IT Security News Daily Summary 2026-03-02

179 posts were published in the last hour

• 22:34 : Malvertiser “D-Shortiez” abuses WebKit back button hijack in forced-redirect campaign
• 22:34 : How does AI contribute to cybersecurity stability
• 22:34 : What makes an AI system capable of self-protection
• 22:34 : How certain can you be of your AI-driven security
• 22:34 : How safe are Non-Human Identities from cyber threats
• 22:34 : News alert: DDoS attacks surge 75% in 2025; Link11 says attacks now sustained, not sporadic
• 22:5 : Why Cyber Attackers Benefit More from AI Technology than Defenders
• 21:36 : Middle east crisis prompts UK NCSC warning on potential Iranian cyber activity
• 21:7 : Iran’s cyberwar has begun
• 20:34 : Top enterprise hybrid cloud management tools to review
• 20:34 : NDSS 2025 – Siniel: Distributed Privacy-Preserving zkSNARK
• 20:34 : SANDWORM_MODE: The Rise of Adaptive Supply Chain Worms
• 20:34 : OAuth redirection abuse enables phishing and malware delivery
• 20:7 : Popular Iranian App BadeSaba was Hacked to Send “Help Is on the Way” Alerts
• 20:7 : Latest OpenClaw Flaw Can Let Malicious Websites Hijack Local AI Agents
• 20:5 : IT Security News Hourly Summary 2026-03-02 21h : 5 posts
• 19:34 : The Dark Side of Luxury Brands: Fraud and Laundering
• 19:34 : Andres Andreu Named a Finalist for the 2026 SC Awards Resilient CISO Award
• 19:9 : Attacks on GPS Spike Amid US and Israeli War on Iran
• 19:9 : UK Businesses told to brace cyber defenses amid Iran conflict risk
• 19:9 : Randall Munroe’s XKCD ‘Proof Without Content’
• 18:32 : Upcoming Opportunities in Space Investment: What to Know About SpaceX
• 18:32 : Why Your “Stateless” Services Are Lying to You
• 18:32 : Chrome Gemini Vulnerability Lets Attackers Access Victims’ Camera and Microphone Remotely
• 18:11 : Devices
• 18:11 : U.S. Blacklists Anthropic as Supply Chain Risk as OpenAI Secures Pentagon AI Deal
• 18:11 : Threat Actors Hit Iranian Sites and Apps After the US-Israel Strike
• 17:32 : 5 Security Considerations for Deploying AI on Edge Devices
• 17:32 : You’re Optimizing for the Wrong AI Engine. And It’s Costing You Enterprise Deals.
• 17:32 : Google Develops Merkle Tree Certificates to Enable Quantum-Resistant HTTPS in Chrome
• 17:32 : New Chrome Vulnerability Let Malicious Extensions Escalate Privileges via Gemini Panel
• 17:32 : Iran-linked hackers raise threat level against US, allies
• 17:32 : University of Mississippi Medical Center reopens clinics after ransomware attack
• 17:11 : Claude AI Suffers Global Outage: Elevated Errors Disrupt Web Interface and APIs
• 17:11 : MSHTML Framework 0-Day Exploited by APT28 Hackers Before Feb 2026’s Patch Tuesday Update
• 17:11 : DuckDuckGo Browser UXSS Flaw in Auto Consent JS Bridge Enables Cross-Origin Code Execution
• 17:11 : PoC Exploit Released for Windows Error Reporting ALPC Privilege Escalation
• 17:11 : NDSS 2025 – SHAFT: Secure, Handy, Accurate And Fast Transformer Inference
• 17:5 : IT Security News Hourly Summary 2026-03-02 18h : 10 posts
• 16:34 : War in Iran Spiked Oil Prices. Trump Will Decide How High They Go
• 16:34 : Hacktivists claim to have hacked Homeland Security to release ICE contract data
• 16:34 : Samsung TVs stop spying on viewers in Texas. Here’s how to disable ACR anywhere
• 16:34 : Dust Specter APT Targets Government Officials in Iraq
• 16:34 : Top Data Breaches of February 2026
