IT Security News Daily Summary 2026-03-17

190 posts were published in the last hour

• 22:32 : Anton’s Vibe Coding Experience: A Reflection on Risk Decisions
• 22:32 : Hijacked npm Packages Deliver Malware via Solana, Linked to Glassworm
• 22:32 : Are your company’s NHIs meticulously managed
• 22:32 : What makes NHIs crucial for secure cloud environments
• 22:32 : How can Agentic AI stay protected against cyber threats
• 22:11 : Iranian Cyber Ops Maintain US Network Footholds, Target Cameras for Regional Surveillance
• 21:9 : Top 8 benefits of hybrid cloud for business
• 20:32 : Researchers Uncover New Phishing Risk Hidden Inside Microsoft Copilot
• 20:32 : Apple rolls out first ‘background security’ update for iPhones, iPads, and Macs to fix Safari bug
• 20:32 : WorldCoin‘s newest pitch: Scan your eyeballs to prove AI agents really represent you
• 20:32 : The Now, New and Next in Data Center Infrastructure Management
• 20:31 : AI is Already in Your Database: The Real Risk is How You Govern Change | Liquibase
• 20:31 : AWS completes the second GDV community audit with participant insurers in Germany
• 20:5 : Storm-2561 Uses Fake Fortinet, Ivanti VPN Sites to Drop Hyrax Infostealer
• 20:5 : BSidesCache 2025 – From Law Enforcement To Cybersecurity: Building Skills That Matter
• 20:5 : IT Security News Hourly Summary 2026-03-17 21h : 3 posts
• 19:34 : OpenClaw, the Fastest-Adopted Software Ever, Is Also a Security Blind Spot
• 19:34 : Ransomware’s Opening Play: Target Identity First
• 19:34 : Cybersecurity, Trust, and the Law
• 18:36 : Simple Custom Font Rendering Can Poison ChatGPT, Claude, Gemini, and Other AI Systems
• 18:36 : Glassworm Hits Popular React Native Packages With Credential-Stealing npm Malware
• 18:36 : Google Warns Ransomware Actors Are Shifting Tactics as Profits Fall and Data Theft Rises
• 18:36 : ColorTokens Once Again Named a Leader and Outperformer in the 2026 GigaOm Radar for Microsegmentation
• 18:7 : Huntress Launches Two New Security Posture Tools as Cyber Threats Surge
• 18:7 : AI Flaws in Amazon Bedrock, LangSmith, and SGLang Enable Data Exfiltration and RCE
• 17:32 : From SAST to “Shift Everywhere”: Rethinking Code Security in 2026
• 17:32 : 6 Open-Source Vulnerability Scanners That Actually Work in 2026
• 17:32 : Surfshark vs NordVPN (2026): Which VPN Wins? Full Breakdown
• 17:32 : CODESYS in Festo Automation Suite
• 17:32 : Schneider Electric SCADAPack and RemoteConnect
• 17:32 : Schneider Electric EcoStruxure Data Center Expert
• 17:32 : Siemens SICAM SIAPP SDK
• 17:32 : Attackers Use SEO Poisoning and Signed Trojans to Steal VPN Credentials
• 17:32 : To Beat Alert Overload, Stop Wasting Time on False Positives
• 17:32 : AWS Bedrock AgentCore Sandbox Bypass Allows Covert C2 Channels and Data Exfiltration
• 17:32 : How to Shop Online Safely While Finding Better Deals
• 17:5 : IT Security News Hourly Summary 2026-03-17 18h : 13 posts
• 16:34 : China Probe: How a Fake Fitness Tracker Became an AI ‘Top Pick’
• 16:34 : Fake Pudgy World site steals your crypto passwords
• 16:34 : EU sanctions Iranian cyber front over election meddling, Charlie Hebdo breach
• 16:34 : Best Cloud Firewall Vendors for 2026
• 16:34 : Android OS-Level Attack Bypasses Mobile Payment Security
• 16:34 : National cyber director expands on Trump administration’s vision for AI security, industry collaboration
• 16:14 : Stryker says it’s restoring systems after pro-Iran hackers wiped thousands of employee devices
• 16:14 : RondoDox botnet expands arsenal targeting 174 flaws, and hits 15,000 daily exploit attempts
• 16:13 : UK Companies House Exposed Details of Millions of Firms
• 16:13 : Tech Giants Invest $12.5 Million in Open Source Security
• 16:13 : Google Faces Wrongful Death Lawsuit Over Gemini AI in Alleged User Suicide Case
• 16:13 : TikTok Rejects Controversial Privacy Tech for DMs, Citing User Safety Risks
• 16:13 : Security teams might be overlooking wider threat to Cisco SD-WAN
• 15:39 : ClickFix Attack Targets Devs with MacSync Malware via Fake Claude Tools
• 15:39 : Microsoft Confirms Windows 11 Bug Crippling PCs, Blocking Access to Core Drive
• 15:39 : How to prepare for NERC CIP compliance deadlines in 2026 and beyond
• 15:38 : BSidesCache 2025 – Hackers Don’t Break In. They Log In.
