issues-on-samsung-pcs/ - IPv4 Mapped IPv6 Addresses, (Tue, Mar 17th)
SANS ISC Diary (full) • 2026-03-17 04:36 • isc.sans.eduYesterday, in my diary about the scans for “/proxy/” URLs, I noted how attackers are using IPv4-mapped IPv6 addresses to possibly obfuscate their attack. These addresses are defined in RFC 4038. These addresses are one of the many transition mechanisms used to retain some backward compatibility as IPv6 is deployed. Many modern applications use IPv6-only networking code. IPv4-mapped IPv6 addresses can be used to represent IPv4 addresses in these cases. IPv4-mapped IPv6 addresses are not used on the network, but instead, translate…
https://isc.sans.edu/diary/rss/32804 - AI is Everywhere, But CISOs are Still Securing It with Yesterday's Skills and Tools, Study Finds
The Hacker News • 2026-03-17 04:30 • thehackernews.com
A majority of security leaders are struggling to defend AI systems with tools and skills that are not fit for the challenge, according to the AI and Adversarial Testing Benchmark Report 2026 from Pentera.
The report, based on a survey of 300 US CISOs and senior security leaders, examines how organizations are securing AI infrastructure and highlights critical gaps tied to skills shortages and
https://thehackernews.com/2026/03/ai-is-everywhere-but-cisos-are-still.html - New Windows 11 hotpatch fixes Bluetooth device visibility issue
BleepingComputer • 2026-03-17 04:07 • www.bleepingcomputer.com
Microsoft has released an emergency update to fix a Bluetooth device visibility issue on hotpatch-enabled Windows 11 Enterprise devices. […]
https://www.bleepingcomputer.com/news/microsoft/new-windows-11-hotpatch-fixes-bluetooth-device-visibility-issue/ - Microsoft: Enabling Teams Meeting add-in breaks Outlook Classic
BleepingComputer • 2026-03-17 03:37 • www.bleepingcomputer.com
Microsoft is working to address a known issue that renders the classic Outlook email client unusable for users who have enabled the Microsoft Teams Meeting Add-in. […]
https://www.bleepingcomputer.com/news/microsoft/microsoft-enabling-teams-meeting-add-in-breaks-outlook-classic/ - South Korean Police Accidentally Post Cryptocurrency Wallet Password
Schneier on Security • 2026-03-17 03:01 • www.schneier.comAn expensive mistake:
Someone jumped at the opportunity to steal $4.4 million in crypto assets after South Korea’s National Tax Service exposed publicly the mnemonic recovery phrase of a seized cryptocurrency wallet.
The funds were stored in a Ledger cold wallet seized in law enforcement raids at 124 high-value tax evaders that resulted in confiscating digital assets worth 8.1 billion won (currently approximately $5.6 million).https://www.schneier.com/blog/archives/2026/03/south-korean-police-accidentally-post-cryptocurrency-wallet-password.html
- Konni Deploys EndRAT Through Phishing, Uses KakaoTalk to Propagate Malware
The Hacker News • 2026-03-17 02:53 • thehackernews.com
North Korean threat actors have been observed sending phishing to compromise targets and obtain access to a victim’s KakaoTalk desktop application to distribute malicious payloads to certain contacts.
The activity has been attributed by South Korean threat intelligence firm Genians to a hacking group referred to as Konni.
“Initial access was achieved through a spear-phishing email disguised as a
https://thehackernews.com/2026/03/konni-deploys-endrat-through-spear.html
Sources: BleepingComputer, The Hacker News, KrebsOnSecurity, SANS ISC, CISA.