• 16:34 : Chrome Unveils Plan For Quantum-Safe HTTPS Certificates
• 16:34 : Understanding IAM for Managed AWS MCP Servers
• 16:9 : Meta AI in WhatsApp organizes chats and reopens privacy issues
• 16:9 : IPFire ships its 200th core update with a new domain blocklist and kernel upgrade
• 16:9 : Expect Iran to Launch Cyber-Attacks Globally, Warns Google Head of Threat Intel
• 15:35 : BYOVD Turns Trusted Drivers Against Windows Security
• 15:35 : Chrome Extension Hijacked to Push ClickFix Malware
• 15:35 : South Korean Tax Agency Leak Leads to $4.8M Crypto Theft
• 15:35 : Europol Operation Targets Online Network Exploiting Minors
• 15:35 : Operator of AI Fake ID Platform Pleads Guilty
• 15:35 : Russia-linked APT28 exploited MSHTML zero-day CVE-2026-21513 before patch
• 15:35 : Samsung TVs stop spying on viewers in Texas. Here’s how to disable ACR anywhere
• 15:35 : Vulnerability Allowed Hijacking Chrome’s Gemini Live AI Assistant
• 15:35 : Scarcity in DDR5 RAM Fueled by AI Demand Sparks Massive Scalping Surge
• 15:35 : Anthropic’s Claude hit by widespread service outage (updated)
• 15:35 : Cyber Briefing: 2026.03.02
• 15:7 : Influencers Alarmed as New AI Rules Enforce Three-Hour Takedowns
• 15:7 : Infostealer Malware Targets OpenClaw AI Agent Files to Steal API Keys and Authentication Tokens
• 15:7 : Hybrid Middle East Conflict Triggers Surge in Global Cyber Activity
• 14:36 : Phishing Pages for Zoom and Google Meet Install Teramind Monitoring Tool
• 14:36 : Hackers and internet outages hit Iran amid U.S. air strikes
• 14:36 : A fake FileZilla site hosts a malicious download
• 14:36 : OpenClaw Vulnerability Allowed Websites to Hijack AI Agents
• 14:36 : Everyone Knows About Broken Authorization – So Why Does It Still Work for Attackers?
• 14:36 : Feb Recap: New AWS Privileged Permissions and Services
• 14:36 : Anthropic’s Claude hit by widespread service outage
• 14:36 : QuickLens Chrome Extension Steals Crypto
• 14:9 : Criminal IP to Present Decision-Ready Threat Intelligence at RSAC™ 2026
• 14:9 : How Threat Intelligence and Multi-Source Data Drive Smarter Vulnerability Prioritization
• 14:9 : Memory scalpers hunt scarce DRAM with bot blitz
• 14:9 : Scammers try to SIM-swap Dubai citizens hours after Iranian missile strikes
• 14:9 : Madison Square Garden Data Breach Confirmed Months After Hacker Attack
• 14:9 : ⚡ Weekly Recap: SD-WAN 0-Day, Critical CVEs, Telegram Probe, Smart TV Proxy SDK and More
• 14:9 : Europol Nets 30 in “The Com” Crackdown
• 14:9 : Hackers Target Iranian Apps, Sites After Strikes
• 14:9 : “OnlyFake” Creator Pleads Guilty
• 14:5 : IT Security News Hourly Summary 2026-03-02 15h : 19 posts
• 13:37 : TPMS Flaw in Toyota, Mercedes, and Other Major Brands Enables Covert Vehicle Tracking
• 13:37 : MSHTML Zero-Day in Windows Exploited by APT28 Prior to Feb 2026 Security Update
• 13:37 : APT37 combines cloud storage and USB implants to infiltrate air-gapped systems
• 13:37 : OCRFix Botnet Trojan Leveraging ClickFix Phishing and EtherHiding to Conceal Blockchain-Based Command Infrastructure
• 13:37 : Hackers Attacking SonicWall Firewalls from 4,000+ unique IP Addresses to Exploit Vulnerabilities
• 13:37 : Enterprise Passwordless Authentication for Retail Brands
• 13:37 : PCI-Compliant Authentication for Retail Enterprises
• 13:37 : NetQuest launches NetworkLens for hyperscale AI threat detection
• 13:37 : Microsoft Warns RAT via Fake Gaming Utilities