• 15:38 : LeakNet Ransomware Uses ClickFix via Hacked Sites, Deploys Deno In-Memory Loader
• 15:38 : Security teams might may be overlooking wider threat to Cisco SD-WAN
• 15:9 : Angular XSS Vulnerability Exposes Thousands of web Applications to XSS Attacks
• 15:9 : New Windows 11 25H2/24H2 Update Fixes Bluetooth Devices Visibility Issues
• 15:9 : Kubernetes CSI Driver for NFS Vulnerability Lets Attackers Delete or Modify NFS Server Directories
• 15:9 : FIM Test: A Method for Distinguishing True FIM Capabilities in a Crowd of Claims
• 15:9 : CTG unveils cyber resilience scoring dashboard for measurable risk reduction
• 15:9 : ‘CursorJack’ Attack Path Exposes Code Execution Risk in AI Development Environment
• 14:32 : Surf AI Raises $57 Million for Agentic Security Operations Platform
• 14:32 : Introducing AI-powered Contextual Project Classification: From severity scores to business risk
• 14:32 : XM Cyber advances AI security with enhanced exposure and attack path visibility
• 14:32 : Xona Systems brings real-time threat response to OT remote access sessions
• 14:32 : SCW Trust Agent: AI tracks AI influence in code to reduce software risk
• 14:31 : Cyber Briefing: 2026.03.17
• 14:5 : Huntress adds tools to its Agentic Security Platform to detect, fix, and prevent endpoint and identity risks
• 14:5 : Pindrop Fraud Assist uses AI to analyze calls and strengthen fraud prevention
• 14:5 : IT Security News Hourly Summary 2026-03-17 15h : 13 posts
• 14:5 : SailPoint improves visibility and control over unauthorized AI use
• 13:34 : Enterprise Cloud Network Solutions for Multi-Cloud Environments: Top Platforms
• 13:34 : Iranian Hackers Use Compromised Cameras for Regional Surveillance
• 13:34 : Robotic Surgery Giant Intuitive Discloses Cyberattack
• 13:34 : New Kingston IronKey USB drive delivers enterprise-grade data security
• 13:34 : Kore.ai debuts Agent Management Platform to govern enterprise AI ecosystems
• 13:16 : LABScon25 Replay | Your Apps May Be Gone, But the Hackers Made $9 Billion and They’re Still Here
• 13:16 : CL-STA-1087 targets military capabilities since 2020
• 13:16 : 90% of people don’t trust AI with their data
• 13:16 : 174 Vulnerabilities Targeted by RondoDox Botnet
• 13:16 : Orchid Security Recognized by Gartner® as a Representative Vendor of Guardian Agents
• 13:16 : Royal Bahrain Hospital Faces Alleged Breach by Payload Ransomware
• 13:16 : Intel 471 debuts integrated platform for external threat management
• 12:32 : Google Warns Ransomware Groups Shift to Data Theft as Profits Decline
• 12:32 : Windows 11 25H2/24H2 Update Addresses Bluetooth Device Visibility Issues
• 12:32 : Phishers Weaponize Safe Links With Multi-Layered URL Rewriting to Evade Detection
• 12:32 : Google, Meta, Microsoft Among Signatories of Pact to Combat Scams
• 12:32 : EU sanctions Chinese company behind 65,000-device hack
• 12:32 : England Hockey Investigates Ransomware Data Attack Incident
• 12:32 : UK Companies House Data Flaw Exposed
• 12:32 : Microsoft Fixes RRAS RCE in Windows
• 12:32 : FBI Seeks Victims of Malicious Steam Games
• 12:32 : Tech, Retail Unite Against Global Scams
• 12:12 : IPv4 Mapped IPv6 Addresses, (Tue, Mar 17th)
• 12:12 : GitGuardian Reports an 81% Surge of AI-Service Leaks as 29M Secrets Hit Public GitHub
• 12:11 : How searching for a VPN could mean handing over your work login details
• 12:11 : Tracebit Raises $20M for Cloud-Native Deception Technology
• 12:11 : How to Sign ClickOnce Manifests with Visual Studio using the KSP Library?
