Codoxo has announced the launch of Deepfake Detection, an AI-driven fraud detection tool now being deployed by health plans across the U.S. The solution helps identify AI-generated or manipulated medical documentation and diagnostic images submitted in support of claims before…
US Medical Equipment Maker Disabled In Hack Claimed By Iran
Michigan-based international medical equipment manufacturer Stryker sees systems disabled worldwide in hack claimed by pro-Iran group This article has been indexed from Silicon UK Read the original article: US Medical Equipment Maker Disabled In Hack Claimed By Iran
CastleRAT Attack Leverages Deno JavaScript Runtime to Bypass Enterprise Defenses
A sophisticated malware campaign that abuses the Deno JavaScript runtime to deliver CastleRAT, a powerful remote access trojan designed for espionage and data theft. The campaign demonstrates how attackers are increasingly combining social engineering, trusted development tools, and stealth techniques…
Ericsson US Hit by Cyber Attack, Hackers Steal Personal Data of Employees and Customers
Ericsson Inc., the United States subsidiary of the Swedish telecommunications giant, has confirmed a data breach affecting 15,661 of its employees and customers. The security incident did not breach Ericsson’s own networks but instead compromised a third-party service provider responsible…
Iranian Hacktivists Claim Attack on US Medtech Firm Stryker
Stryker, a global medical technology company based in Michigan, has fallen victim to a data-wiping attack. A hacktivist group affiliated with Iran’s intelligence services is claiming responsibility for the incident. Reports coming from Ireland, Stryker’s largest base outside of the…
SPIFFE vs. OAuth: Access Control for Nonhuman Identities
5 min readSPIFFE focuses on who a workload is. It issues cryptographic identities to services and workloads so they can prove their authenticity to each other without relying on stored secrets. OAuth focuses on what a workload is allowed to…
IT Security News Hourly Summary 2026-03-12 09h : 3 posts
3 posts were published in the last hour 7:36 : Splunk RCE Vulnerability Exposes Systems to Arbitrary Shell Command Execution by Attackers 7:36 : Chrome Security Update – Patch for 29 Vulnerabilities that Allow Remote Code Execution 7:36 : Meta…
Splunk RCE Vulnerability Exposes Systems to Arbitrary Shell Command Execution by Attackers
A high-severity Remote Command Execution (RCE) vulnerability has been discovered in Splunk Enterprise and Splunk Cloud Platform, exposing systems to severe security risks. Tracked officially as CVE-2026-20163 with a CVSS score of 8.0, this critical flaw allows malicious actors to…
Chrome Security Update – Patch for 29 Vulnerabilities that Allow Remote Code Execution
Google has officially released Chrome version 146 to the stable channel, delivering crucial security updates for Windows, Mac, and Linux users. Rolling out over the coming days, Chrome 146.0.7680.71 for Linux and 146.0.7680.71/72 for Windows and Mac addresses 29 security…
Meta apps offer new scam protection, Google’s Wiz acquisition finalized, China curbs state-run OpenClaw use
Meta apps offer new scam protection Google’s Wiz acquisition finalized China curbs state-run OpenClaw use Get links to all the stories in our show notes: Huge thanks to our sponsor, Dropzone AI Here is something worth asking any AI security…
February 2026 Cyber Attacks Statistics
After the cyber attacks timelines, it’s time to publish the statistics for February 2026 where I collected and analyzed 176 events. In February 2026, Cyber Crime continued to lead the Motivations chart with 62%. This article has been indexed from…
Stop fixing OT security with IT thinking
In this Help Net Security interview, Ejona Preçi, Group CISO at Lindal Group, discusses the specific cybersecurity challenges in manufacturing environments. The conversation covers why standard IT security practices break down on shop floors, where PLCs and decade-old firmware were…
Iran‑Linked Hackers Tap Criminal Ecosystem to Bolster State Cyber Ops
Iran-linked cyber actors are increasingly working with the broader cybercrime ecosystem, using criminal tools, infrastructure, and business models to support state-backed operations and hide their involvement. For years, Iranian intelligence services have relied on criminal intermediaries in the physical world…
Cisco IOS XR Vulnerability Exposes Systems to Root Command Execution by Attackers
Cisco has issued high-severity software updates to address two high-severity privilege escalation vulnerabilities in its IOS XR Software. Network administrators must take immediate action, as these security flaws could allow an authenticated, local attacker to execute arbitrary commands as the…
Chrome Security Update – Patch for 29 Vulnerabilities that Allows Remote Code Execution
Google has officially released Chrome version 146 to the stable channel, delivering crucial security updates for Windows, Mac, and Linux users. Rolling out over the coming days, Chrome 146.0.7680.71 for Linux and 146.0.7680.71/72 for Windows and Mac addresses 29 security…
Agentic attack chains advance as infostealers flood criminal markets
Cybercriminals spent much of 2025 automating their operations, shifting from one-off attacks to systems that can run entire intrusion cycles with minimal human input. Data collected from criminal forums, illicit marketplaces, and underground chat services shows a threat environment where…
Stryker Faces Cyber Attack as Hackers Report System Breach and Device Destruction
On March 11, 2026, the global medical technology giant Stryker suffered a devastating cyberattack that brought its worldwide IT operations to a sudden halt. Iranian-linked threat actors breached the company’s network. They deployed highly destructive wiper malware designed to permanently…
SafeNet Trusted Access is Now Available on Google Cloud Marketplace
SafeNet Trusted Access is Now Available on Google Cloud Marketplace madhav Thu, 03/12/2026 – 05:10 We’re excited to share that Thales SafeNet Trusted Access, the industry’s leading passwordless authentication and access management solution is now available on Google Cloud Marketplace.…
Google Finalizes $32 Billion Deal to Acquire Wiz, Strengthening Cloud Security
Google Cloud has officially completed its acquisition of cloud security leader Wiz, marking a significant consolidation in the cybersecurity landscape. Operating under its retained brand within Google Cloud, Wiz will integrate its code-to-cloud security platform with Google’s existing enterprise security…
Meta Unveils New Anti-Scam Tools for WhatsApp, Facebook, and Messenger
Meta has rolled out a new wave of anti‑scam protections across WhatsApp, Facebook, and Messenger, combining AI‑driven detection, stricter advertiser controls, and public awareness campaigns to tackle fast‑evolving online fraud at scale. The new tools are designed to warn users…
Chrome Update Addresses 29 Vulnerabilities, Mitigating Remote Code Execution Threats
Google has officially rolled out a crucial update for its Chrome browser, promoting version 146 to the stable channel for Windows, Mac, and Linux users. Many of these flaws involve deep-seated memory corruption issues that, if left unpatched, could allow…
KadNap Malware Compromises Over 14,000 Edge Devices to Operate Hidden Proxy Botnet
Cybersecurity researchers have identified a previously undocumented malware strain called KadNap that is primarily infecting Asus routers and other internet-facing networking devices. The attackers are using these compromised systems to form a botnet that routes malicious traffic through residential…
Wireless vulnerabilities are doubling every few years
Wireless vulnerabilities are being disclosed at a rate that has no precedent in the fifteen-year history of systematic tracking. In 2025, researchers published 937 new wireless-related CVEs, an average of 2.5 per day, according to a threat report from Bastille…
Does Anthropic deserve the trust of the cybersecurity community?
The cybersecurity industry runs on trust. The belief that when a vendor says they will behave a certain way, they will, that critical CVEs are in fact critical, or when companies say they’re GDPR compliant, they really are. But earning…