• 13:37 : ClawJacked Flaw Exposes OpenClaw Users
• 13:36 : Canadian Tire Breach Hits 38M Accounts
• 13:36 : UH Cyber Hack Exposes 1.15M SSNs
• 13:36 : Hackers Steal 15M French Medical Records
• 13:36 : How Microsoft, partners are tackling ‘huge, huge task’ of making security software safer
• 13:7 : UXSS Vulnerability in DuckDuckGo Browser’s AutoConsent JS Bridge Allows Cross-Origin Attacks
• 13:7 : Proof-of-Concept Released for Windows ALPC Privilege Escalation via Error Reporting
• 13:7 : AWS Expands Security Hub Into a Cross-Domain Security Platform
• 13:7 : Nick Andersen Appointed Acting Director of CISA
• 13:7 : How to Protect Your SaaS from Bot Attacks with SafeLine WAF
• 12:32 : Maybe It’s Time to Do the Opposite: Lessons From George Costanza on Data Management
• 12:16 : Langflow CSV Agent Flaw Could Let Attackers Execute Arbitrary Code
• 12:16 : GTFire Phishing Campaign Exploits Google Services to Bypass Detection and Harvest Credentials
• 12:16 : OneUptime Command Injection Vulnerability Poses Major Risk of Full System Takeover
• 12:16 : A tiny twist creates giant magnetic skyrmions in 2D crystals
• 12:16 : CISA Warns of RESURGE Malware Exploiting 0-Days to Breach Ivanti Connect Secure Devices
• 12:16 : Tire Pressure Systems in Toyota, Mercedes, and Other Major Car Brands Enable Silent Vehicle Tracking
• 12:16 : Google Working Towards Quantum-Safe Chrome HTTPS Certificates
• 12:16 : North Korean APT Targets Air-Gapped Systems in Recent Campaign
• 12:16 : US Employs Anthropic’s Claude AI in High-Profile Venezuela Raid
• 11:34 : Wireshark 4.6.4 Released, (Mon, Mar 2nd)
• 11:34 : Quick Howto: ZIP Files Inside RTF, (Mon, Mar 2nd)
• 11:34 : 6 Ways Agentic AI Changes How Systems Act and Adapt
• 11:34 : US-Israel and Iran Trade Cyberattacks: Pro-West Hacks Cause Disruption as Tehran Retaliates
• 11:33 : pureLiFi unveils LiFi architecture to extend gigabit capacity indoors
• 11:33 : UK reduces cyberattack fix times from two months to eight days
• 11:33 : APT28 Tied to CVE-2026-21513 MSHTML 0-Day Exploited Before Feb 2026 Patch Tuesday
• 11:33 : ClawJacked Bug Enables Covert AI Agent Hijacking
• 11:15 : Taming Agentic Browsers: Vulnerability in Chrome Allowed Extensions to Hijack New Gemini Panel
• 11:14 : Silicon AI for Your Business Podcast: The Human Side of Automation
• 11:14 : Configuration and Runtime: The PB&J of Effective Security Operations
• 11:14 : Motorola turns to GrapheneOS for smartphone security upgrade
• 11:14 : Ransomware Payments Decline 8% as Attacks Surge 50%
• 11:5 : IT Security News Hourly Summary 2026-03-02 12h : 12 posts
• 10:32 : Sekoia achieves SOC2 compliance
• 10:32 : Pakistan’s Top News Channels Hacked and Hijacked With Anti-Military Messages
• 10:32 : ClawJacked flaw exposed OpenClaw users to data theft
• 10:32 : Europol’s Project Compass nets 30 arrests in crackdown on “The Com”
• 10:32 : Angular SSR Request Vulnerability Allows Attackers to Trick Applications into Sending Unauthorized Requests
• 10:32 : GUEST ESSAY: Real cyber risks arise when small flaws combine and alerts are viewed in isolation
• 10:32 : Building a risk-based data sanitization strategy: When to use Cryptographic erasure vs. physical destruction
• 10:32 : ResOps: The new operating model bridging security, identity and recovery
• 10:9 : Project Compass Operation Cracks Down on “The Com” Cybercrime Collective – 30 Arrested, 179 Suspects Identified