• 12:11 : Agentic AI in the SOC: The Governance Layer you Need Before You Let Automation Execute
• 12:11 : Chainguard locks down CI/CD with secure-by-default actions
• 12:11 : AI is Everywhere, But CISOs are Still Securing It with Yesterday’s Skills and Tools, Study Finds
• 12:11 : Surge in Nation State Attacks on UK Firms Amid Cyber Warfare Fears
• 11:32 : Imprivata enhances NHS access security with passwordless controls
• 11:31 : Veritone secures AI data with automated PII removal
• 11:5 : China’s Hua Hong Develops 7nm Process For AI Chips
• 11:5 : New Vidar 2.0 Infostealer Spreads via Fake Game Cheats on GitHub, Reddit
• 11:5 : Microsoft Launches AI-Driven Troubleshooting for Purview Data Lifecycle Tools
• 11:5 : New ‘Payload’ Ransomware Uses Babuk-Style Encryption Against Windows and ESXi Systems
• 11:5 : CISA Flags Year-Old Wing FTP Vulnerability as Exploited
• 11:5 : SaaS Sprawl has Become the New Shadow IT: Why Traditional Security Struggles to See (and Stop) It
• 11:5 : Jozu Agent Guard targets AI agents that evade controls
• 11:5 : Proofpoint addresses AI threats with intent-based security
• 11:5 : Average Number of Daily API Attacks Up 113% Annually
• 11:5 : IT Security News Hourly Summary 2026-03-17 12h : 14 posts
• 10:35 : Apple’s AirPods Max 2 Adds Live Translation
• 10:34 : Glassworm Malware Infects Popular React Native npm Packages
• 10:34 : Angular XSS Vulnerability Threatens Thousands of Web Applications
• 10:34 : Sears Exposed AI Chatbot Phone Calls and Text Chats to Anyone on the Web
• 10:34 : AI, APIs and DDoS Collide in New Era of Coordinated Cyberattacks
• 10:34 : Google cracks down on Android apps abusing accessibility
• 10:34 : Microsoft zeroes in on AI-driven data risks in Fabric
• 10:34 : Konni Deploys EndRAT Through Phishing, Uses KakaoTalk to Propagate Malware
• 10:34 : UK Cyber Monitoring Centre Sets Its Sights on US Expansion One Year After Launch
• 10:11 : Open, Closed and Broken: Prompt Fuzzing Finds LLMs Still Fragile Across Open and Closed Models
• 10:11 : Broadcast Highlights Dangers Of AI ‘Poisoning’
• 10:11 : Packagist Themes Deliver Trojanized jQuery in OphimCMS Supply Chain Attack
• 10:11 : From Windows to macOS: ClickFix attacks shift tactics with ChatGPT-based lures
• 10:11 : Millions of UK firms on alert after Companies House data exposure
• 9:32 : Researchers Urge Regulation Of AI Toys For Toddlers
• 9:32 : Sweet Minecraft Mods – The Dark Tale of SugarSMP Scam, Malware & Extortion
• 9:32 : Malicious npm Packages Deliver PylangGhost RAT in New Software Supply Chain Campaign
• 9:32 : Attackers Hijacking Legitimate Websites to Attack Microsoft Teams users
• 9:32 : CISA Warns of Chrome 0-Day Vulnerabilities Exploited in Attacks
• 9:32 : The Quiet Security Risk Hiding Inside Your SaaS Stack
• 9:32 : Data Privacy in Technology: Finding Balance in the Age of Surveillance
• 9:5 : Investment Scam Losses Mount Amid ‘Convincing’ Schemes
• 9:5 : CISA Issues Alert on Wing FTP Server Vulnerability Used in Attacks
• 9:5 : Too big to ignore, too small to be served: the midmarket security gap
• 9:5 : Attack on Stryker’s Microsoft environment wiped employee devices without malware
• 9:4 : Top IoT Security Best Practices to Prevent Cyber Attacks in 2026
• 8:34 : Social Media Algorithms ‘Prioritised Engagement Over Safety’
• 8:34 : WebFiling Flaw at UK Companies House Exposed Director Data for Months
• 8:34 : Switzerland built a secure alternative to BGP. The rest of the world hasn’t noticed yet
• 8:9 : The Intelligence Engine: Head-to-Head
• 8:9 : Companies House Glitch Exposes Directors’ Personal Data
