Cybercriminals are exploiting supply chains, SEO poisoning, hijacked SDKs, and malicious apps to steal credentials, deploy crypto-stealing code, and spread ransomware This article has been indexed from CyberMaterial Read the original article: Cyber Briefing: 2026.03.16
Tag: EN
Handala Hackers Exploit RDP and NetBird in Coordinated Wiper Attacks
Handala Hack is an Iranian state-linked destructive actor that combines old-school RDP-heavy intrusions with new tools like NetBird and AI-assisted wipers to devastate victim networks rapidly. Handala Hack is an online persona operated by Void Manticore (also tracked as Red Sandstorm and…
875 Million Android Phones Face Risk Due to Hidden Chip Flaw
A MediaTek chip flaw could put up to 875 million Android phones at risk, exposing how a locked device can still be vulnerable below the surface. The post 875 Million Android Phones Face Risk Due to Hidden Chip Flaw appeared…
CamelClone Uses Public File-Sharing Sites in Government Cyberattacks
A new cyber espionage campaign dubbed Operation CamelClone, targeting government and strategic sectors across several geopolitically significant regions. The campaign abuses legitimate tools and public file‑sharing platforms to deliver malware and steal sensitive data, making it harder for defenders to…
Cyberattack Hits Poland’s Nuclear Research Center
Poland’s National Centre for Nuclear Research recently experienced a targeted cyberattack aimed at its IT infrastructure. Security teams successfully thwarted the intrusion before malicious actors could compromise critical systems or access sensitive data. The facility, which houses the country’s sole…
Beyond IAM: Implementing a Zero-Trust Data Plane With Service Account Identity Federation in GCP
Why IAM Alone Is No Longer Sufficient for Cloud Security Organizations now process and move data differently because of modern, cloud-native platforms. Workloads such as Spark jobs, Kafka streams, Snowflake queries, and ML pipelines run continuously in short-lived environments. IAM…
Android 17 Advanced Protection Mode to Block Malicious Service Usage
Google is preparing to launch Android 17, bringing a comprehensive set of new APIs and system capabilities to fundamentally improve device security, user privacy, and performance debugging. At the forefront of this release is the highly anticipated Android Advanced Protection…
China-Linked Hackers Hit Asian Militaries in Patient Espionage Operation
The state-sponsored hackers deployed custom tools and stayed dormant in the compromised environments for months. The post China-Linked Hackers Hit Asian Militaries in Patient Espionage Operation appeared first on SecurityWeek. This article has been indexed from SecurityWeek Read the original…
Security Flaw in AWS Bedrock Code Interpreter Raises Alarms
DNS-based attack in AWS Bedrock AgentCore lets AI sandboxes exfiltrate cloud data This article has been indexed from www.infosecurity-magazine.com Read the original article: Security Flaw in AWS Bedrock Code Interpreter Raises Alarms
Payload Ransomware Claims Hospital Hack
The Royal Bahrain Hospital has reportedly been targeted by the Payload ransomware group, which claims to have exfiltrated 110 GB of sensitive information. This article has been indexed from CyberMaterial Read the original article: Payload Ransomware Claims Hospital Hack
Poland Nuclear Research Centre Hit
Poland’s National Centre for Nuclear Research successfully blocked a cyberattack on its IT infrastructure before any damage occurred. This article has been indexed from CyberMaterial Read the original article: Poland Nuclear Research Centre Hit
Meta Ends Instagram Encrypted Chat
Meta will remove the option for end-to-end encrypted chats on Instagram starting May 8, 2026, due to low user adoption. This article has been indexed from CyberMaterial Read the original article: Meta Ends Instagram Encrypted Chat
Android 17 Restricts Accessibility API
Google is introducing a security update for Android Advanced Protection Mode that restricts non-essential applications from accessing the accessibility services API. This article has been indexed from CyberMaterial Read the original article: Android 17 Restricts Accessibility API
Interpol Disrupts Global Cybercrime
INTERPOL recently concluded a massive international crackdown known as Operation Synergia III, resulting in the dismantling of 45,000 malicious servers and the arrest of 94 individuals across 72 countries. This article has been indexed from CyberMaterial Read the original article:…
Justin Fulcher on AI’s Role in Modernizing Government Operations
Government systems weren’t built for the digital age. Many federal agencies still operate on infrastructure designed decades ago, creating bottlenecks that slow decision-making, strain resources, and frustrate both employees and citizens. Artificial intelligence offers a potential pathway forward, but only…
Flaw in UK’s corporate registry let directors rummage through rival records
Back button blunder in WebFiling service run by Companies House revealed confidential paperwork Companies House was forced to pull down its record-filing platform for the entire weekend to rectify a “security issue” that exposed the personal details of company directors…
Threat Actor Targeting VPN Users in New Credential Theft Campaign
Storm-2561 is distributing fake VPN clients through SEO poisoning, deploying trojans, and stealing login information. The post Threat Actor Targeting VPN Users in New Credential Theft Campaign appeared first on SecurityWeek. This article has been indexed from SecurityWeek Read the…
RSAC 2026 Innovation Sandbox | Fig Security: Guardian of the Reliability of Security Detection Systems
Company Profile Fig Security is a cybersecurity startup founded in 2025. It is headquartered in Israel with business operations also based in the United States. Despite its short history, the company has quickly gained industry attention through its innovative approach…
ClickFix Campaigns Spread MacSync macOS Infostealer via Fake AI Tool Installers
Three different ClickFix campaigns have been found to act as a delivery vector for the deployment of a macOS information stealer called MacSync. “Unlike traditional exploit-based attacks, this method relies entirely on user interaction – usually in the form of…
Why Security Validation Is Becoming Agentic
If you run security at any reasonably complex organization, your validation stack probably looks something like this: a BAS tool in one corner. A pentest engagement, or maybe an automated pentesting product, in another. A vulnerability scanner feeding an attack…