• 10:9 : AI Overviews Rife With Scam Phone Numbers
• 10:9 : Link11 Releases European Cyber Report 2026: DDoS Attacks Become a Constant Threat
• 10:9 : North Korean Hackers Publish 26 npm Packages Hiding Pastebin C2 for Cross-Platform RAT
• 9:32 : Hackers Launch Massive SonicWall Firewall Attack Using 4,000+ IP Addresses
• 9:32 : Ukrainian hacker pleads guilty to running OnlyFake AI ID scam site
• 9:32 : Purchase order attachment isn’t a PDF. It’s phishing for your password
• 9:32 : Purpose-built AI Security Agent Detected 92% of DeFi Contracts Vulnerabilities
• 9:11 : Angular SSR Flaw Enables Unauthorized Server-Side Requests in Web Apps
• 9:11 : Lovora – 495,556 breached accounts
• 8:34 : OCRFix Botnet Uses ClickFix Phishing and EtherHiding to Mask Blockchain C2 Infrastructure
• 8:34 : US Military Reportedly Used Claude in Iran Strikes Despite Trump’s Ban
• 8:34 : Pixel Perfect Extension Abuse Enables Covert Script Injection and Security Header Removal
• 8:34 : Gottumukkala ousted, Wyden blocks Rudd, Hackers weaponize Claude
• 8:12 : A week in security (February 23 – March 1)
• 8:5 : IT Security News Hourly Summary 2026-03-02 09h : 7 posts
• 7:34 : Middle East AWS Outage Sends Shockwaves Through Cloud Infrastructure Service
• 7:34 : CISA Leadership Shakeup, OpenClaw Hijack, Robot Vacuums and More
• 7:9 : CISA Alerts on RESURGE Malware Exploiting Ivanti Connect Secure Zero-Days
• 7:9 : Hacked Prayer App Used as Cyber Weapon During US-Israel Strikes on Iran
• 7:9 : Claude Code Security: The AI Shockwave Hitting Cybersecurity
• 7:9 : Security debt is becoming a governance issue for CISOs
• 7:9 : Your dependencies are 278 days out of date and your pipelines aren’t protected
• 6:32 : Pixel Perfect Browser Extension Exploited for Stealth Script Injection and Security Header Stripping
• 6:32 : Prayer App Used by Millions Hacked to Broadcast Defection Messages Amid U.S.-Israel Strikes on Iran
• 6:9 : Quitbro – 22,874 breached accounts
• 6:9 : BlacksmithAI: Open-source AI-powered penetration testing framework
• 5:36 : When cyber threats start thinking for themselves
• 5:11 : OpenClaw 0-Click Flaw Lets Malicious Websites Hijack Developer AI Agents
• 5:11 : AI risk moves into the security budget spotlight
• 5:5 : IT Security News Hourly Summary 2026-03-02 06h : 2 posts
• 4:34 : AWS Power Outage in Middle East Triggers Major Disruption to EC2 and Networking Services
• 4:13 : UK government’s Vulnerability Monitoring System is working – fixes flow far faster
• 3:36 : UK govermnent’s Vulnerability Monitoring System is working – fixes flow far faster
• 3:4 : KomikoAI – 1,060,191 breached accounts
• 2:34 : Anomalous Context Injection Detection in Post-Quantum Environments
• 2:9 : ISC Stormcast For Monday, March 2nd, 2026 https://isc.sans.edu/podcastdetail/9830, (Mon, Mar 2nd)
• 2:5 : IT Security News Hourly Summary 2026-03-02 03h : 1 posts
• 1:13 : South Korea’s tax office apologizes for leaking seed phrase to seized crypto
• 0:34 : Are current AI systems adaptable to new cyber threats
• 0:34 : How proactive is your AI in detecting cyber threats
• 0:34 : Can you trust your AI to manage its own security
• 0:34 : How are NHIs empowering businesses against cyber threats
• 23:31 : Exposing a Fraudulent DPRK Candidate
• 23:5 : IT Security News Hourly Summary 2026-03-02 00h : 2 posts
• 22:58 : IT Security News Weekly Summary 09
• 22:55 : IT Security News Daily Summary 2026-03-01