Breaking News – Cyber Threats (last 6h)
Generated: 2026-03-19 08:00 PDT
- Russian hackers exploit Zimbra flaw in Ukrainian govt attacks
BleepingComputer • 2026-03-19 07:55 • www.bleepingcomputer.com
Hackers part of APT28, a state-backed threat group linked to Russia’s military intelligence service (GRU), are exploiting a Zimbra Collaboration Suite (ZCS) vulnerability in attacks targeting Ukrainian government entities. […]
https://www.bleepingcomputer.com/news/security/russian-apt28-military-hackers-exploit-zimbra-flaw-in-ukrainian-govt-attacks/ - ThreatsDay Bulletin: FortiGate RaaS, Citrix Exploits, MCP Abuse, LiveChat Phish & More
The Hacker News • 2026-03-19 07:25 • thehackernews.com
ThreatsDay Bulletin is back on The Hacker News, and this week feels off in a familiar way. Nothing loud, nothing breaking everything at once. Just a lot of small things that shouldn’t work anymore but still do.
Some of it looks simple, almost sloppy, until you see how well it lands. Other bits feel a little too practical, like they’re already closer to real-world use than anyone
https://thehackernews.com/2026/03/threatsday-bulletin-fortigate-raas.html - 7 Ways to Prevent Privilege Escalation via Password Resets
BleepingComputer • 2026-03-19 07:00 • www.bleepingcomputer.com
Password resets are often weaker than login security, making them a prime target for privilege escalation. Specops Software explains how attackers abuse reset workflows and how to secure them. […]
https://www.bleepingcomputer.com/news/security/7-ways-to-prevent-privilege-escalation-via-password-resets/ - Max severity Ubiquiti UniFi flaw may allow account takeover
BleepingComputer • 2026-03-19 06:00 • www.bleepingcomputer.com
Ubiquiti has patched two vulnerabilities in the UniFi Network Application, including a maximum-severity flaw that may allow attackers to take over user accounts. […]
https://www.bleepingcomputer.com/news/security/ubiquiti-warns-of-unifi-flaw-that-may-enable-account-takeover/ - New Perseus Android Banking Malware Monitors Notes Apps to Extract Sensitive Data
The Hacker News • 2026-03-19 05:43 • thehackernews.com
Cybersecurity researchers have disclosed a new Android malware family called Perseus that’s being actively distributed in the wild with an aim to conduct device takeover (DTO) and financial fraud.
Perseus is built upon the foundations of Cerberus and Phoenix, at the same time evolving into a “more flexible and capable platform” for compromising Android devices through dropper apps distributed
https://thehackernews.com/2026/03/new-perseus-android-banking-malware.html - CISA urges US orgs to secure Microsoft Intune systems after Stryker breach
BleepingComputer • 2026-03-19 04:02 • www.bleepingcomputer.com
CISA warned U.S. organizations to follow Microsoft guidance to strengthen the Intune endpoint management tool after a cyberattack exploited it to wipe medical technology giant Stryker’s systems. […]
https://www.bleepingcomputer.com/news/security/cisa-warns-businesses-to-secure-microsoft-intune-systems-after-stryker-breach/ - How Ceros Gives Security Teams Visibility and Control in Claude Code
The Hacker News • 2026-03-19 03:58 • thehackernews.com
Security teams have spent years building identity and access controls for human users and service accounts. But a new category of actor has quietly entered most enterprise environments, and it operates entirely outside those controls.
Claude Code, Anthropic’s AI coding agent, is now running across engineering organizations at scale. It reads files, executes shell commands, calls external APIs,
https://thehackernews.com/2026/03/how-ceros-gives-security-teams.html - New ‘Perseus’ Android malware checks user notes for secrets
BleepingComputer • 2026-03-19 03:13 • www.bleepingcomputer.com
A new Android malware called Perseus is checking user-curated notes to steal sensitive information, like passwords, recovery phrases, or financial data. […]
https://www.bleepingcomputer.com/news/security/new-perseus-android-malware-checks-user-notes-for-secrets/ - Critical Microsoft SharePoint flaw now exploited in attacks
BleepingComputer • 2026-03-19 03:06 • www.bleepingcomputer.com
A critical Microsoft SharePoint vulnerability patched in January is now being exploited in attacks, the Cybersecurity and Infrastructure Security Agency (CISA) warned. […]
https://www.bleepingcomputer.com/news/microsoft/critical-microsoft-sharepoint-flaw-now-exploited-in-attacks/ - Hacking a Robot Vacuum
Schneier on Security • 2026-03-19 02:47 • www.schneier.comSomeone tries to remote control his own DJI Romo vacuum, and ends up controlling 7,000 of them from all around the world.
The IoT is horribly insecure, but we already knew that.
https://www.schneier.com/blog/archives/2026/03/hacking-a-robot-vacuum.html
- DarkSword iOS Exploit Kit Uses 6 Flaws, 3 Zero-Days for Full Device Takeover
The Hacker News • 2026-03-19 02:14 • thehackernews.com
A new exploit kit for Apple iOS devices designed to steal sensitive data from is being wielded by multiple threat actors since at least November 2025, according to reports from Google Threat Intelligence Group (GTIG), iVerify, and Lookout.
According to GTIG, multiple commercial surveillance vendors and suspected state-sponsored actors have utilized the full-chain exploit kit, codenamed DarkSword
https://thehackernews.com/2026/03/darksword-ios-exploit-kit-uses-6-flaws.html
Sources: BleepingComputer, The Hacker News, KrebsOnSecurity, SANS ISC, CISA.