• 8:9 : Hackers Leverage Safe Links and URL Rewriting to Evade Detection
• 8:9 : Researchers Decrypt and Exploit Encrypted Palo Alto Cortex XDR BIOC Rules
• 8:9 : Phishers Abuse LiveChat Support Tools to Steal Sensitive Data in New SaaS-Based Attack Tactic
• 8:9 : Traefik Triple Gate gains parallel safety pipelines, failover routing, and AI runtime controls
• 8:5 : IT Security News Hourly Summary 2026-03-17 09h : 8 posts
• 7:34 : Payload ransomware hits Windows and ESXi with Babuk-style encryption
• 7:34 : Stryker hospital tools safe, models apply to power AI scams, cybercrime up 245%
• 7:9 : Malicious NPM Packages Spread PylangGhost RAT in Supply Chain Attack
• 7:9 : Researchers Uncover Ways to Decrypt Palo Alto Cortex XDR BIOC Rules for Evasion
• 7:9 : New CondiBot Variant and ‘Monaco’ Cryptominer Expand Threats to Network Devices
• 7:9 : Researchers Discover Ways to Decrypt and Exploit Encrypted Palo Alto Cortex XDR BIOC Rules
• 7:9 : Gartner suggests Friday afternoon Copilot ban because tired users may be too lazy to check its mistakes
• 7:9 : PCI DSS Compliance Framework for Global Payment Security
• 6:32 : Hackers Abuse Trusted Websites in New Attacks on Microsoft Teams Users
• 6:32 : Hidden instructions in README files can make AI agents leak data
• 6:9 : LiveChat Support Tools Abused in SaaS Phishing Scheme
• 6:9 : CISA Flags Actively Exploited Wing FTP Vulnerability Leaking Server Paths
• 5:32 : Why OSINT deserves the same status as other intelligence disciplines
• 5:32 : ShinyHunters Claims It Stole 1PB of Data from TELUS Digital
• 5:31 : Cybersecurity jobs available right now: March 17, 2026
• 5:31 : What to do in the first 24 hours of a breach
• 5:18 : Stryker Targeted by Large-Scale Wiper Attack, Tens of Thousands of Devices Lost
• 5:18 : CISA Alerts Users to Exploited Chrome 0-Day Flaws
• 5:18 : New CondiBot Variant and ‘Monaco’ Miner Target More Network Devices
• 5:18 : Gartner suggests Friday afternoon Copilot ban because users may be too lazy to check its mistakes
• 3:34 : Stryker Confirms Destructive Wiper Attack – Tens of Thousands of Devices Wiped
• 3:9 : Bank built its own threat hunting agent because vendors can’t keep pace with new threats
• 3:9 : Deepfake Fraud Expands as Synthetic Media Targets Online Identity Verification Systems
• 3:9 : US Military Reportedly Used Anthropic’s Claude AI in Iran Strikes Hours After Trump Ordered Ban
• 2:5 : ISC Stormcast For Tuesday, March 17th, 2026 https://isc.sans.edu/podcastdetail/9852, (Tue, Mar 17th)
• 2:5 : Automated Policy Enforcement for Quantum-Secure Prompt Engineering
• 1:3 : What is a Bot? How They Work for and Against Cybercriminals
• 1:3 : RondoDox Botnet Expands to 174 Exploits, Leveraging Residential IP Infrastructure at Scale
• 1:2 : CamelClone Spy Campaign Abuses Public File-Sharing Sites and Rclone in Government-Focused Attacks
• 1:2 : Handala Hack Uses RDP, NetBird, and Parallel Wipers in MOIS-Linked Destructive Intrusions
• 1:2 : Simply Offensive Podcast: The Future of Pentesting: AI, Automation, and Better Reporting with Dan DeCloss
• 0:13 : Fake Shipment Tracking Scams Surge in MEA, Stealing Banking Data Through Real-Time Phishing
• 23:34 : Researchers Find Data Leak Risk in AWS Bedrock AI Code Interpreter
• 23:34 : AI Email Summaries Create a New Phishing Attack Surface
• 23:7 : How smart should your secrets rotation technology be
• 23:7 : How does Agentic AI ensure safe data handling
• 23:7 : Can advanced AI make SOC teams more relaxed
• 23:5 : IT Security News Hourly Summary 2026-03-17 00h : 5 posts
• 22:55 : IT Security News Daily Summary 2026-03-16